GET matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
200 OK 45 kB URL User Request GET HTTP/2 matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
IP
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type HTML document, ASCII text, with very long lines (19943), with CRLF, LF line terminators
Hash f14982177758d0a8412f96c5d66604bf
2dd4882cafbd5e4ab97ab036ddc0a8d53332d698
8bb2ac9bcef0838ec24a78e6ead18bd3bff04fdd2a246c9d38e9b7063af6dcc2
GET /nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/ HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:27 GMT
content-type: text/html; charset=UTF-8
content-length: 44580
x-powered-by: PHP/7.4.33
x-pingback: https://matshortener.xyz/xmlrpc.php
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://matshortener.xyz/wp-json/>; rel="https://api.w.org/", <https://matshortener.xyz/wp-json/wp/v2/posts/3714>; rel="alternate"; type="application/json", <https://matshortener.xyz/?p=3714>; rel=shortlink
etag: "9234-1705940021;br"
x-litespeed-cache: hit
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 6878a5346a4a0e62d490b92f8022521b-int-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.609
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-T01GWM97WV
200 OK 93 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-T01GWM97WV
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint8F:9C:3B:A4:59:1A:06:DC:19:DB:A1:30:5D:19:81:20:9E:19:31:AE
ValidityMon, 11 Dec 2023 08:03:30 GMT - Mon, 04 Mar 2024 08:03:29 GMT
File type JavaScript source, ASCII text, with very long lines (5955)
Hash 64e0015c45362a9655399f6877f84478
abd06b1e4cf69798b5567027f514904434e64000
58291b334ffb09e4bc456a2dca448df69057486ccc9e88c2a1181b02caf47687
GET /gtag/js?id=G-T01GWM97WV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Jan 2024 04:54:28 GMT
expires: Tue, 23 Jan 2024 04:54:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93406
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=GT-579NK3V
200 OK 93 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=GT-579NK3V
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint8F:9C:3B:A4:59:1A:06:DC:19:DB:A1:30:5D:19:81:20:9E:19:31:AE
ValidityMon, 11 Dec 2023 08:03:30 GMT - Mon, 04 Mar 2024 08:03:29 GMT
File type JavaScript source, ASCII text, with very long lines (5955)
Hash e16d147f4da86c42cbeb92f679f06576
1b71c9c54854665f80f83aa37fc651550f9a90ae
4cc453245dc21609cbe006540690122ceb38afe4eac989b2a5abea9a499c1fc8
GET /gtag/js?id=GT-579NK3V HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Jan 2024 04:54:28 GMT
expires: Tue, 23 Jan 2024 04:54:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93410
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn.ampproject.org/v0/amp-auto-ads-0.1.js
200 OK 7.6 kB URL GET HTTP/2 cdn.ampproject.org/v0/amp-auto-ads-0.1.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
Fingerprint21:F5:F5:FA:A2:D4:2F:3D:CF:E2:87:F5:4F:9C:D3:47:A9:76:E0:13
ValidityMon, 11 Dec 2023 08:05:11 GMT - Mon, 04 Mar 2024 08:05:10 GMT
File type JavaScript source, ASCII text, with very long lines (24953)
Hash 5ec6f959002c554f6f430afb62c045f4
1def42e52a4afc1d8ac600fdd05de547000506ff
3a1e4c6a4ff50e983df7e515acbe9b606eb31f86ab2494cf02d3a8b8a8940fa7
GET /v0/amp-auto-ads-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 7567
date: Tue, 23 Jan 2024 04:54:28 GMT
expires: Tue, 23 Jan 2024 04:54:28 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "8ac47804c54c82dc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET d1on4urq8lvsb1.cloudfront.net/?runod=1018187
200 OK 69 kB URL GET HTTP/2 d1on4urq8lvsb1.cloudfront.net/?runod=1018187
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (15945)
Hash 192ab227b9ae7ebcce1dec03bf7d821d
a31665f07f6d6f08ae9efb8cec6389bde91e0673
52ac3b65292e064792dc16739229481989f421ff5a8c537686cfe9a5b987ba9e
GET /?runod=1018187 HTTP/1.1
Host: d1on4urq8lvsb1.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 69446
date: Tue, 23 Jan 2024 04:54:28 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qpIJgiz3Clf2r4Qr8VpA0zHnL9BF-vKfasE5d1Illv8kNX8c1aWtlg==
X-Firefox-Spdy: h2
GET matshortener.xyz/wp-content/plugins/wp-dark-mode/assets/css/frontend.min.css?ver=4.2.8
200 OK 3.4 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/wp-dark-mode/assets/css/frontend.min.css?ver=4.2.8
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with very long lines (29468)
Hash 34a754a30d0bce2f99794dd0d892e69c
3a88f7e922509694b9850c164b5e99a5b0ee6c03
316a308f7f072efd9044e2bad379035a4e5f1d27ff9fece18bf829162aea0e50
GET /wp-content/plugins/wp-dark-mode/assets/css/frontend.min.css?ver=4.2.8 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/css
content-length: 3420
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Thu, 04 Jan 2024 05:44:30 GMT
etag: "731d-659645be-e1696845f69884c0;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 2c056814dc02782c802ba6b2fdc5b3e7-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.552
accept-ranges: bytes
GET matshortener.xyz/wp-content/themes/incolor/style.css?ver=6.4.2
200 OK 14 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/style.css?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type HTML document, ASCII text, with very long lines (485), with CRLF line terminators
Hash 7477bb3eb7e55cefa04dad5840096bd2
76d99da4bf9854b4615aa4f164dae4508ebf48ff
954bf83d7bb774736f3052c5a961d118f58024d64afadef5319157bfb9417d91
GET /wp-content/themes/incolor/style.css?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/css
content-length: 13573
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "13b9c-6528b463-d5a31fc1c2ca2bd8;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 53e36ab14b083719c40c6ff26f5ae583-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.551
accept-ranges: bytes
GET matshortener.xyz/wp-content/themes/incolor/responsive.css?ver=6.4.2
200 OK 1.6 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/responsive.css?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with CRLF line terminators
Hash 72f2003039de70da126e23e53aaffee4
0f52f534b8c3a5e0fb75718bdb9fe6f29ac57c72
60beae1a1e8ca88e4bc62c2a0774c94b97963b96a4ba7a9bad4c53032a1b78bd
GET /wp-content/themes/incolor/responsive.css?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/css
content-length: 1560
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "1c84-6528b463-fc7521d8ced9651b;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: c3d73672f0666a12733727dbd08c3be0-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.552
accept-ranges: bytes
GET matshortener.xyz/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
200 OK 13 kB URL GET HTTP/3 matshortener.xyz/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with very long lines (57084)
Hash 99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/css
content-length: 13320
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Sat, 13 Jan 2024 07:51:54 GMT
etag: "1add3-65a2411a-3065f365597afb7d;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a3ef402ba0e63e14b0c2e9d7fb5aaa33-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.558
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/code-snippet-dm/public/css/main.min.css?ver=2.0.3
200 OK 1.9 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/code-snippet-dm/public/css/main.min.css?ver=2.0.3
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with very long lines (10722)
Hash 0899e2d3903d7c72d3ea5b25106c02f3
4ec0230b97b4d81b8e969ff5779b71dc2acfa61f
6dc038e2fc9dd8b994415d2b1eada4137b78dfe6f77aae1f9b4971738e619c5c
GET /wp-content/plugins/code-snippet-dm/public/css/main.min.css?ver=2.0.3 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/css
content-length: 1931
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 17 Nov 2023 07:51:26 GMT
etag: "2a0b-65571b7e-3a4a3cb78228bb8a;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d18471557e4311c5ec245f4cd76a344f-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.559
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/js/script.min.js?ver=3.1.8
200 OK 6.2 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/js/script.min.js?ver=3.1.8
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (19185), with no line terminators
Hash 367bab3fe1e10d6f3d07cf995836afbc
530cc18a23a89a3c01bcf4b9b7d7ca7154daa331
aaa98cf9a1d05fcc65d948ce5712cf5ffee25659b1ab42553f1d60222ba0bb35
GET /wp-content/plugins/cookie-law-info/lite/frontend/js/script.min.js?ver=3.1.8 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 6215
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 12 Jan 2024 17:11:30 GMT
etag: "4af1-65a172c2-17e499ee29fe9c52;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 2d15ec45b0e406f84409016cc2679b78-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.556
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.23.1
200 OK 3.0 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.23.1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (1392)
Hash 9593c634b81c031342cbe0fa03903d47
dd68ee9d73731b22fb7252f66be8bea5d17227c7
d7bdba02afa8c04c13f280c71a50f8c8186c883711c5dabbd13566dd738bff0a
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.23.1 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 3028
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Mon, 18 Dec 2023 16:00:14 GMT
etag: "2da9-65806c8e-8d5cd1cd76826f58;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 659dc7cb5f6f4e9de4bc65e68ad9032b-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.557
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/wp-dark-mode/assets/js/frontend.min.js?ver=4.2.8
200 OK 1.3 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/wp-dark-mode/assets/js/frontend.min.js?ver=4.2.8
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (4989), with no line terminators
Hash e6eb9d830e59ea5d2ccf630d80e748c4
fd402372efb9adeb232049f9115529e33f7dbf57
95c212910ebf54b89de652fda2a870facc0e7c9b0b9bc0975fe399df1d1087de
GET /wp-content/plugins/wp-dark-mode/assets/js/frontend.min.js?ver=4.2.8 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 1287
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Thu, 04 Jan 2024 05:44:30 GMT
etag: "137d-659645be-4cb4b1a6d2ebf6e3;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 8637a7bf8661bd0652ac74c8d1fe858c-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.559
accept-ranges: bytes
GET matshortener.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 4.7 kB URL GET HTTP/3 matshortener.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 4671
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Sat, 13 Jan 2024 07:51:56 GMT
etag: "3509-65a2411c-7504735dac13db5f;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 026ffd5af2e5693a27ed2004142f67b9-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.559
accept-ranges: bytes
GET matshortener.xyz/wp-content/themes/incolor/js/slick.min.js?ver=6.4.2
200 OK 10 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/js/slick.min.js?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (32026), with CRLF line terminators
Hash 04f7e97a54f61407f230196b17a3b5c8
e3d1d3bdc40c2e3788e2b83b1cf70084e330eaa3
254d80a49d0c9fced2fd0c272e7b868ca726df8189dc9c5735c56a33e7853dfc
GET /wp-content/themes/incolor/js/slick.min.js?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 10506
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "ab7a-6528b463-76f6e0e60277b945;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: c8a16e35f450cc788bafdd702405827f-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.553
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/clipboardv201.min.js?ver=2.0.3
200 OK 3.0 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/clipboardv201.min.js?ver=2.0.3
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (8941), with CRLF line terminators
Hash 776662dc1ffe9e448e749a7a5863bdca
324645cc99411a4a150894ffab45a6ba26685824
1757235e02a869302c404e4fc1257c96ed8abf468d9635ffb2e17d053d72424a
GET /wp-content/plugins/code-snippet-dm/public/js/clipboardv201.min.js?ver=2.0.3 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 3008
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 17 Nov 2023 07:51:26 GMT
etag: "2352-65571b7e-e47cfda04e7b7987;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: e9f66a7fc6e4bd636f132aaa0e4ea79b-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.566
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/prism.js?ver=2.0.3
200 OK 16 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/prism.js?ver=2.0.3
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (7422)
Hash c76ec4c2c11241f16a1dd7cd1e5f65b5
02b33f4fbd8bf40ebe87a17feda851d110dbe9a6
e754011a74dab74662f1741504f6fb8aae60d143b50bbe43c02e9446d313468a
GET /wp-content/plugins/code-snippet-dm/public/js/prism.js?ver=2.0.3 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 15642
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 17 Nov 2023 07:51:26 GMT
etag: "b11c-65571b7e-ae2a9578b51829d9;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 32053a4f78832d071b1429751626a6b4-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.569
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/code-snippet-dm-public.js?ver=2.0.3
200 OK 495 B URL GET HTTP/3 matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/code-snippet-dm-public.js?ver=2.0.3
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text
Hash c13dc99b8e113875b8ad097b161ed030
39018c46e450db0d6edff411b94701791832933f
02263fd2d872f9c8f1d6175ab98265268e1847ea51cf08d0d87d0d2740c970cf
GET /wp-content/plugins/code-snippet-dm/public/js/code-snippet-dm-public.js?ver=2.0.3 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 495
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 17 Nov 2023 07:51:26 GMT
etag: "5be-65571b7e-14b3d5a855d2499;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 93b197612db8ce203f51a716565d9521-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.569
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/manually-start-prism.js?ver=2.0.3
200 OK 178 B URL GET HTTP/3 matshortener.xyz/wp-content/plugins/code-snippet-dm/public/js/manually-start-prism.js?ver=2.0.3
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash cd6d7e5027f81f2261cf22a0ade5ef53
38406ada9ecc3970a41edfeb6a947a688dfc1ee1
0e44762101e93d560d481cee2f5b320dc3f71391acf54136c40b982497a94f6d
GET /wp-content/plugins/code-snippet-dm/public/js/manually-start-prism.js?ver=2.0.3 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 178
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 17 Nov 2023 07:51:26 GMT
etag: "13f-65571b7e-69cf27982099e7eb;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 6afce277fd28ff60e44109b6a6dde10e-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.570
accept-ranges: bytes
GET matshortener.xyz/wp-content/themes/incolor/js/jquery.fitvids.js?ver=6.4.2
200 OK 1.1 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/js/jquery.fitvids.js?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 6e0892565e2b1daaa774e779447293ae
e195dcaa1ad9b1aa1fb73e835426bc9ece4790f1
9c29ff6cb8ebb7a83af704c02a235b37fd77ce8cc48d87aaef2bfd9727fbd166
GET /wp-content/themes/incolor/js/jquery.fitvids.js?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 1132
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "ce7-6528b463-b8832da20de87a97;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: c52f47bd002d0c41538e31571c96e06f-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.548
accept-ranges: bytes
GET matshortener.xyz/wp-content/themes/incolor/js/scripts.js?ver=6.4.2
200 OK 1.9 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/js/scripts.js?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 8738f93e3e2537d3bff9dec24eca0a71
d842da13ec10368b430d0731613f0592a4a24e58
34f19cc9375127e9ead4eab4303199201eecd6853762170485e11975e6b3fe7d
GET /wp-content/themes/incolor/js/scripts.js?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 1865
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "1848-6528b463-6286617c1d021aa9;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 56ff932dd484a0cedf3d0387987983e9-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.552
accept-ranges: bytes
GET matshortener.xyz/wp-content/themes/incolor/js/nav.js?ver=1697166435
200 OK 2.2 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/js/nav.js?ver=1697166435
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with CRLF line terminators
Hash 0133febd7b73b55f693f91eb81a495f6
10ed53f66c469cb4b5b8d68aedb43a6e940cc365
bcd1fc77d1d8787ac24a9383e483152dc4c59dbe2367e6081029b5158e44a065
GET /wp-content/themes/incolor/js/nav.js?ver=1697166435 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 2205
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "2393-6528b463-239edfcb6b6efbad;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9faa37d0bfc2de7f5f305a8433a3b1cc-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.553
accept-ranges: bytes
GET matshortener.xyz/wp-includes/js/comment-reply.min.js?ver=6.4.2
200 OK 1.2 kB URL GET HTTP/3 matshortener.xyz/wp-includes/js/comment-reply.min.js?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with very long lines (2946)
Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
GET /wp-includes/js/comment-reply.min.js?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 1229
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Sat, 13 Jan 2024 07:51:55 GMT
etag: "ba5-65a2411b-94d8778e4a838abe;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 15f5363922863865488ed0c4334210f2-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.556
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/chp-ads-block-detector/assets/img/icon.png
200 OK 10 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/chp-ads-block-detector/assets/img/icon.png
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type RIFF (little-endian) data, Web/P image
Hash 70f12a6b37761e6c10db0c4fdd0ab2e2
90eee98a7bd040db8c63614f4ff07dd490155db8
24640a0dd75ec850e5ae16733e734828f892642cc22ee50fb283d728cd4091bf
GET /wp-content/plugins/chp-ads-block-detector/assets/img/icon.png HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: image/webp
content-length: 10402
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
x-hcdn-image-optimizer: f:webp q:70 w:1600
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: eac3d62cc6a9a3b9c5fe24b820d99d27-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.582
accept-ranges: bytes
GET fonts.googleapis.com/css?family=Roboto%3A400%2C300italic%2C300%2C400italic%2C700&subset=latin%2Clatin-ext&ver=6.4.2
200 OK 1.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A400%2C300italic%2C300%2C400italic%2C700&subset=latin%2Clatin-ext&ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint59:56:55:62:78:0C:21:25:FB:11:29:98:6E:A8:21:EF:64:2B:33:C0
ValidityMon, 11 Dec 2023 08:09:11 GMT - Mon, 04 Mar 2024 08:09:10 GMT
File type gzip compressed data, max compression
Hash 41028745a8ce00a09a326bc280cf25d8
a5f9160e814f62a5169a113f956db93027de7fb7
4c005bf2d8d5fe13d7e1d4f847affd772e8da0ad7495b51bd18e88a0f8ceedca
GET /css?family=Roboto%3A400%2C300italic%2C300%2C400italic%2C700&subset=latin%2Clatin-ext&ver=6.4.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Jan 2024 04:54:28 GMT
date: Tue, 23 Jan 2024 04:54:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET matshortener.xyz/wp-content/themes/incolor/fonts/all.min.css?ver=6.4.2
200 OK 22 kB URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/fonts/all.min.css?ver=6.4.2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type ASCII text, with very long lines (52276)
Hash 3ea504b0a29956803d501ff3359af394
cefeac7cfae575b5f247940d1069da3241684875
3dc0bc2b534e4bde8b4eba93fe618d4c13250708d8236979ea7a1aed051b4a35
GET /wp-content/themes/incolor/fonts/all.min.css?ver=6.4.2 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/css
content-length: 21583
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 13 Oct 2023 03:07:15 GMT
etag: "18e59-6528b463-f691011a997352fb;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: ad31a9b8be0ed3abac15757aa5de757c-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.558
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/wp-dark-mode/assets/js/dark-mode.min.js?ver=4.2.8
200 OK 19 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/wp-dark-mode/assets/js/dark-mode.min.js?ver=4.2.8
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (31976)
Hash e35012a903a999d437749f5de8539b2c
5e543d99ebdb1f8ee0c5cba4f599dbdc93026aa4
d230fa6c14bf1f2df177f38c46f0d091f90ea57753e36e035616a381bd43a2db
GET /wp-content/plugins/wp-dark-mode/assets/js/dark-mode.min.js?ver=4.2.8 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 18893
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Thu, 04 Jan 2024 05:44:30 GMT
etag: "ee60-659645be-d8fb78760b884607;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 4907666edf7945d8f1d049c36490c7d0-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.559
accept-ranges: bytes
GET matshortener.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 30 kB URL GET HTTP/3 matshortener.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: application/x-javascript
content-length: 29531
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Sat, 13 Jan 2024 07:51:56 GMT
etag: "15601-65a2411c-22b3b7cccab003ea;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 30bfed54a567697ce4621296affc812d-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.569
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/chp-ads-block-detector/assets/img/d.svg
200 OK 22 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/chp-ads-block-detector/assets/img/d.svg
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type SVG Scalable Vector Graphics image
Hash 496d1ae6bd68127d1c2e7d768de2702d
401094e71de488d2233d229bad8be282130a92b5
51ed1f79aeb5a9c25435cb7b6d5335353448d2eefaac75fa24470d93a0d07fde
GET /wp-content/plugins/chp-ads-block-detector/assets/img/d.svg HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: image/svg+xml
content-length: 22018
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
last-modified: Fri, 19 Jan 2024 15:55:43 GMT
etag: "11ba9-65aa9b7f-d801b2c4f6646b39;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: b9ee985e0e1ec82c05d99d5457caf5ea-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.554
accept-ranges: bytes
GET bakertangiblebehaved.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
200 OK 24 kB URL GET HTTP/1.1 bakertangiblebehaved.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 4254866db694105228f6f239b118bde8
12bed4670e1ddd04cc7f4e816bb7e1d5989bad2c
f16280454bbdb63617a5f9fdcd23e8c3d6d2a138b70a6b1895ef2a357c92efdf
GET /6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7cf906a6ed5a8068494313d3e7358d06
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET crevicedepressingpumpkin.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
200 OK 24 kB URL GET HTTP/1.1 crevicedepressingpumpkin.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcrevicedepressingpumpkin.com
Fingerprint60:34:35:DA:C8:EC:9A:92:C7:C9:20:3F:EF:22:29:27:CA:12:95:B2
ValidityThu, 11 Jan 2024 06:29:40 GMT - Wed, 10 Apr 2024 06:29:39 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 02a197168c9d9b5390a0694244d48c2d
ca608cdde3390087477e8fbb27a8122cb9c6db7a
b01ae854c8fd0d4059d63ff76944ce385994359e7ff65143b68799157d8517ad
GET /6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js HTTP/1.1
Host: crevicedepressingpumpkin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 22323314ada341281705f37aead99e84
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET kit.fontawesome.com/c1366bcc7f.js
200 OK 4.8 kB URL GET HTTP/2 kit.fontawesome.com/c1366bcc7f.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File type gzip compressed data, from Unix
Hash 3bb5bfd00f64f5fb3e6e945b8ac05eec
aa9dd947c477ed44cad17b5eb85c3006b96350b8
2a5525b00e294ba91430bdb87993ac500260cb85db7abcd5b6b048bf038e0bf1
GET /c1366bcc7f.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:28 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F6zf7wwLMQ041Q3s_wYC
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 849d7059aeee56b5-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint6F:8C:8C:6F:06:BF:0D:24:7E:8D:3D:09:0D:07:26:DF:C3:6E:47:C0
ValidityMon, 11 Dec 2023 08:09:11 GMT - Mon, 04 Mar 2024 08:09:10 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Jan 2024 05:14:35 GMT
expires: Sun, 19 Jan 2025 05:14:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 257994
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST region1.analytics.google.com/g/collect?v=2&tid=G-T01GWM97WV>m=45je41h0v9100384128&_p=1705985670122&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&tag_exp=71847096&gdid=dZGIzZG&cid=1381542511.1705985670&ul=en-us&sr=1280x1024&_s=1&sid=1705985670&sct=1&seg=0&dl=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&dt=NUEVO%20SCRIPT%20%2F%20HACK%20ACTUALIZADO%20DE%20BLOX%20FRUITS%20%5BUPDATE%2020%20%26%20KITSUNE%5D%20%7C%20AUTO%20FARM%2C%20FRUIT%20SNIPER%2C%20RACE%20V4%2C%20AUTO%20RAID%7C%20PARA%20PC%20Y%20CELULAR!%20%E2%80%93%20RinconDeVideojuegos&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true&tfd=1414
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-T01GWM97WV>m=45je41h0v9100384128&_p=1705985670122&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&tag_exp=71847096&gdid=dZGIzZG&cid=1381542511.1705985670&ul=en-us&sr=1280x1024&_s=1&sid=1705985670&sct=1&seg=0&dl=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&dt=NUEVO%20SCRIPT%20%2F%20HACK%20ACTUALIZADO%20DE%20BLOX%20FRUITS%20%5BUPDATE%2020%20%26%20KITSUNE%5D%20%7C%20AUTO%20FARM%2C%20FRUIT%20SNIPER%2C%20RACE%20V4%2C%20AUTO%20RAID%7C%20PARA%20PC%20Y%20CELULAR!%20%E2%80%93%20RinconDeVideojuegos&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true&tfd=1414
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint8F:9C:3B:A4:59:1A:06:DC:19:DB:A1:30:5D:19:81:20:9E:19:31:AE
ValidityMon, 11 Dec 2023 08:03:30 GMT - Mon, 04 Mar 2024 08:03:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-T01GWM97WV>m=45je41h0v9100384128&_p=1705985670122&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&tag_exp=71847096&gdid=dZGIzZG&cid=1381542511.1705985670&ul=en-us&sr=1280x1024&_s=1&sid=1705985670&sct=1&seg=0&dl=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&dt=NUEVO%20SCRIPT%20%2F%20HACK%20ACTUALIZADO%20DE%20BLOX%20FRUITS%20%5BUPDATE%2020%20%26%20KITSUNE%5D%20%7C%20AUTO%20FARM%2C%20FRUIT%20SNIPER%2C%20RACE%20V4%2C%20AUTO%20RAID%7C%20PARA%20PC%20Y%20CELULAR!%20%E2%80%93%20RinconDeVideojuegos&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true&tfd=1414 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://matshortener.xyz
date: Tue, 23 Jan 2024 04:54:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET veresultedinncre.org/popunder.gif
200 OK 507 B URL GET HTTP/2 veresultedinncre.org/popunder.gif
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectveresultedinncre.org
Fingerprint57:0E:AA:AF:71:BF:CB:C0:33:A1:5D:89:F4:37:68:1C:C1:35:4A:28
ValidityFri, 12 Jan 2024 07:23:51 GMT - Thu, 11 Apr 2024 07:23:50 GMT
File type GIF image data, version 89a, 1 x 1
Hash 46ee762535596d65dd92c2a2e2f45473
a282b06488d29ed18a3b040b41bdd11ec7f50d6b
fe524bde241733f6992cb13e4b4d51adc3ad83d77be5aedd42f520a814f66a3c
GET /popunder.gif HTTP/1.1
Host: veresultedinncre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:29 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 12019
last-modified: Tue, 23 Jan 2024 01:34:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJ9K8AeE2zkBHOjpyq4VF8dGVthIJ7d5rCXUpJT7uzuco67cJTfITfIrnYEZqz1Oz8B535PbhMwkq7Ojtrp1DeGJtJ6aOJUmGeztuC8hHO0LNfR10Jje6VujLH51DJUU9u7cBmkBtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d7060a8c3069b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint6F:8C:8C:6F:06:BF:0D:24:7E:8D:3D:09:0D:07:26:DF:C3:6E:47:C0
ValidityMon, 11 Dec 2023 08:09:11 GMT - Mon, 04 Mar 2024 08:09:10 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Jan 2024 21:36:53 GMT
expires: Thu, 16 Jan 2025 21:36:53 GMT
cache-control: public, max-age=31536000
age: 458256
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint6F:8C:8C:6F:06:BF:0D:24:7E:8D:3D:09:0D:07:26:DF:C3:6E:47:C0
ValidityMon, 11 Dec 2023 08:09:11 GMT - Mon, 04 Mar 2024 08:09:10 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Jan 2024 05:12:53 GMT
expires: Sun, 19 Jan 2025 05:12:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 258096
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31282), with no line terminators
Hash 6ac8b2a332cb3fb62ebc9f3d5807c80b
22f28c9c9e1940cf789d50bf0dc3a69a36482af5
d7e983aeddf487bd4d4f3472f4ff9494c75b3cef10a32f4badde02a38361e369
GET /f8397e4bf5afba070b5b67912826af5a/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a9d174a50f5bf04d1390acc1b80d358f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET veresultedinncre.org/Zm1URGxJUjc3UTc7JAAICz8sJiQkKwIcBBQOARIIBSogczgKOHIwBQJQZXRdXlxsc0oWBDB5XUAeICUYEx5pdUoPAzIrUUAbaXVCVVl6d1hIXXIxUVdLIDQNAVBlYhwSGTh5XVFdYX1UU1tjdV5QXw
204 No Content 0 B URL GET HTTP/2 veresultedinncre.org/Zm1URGxJUjc3UTc7JAAICz8sJiQkKwIcBBQOARIIBSogczgKOHIwBQJQZXRdXlxsc0oWBDB5XUAeICUYEx5pdUoPAzIrUUAbaXVCVVl6d1hIXXIxUVdLIDQNAVBlYhwSGTh5XVFdYX1UU1tjdV5QXw
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectveresultedinncre.org
Fingerprint57:0E:AA:AF:71:BF:CB:C0:33:A1:5D:89:F4:37:68:1C:C1:35:4A:28
ValidityFri, 12 Jan 2024 07:23:51 GMT - Thu, 11 Apr 2024 07:23:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Zm1URGxJUjc3UTc7JAAICz8sJiQkKwIcBBQOARIIBSogczgKOHIwBQJQZXRdXlxsc0oWBDB5XUAeICUYEx5pdUoPAzIrUUAbaXVCVVl6d1hIXXIxUVdLIDQNAVBlYhwSGTh5XVFdYX1UU1tjdV5QXw HTTP/1.1
Host: veresultedinncre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 23 Jan 2024 04:54:29 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xljiRGVnJJPNVi6MHaYoAafRQEwAMj1JKeKkS8%2FW8eW458XREwn6jSOevvJ8zEPk7tPZhZIJKSB6GsZu5Rv%2BiXdI8mBp%2BckCFSu%2F01MX7D2FzKD39%2BdFzGzi7fL2dZQpe%2BpUJPn7qA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 849d706088b0069b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET veresultedinncre.org/RTkyQnNqBlExThQLezsnAmtFFxQPAWRxAxN4XHcXIQhjARUpWhQ2GiEEA3JCfQgKelU1UFZ/Qn0fQTYSMUxBf0JjUFwkHHgfRH9CawkccF1xH0d/QmNNQiMUeAgUMgcxVQ9zRHUMC3pGcw4DcER0
204 No Content 0 B URL GET HTTP/2 veresultedinncre.org/RTkyQnNqBlExThQLezsnAmtFFxQPAWRxAxN4XHcXIQhjARUpWhQ2GiEEA3JCfQgKelU1UFZ/Qn0fQTYSMUxBf0JjUFwkHHgfRH9CawkccF1xH0d/QmNNQiMUeAgUMgcxVQ9zRHUMC3pGcw4DcER0
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectveresultedinncre.org
Fingerprint57:0E:AA:AF:71:BF:CB:C0:33:A1:5D:89:F4:37:68:1C:C1:35:4A:28
ValidityFri, 12 Jan 2024 07:23:51 GMT - Thu, 11 Apr 2024 07:23:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /RTkyQnNqBlExThQLezsnAmtFFxQPAWRxAxN4XHcXIQhjARUpWhQ2GiEEA3JCfQgKelU1UFZ/Qn0fQTYSMUxBf0JjUFwkHHgfRH9CawkccF1xH0d/QmNNQiMUeAgUMgcxVQ9zRHUMC3pGcw4DcER0 HTTP/1.1
Host: veresultedinncre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 23 Jan 2024 04:54:29 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BMFDZ%2BpEAGqssYAAZAx1AGnGGsNqDn905TL%2B3rhrMxcBSQ1oernGfkRYM%2BJyfFA1IZLiUdk5mRlL0d2D6sOEHfwfG6SKoCEfpouXgT1GMm81TCVa2LdMHhJDnIQbuSegwA1MUNgBNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 849d706098b3069b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET matshortener.xyz/wp-content/uploads/2024/01/BLOXITOS-740x416.png
200 OK 45 kB URL GET HTTP/3 matshortener.xyz/wp-content/uploads/2024/01/BLOXITOS-740x416.png
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type RIFF (little-endian) data, Web/P image
Hash 3ea327ac363ea68255c52e3b22a4bdff
008f6da100c147a45fad1140de14e4acbe519016
6230156f20c0a6fe83a71174a255b1ce929b625ff9a7f476f0465e6a3032bf63
GET /wp-content/uploads/2024/01/BLOXITOS-740x416.png HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:29 GMT
content-type: image/webp
content-length: 44674
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:28 GMT
x-hcdn-image-optimizer: f:webp q:70 w:1600
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: b9369756055a46d886e2883d9c243435-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 1.319
accept-ranges: bytes
GET bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31258), with no line terminators
Hash 6f490b60816b3c9e1b3311ed96db5098
b95570b58fe865e5409ddac7571adbf8f2fd082d
ba4b0a7d454d16879f0a75d0c450d810da7f235145476a8080a4240c54d6165c
GET /f8397e4bf5afba070b5b67912826af5a/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c9d5b527ea8105c7cc6c763cc63856e5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash bf8a7f3a9f348ea9c2fabe66c94c4197
e7609f4f94d69d40cd57609317ce2885be21eb67
888e0a4ce25398d514925b7a6bd1a10e340d962c854ed1e9a334b2fe0c9cfb74
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://matshortener.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=fd12b911-9e09-41db-9a0b-95d857a1c06a:3:1; expires=Fri, 20 Jan 2034 04:54:29 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cf67d65026695e6ad75c1f434777a4c4
f6c70878b48404542559acaea6bb416c3781fbdc
5b1d4b84c2bc894b5b34259aea7461e17043d379712315cf34ad5bb1589ba5ff
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://matshortener.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Fri, 20 Jan 2034 04:54:29 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET bakertangiblebehaved.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
200 OK 24 kB URL GET HTTP/1.1 bakertangiblebehaved.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 24fa9883d762aef4dd2ab4d1f768804c
9fd6cc783b2b690ef96233b8ed0e9f215307953a
d47c160703c59ea3bdfcd07f9aa502a6e2eed5c00c9d0a98df817c0f091f1ca7
GET /6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 473c6731f32770ffe9a0e6bc5e7ca36a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31288), with no line terminators
Hash 43c33897d869bf1b04014b65223d9923
07b2b2b90e23369fd30ce0aa53b41039b90b74d6
c4d38535e76d550ff1720231c29c9ee48dace02d8d586b6a09393d246f7b98ef
GET /f8397e4bf5afba070b5b67912826af5a/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 36e81db79f4986e31dc1f69a60b50448
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31294), with no line terminators
Hash ce5fa66742de6b64ba139f99565f8ac7
70232bf93c23f44c591416489fc5127b431f08bb
9d9cfe43f0c880d30567ae0bc4e8983f39864979fe883ea41de3662047f0733c
GET /f8397e4bf5afba070b5b67912826af5a/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8f791cc4fa8b919a5d89ab16d482af30
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET vicinitycounsellor.com/watch.751077244691.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 vicinitycounsellor.com/watch.751077244691.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectvicinitycounsellor.com
FingerprintFC:E7:46:C9:B8:DB:C3:9E:8B:DB:8B:9C:81:85:40:45:37:A4:5C:37
ValidityWed, 17 Jan 2024 10:09:09 GMT - Tue, 16 Apr 2024 10:09:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.751077244691.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1 HTTP/1.1
Host: vicinitycounsellor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:29 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://vicinitycounsellor.com/watch.751077244691.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985729&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=fa3b046ff3c8b0148bce167a885a17ce0edb90f7eb4b45b0faccfa837f39c17f6128927ae984097e6d69fd89947731d0ae9cb5e397962217e6a0279fddad60c7ab38e175db694ec804d653c4278664f2e58919eb0c1bbe1adbe7a176cf2f67&tz=0&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:29 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:29 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 154afef4a0a38d39fdd665b2fed5c165
Strict-Transport-Security: max-age=0; includeSubdomains
GET trumppuffy.com/watch.362854293169.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 trumppuffy.com/watch.362854293169.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjecttrumppuffy.com
FingerprintB5:81:8C:A7:42:EA:B6:58:73:87:48:CE:45:96:58:43:85:F6:3A:DC
ValidityWed, 17 Jan 2024 10:14:28 GMT - Tue, 16 Apr 2024 10:14:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.362854293169.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: trumppuffy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://trumppuffy.com/watch.362854293169.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=bd0719b86d321125b609a667d925efdad205067aba77f6839dfbfb2d630777343530cc54757d6fbb47a8663bfebda0b4d4006d93a1405d56c82d4d016d0381c4dd8ab9c2b196c4ee72be02931d88b08afff30737a7ebdfcc5126027542301cef&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: feeb5720f22cfd88698bd2d151a02a5f
Strict-Transport-Security: max-age=0; includeSubdomains
GET fonts.gstatic.com/s/firasans/v17/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2
200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/firasans/v17/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint6F:8C:8C:6F:06:BF:0D:24:7E:8D:3D:09:0D:07:26:DF:C3:6E:47:C0
ValidityMon, 11 Dec 2023 08:09:11 GMT - Mon, 04 Mar 2024 08:09:10 GMT
File type Web Open Font Format (Version 2), TrueType, length 23620, version 1.0
Hash 6798f8f19d0631ef01d56a7ebed65f73
345e7a3f1b50ccd8569988f4c54d1994a8ab7a31
f8fb86afe5b79eaff2c4a5a44459de5444d04a7b395fd7bd627e70b95e5e5347
GET /s/firasans/v17/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Jan 2024 05:12:15 GMT
expires: Sun, 19 Jan 2025 05:12:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:50:03 GMT
content-type: font/woff2
age: 258135
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31295), with no line terminators
Hash d44e2b5353cb81f0e701474806ff0754
5d827cc03aaad3764887a8a80f02b464dc91f270
a1c30fb9df381356f5af4782f9f8509a6807694ddb8e7d3e64011e80bc3f1daa
GET /64b7aceffd358a09b102df804e73ffe6/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b5847b0faf4d50eb302020116cd9577f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET trumppuffy.com/watch.362854293169.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=bd0719b86d321125b609a667d925efdad205067aba77f6839dfbfb2d630777343530cc54757d6fbb47a8663bfebda0b4d4006d93a1405d56c82d4d016d0381c4dd8ab9c2b196c4ee72be02931d88b08afff30737a7ebdfcc5126027542301cef&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 trumppuffy.com/watch.362854293169.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=bd0719b86d321125b609a667d925efdad205067aba77f6839dfbfb2d630777343530cc54757d6fbb47a8663bfebda0b4d4006d93a1405d56c82d4d016d0381c4dd8ab9c2b196c4ee72be02931d88b08afff30737a7ebdfcc5126027542301cef&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjecttrumppuffy.com
FingerprintB5:81:8C:A7:42:EA:B6:58:73:87:48:CE:45:96:58:43:85:F6:3A:DC
ValidityWed, 17 Jan 2024 10:14:28 GMT - Tue, 16 Apr 2024 10:14:27 GMT
File type JavaScript source, ASCII text, with very long lines (2442)
Hash 70f870cfe6fbee999bc688a78da575e1
a9110dd470ba82a083fc97b2a9804503091ebbe8
c2b39c600d48a9dbae6af8cde318fb4fcbd2643e86373f67b1dc0c4a58e8657f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.362854293169.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=bd0719b86d321125b609a667d925efdad205067aba77f6839dfbfb2d630777343530cc54757d6fbb47a8663bfebda0b4d4006d93a1405d56c82d4d016d0381c4dd8ab9c2b196c4ee72be02931d88b08afff30737a7ebdfcc5126027542301cef&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: trumppuffy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 616405521296794244d95e0630114ee7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET vicinitycounsellor.com/watch.751077244691.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985729&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=fa3b046ff3c8b0148bce167a885a17ce0edb90f7eb4b45b0faccfa837f39c17f6128927ae984097e6d69fd89947731d0ae9cb5e397962217e6a0279fddad60c7ab38e175db694ec804d653c4278664f2e58919eb0c1bbe1adbe7a176cf2f67&tz=0&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 vicinitycounsellor.com/watch.751077244691.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985729&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=fa3b046ff3c8b0148bce167a885a17ce0edb90f7eb4b45b0faccfa837f39c17f6128927ae984097e6d69fd89947731d0ae9cb5e397962217e6a0279fddad60c7ab38e175db694ec804d653c4278664f2e58919eb0c1bbe1adbe7a176cf2f67&tz=0&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectvicinitycounsellor.com
FingerprintFC:E7:46:C9:B8:DB:C3:9E:8B:DB:8B:9C:81:85:40:45:37:A4:5C:37
ValidityWed, 17 Jan 2024 10:09:09 GMT - Tue, 16 Apr 2024 10:09:08 GMT
File type JavaScript source, ASCII text, with very long lines (2460)
Hash 0b40b434c31ccc6699c709e92f9b37c7
014cbfac08b3064b6918cf73c735f33c676fd4a6
23f0e45abd6c1ce60df18ce525eb5729678439006a998bcdf201a56c5a46d3a8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.751077244691.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985729&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=fa3b046ff3c8b0148bce167a885a17ce0edb90f7eb4b45b0faccfa837f39c17f6128927ae984097e6d69fd89947731d0ae9cb5e397962217e6a0279fddad60c7ab38e175db694ec804d653c4278664f2e58919eb0c1bbe1adbe7a176cf2f67&tz=0&uuid=fd12b911-9e09-41db-9a0b-95d857a1c06a%3A3%3A1 HTTP/1.1
Host: vicinitycounsellor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=fd12b911-9e09-41db-9a0b-95d857a1c06a:3:1; expires=Tue, 30 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 67e5f13fc0f4d2074bc71de02c31c97a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET sealeddraincurrently.com/watch.1102026717880.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 sealeddraincurrently.com/watch.1102026717880.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectsealeddraincurrently.com
FingerprintAC:53:C7:70:47:CB:8E:F7:22:35:6B:0A:F7:B4:21:2B:D4:FB:FD:7F
ValidityWed, 17 Jan 2024 10:07:11 GMT - Tue, 16 Apr 2024 10:07:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1102026717880.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: sealeddraincurrently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://sealeddraincurrently.com/watch.1102026717880.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=35ab6da7762c715af22e4a9d9c81bcd881ec5422eb474c5a0b0a2de348923a279dbdd63a8da04f97ee19458beb34fbb1715a7c5203d079f1ac3f15e18c56047fd8da437890e77722ba829102f313e62e8558ac9bfe6453a1128a25accbcc51&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e8a1795bb2b8d3ec94621082958d0ae8
Strict-Transport-Security: max-age=0; includeSubdomains
GET friendshipmale.com/sfp.js
200 OK 55 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:29 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 7dd78d13d4c79449b05ce252ad096612
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2VoeFx5iWIoElu5gNN3IglSlomB9pqG%2FqVMOucS67VtnhP51Ujz2p65SaRboh5AtCSzEdBh7lt8yamlLASCFCQf5dmoBv0OGPiKXqPrlprKjjPkYQMDzv5RBWc9omSLGx2HjzM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d7060bbf5d912-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31316), with no line terminators
Hash 31918738e80939d7de7efb3a9aa2fc91
2cc197810ba03de3efba608865fe9c11d1acda5c
05f2bb7078778871611bd4e07e7a8ac7385a5bb0fafbabbe1f24f3ecf6fd15bc
GET /64b7aceffd358a09b102df804e73ffe6/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 945ae0b7938f35e4ae6f3bbfbbbac1a9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET slabreasonablyportions.com/watch.328527254454.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 slabreasonablyportions.com/watch.328527254454.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectslabreasonablyportions.com
FingerprintA0:FA:FC:27:DF:0D:28:69:39:DA:9F:8B:06:F3:CB:E5:C3:5C:D5:43
ValidityFri, 15 Dec 2023 10:05:02 GMT - Thu, 14 Mar 2024 10:05:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.328527254454.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: slabreasonablyportions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://slabreasonablyportions.com/watch.328527254454.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=40b402ae391776789f117a02511067cf4e7204e27d3c16ce2ab3f9147642e447d15ec41fe8c9b8a1446fdc4fb893370dc9d3f9d80ae141b3b860afccfc57442e7354b8321f4a2b734bc7b54d5d77af49a55d0ac720ea4ec6c068df21ca74&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: af458197dd9e31c5698afc9bbef46e5f
Strict-Transport-Security: max-age=0; includeSubdomains
GET sealeddraincurrently.com/watch.1102026717880.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=35ab6da7762c715af22e4a9d9c81bcd881ec5422eb474c5a0b0a2de348923a279dbdd63a8da04f97ee19458beb34fbb1715a7c5203d079f1ac3f15e18c56047fd8da437890e77722ba829102f313e62e8558ac9bfe6453a1128a25accbcc51&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 sealeddraincurrently.com/watch.1102026717880.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=35ab6da7762c715af22e4a9d9c81bcd881ec5422eb474c5a0b0a2de348923a279dbdd63a8da04f97ee19458beb34fbb1715a7c5203d079f1ac3f15e18c56047fd8da437890e77722ba829102f313e62e8558ac9bfe6453a1128a25accbcc51&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectsealeddraincurrently.com
FingerprintAC:53:C7:70:47:CB:8E:F7:22:35:6B:0A:F7:B4:21:2B:D4:FB:FD:7F
ValidityWed, 17 Jan 2024 10:07:11 GMT - Tue, 16 Apr 2024 10:07:10 GMT
File type JavaScript source, ASCII text, with very long lines (2458)
Hash e02616eaba9bb6f6276dca0bb3376e22
befe6fadc85c98aa8e4a470ea3f2a3ad6f926403
756d88cc960a1187ae1e563064083df84a7219c12ae3bdf8a9946468b35cf68d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1102026717880.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=35ab6da7762c715af22e4a9d9c81bcd881ec5422eb474c5a0b0a2de348923a279dbdd63a8da04f97ee19458beb34fbb1715a7c5203d079f1ac3f15e18c56047fd8da437890e77722ba829102f313e62e8558ac9bfe6453a1128a25accbcc51&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: sealeddraincurrently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8b379ccc97d8b7c10ca9e00d4928a365
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31310), with no line terminators
Hash 743dfa7d8937647bde4f799bd268970e
0d3331a6a9b091b4a5da7e9f8b3b47787f4ab99c
4b6b11de252d23d5562430088dd434c19e32cea45ca3e8edbb8739cd7fbd9634
GET /64b7aceffd358a09b102df804e73ffe6/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 811f5656734c96748a54adebf6efa9d6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET slabreasonablyportions.com/watch.328527254454.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=40b402ae391776789f117a02511067cf4e7204e27d3c16ce2ab3f9147642e447d15ec41fe8c9b8a1446fdc4fb893370dc9d3f9d80ae141b3b860afccfc57442e7354b8321f4a2b734bc7b54d5d77af49a55d0ac720ea4ec6c068df21ca74&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 slabreasonablyportions.com/watch.328527254454.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=40b402ae391776789f117a02511067cf4e7204e27d3c16ce2ab3f9147642e447d15ec41fe8c9b8a1446fdc4fb893370dc9d3f9d80ae141b3b860afccfc57442e7354b8321f4a2b734bc7b54d5d77af49a55d0ac720ea4ec6c068df21ca74&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectslabreasonablyportions.com
FingerprintA0:FA:FC:27:DF:0D:28:69:39:DA:9F:8B:06:F3:CB:E5:C3:5C:D5:43
ValidityFri, 15 Dec 2023 10:05:02 GMT - Thu, 14 Mar 2024 10:05:01 GMT
File type JavaScript source, ASCII text, with very long lines (2452)
Hash 81727e77dd4f92d665f739ff85144ae6
f75caf14ad76e8bcc0a45241401e92e73d10ba89
fe22cfd94f6195db6db48e5a54a4f3af093d990e6ccf716309dd611090cc09fc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.328527254454.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=40b402ae391776789f117a02511067cf4e7204e27d3c16ce2ab3f9147642e447d15ec41fe8c9b8a1446fdc4fb893370dc9d3f9d80ae141b3b860afccfc57442e7354b8321f4a2b734bc7b54d5d77af49a55d0ac720ea4ec6c068df21ca74&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: slabreasonablyportions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5ea344ece00cb61261b2ea3d27eb6c26
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.cloudimagesb.com/cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png
200 OK 83 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash e2db62f8c7c073ee43e4382876b3cc4d
19830817a43cc0243bad5879e25880cd0844f3bf
738f55ce5602c33c43090eebd3c79b7c4ab03c81363a5a01652b04c36e765817
GET /cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: image/png
content-length: 83250
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:14:15 GMT
etag: "61080bc7-14532"
expires: Thu, 25 Jan 2024 04:54:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/36/90/13/369013892c357d415d1ad7748ed75879/1627917230.png
200 OK 62 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/36/90/13/369013892c357d415d1ad7748ed75879/1627917230.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash aab722bc84ce26456c71f76bf135d39d
931d9bda71c71ca06e3774c1d67d9842b2c2dc7e
47f5ef20379af39109b365fa5700137a998dd749ca0ea5faf3e82b94be508c59
GET /cti/36/90/13/369013892c357d415d1ad7748ed75879/1627917230.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: image/png
content-length: 61633
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:13:57 GMT
etag: "61080bb5-f0c1"
expires: Thu, 25 Jan 2024 04:54:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png
200 OK 83 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash e2db62f8c7c073ee43e4382876b3cc4d
19830817a43cc0243bad5879e25880cd0844f3bf
738f55ce5602c33c43090eebd3c79b7c4ab03c81363a5a01652b04c36e765817
GET /cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: image/png
content-length: 83250
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:14:15 GMT
etag: "61080bc7-14532"
expires: Thu, 25 Jan 2024 04:54:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31319), with no line terminators
Hash 56441d84c0684e0438dd45f68bc1145d
ef94bdefc5c70ee0501578371356213c38470f2d
3a722d4e4f1fd0fc18ca8c273912181f56d77273b2a712995328d52e54910dcd
GET /64b7aceffd358a09b102df804e73ffe6/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c9fb30500c6e4514df7fa1fedf2fc530
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET spendengrave.com/watch.736789447609.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 spendengrave.com/watch.736789447609.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectspendengrave.com
FingerprintD3:33:3B:3C:F9:F6:F1:37:AF:04:F3:C6:35:1F:77:95:90:F3:75:DE
ValidityWed, 17 Jan 2024 09:38:58 GMT - Tue, 16 Apr 2024 09:38:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.736789447609.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: spendengrave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://spendengrave.com/watch.736789447609.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=c7bc7f25808940ac09266960859e2892f97fed143dccb372964083f5cc850e933e5ddc8b8bdbdc407a5d9b31ffbe693c37d39b8df89b50539c09456d3ed76c03a8e2452ea52b5580ad4ff32efd8a730a07c9ec11ed16c5ee3c680f091a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 806c1d4de092b7dd04b4982fdc6c6be2
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdn.cloudimagesb.com/cti/cb/3d/d2/cb3dd253d0efc9d9f6550d38b8063211/1627917331.png
200 OK 53 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/cb/3d/d2/cb3dd253d0efc9d9f6550d38b8063211/1627917331.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash 6f53580f11cab6d69f4d14b753ce88b9
7207346b5c7900711744994dad77dc98bc61df54
570b6950078f257202916963af83af1001dd462a958ca947f8285720ca8eb9dd
GET /cti/cb/3d/d2/cb3dd253d0efc9d9f6550d38b8063211/1627917331.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: image/png
content-length: 52906
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:15:39 GMT
etag: "61080c1b-ceaa"
expires: Thu, 25 Jan 2024 04:54:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET spendengrave.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 spendengrave.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectspendengrave.com
FingerprintD3:33:3B:3C:F9:F6:F1:37:AF:04:F3:C6:35:1F:77:95:90:F3:75:DE
ValidityWed, 17 Jan 2024 09:38:58 GMT - Tue, 16 Apr 2024 09:38:57 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 9a77a57a69647f9f4f2ddf4fc7abb3b8
22ea0ea650b9828a6be733e163f098b4b833d8db
65aebafede125f485543b08db6d0ee570f7fd53ca0003bb05ff83ce968b1289d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: spendengrave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0887621ebf1bb2c9f13e578b4285b912
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET ka-f.fontawesome.com/releases/v6.5.1/css/free-v5-font-face.min.css?token=c1366bcc7f
200 OK 298 B URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v5-font-face.min.css?token=c1366bcc7f
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint85:8F:B3:71:68:27:34:D2:25:8F:77:4F:EA:FB:69:7D:2B:3D:0A:EE
ValiditySat, 06 Jan 2024 08:50:16 GMT - Fri, 05 Apr 2024 08:50:15 GMT
File type ASCII text, with very long lines (608)
Hash 496965a55b1faa4d5c41073ef276afc0
6b0fa3f988c856f1d4599565403fe59a2c7ef65c
f581083ac72ae169a698cd0cb7f02d8bb2e079844bfad68cc98df5b3c4692408
GET /releases/v6.5.1/css/free-v5-font-face.min.css?token=c1366bcc7f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"496965a55b1faa4d5c41073ef276afc0"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 a6428be25f53e29e048a09844ae185d8.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: Y9agiY7otwBD7fWLa68S7BSBOVYWhut4N8pTlu9KwuQHwJbOU_RKWw==
age: 204887
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h70VezRHCqGF7DfbiKpSzIuNhCM8dH2ohytsaAMp1rBCzmlj0Fh70JssltdDdlYsBCzEI50filS%2BO%2FJZJ%2BkivvwsajNMMrEE8frjuCYKOaJDpIZ9QOnHvZXAUA1nCwJ5WJOD6eXFVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d70665d048885-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET spendengrave.com/watch.736789447609.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=c7bc7f25808940ac09266960859e2892f97fed143dccb372964083f5cc850e933e5ddc8b8bdbdc407a5d9b31ffbe693c37d39b8df89b50539c09456d3ed76c03a8e2452ea52b5580ad4ff32efd8a730a07c9ec11ed16c5ee3c680f091a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.1 kB URL GET HTTP/1.1 spendengrave.com/watch.736789447609.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=c7bc7f25808940ac09266960859e2892f97fed143dccb372964083f5cc850e933e5ddc8b8bdbdc407a5d9b31ffbe693c37d39b8df89b50539c09456d3ed76c03a8e2452ea52b5580ad4ff32efd8a730a07c9ec11ed16c5ee3c680f091a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectspendengrave.com
FingerprintD3:33:3B:3C:F9:F6:F1:37:AF:04:F3:C6:35:1F:77:95:90:F3:75:DE
ValidityWed, 17 Jan 2024 09:38:58 GMT - Tue, 16 Apr 2024 09:38:57 GMT
File type JavaScript source, ASCII text, with very long lines (2646)
Hash fa22751e3e1e21259ea5edb98e0c7255
fbbdcc78496d9de4b215c7c14e2a933c425e2b37
b206dca2cc37572e0b28785f6ab3734fbdecbb242c3729c70eb2ae23f5a07fd1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.736789447609.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=c7bc7f25808940ac09266960859e2892f97fed143dccb372964083f5cc850e933e5ddc8b8bdbdc407a5d9b31ffbe693c37d39b8df89b50539c09456d3ed76c03a8e2452ea52b5580ad4ff32efd8a730a07c9ec11ed16c5ee3c680f091a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: spendengrave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:30 GMT; secure; SameSite=None
iprc580d786ecfd12ea1375aafb3913448da=3569806; expires=Tue, 23 Jan 2024 08:54:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6f5fefbd59d208ecdfbf24c0b876c7b9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET medicalpompousfatty.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 medicalpompousfatty.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmedicalpompousfatty.com
Fingerprint56:67:42:E3:16:26:59:F1:AF:D9:22:2B:45:74:A1:76:C7:15:65:30
ValidityWed, 17 Jan 2024 09:54:18 GMT - Tue, 16 Apr 2024 09:54:17 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 7cc7662cc20d8cd27ae0572489b06d15
76c0bb56ea3ac622282537efd05ae5a113e65807
d073a998bd68dfec04871470c1d3fc45824cf63f827cdb2e5bbb0edce510e80b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: medicalpompousfatty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ecb93913b1175083110198097ac5f4af
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET medicalpompousfatty.com/watch.825805766054.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dc0f0f0eace0bf4d42e712a70dab566cb54cfe00b61844144e30204de79d1c37a5e618d5e01d6e96539db70b576d1bdf0fd11ebe8565beb29e4205bceb16ae52f5ba54436f45efcacd7b586c3d0acece666688c7e9a83abe05dd42db4cb9&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 medicalpompousfatty.com/watch.825805766054.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dc0f0f0eace0bf4d42e712a70dab566cb54cfe00b61844144e30204de79d1c37a5e618d5e01d6e96539db70b576d1bdf0fd11ebe8565beb29e4205bceb16ae52f5ba54436f45efcacd7b586c3d0acece666688c7e9a83abe05dd42db4cb9&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmedicalpompousfatty.com
Fingerprint56:67:42:E3:16:26:59:F1:AF:D9:22:2B:45:74:A1:76:C7:15:65:30
ValidityWed, 17 Jan 2024 09:54:18 GMT - Tue, 16 Apr 2024 09:54:17 GMT
File type JavaScript source, ASCII text, with very long lines (2431)
Hash a7c4605f53d87800d4d76ffce35250ca
4d3aa5a025ea8e070fbddcec6a1085431b9a6259
90af7e5a413fcdf2445ceabd4b897605d9622bd626a5bcdff0b268a7977b5a47
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.825805766054.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dc0f0f0eace0bf4d42e712a70dab566cb54cfe00b61844144e30204de79d1c37a5e618d5e01d6e96539db70b576d1bdf0fd11ebe8565beb29e4205bceb16ae52f5ba54436f45efcacd7b586c3d0acece666688c7e9a83abe05dd42db4cb9&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: medicalpompousfatty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 92161d8213da243a34c91a0b1edf5190
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
200 OK 144 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: image/png
content-length: 144379
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Thu, 25 Jan 2024 04:54:31 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bruisedlungmisuse.com/watch.1656225836213.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 bruisedlungmisuse.com/watch.1656225836213.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbruisedlungmisuse.com
Fingerprint9C:70:DE:0E:3B:AE:B9:5A:FA:59:8B:B8:7F:A9:D8:5A:D5:E0:C4:CD
ValidityWed, 17 Jan 2024 10:05:12 GMT - Tue, 16 Apr 2024 10:05:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1656225836213.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: bruisedlungmisuse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://bruisedlungmisuse.com/watch.1656225836213.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dab5238720b1477794569005c72e427f75d7fd322e15bdb6a502b1f415f26e2c4987c502b91147437488526bc1c6ce88cf54e03b8b8597ce29f876d923eb18ee6f07a7a679dbbdb6361909ec8a7e7759d5a726f2ac1a75c4301467451f952f&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cdd206a5cb21f5c037654826caf7933d
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdn.cloudimagesb.com/cti/0f/19/1c/0f191c5d3acdb94fc619fe49f3e35e6d/1627915929.png
200 OK 111 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/0f/19/1c/0f191c5d3acdb94fc619fe49f3e35e6d/1627915929.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Size 111 kB (111206 bytes)
Hash 07ff58dd4e527aa139b3ca4bc2d86d12
68f4fec46190913399a1ee165eb17ceee6901ac3
39af4877d1d9b2f78a9ca4c0060438a7cf2ddd271c3581910600b6999728dc77
GET /cti/0f/19/1c/0f191c5d3acdb94fc619fe49f3e35e6d/1627915929.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: image/png
content-length: 111206
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:52:19 GMT
etag: "610806a3-1b266"
expires: Thu, 25 Jan 2024 04:54:31 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bruisedlungmisuse.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 bruisedlungmisuse.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbruisedlungmisuse.com
Fingerprint9C:70:DE:0E:3B:AE:B9:5A:FA:59:8B:B8:7F:A9:D8:5A:D5:E0:C4:CD
ValidityWed, 17 Jan 2024 10:05:12 GMT - Tue, 16 Apr 2024 10:05:11 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6f8f592a285048b7beb0822643a48343
cd9407d1705184a467315d8a4d6f5843d0cdc2bc
2cfc86e77b9ec2e3f0f23c4bc454b41dd102f601ab23fcccf01b5c6cf0207d3b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: bruisedlungmisuse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 59d9f299a2d59b4ca891fa82639690ce
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET medicalpompousfatty.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
200 OK 0 B URL GET HTTP/1.1 medicalpompousfatty.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmedicalpompousfatty.com
Fingerprint56:67:42:E3:16:26:59:F1:AF:D9:22:2B:45:74:A1:76:C7:15:65:30
ValidityWed, 17 Jan 2024 09:54:18 GMT - Tue, 16 Apr 2024 09:54:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136 HTTP/1.1
Host: medicalpompousfatty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTYyMjI4NCwiayI6IjY0YjdhY2VmZmQzNThhMDliMTAyZGY4MDRlNzNmZmU2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzUwMzQ2LCJwaWQiOjIxMzc4OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjUsInB0Ijo0LCJwayI6Im1ka2I4YjlwZnQiLCJjcGtzIjp7IjI4IjoiYzUxY2FmNjM1MGUxN2IzYTk4MGQ1Y2FkYTZiNWUwZmMifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vbWF0c2hvcnRlbmVyLnh5ei9udWV2by1zY3JpcHQtaGFjay1hY3R1YWxpemFkby1kZS1ibG94LWZydWl0cy11cGRhdGUtMjAta2l0c3VuZS1hdXRvLWZhcm0tZnJ1aXQtc25pcGVyLXJhY2UtdjQtYXV0by1yYWlkLXBhcmEtcGMteS1jZWx1bGFyLTIvIiwiYXIiOltdfX0.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET rollclassmateneglect.com/watch.390833217607.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 rollclassmateneglect.com/watch.390833217607.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectrollclassmateneglect.com
FingerprintED:F1:6E:31:1B:0C:BC:D5:C8:BA:FC:AB:E8:ED:70:97:63:4D:47:D2
ValidityWed, 17 Jan 2024 09:46:20 GMT - Tue, 16 Apr 2024 09:46:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.390833217607.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: rollclassmateneglect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://rollclassmateneglect.com/watch.390833217607.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=e55b9f0573766c893d6eaebf8ece0f77735f0b84cd0960e6ded9b1b0e42d15a65f85a7dba0c2dc4fb06354018ce81b63b5611162b210e800a3b0270840ff9d19eae08c24c9269c21193ea2a7a902e376dd9ca4e4966cf9600ec3fa0762d26d68a7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f323e331739a6248874f1b1e51b5cffa
Strict-Transport-Security: max-age=0; includeSubdomains
GET bruisedlungmisuse.com/watch.1656225836213.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dab5238720b1477794569005c72e427f75d7fd322e15bdb6a502b1f415f26e2c4987c502b91147437488526bc1c6ce88cf54e03b8b8597ce29f876d923eb18ee6f07a7a679dbbdb6361909ec8a7e7759d5a726f2ac1a75c4301467451f952f&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 bruisedlungmisuse.com/watch.1656225836213.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dab5238720b1477794569005c72e427f75d7fd322e15bdb6a502b1f415f26e2c4987c502b91147437488526bc1c6ce88cf54e03b8b8597ce29f876d923eb18ee6f07a7a679dbbdb6361909ec8a7e7759d5a726f2ac1a75c4301467451f952f&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbruisedlungmisuse.com
Fingerprint9C:70:DE:0E:3B:AE:B9:5A:FA:59:8B:B8:7F:A9:D8:5A:D5:E0:C4:CD
ValidityWed, 17 Jan 2024 10:05:12 GMT - Tue, 16 Apr 2024 10:05:11 GMT
File type JavaScript source, ASCII text, with very long lines (2463)
Hash 31105cb03012b9f64a023ebdaea24d50
045f257c0a65f21837a111c405c3226294e600b6
cdd01a8b968bac400501b63532a0819d48b2af984453c165f7f02bc430d3e393
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1656225836213.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dab5238720b1477794569005c72e427f75d7fd322e15bdb6a502b1f415f26e2c4987c502b91147437488526bc1c6ce88cf54e03b8b8597ce29f876d923eb18ee6f07a7a679dbbdb6361909ec8a7e7759d5a726f2ac1a75c4301467451f952f&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: bruisedlungmisuse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7037af0bec7781b69247dbd1b9baa98a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31270), with no line terminators
Hash 517ca839e20cc74d97259f39354b87d2
0f7c83cbe8c7041058abbf3393c55a4fe0d995d6
472bcd959946c17ec5ab950e02f7d8630d439b14b45b403316d2ae06d4a3199d
GET /f8397e4bf5afba070b5b67912826af5a/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6c6918829ce427143533575c0733d714
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET rollclassmateneglect.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 rollclassmateneglect.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectrollclassmateneglect.com
FingerprintED:F1:6E:31:1B:0C:BC:D5:C8:BA:FC:AB:E8:ED:70:97:63:4D:47:D2
ValidityWed, 17 Jan 2024 09:46:20 GMT - Tue, 16 Apr 2024 09:46:19 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash e014aa54717abd258eda6b9dd15f4337
8c5409ceccb9f606347809a6206772ef5dd1d9b6
dae4bf1fa9dfd74057f36a6e55a57a567ccf3dd52fc698268bbf00eaad9f9967
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: rollclassmateneglect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 42c8952a2d967c1656445c9e665f8b43
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET fallingdevotionputrescent.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
200 OK 0 B URL GET HTTP/1.1 fallingdevotionputrescent.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectfallingdevotionputrescent.com
FingerprintF3:DA:81:89:9B:C2:9F:CC:59:7C:CE:11:32:50:1C:67:43:73:30:9B
ValidityWed, 17 Jan 2024 09:35:30 GMT - Tue, 16 Apr 2024 09:35:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136 HTTP/1.1
Host: fallingdevotionputrescent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET friendshipmale.com/sfp.js
200 OK 29 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 840b84c3fc8eca9393a3a332d58c2b82
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=azat8HLIZI9eBgcWL%2BKegovoVop8kH4mBIvKhArCWNI2Aoq5owNw7IBUu202g6BRkzABr%2B87npltMOwEyvXOlF%2BR9bEXlPxEr0qT8Z5F5%2F1p%2BWB%2Fg%2Fx2Z8SJzQtzBSEWVEXcfbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d706c4d68d97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
200 OK 12 kB URL GET HTTP/1.1 bakertangiblebehaved.com/f8397e4bf5afba070b5b67912826af5a/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (31276), with no line terminators
Hash 93533dea84afd56ead600a3a60efc63f
697f7ab27bfa68995447c79f5ffc90dc506cff26
7123d5b9b644d30081ead0d6983ad76723de3d36a1460124a024fe439191dbb2
GET /f8397e4bf5afba070b5b67912826af5a/invoke.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1ccef171304f6fad2f28987a4245e4e4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET ka-f.fontawesome.com/releases/v6.5.1/webfonts/free-fa-solid-900.woff2
200 OK 156 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/webfonts/free-fa-solid-900.woff2
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint85:8F:B3:71:68:27:34:D2:25:8F:77:4F:EA:FB:69:7D:2B:3D:0A:EE
ValiditySat, 06 Jan 2024 08:50:16 GMT - Fri, 05 Apr 2024 08:50:15 GMT
File type Web Open Font Format (Version 2), TrueType, length 156504, version 773.768
Size 156 kB (156504 bytes)
Hash 98ff5c340b38803d09d3f22fd9a00501
a1de0c408906036eb73f7060ce0bf79d98c90eae
a93f7f459e0dabc5d86e6b6e3936c07d2dd02b52369f26bb7e8c0005a5d26368
GET /releases/v6.5.1/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: font/woff2
content-length: 156504
last-modified: Thu, 30 Nov 2023 17:53:29 GMT
etag: "98ff5c340b38803d09d3f22fd9a00501"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: fa-kit-token
access-control-max-age: 3000
x-cache: Hit from cloudfront
via: 1.1 c122bf6e70effa0823799ccf9d4be310.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: ff6BLzWVXYupSCZ6vNkjPxJNluzpyQqjSk7S3d-lB2flN-8YimbR3A==
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lsTm0BpjQnyLMzRntlZ4Kit1UVSOfqymVtzcc%2Flxcjaf3047d3pWhxwlH9eIrGhZ1Atius27vDiJjvaQ1RslsZ7AYGCBOj%2FCwV%2B17ahs7NuzMB2Y6Us2RzIDp4AtxLOERT6lYz8HTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d706eecd18885-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/a3/52/3e/a3523e9edca6705b6cf12b7928744f8d/1627916018.png
200 OK 87 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/a3/52/3e/a3523e9edca6705b6cf12b7928744f8d/1627916018.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Hash 617ed75a77c895661681287847a25114
d12b69f9c68c07e6019e49328c67644974a737e1
07e84d0dd10b99f347193232866ca93f6a2d3dba4a058852e071fe88aeccc4a8
GET /cti/a3/52/3e/a3523e9edca6705b6cf12b7928744f8d/1627916018.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: image/png
content-length: 87394
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:53:46 GMT
etag: "610806fa-15562"
expires: Thu, 25 Jan 2024 04:54:31 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET stickingrepute.com/watch.285529385851.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 stickingrepute.com/watch.285529385851.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectstickingrepute.com
FingerprintA5:82:7C:7E:83:2E:C6:EC:E0:1A:1F:FC:7D:2B:EC:86:4F:6C:D8:80
ValiditySat, 30 Dec 2023 00:06:15 GMT - Fri, 29 Mar 2024 00:06:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.285529385851.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: stickingrepute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://stickingrepute.com/watch.285529385851.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=cc52ad120f249f466d6a656b924bd7c815d9105f52e531ad88b8d743f73c6d493e297d05da9fafbed8a406415849f1d9ec727ca488f4606651aeaf7a5613fa56a2aa7dc743795c5882393c0679795d813ecad3af974a63d34dcbd5b570d94985&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ec2e522b1950a4d0d77f57dbbfd20472
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
200 OK 108 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Size 108 kB (107711 bytes)
Hash d5d8bc18ba152c6e850417cdf9dfbbff
888bf155775a9879f26faf0e7faaff5803296e8e
b481f86a9731573e3cfd04880209d5ecb5c163caa0e2656a9f740321c5e637c8
GET /cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: image/png
content-length: 107711
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:51:18 GMT
etag: "61080666-1a4bf"
expires: Thu, 25 Jan 2024 04:54:31 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cottondivorcefootprint.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
200 OK 0 B URL GET HTTP/1.1 cottondivorcefootprint.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcottondivorcefootprint.com
Fingerprint0C:0B:D4:DD:A2:C1:79:CD:76:5E:8F:60:AB:19:8B:CC:78:3B:79:F8
ValidityWed, 17 Jan 2024 09:54:57 GMT - Tue, 16 Apr 2024 09:54:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136 HTTP/1.1
Host: cottondivorcefootprint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET stickingrepute.com/watch.285529385851.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=cc52ad120f249f466d6a656b924bd7c815d9105f52e531ad88b8d743f73c6d493e297d05da9fafbed8a406415849f1d9ec727ca488f4606651aeaf7a5613fa56a2aa7dc743795c5882393c0679795d813ecad3af974a63d34dcbd5b570d94985&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 stickingrepute.com/watch.285529385851.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=cc52ad120f249f466d6a656b924bd7c815d9105f52e531ad88b8d743f73c6d493e297d05da9fafbed8a406415849f1d9ec727ca488f4606651aeaf7a5613fa56a2aa7dc743795c5882393c0679795d813ecad3af974a63d34dcbd5b570d94985&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectstickingrepute.com
FingerprintA5:82:7C:7E:83:2E:C6:EC:E0:1A:1F:FC:7D:2B:EC:86:4F:6C:D8:80
ValiditySat, 30 Dec 2023 00:06:15 GMT - Fri, 29 Mar 2024 00:06:14 GMT
File type JavaScript source, ASCII text, with very long lines (2468)
Hash 75f6a8f2a7384ffa6bc3bac496eb3826
5566adb844dddb69497e03f7066ac76c5d733f73
f64285f7bf265716892585ff76c423d84dc714859a9e9ac55203aa2840151315
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.285529385851.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=cc52ad120f249f466d6a656b924bd7c815d9105f52e531ad88b8d743f73c6d493e297d05da9fafbed8a406415849f1d9ec727ca488f4606651aeaf7a5613fa56a2aa7dc743795c5882393c0679795d813ecad3af974a63d34dcbd5b570d94985&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: stickingrepute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a2babe22f3a9bc4ff48ca11a2da5aa12
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET voluntarilylease.com/watch.483656634078.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 voluntarilylease.com/watch.483656634078.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectvoluntarilylease.com
Fingerprint68:5B:29:86:82:F9:10:CA:90:E8:E4:20:F9:16:9A:A4:A6:F1:DD:49
ValidityFri, 29 Dec 2023 23:59:47 GMT - Thu, 28 Mar 2024 23:59:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.483656634078.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: voluntarilylease.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://voluntarilylease.com/watch.483656634078.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=7cb8a886264b492097dda9fcef7ffcb1aab0256d6bfd8279357318ad41e24521e10e7d9ee1c1e94c644a410bb398deae31a403d4cc8c63a0f490693af498a2cdc0f4841f4efecdf1f656a20764bb52967dfee019179347a23b24679e15&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 876e40d8f419fbebe7bc84ef2d91fcb1
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdn.cloudimagesb.com/cti/ab/a0/b2/aba0b2fc7778c728f527909c2f93c665/1627917313.png
200 OK 65 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/ab/a0/b2/aba0b2fc7778c728f527909c2f93c665/1627917313.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash 7b7a5b41c35f8431cbe8da8d833533ab
763cbed7a77765c52c00a2496c0dcf49f92bb867
c5739d41dd101ae24bc1bed6a0b34f11141d52d690b75a79b43f888ab12b67b2
GET /cti/ab/a0/b2/aba0b2fc7778c728f527909c2f93c665/1627917313.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: image/png
content-length: 65272
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:15:21 GMT
etag: "61080c09-fef8"
expires: Thu, 25 Jan 2024 04:54:31 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET voluntarilylease.com/watch.483656634078.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=7cb8a886264b492097dda9fcef7ffcb1aab0256d6bfd8279357318ad41e24521e10e7d9ee1c1e94c644a410bb398deae31a403d4cc8c63a0f490693af498a2cdc0f4841f4efecdf1f656a20764bb52967dfee019179347a23b24679e15&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 voluntarilylease.com/watch.483656634078.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=7cb8a886264b492097dda9fcef7ffcb1aab0256d6bfd8279357318ad41e24521e10e7d9ee1c1e94c644a410bb398deae31a403d4cc8c63a0f490693af498a2cdc0f4841f4efecdf1f656a20764bb52967dfee019179347a23b24679e15&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectvoluntarilylease.com
Fingerprint68:5B:29:86:82:F9:10:CA:90:E8:E4:20:F9:16:9A:A4:A6:F1:DD:49
ValidityFri, 29 Dec 2023 23:59:47 GMT - Thu, 28 Mar 2024 23:59:46 GMT
File type JavaScript source, ASCII text, with very long lines (2464)
Hash 9ce99e3a3b5c7b204319c74230193131
8a26b892415a483c1a5869f5f87a8c1b8b75ba14
39c88f6f1ed999564510ec13dd1506f710da081a49deee1790892b8b606f3d0c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.483656634078.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=7cb8a886264b492097dda9fcef7ffcb1aab0256d6bfd8279357318ad41e24521e10e7d9ee1c1e94c644a410bb398deae31a403d4cc8c63a0f490693af498a2cdc0f4841f4efecdf1f656a20764bb52967dfee019179347a23b24679e15&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: voluntarilylease.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9ed1d8a81852acb44cf3c9e8879da360
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET matshortener.xyz/wp-content/themes/incolor/img/thumb-medium.png
200 OK 834 B URL GET HTTP/3 matshortener.xyz/wp-content/themes/incolor/img/thumb-medium.png
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type RIFF (little-endian) data, Web/P image
Hash bc14b36a88fd2864b8d38fbbde5b794d
33655600c5548fea0bb721278d4ef1d18c44864e
a2aaf810aff0427955c5ff6c1b1ff5b20b1e7cd2cf49335749bb1b14650821fe
GET /wp-content/themes/incolor/img/thumb-medium.png HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Cookie: _ga_T01GWM97WV=GS1.1.1705985670.1.0.1705985670.60.0.0; _ga=GA1.1.1381542511.1705985670; dom3ic8zudi28v8lr6fgphwffqoz0j6c=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1; ppu_main_6d3ce64dc82ab5ef0688e0525ada09f9=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:32 GMT
content-type: image/webp
content-length: 834
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:31 GMT
x-hcdn-image-optimizer: f:webp q:70 w:1600
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: cd8de573cca2a73066543120dd43bdff-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.568
accept-ranges: bytes
GET talesambition.com/watch.1212904898372.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 talesambition.com/watch.1212904898372.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjecttalesambition.com
FingerprintA7:1E:C1:37:56:76:65:0E:C5:F0:4D:F3:82:1B:69:FD:91:A2:F0:CC
ValidityWed, 17 Jan 2024 09:47:37 GMT - Tue, 16 Apr 2024 09:47:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1212904898372.js?key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: talesambition.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://talesambition.com/watch.1212904898372.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=981afca423e0dd28276821299f3ddee4499886b39e56f36f19941d3005782a940de21e390c717e757381b54b83d753703da35cb01ee7bbaf4db77aff8703f2430c624128d48090d9f95f3bf500b57c2d17c55042b2b9c1f9470bec94e8fd7031edb0de&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15587023; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI; expires=Tue, 23 Jan 2024 04:55:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b2dbde768c6907e6c8f8c2a77a2bd1b7
Strict-Transport-Security: max-age=0; includeSubdomains
GET friendshipmale.com/sfp.js
200 OK 76 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 150b9b17f548344ea9e4813d2bd15706
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JVdBr49fnOZxaTZkmDJkAsRDkC7%2BAQxvxC7BjJ5fw2ex7ccIgORX7Ex2yrZ4uZOM8IWVrxJ2wM5l41CEp%2FFnKOxP8VFd9n7Ihq%2BtgA0BwRNZ1jo%2FaecTfV8b59%2BZWvaAHCoT%2Fi4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d706e08c0d97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET matshortener.xyz/wp-content/uploads/2020/06/5e8e3aa113f15dc5745d7104e1cbadb9.jpg.webp
200 OK 47 kB URL GET HTTP/3 matshortener.xyz/wp-content/uploads/2020/06/5e8e3aa113f15dc5745d7104e1cbadb9.jpg.webp
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp
Hash d2facfa909b9951804cefc8ce14bb2a7
dc06c68109070fac02e3923da60c936df73496aa
8be2c8ccb3d65c586983dad06b8ae5cbfa6c1f893ff3b701e59f6c17a19d88fd
GET /wp-content/uploads/2020/06/5e8e3aa113f15dc5745d7104e1cbadb9.jpg.webp HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Cookie: _ga_T01GWM97WV=GS1.1.1705985670.1.0.1705985670.60.0.0; _ga=GA1.1.1381542511.1705985670; dom3ic8zudi28v8lr6fgphwffqoz0j6c=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1; ppu_main_6d3ce64dc82ab5ef0688e0525ada09f9=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:32 GMT
content-type: image/webp
content-length: 47398
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:31 GMT
last-modified: Thu, 23 Jun 2022 09:50:39 GMT
etag: "b926-62b4376f-73dd5d892aaf2f4;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a3c201e913a08be3ca4b091958ccbb91-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.552
accept-ranges: bytes
GET talesambition.com/watch.1212904898372.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=981afca423e0dd28276821299f3ddee4499886b39e56f36f19941d3005782a940de21e390c717e757381b54b83d753703da35cb01ee7bbaf4db77aff8703f2430c624128d48090d9f95f3bf500b57c2d17c55042b2b9c1f9470bec94e8fd7031edb0de&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.1 kB URL GET HTTP/1.1 talesambition.com/watch.1212904898372.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=981afca423e0dd28276821299f3ddee4499886b39e56f36f19941d3005782a940de21e390c717e757381b54b83d753703da35cb01ee7bbaf4db77aff8703f2430c624128d48090d9f95f3bf500b57c2d17c55042b2b9c1f9470bec94e8fd7031edb0de&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjecttalesambition.com
FingerprintA7:1E:C1:37:56:76:65:0E:C5:F0:4D:F3:82:1B:69:FD:91:A2:F0:CC
ValidityWed, 17 Jan 2024 09:47:37 GMT - Tue, 16 Apr 2024 09:47:36 GMT
File type JavaScript source, ASCII text, with very long lines (2537)
Hash 77021c777f8a473692f5ece66b850ac0
65b819ba42d583a4972df917659302badddbf3cf
cdd3c2967f87360288669031f8c71f3908f2faa4c8dd476171b39732b4735409
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1212904898372.js?dev=e&key=f8397e4bf5afba070b5b67912826af5a&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=981afca423e0dd28276821299f3ddee4499886b39e56f36f19941d3005782a940de21e390c717e757381b54b83d753703da35cb01ee7bbaf4db77aff8703f2430c624128d48090d9f95f3bf500b57c2d17c55042b2b9c1f9470bec94e8fd7031edb0de&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: talesambition.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15587023; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTU4NzAyMywiayI6ImY4Mzk3ZTRiZjVhZmJhMDcwYjViNjc5MTI4MjZhZjVhIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzUwMzQ2LCJwaWQiOjIxMzc4OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjIzLCJwdCI6NCwicGsiOiJ0NjIwc2d2azFoIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vbWF0c2hvcnRlbmVyLnh5ei9udWV2by1zY3JpcHQtaGFjay1hY3R1YWxpemFkby1kZS1ibG94LWZydWl0cy11cGRhdGUtMjAta2l0c3VuZS1hdXRvLWZhcm0tZnJ1aXQtc25pcGVyLXJhY2UtdjQtYXV0by1yYWlkLXBhcmEtcGMteS1jZWx1bGFyLTIvIiwiYXIiOltdfX0._DwlSxwZYO8JReEgQ_vQcogQVNoSYIGO3itygADFAwI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:32 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 59175ac0909dccf83511a28095c7159e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.cloudimagesb.com/cti/da/01/05/da0105e4ae1a31a4d43bec6b6ef743d3/1663335078.png
200 OK 38 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/da/01/05/da0105e4ae1a31a4d43bec6b6ef743d3/1663335078.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash aa0956fc38e9c4e68f6f8d8ebff739a2
fec142174247fdc87ae61a304ec8c2649e864c63
474d26f6cb035ab556e59f1b83aafa3941328ae2b3802cefd5a221f139693dfc
GET /cti/da/01/05/da0105e4ae1a31a4d43bec6b6ef743d3/1663335078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:32 GMT
content-type: image/png
content-length: 37947
server: nginx/1.21.6
last-modified: Fri, 16 Sep 2022 13:31:26 GMT
etag: "63247aae-943b"
expires: Thu, 25 Jan 2024 04:54:32 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET suppliedhopelesspredestination.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
200 OK 12 kB URL GET HTTP/1.1 suppliedhopelesspredestination.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectsuppliedhopelesspredestination.com
Fingerprint8F:5B:2F:7E:E0:6E:7B:65:4E:A5:20:40:13:BD:45:F1:08:D1:33:8A
ValidityThu, 11 Jan 2024 07:30:54 GMT - Wed, 10 Apr 2024 07:30:53 GMT
File type JavaScript source, ASCII text, with very long lines (31295), with no line terminators
Hash dfdd2fc1903a88852514cc1c4aee8487
e1a26102e94c52039b6cf416b1b087a77ab0851c
4e24a28b340188e49481ce86c33ee9a8d481d9fca96f099ad28f0a99b6f98e8f
GET /64b7aceffd358a09b102df804e73ffe6/invoke.js HTTP/1.1
Host: suppliedhopelesspredestination.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0d419187effab7eb48b9d375b96d389f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET friendshipmale.com/sfp.js
200 OK 39 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 252af10b810bd20f5eb9b9cead682cd2
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=57ZlwgB6o0hdJgdlzqSth5IlEnTb0HG0dSkKy4rCuk0kIbV9Z%2F2Mc3cJqDDc7Q4ImypKBEy0E%2BU4Z3M%2B1eUFXmfDHZKZp1TKixvmczNlVt%2BswjR%2FtPfwFbI5TodygNCBt3tIEVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d706db80ed97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET suppliedhopelesspredestination.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
200 OK 12 kB URL GET HTTP/1.1 suppliedhopelesspredestination.com/64b7aceffd358a09b102df804e73ffe6/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectsuppliedhopelesspredestination.com
Fingerprint8F:5B:2F:7E:E0:6E:7B:65:4E:A5:20:40:13:BD:45:F1:08:D1:33:8A
ValidityThu, 11 Jan 2024 07:30:54 GMT - Wed, 10 Apr 2024 07:30:53 GMT
File type JavaScript source, ASCII text, with very long lines (31325), with no line terminators
Hash c201325439d581ccba38eabe5d665e15
58539c4de255d993eb5ba5aa1d54b37a13c64ef0
d00c4b4daf86af97d597aa146575940696d1e83f5103131f86d2000eb185405a
GET /64b7aceffd358a09b102df804e73ffe6/invoke.js HTTP/1.1
Host: suppliedhopelesspredestination.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aee5246001a1b5828138865ebae37a8a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cottondivorcefootprint.com/watch.894978575025.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 cottondivorcefootprint.com/watch.894978575025.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcottondivorcefootprint.com
Fingerprint0C:0B:D4:DD:A2:C1:79:CD:76:5E:8F:60:AB:19:8B:CC:78:3B:79:F8
ValidityWed, 17 Jan 2024 09:54:57 GMT - Tue, 16 Apr 2024 09:54:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.894978575025.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: cottondivorcefootprint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://cottondivorcefootprint.com/watch.894978575025.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=d85f128372014923b81e6bd868de06705089b6f0408b0047e214adf0b2f097f0606280e62467181cf79fc689064cec9bc97260c8cb13a633144e59d7f49526bc400b361b9d6ea35989d89b8d6777ace41b2ce53ca041c5e539476c638eb558&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ae79175a36a53415f6aa4147cc2f42aa
Strict-Transport-Security: max-age=0; includeSubdomains
GET jaguarparent.com/watch.806885798472.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 jaguarparent.com/watch.806885798472.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectjaguarparent.com
Fingerprint6A:0D:E6:08:5D:E7:3A:97:B3:79:EA:5A:28:BB:26:92:98:EF:DB:53
ValidityWed, 17 Jan 2024 10:06:28 GMT - Tue, 16 Apr 2024 10:06:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.806885798472.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: jaguarparent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://jaguarparent.com/watch.806885798472.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=2d53a09b1273ff9194496994f9dea697acb408f4b43bb0baa67d59c000cf446e9200597b49993980746144c0954d58d49910c28e9db0f7586c8b47b5c6e3aa68c8cd059945878f915ebb014c64a80d45e17ce2ccd2b06da16018d8e42c620a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:32 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTYyMjI4NCwiayI6IjY0YjdhY2VmZmQzNThhMDliMTAyZGY4MDRlNzNmZmU2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzUwMzQ2LCJwaWQiOjIxMzc4OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjUsInB0Ijo0LCJwayI6Im1ka2I4YjlwZnQiLCJjcGtzIjp7IjI4IjoiYzUxY2FmNjM1MGUxN2IzYTk4MGQ1Y2FkYTZiNWUwZmMifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vbWF0c2hvcnRlbmVyLnh5ei9udWV2by1zY3JpcHQtaGFjay1hY3R1YWxpemFkby1kZS1ibG94LWZydWl0cy11cGRhdGUtMjAta2l0c3VuZS1hdXRvLWZhcm0tZnJ1aXQtc25pcGVyLXJhY2UtdjQtYXV0by1yYWlkLXBhcmEtcGMteS1jZWx1bGFyLTIvIiwiYXIiOltdfX0.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2a4dfe2fcdb8b14135276e69b5ed37e4
Strict-Transport-Security: max-age=0; includeSubdomains
GET bakertangiblebehaved.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
200 OK 24 kB URL GET HTTP/1.1 bakertangiblebehaved.com/6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectbakertangiblebehaved.com
FingerprintC2:D4:3D:10:D7:45:F0:68:72:97:8C:AC:78:9E:AF:3A:61:02:C2:72
ValiditySun, 14 Jan 2024 06:17:36 GMT - Sat, 13 Apr 2024 06:17:35 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6a67f44c241deab6f68a463b0b2411ab
dbe5e5cfbc868e5310e8d38195c34ef449ed6e12
88dd6a01db80ceb5c6680b3d1d6293f9d8d195f5e7a79a685773f05485f95f15
GET /6d/3c/e6/6d3ce64dc82ab5ef0688e0525ada09f9.js HTTP/1.1
Host: bakertangiblebehaved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1e91ec617f6ffb686c191a35788dc375
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET jaguarparent.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 jaguarparent.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectjaguarparent.com
Fingerprint6A:0D:E6:08:5D:E7:3A:97:B3:79:EA:5A:28:BB:26:92:98:EF:DB:53
ValidityWed, 17 Jan 2024 10:06:28 GMT - Tue, 16 Apr 2024 10:06:27 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash aeaba1dd260e51845b0f852eee87b6d1
3bf5fecdc52ad84a9ccd718ca8c5de1e4f755913
91607385b847881a24e2c128ef1af0fe41335fc9929935fb9859365d7f610808
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: jaguarparent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2f04a7e4b8941d4431ffd22f405dc1bc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET wigsynthesis.com/watch.1542329673610.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 wigsynthesis.com/watch.1542329673610.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectwigsynthesis.com
Fingerprint9A:A6:AB:C5:C4:85:F1:7D:40:29:B6:BF:02:3D:7E:FF:9B:1B:F5:B4
ValidityFri, 29 Dec 2023 23:52:32 GMT - Thu, 28 Mar 2024 23:52:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1542329673610.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: wigsynthesis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://wigsynthesis.com/watch.1542329673610.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985733&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=3e64a3526019c61700b387757668654d9a85843c9aae3875e96bc36a0ede9084ea13a66674ff0bf911388a1c0caf817da1dec48d3ea156cbbfa81ea8486d70a175bf9187dcbc4e368b7140508ada6736c0a69d5153d8e7cd9e095045708b6fe9c5f9d7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 194302be77c80f6377d5c3fd314ef7f6
Strict-Transport-Security: max-age=0; includeSubdomains
GET cottondivorcefootprint.com/watch.894978575025.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=d85f128372014923b81e6bd868de06705089b6f0408b0047e214adf0b2f097f0606280e62467181cf79fc689064cec9bc97260c8cb13a633144e59d7f49526bc400b361b9d6ea35989d89b8d6777ace41b2ce53ca041c5e539476c638eb558&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 cottondivorcefootprint.com/watch.894978575025.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=d85f128372014923b81e6bd868de06705089b6f0408b0047e214adf0b2f097f0606280e62467181cf79fc689064cec9bc97260c8cb13a633144e59d7f49526bc400b361b9d6ea35989d89b8d6777ace41b2ce53ca041c5e539476c638eb558&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcottondivorcefootprint.com
Fingerprint0C:0B:D4:DD:A2:C1:79:CD:76:5E:8F:60:AB:19:8B:CC:78:3B:79:F8
ValidityWed, 17 Jan 2024 09:54:57 GMT - Tue, 16 Apr 2024 09:54:56 GMT
File type JavaScript source, ASCII text, with very long lines (2468)
Hash 694a8684d641fcdbd8f4b6cae18d46e8
43e32d72226aa39769af797c8689d31fe4123745
d03a482370dd89edee8d37f74898bcb615bc3eef6c22fd5e55d4d8d924d986f6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.894978575025.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=d85f128372014923b81e6bd868de06705089b6f0408b0047e214adf0b2f097f0606280e62467181cf79fc689064cec9bc97260c8cb13a633144e59d7f49526bc400b361b9d6ea35989d89b8d6777ace41b2ce53ca041c5e539476c638eb558&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: cottondivorcefootprint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 73916638324301ddd9a9135712b4746c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET jaguarparent.com/watch.806885798472.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=2d53a09b1273ff9194496994f9dea697acb408f4b43bb0baa67d59c000cf446e9200597b49993980746144c0954d58d49910c28e9db0f7586c8b47b5c6e3aa68c8cd059945878f915ebb014c64a80d45e17ce2ccd2b06da16018d8e42c620a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 jaguarparent.com/watch.806885798472.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=2d53a09b1273ff9194496994f9dea697acb408f4b43bb0baa67d59c000cf446e9200597b49993980746144c0954d58d49910c28e9db0f7586c8b47b5c6e3aa68c8cd059945878f915ebb014c64a80d45e17ce2ccd2b06da16018d8e42c620a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectjaguarparent.com
Fingerprint6A:0D:E6:08:5D:E7:3A:97:B3:79:EA:5A:28:BB:26:92:98:EF:DB:53
ValidityWed, 17 Jan 2024 10:06:28 GMT - Tue, 16 Apr 2024 10:06:27 GMT
File type JavaScript source, ASCII text, with very long lines (2532)
Hash 13650d284dc535fb30b53a8ec526f290
eace414e259fc23fc2dcf886690f6e4fbebce1c0
6b138b7f0945d85bd105d89665d3719d857b20795225acb80eb42a7d2ee5b253
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.806885798472.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985732&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=2d53a09b1273ff9194496994f9dea697acb408f4b43bb0baa67d59c000cf446e9200597b49993980746144c0954d58d49910c28e9db0f7586c8b47b5c6e3aa68c8cd059945878f915ebb014c64a80d45e17ce2ccd2b06da16018d8e42c620a&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: jaguarparent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1aa195a46534a83b2f4da3c6f06709c2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET wigsynthesis.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 wigsynthesis.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectwigsynthesis.com
Fingerprint9A:A6:AB:C5:C4:85:F1:7D:40:29:B6:BF:02:3D:7E:FF:9B:1B:F5:B4
ValidityFri, 29 Dec 2023 23:52:32 GMT - Thu, 28 Mar 2024 23:52:31 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash bf7bcea764c91d719ba60e3c6b38b2c0
632cfb6937f98e3be5e11a0f14aa20d28f60def5
a847f7ffca5ddb60b88670fa355f9e82787e9b5b67f584005082484edd45eb89
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: wigsynthesis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 70ede683be7452fba262ba2a1281d299
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cottondivorcefootprint.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
200 OK 26 kB URL GET HTTP/1.1 cottondivorcefootprint.com/c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcottondivorcefootprint.com
Fingerprint0C:0B:D4:DD:A2:C1:79:CD:76:5E:8F:60:AB:19:8B:CC:78:3B:79:F8
ValidityWed, 17 Jan 2024 09:54:57 GMT - Tue, 16 Apr 2024 09:54:56 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash bf7bcea764c91d719ba60e3c6b38b2c0
632cfb6937f98e3be5e11a0f14aa20d28f60def5
a847f7ffca5ddb60b88670fa355f9e82787e9b5b67f584005082484edd45eb89
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5/1c/af/c51caf6350e17b3a980d5cada6b5e0fc.js HTTP/1.1
Host: cottondivorcefootprint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 30b9b80763e4c010804c6d44b6484172
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 52 kB URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint71:4D:D7:F3:C3:DC:7F:B2:FC:E5:C0:A1:18:1B:F2:B2:37:D1:97:1D
ValidityMon, 11 Dec 2023 08:03:31 GMT - Mon, 04 Mar 2024 08:03:30 GMT
File type JavaScript source, ASCII text, with very long lines (3963)
Hash ce4e535e7103646e4d4588ba2b37e6bd
5eece203db623b0c9730a79fb10e7bd7b579e613
c936da449a225f89649ef67d0e13b075d1acf7ef99dffab718b287b775ff599c
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Tue, 23 Jan 2024 04:54:33 GMT
expires: Tue, 23 Jan 2024 04:54:33 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 2666326760450873016
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET wigsynthesis.com/watch.1542329673610.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985733&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=3e64a3526019c61700b387757668654d9a85843c9aae3875e96bc36a0ede9084ea13a66674ff0bf911388a1c0caf817da1dec48d3ea156cbbfa81ea8486d70a175bf9187dcbc4e368b7140508ada6736c0a69d5153d8e7cd9e095045708b6fe9c5f9d7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 2.0 kB URL GET HTTP/1.1 wigsynthesis.com/watch.1542329673610.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985733&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=3e64a3526019c61700b387757668654d9a85843c9aae3875e96bc36a0ede9084ea13a66674ff0bf911388a1c0caf817da1dec48d3ea156cbbfa81ea8486d70a175bf9187dcbc4e368b7140508ada6736c0a69d5153d8e7cd9e095045708b6fe9c5f9d7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectwigsynthesis.com
Fingerprint9A:A6:AB:C5:C4:85:F1:7D:40:29:B6:BF:02:3D:7E:FF:9B:1B:F5:B4
ValidityFri, 29 Dec 2023 23:52:32 GMT - Thu, 28 Mar 2024 23:52:31 GMT
File type JavaScript source, ASCII text, with very long lines (2466)
Hash 82796448293d8fcd58182eccc4b30ff0
d41477ecb576c455b916aea173e947f133bcce38
6ec68e09ec8ea5c6e214a660f6e1e9a648814412b531b63f5adb2cadd7b1cbe1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1542329673610.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985733&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=3e64a3526019c61700b387757668654d9a85843c9aae3875e96bc36a0ede9084ea13a66674ff0bf911388a1c0caf817da1dec48d3ea156cbbfa81ea8486d70a175bf9187dcbc4e368b7140508ada6736c0a69d5153d8e7cd9e095045708b6fe9c5f9d7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: wigsynthesis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 79719867f651ed6a0a8dc0edf3618b33
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.cloudimagesb.com/cti/c9/11/c0/c911c0a120ad25a0b0f51d2b42804521/1627915999.png
200 OK 96 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/c9/11/c0/c911c0a120ad25a0b0f51d2b42804521/1627915999.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Hash 0ba904126a4592e4866c657f761ddc25
6b40223686b8ce5bf58ec0375a09de7c0c3bec7a
f0e24a117d128140b403f57dc94cf263cf5e6ed39c757f7e0f39988cb32bc00b
GET /cti/c9/11/c0/c911c0a120ad25a0b0f51d2b42804521/1627915999.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:33 GMT
content-type: image/png
content-length: 96103
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:53:29 GMT
etag: "610806e9-17767"
expires: Thu, 25 Jan 2024 04:54:33 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/4a/73/9a/4a739ae3337782d6f0857c15107ef3da/1663334721.png
200 OK 43 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/4a/73/9a/4a739ae3337782d6f0857c15107ef3da/1663334721.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Hash 43893a3257a410b3a4b589e870af60f3
9ea4647756d691daf7c3eddb37edecc5ca474b8c
95b1410fd0574179bb1266eef2996feb3a3796665454b3b6df4f5f95c58fa15a
GET /cti/4a/73/9a/4a739ae3337782d6f0857c15107ef3da/1663334721.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:33 GMT
content-type: image/png
content-length: 43431
server: nginx/1.21.6
last-modified: Fri, 16 Sep 2022 13:25:29 GMT
etag: "63247949-a9a7"
expires: Thu, 25 Jan 2024 04:54:33 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png
200 OK 136 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced
Size 136 kB (136090 bytes)
Hash 11675ef6f5c8559ec0ade47755155665
20df6be038de603b97f849e07460cd0600b34867
4d361374b3e2e4f8de896a1f1014d500ed0802bf028d2c7bbd606f9e87ba88a4
GET /cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:33 GMT
content-type: image/png
content-length: 136090
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:51:59 GMT
etag: "6108068f-2139a"
expires: Thu, 25 Jan 2024 04:54:33 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET sallytendencyvoting.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
200 OK 0 B URL GET HTTP/1.1 sallytendencyvoting.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectsallytendencyvoting.com
Fingerprint85:AC:8D:1D:07:6E:B9:02:45:50:09:ED:3D:E0:5F:80:5D:F4:06:D0
ValidityWed, 17 Jan 2024 08:40:16 GMT - Tue, 16 Apr 2024 08:40:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136 HTTP/1.1
Host: sallytendencyvoting.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/images/revisit.svg
200 OK 962 B URL GET HTTP/3 matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/images/revisit.svg
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type SVG Scalable Vector Graphics image
Hash 71c20bb07e1387c0fecd7a521af9803d
470d91c6500d67e26f2ef4e4d0699ea1b2c8fc03
ed7c487f915432d9464e2af0a83002ee93596e86e076f3c917e439e5b844d08b
GET /wp-content/plugins/cookie-law-info/lite/frontend/images/revisit.svg HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Cookie: _ga_T01GWM97WV=GS1.1.1705985670.1.0.1705985670.60.0.0; _ga=GA1.1.1381542511.1705985670; dom3ic8zudi28v8lr6fgphwffqoz0j6c=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1; ppu_main_6d3ce64dc82ab5ef0688e0525ada09f9=1; pp_main_c51caf6350e17b3a980d5cada6b5e0fc=1; pp_idelay_c51caf6350e17b3a980d5cada6b5e0fc=1; cookieyes-consent=consentid:Z3pBZ1ljblM2RFB1b2NHMFRhWWM1TjN5SFNVZVJkbnI,consent:no,action:,necessary:yes,functional:no,analytics:no,performance:no,advertisement:no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:34 GMT
content-type: image/svg+xml
content-length: 962
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:33 GMT
last-modified: Fri, 12 Jan 2024 17:11:30 GMT
etag: "923-65a172c2-470a15f572883271;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a3f8fb011a406ddf49dbfef2437f65ea-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.553
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/images/poweredbtcky.svg
200 OK 1.4 kB URL GET HTTP/3 matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/images/poweredbtcky.svg
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type SVG Scalable Vector Graphics image
Hash 2e4df113ede6d5ce8de2dc1338a3890e
3af1721ca29f4ada0cd422206c253cf8ee52781a
911f58b8d14bd6f73a83fd774e44bec97e896317c7093dc83e96921e64f1fbd5
GET /wp-content/plugins/cookie-law-info/lite/frontend/images/poweredbtcky.svg HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Cookie: _ga_T01GWM97WV=GS1.1.1705985670.1.0.1705985670.60.0.0; _ga=GA1.1.1381542511.1705985670; dom3ic8zudi28v8lr6fgphwffqoz0j6c=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1; ppu_main_6d3ce64dc82ab5ef0688e0525ada09f9=1; pp_main_c51caf6350e17b3a980d5cada6b5e0fc=1; pp_idelay_c51caf6350e17b3a980d5cada6b5e0fc=1; cookieyes-consent=consentid:Z3pBZ1ljblM2RFB1b2NHMFRhWWM1TjN5SFNVZVJkbnI,consent:no,action:,necessary:yes,functional:no,analytics:no,performance:no,advertisement:no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:34 GMT
content-type: image/svg+xml
content-length: 1353
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:33 GMT
last-modified: Fri, 12 Jan 2024 17:11:30 GMT
etag: "eb2-65a172c2-34ea037624f17eb5;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: c0852ae955ea1be535593fbacb94745a-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.552
accept-ranges: bytes
GET matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/images/close.svg
200 OK 631 B URL GET HTTP/3 matshortener.xyz/wp-content/plugins/cookie-law-info/lite/frontend/images/close.svg
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type SVG Scalable Vector Graphics image
Hash 463a29230026f25d47804e96c507f787
f50e0eac87bb8f5cff8f7d8ccb5d72aedda7e78d
a049e1abe441835a2bcf35258936072189a0a52d0000c4ed2094e59d2afd189b
GET /wp-content/plugins/cookie-law-info/lite/frontend/images/close.svg HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Cookie: _ga_T01GWM97WV=GS1.1.1705985670.1.0.1705985670.60.0.0; _ga=GA1.1.1381542511.1705985670; dom3ic8zudi28v8lr6fgphwffqoz0j6c=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1; ppu_main_6d3ce64dc82ab5ef0688e0525ada09f9=1; pp_main_c51caf6350e17b3a980d5cada6b5e0fc=1; pp_idelay_c51caf6350e17b3a980d5cada6b5e0fc=1; cookieyes-consent=consentid:Z3pBZ1ljblM2RFB1b2NHMFRhWWM1TjN5SFNVZVJkbnI,consent:no,action:,necessary:yes,functional:no,analytics:no,performance:no,advertisement:no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: hcdn
date: Tue, 23 Jan 2024 04:54:34 GMT
content-type: image/svg+xml
content-length: 631
cache-control: public, max-age=31557600
expires: Wed, 22 Jan 2025 10:54:33 GMT
last-modified: Fri, 12 Jan 2024 17:11:30 GMT
etag: "541-65a172c2-1884473d1dc156bd;br"
content-encoding: br
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 8addff731f4539cadda9060192ac7c47-int-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.553
accept-ranges: bytes
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL GET HTTP/1.1 capaciousdrewreligion.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint61:0D:30:24:10:C8:EC:35:B9:F2:10:DA:14:D3:F3:AB:2E:F5:FA:E8
ValiditySat, 06 Jan 2024 10:55:16 GMT - Fri, 05 Apr 2024 10:55:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 44e17ebb7c101dfb4540f288e97f9e3b
Strict-Transport-Security: max-age=0; includeSubdomains
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL GET HTTP/1.1 capaciousdrewreligion.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint61:0D:30:24:10:C8:EC:35:B9:F2:10:DA:14:D3:F3:AB:2E:F5:FA:E8
ValiditySat, 06 Jan 2024 10:55:16 GMT - Fri, 05 Apr 2024 10:55:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bac8c62edfd15f63e5e383699ae4acf6
Strict-Transport-Security: max-age=0; includeSubdomains
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL GET HTTP/1.1 capaciousdrewreligion.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint61:0D:30:24:10:C8:EC:35:B9:F2:10:DA:14:D3:F3:AB:2E:F5:FA:E8
ValiditySat, 06 Jan 2024 10:55:16 GMT - Fri, 05 Apr 2024 10:55:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 84f4b06ca690faf395fd2961344b931b
Strict-Transport-Security: max-age=0; includeSubdomains
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL GET HTTP/1.1 capaciousdrewreligion.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint61:0D:30:24:10:C8:EC:35:B9:F2:10:DA:14:D3:F3:AB:2E:F5:FA:E8
ValiditySat, 06 Jan 2024 10:55:16 GMT - Fri, 05 Apr 2024 10:55:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 57492cea3c199e59ce8f43272eb55317
Strict-Transport-Security: max-age=0; includeSubdomains
POST region1.analytics.google.com/g/collect?v=2&tid=G-T01GWM97WV>m=45je41h0v9100384128&_p=1705985670122&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&tag_exp=71847096&gdid=dZGIzZG&cid=1381542511.1705985670&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1705985670&sct=1&seg=0&dl=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&dt=NUEVO%20SCRIPT%20%2F%20HACK%20ACTUALIZADO%20DE%20BLOX%20FRUITS%20%5BUPDATE%2020%20%26%20KITSUNE%5D%20%7C%20AUTO%20FARM%2C%20FRUIT%20SNIPER%2C%20RACE%20V4%2C%20AUTO%20RAID%7C%20PARA%20PC%20Y%20CELULAR!%20%E2%80%93%20RinconDeVideojuegos&en=scroll&ep.forceSSL=true&ep.link_attribution=true&epn.percent_scrolled=90&tfd=6789
204 No Content 0 B URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-T01GWM97WV>m=45je41h0v9100384128&_p=1705985670122&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&tag_exp=71847096&gdid=dZGIzZG&cid=1381542511.1705985670&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1705985670&sct=1&seg=0&dl=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&dt=NUEVO%20SCRIPT%20%2F%20HACK%20ACTUALIZADO%20DE%20BLOX%20FRUITS%20%5BUPDATE%2020%20%26%20KITSUNE%5D%20%7C%20AUTO%20FARM%2C%20FRUIT%20SNIPER%2C%20RACE%20V4%2C%20AUTO%20RAID%7C%20PARA%20PC%20Y%20CELULAR!%20%E2%80%93%20RinconDeVideojuegos&en=scroll&ep.forceSSL=true&ep.link_attribution=true&epn.percent_scrolled=90&tfd=6789
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint8F:9C:3B:A4:59:1A:06:DC:19:DB:A1:30:5D:19:81:20:9E:19:31:AE
ValidityMon, 11 Dec 2023 08:03:30 GMT - Mon, 04 Mar 2024 08:03:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-T01GWM97WV>m=45je41h0v9100384128&_p=1705985670122&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&tag_exp=71847096&gdid=dZGIzZG&cid=1381542511.1705985670&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1705985670&sct=1&seg=0&dl=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&dt=NUEVO%20SCRIPT%20%2F%20HACK%20ACTUALIZADO%20DE%20BLOX%20FRUITS%20%5BUPDATE%2020%20%26%20KITSUNE%5D%20%7C%20AUTO%20FARM%2C%20FRUIT%20SNIPER%2C%20RACE%20V4%2C%20AUTO%20RAID%7C%20PARA%20PC%20Y%20CELULAR!%20%E2%80%93%20RinconDeVideojuegos&en=scroll&ep.forceSSL=true&ep.link_attribution=true&epn.percent_scrolled=90&tfd=6789 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://matshortener.xyz
date: Tue, 23 Jan 2024 04:54:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET necessaryweeklydetected.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
200 OK 0 B URL GET HTTP/1.1 necessaryweeklydetected.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectnecessaryweeklydetected.com
Fingerprint9E:35:B3:BF:29:99:B3:DD:47:CD:5D:18:33:0F:38:DA:3A:54:73:58
ValidityWed, 17 Jan 2024 09:44:19 GMT - Tue, 16 Apr 2024 09:44:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136 HTTP/1.1
Host: necessaryweeklydetected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET d24ak3f2b.top/advertisers.js
200 OK 0 B URL GET HTTP/1.1 d24ak3f2b.top/advertisers.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectd24ak3f2b.top
Fingerprint81:83:1E:8F:C3:EF:48:F7:61:0E:E3:44:C9:60:4D:8A:0C:39:6D:98
ValidityThu, 11 Jan 2024 06:30:39 GMT - Wed, 10 Apr 2024 06:30:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /advertisers.js HTTP/1.1
Host: d24ak3f2b.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
GET friendshipmale.com/sfp.js
200 OK 27 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c39c4c88331f490003a6856babf8750a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KKIUBwdeVe8%2FKPnybO%2FY4JbDAjGm%2Ftn5YpTYmeM2%2FTrqIqNKBa7q2mVft7V1WKpVR79lB7Ms19ySUJXf21xDdrZtzYklsDEXMHyPWlGy%2FyWSftCWDkMf8W6xSJvDpvLu2a5pYzI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d706b3b9ed97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET d24ak3f2b.top/advertisers.js
200 OK 0 B URL GET HTTP/1.1 d24ak3f2b.top/advertisers.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectd24ak3f2b.top
Fingerprint81:83:1E:8F:C3:EF:48:F7:61:0E:E3:44:C9:60:4D:8A:0C:39:6D:98
ValidityThu, 11 Jan 2024 06:30:39 GMT - Wed, 10 Apr 2024 06:30:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /advertisers.js HTTP/1.1
Host: d24ak3f2b.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
GET d24ak3f2b.top/advertisers.js
200 OK 0 B URL GET HTTP/1.1 d24ak3f2b.top/advertisers.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectd24ak3f2b.top
Fingerprint81:83:1E:8F:C3:EF:48:F7:61:0E:E3:44:C9:60:4D:8A:0C:39:6D:98
ValidityThu, 11 Jan 2024 06:30:39 GMT - Wed, 10 Apr 2024 06:30:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /advertisers.js HTTP/1.1
Host: d24ak3f2b.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
GET friendshipmale.com/sfp.js
200 OK 27 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:33 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d5356fecdff3dcb268783a3b1fced440
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EQsqm%2FtaYtgQdN97YLFZ8O7cMMjflvvuyPlKUAGyfbjESz4GDoautS3xCkKMEFMKh2%2F0vmXPkTiVR0Z6%2BmlHwZabLYREpPeQ4qEGyDrqqN5NqIxnwsY%2BBDK%2BRsGoeFq18e3QvW8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d7078cecbd97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintE9:00:F4:02:DB:2E:43:07:4D:00:D0:33:77:6D:2B:38:28:C5:A2:B6
ValidityTue, 02 Jan 2024 13:09:54 GMT - Tue, 26 Mar 2024 13:09:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:zU52K0ut4YxHkFYndVYSJ6yFU9_cOA:K_3SuMTOWa4cPJti; Expires=Thu, 22-Jan-2026 04:54:35 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Jan 2024 04:54:35 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp3se1RWCAn5fUxsnJ2F66B8PMEbDWsrje1MeDvr1d8H1pOnH8H4G5VWlDf8aaNY6QLHzt-q
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-6XppbfLzhh-AN8AIMonn7A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintE9:00:F4:02:DB:2E:43:07:4D:00:D0:33:77:6D:2B:38:28:C5:A2:B6
ValidityTue, 02 Jan 2024 13:09:54 GMT - Tue, 26 Mar 2024 13:09:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:mBF6nqeG7-c38HVNwFeF5VHXmVahHg:mJaOxDu6kpwZ6TZ3; Expires=Thu, 22-Jan-2026 04:54:35 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Jan 2024 04:54:35 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp1KdCG0SGkuxT7ThOnzaQffZ2qdXYSWFxaIcNPiPhI-tCf4rSe4r9gwRV6B1WSRExFbkj9v
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-LXjmBWI04F3M7pt7YnT6zg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET d1on4urq8lvsb1.cloudfront.net/PampoWnQJBQY8Sx4DDGdFWltQa0xdTAIpGwQaVSxMBCJdCRY+AV0STDMHUTxSHhAMZ0RMBgk0E1dMDTQXV1tOOxAIV1h8ABoFA2cMDQ0LOQcCBAI9Uh8LVTcbEAMENhVPWC5vWlpPWmpcEltZf0coT1pqGAMEHSJRWFoQYkI1XFx/RyhPWmoGHE9bG01cRF-hzUVhaDz8XAQVNaDJYWllqRFtaWX9GWgwBKBEMBRB/RixTXnRETB9Vaw
200 OK 512 B URL GET HTTP/2 d1on4urq8lvsb1.cloudfront.net/PampoWnQJBQY8Sx4DDGdFWltQa0xdTAIpGwQaVSxMBCJdCRY+AV0STDMHUTxSHhAMZ0RMBgk0E1dMDTQXV1tOOxAIV1h8ABoFA2cMDQ0LOQcCBAI9Uh8LVTcbEAMENhVPWC5vWlpPWmpcEltZf0coT1pqGAMEHSJRWFoQYkI1XFx/RyhPWmoGHE9bG01cRF-hzUVhaDz8XAQVNaDJYWllqRFtaWX9GWgwBKBEMBRB/RixTXnRETB9Vaw
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (720), with no line terminators
Hash 3adf3e6524365992713c585f8984a913
263c3aee4c1d9f7bc8b1fd100c9eb0961a506458
999ba37c531a5e76321555ceb7cd70a7a371c40bde61c527b275952659197935
GET /PampoWnQJBQY8Sx4DDGdFWltQa0xdTAIpGwQaVSxMBCJdCRY+AV0STDMHUTxSHhAMZ0RMBgk0E1dMDTQXV1tOOxAIV1h8ABoFA2cMDQ0LOQcCBAI9Uh8LVTcbEAMENhVPWC5vWlpPWmpcEltZf0coT1pqGAMEHSJRWFoQYkI1XFx/RyhPWmoGHE9bG01cRF-hzUVhaDz8XAQVNaDJYWllqRFtaWX9GWgwBKBEMBRB/RixTXnRETB9Vaw HTTP/1.1
Host: d1on4urq8lvsb1.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 512
date: Tue, 23 Jan 2024 04:54:35 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uYzzBw1GCZ8-B7aCZ-Vlwlqm_6G9tyKyg_kEXiwHKPEiORbnahv0xg==
X-Firefox-Spdy: h2
GET d1on4urq8lvsb1.cloudfront.net/pZ2U4Q1kEClYlZhMMXH5oV1QAcmFfQ1IwNgkVBRUvMFd7ICM0F0okfxMfXH5pQQlZLT5aQ10tOlpUHiI9BVgIZSwGWFUsIw4JVCJ8VSMNbWlCVwhrIVZUHXAbQlcILzAJEEBma1cdAHUGUVEdcBtCVwgxL0JWeXpvSVURZmtXAl0gMghACgVrV1QIc2hXVB-1xaQEMSiY/CB0dcR9eUxZzfxJYCQ
200 OK 189 B URL GET HTTP/2 d1on4urq8lvsb1.cloudfront.net/pZ2U4Q1kEClYlZhMMXH5oV1QAcmFfQ1IwNgkVBRUvMFd7ICM0F0okfxMfXH5pQQlZLT5aQ10tOlpUHiI9BVgIZSwGWFUsIw4JVCJ8VSMNbWlCVwhrIVZUHXAbQlcILzAJEEBma1cdAHUGUVEdcBtCVwgxL0JWeXpvSVURZmtXAl0gMghACgVrV1QIc2hXVB-1xaQEMSiY/CB0dcR9eUxZzfxJYCQ
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e42bb71bd2fba33ea122e76e9ca0bbe8
80355d6579c9e5418b31b8ee4b2964a943a35ba2
065621b66fb2a5a655ac5051a0528e76bb17310e2c2aa8313a179e0d769857df
GET /pZ2U4Q1kEClYlZhMMXH5oV1QAcmFfQ1IwNgkVBRUvMFd7ICM0F0okfxMfXH5pQQlZLT5aQ10tOlpUHiI9BVgIZSwGWFUsIw4JVCJ8VSMNbWlCVwhrIVZUHXAbQlcILzAJEEBma1cdAHUGUVEdcBtCVwgxL0JWeXpvSVURZmtXAl0gMghACgVrV1QIc2hXVB-1xaQEMSiY/CB0dcR9eUxZzfxJYCQ HTTP/1.1
Host: d1on4urq8lvsb1.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 189
date: Tue, 23 Jan 2024 04:54:35 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pg6kCVe9RmDdNU3kt42b0S9mt0ngTHBUZPnbaIlaD3g5gYCZFRg1GA==
X-Firefox-Spdy: h2
GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp3se1RWCAn5fUxsnJ2F66B8PMEbDWsrje1MeDvr1d8H1pOnH8H4G5VWlDf8aaNY6QLHzt-q
302 Found 404 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp3se1RWCAn5fUxsnJ2F66B8PMEbDWsrje1MeDvr1d8H1pOnH8H4G5VWlDf8aaNY6QLHzt-q
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintE9:00:F4:02:DB:2E:43:07:4D:00:D0:33:77:6D:2B:38:28:C5:A2:B6
ValidityTue, 02 Jan 2024 13:09:54 GMT - Tue, 26 Mar 2024 13:09:53 GMT
File type HTML document, ASCII text, with very long lines (397)
Hash 992bfb8d578fc1e29c28c5f01c0c8347
07408fdf1f42a83ffa02c00a9316959fc584d2b0
69f548dadcfb97758b7f786204fdd60eecb2afe2a71314e31facde84d074fba5
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp3se1RWCAn5fUxsnJ2F66B8PMEbDWsrje1MeDvr1d8H1pOnH8H4G5VWlDf8aaNY6QLHzt-q HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:ll5mSQo-SOZq0CBX7Fv-uSfSUQMGcg:wLgu7K8OdxmNW28Z;Path=/;Expires=Thu, 22-Jan-2026 04:54:35 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Jan 2024 04:54:35 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1Ey62abh215zaLz_Q3yJ0Ot3_4wTFNnNfDnkt3cSky2jBwfcXTcI7VgVzSEYTm7XcPMwV3&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1024130273%3A1705985675139777&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-020jRaXhVMxsBGPSeGSwCw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 404
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp1KdCG0SGkuxT7ThOnzaQffZ2qdXYSWFxaIcNPiPhI-tCf4rSe4r9gwRV6B1WSRExFbkj9v
302 Found 403 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp1KdCG0SGkuxT7ThOnzaQffZ2qdXYSWFxaIcNPiPhI-tCf4rSe4r9gwRV6B1WSRExFbkj9v
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintE9:00:F4:02:DB:2E:43:07:4D:00:D0:33:77:6D:2B:38:28:C5:A2:B6
ValidityTue, 02 Jan 2024 13:09:54 GMT - Tue, 26 Mar 2024 13:09:53 GMT
File type HTML document, ASCII text, with very long lines (392)
Hash b3bdab94c5b4ce86c214630e3051f0d7
3a52db296300fa1751faf9147862d1145e7913f8
c9d56ad392f5d9c70bdd810874373afceeb5c618e2b0b1b4648856b59e07862b
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp1KdCG0SGkuxT7ThOnzaQffZ2qdXYSWFxaIcNPiPhI-tCf4rSe4r9gwRV6B1WSRExFbkj9v HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:ELb2sRwQelhVRMvLqT4wudaGMwF4tQ:Oioi9o6aDPHUwaun;Path=/;Expires=Thu, 22-Jan-2026 04:54:35 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Jan 2024 04:54:35 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp25uqbsZmuu_kaqPf5Zp-CdtFbnA_11LB7EtCm6qbP1o4B5bI-gCKMWx3sCz1tl5VNvlJl9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S537231569%3A1705985675146524&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-H8TOtOdSrXamSGtxec44mQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 403
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET friendshipmale.com/sfp.js
200 OK 27 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:33 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4c39cabd80665a8f3ff00fca7de53a80
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:33 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6UZEBacygGzgaMye9TAeerisnUfDB%2FsrBeV4zJIrGXh3hcoMamfALXujzfYYPEOJkvyu2QnJigIm2quRBk9H0njcVDMG4RZdClXdSd7Udp2h696iJwcj%2BrcN3z%2BI51B%2F2DiIA90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d707bdd92d97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET matshortener.xyz/favicon.ico
404 Not Found 912 B URL GET HTTP/3 matshortener.xyz/favicon.ico
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmatshortener.xyz
Fingerprint95:9F:66:B6:FE:17:65:91:84:1B:29:6E:01:DF:29:DB:6E:12:4E:3E
ValiditySat, 06 Jan 2024 02:17:31 GMT - Fri, 05 Apr 2024 02:17:30 GMT
File type HTML document, ASCII text, with very long lines (355)
Hash e53fdf76753edcd8773ab17ae968bfd6
4bea38cd83442080bdf51cd1db206715f9198955
3d70ce95eb1eb78620cc57fe1a6a479e6f2d70508bf813238e573863df000d6e
GET /favicon.ico HTTP/1.1
Host: matshortener.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Cookie: _ga_T01GWM97WV=GS1.1.1705985670.1.0.1705985670.60.0.0; _ga=GA1.1.1381542511.1705985670; dom3ic8zudi28v8lr6fgphwffqoz0j6c=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1; ppu_main_6d3ce64dc82ab5ef0688e0525ada09f9=1; pp_main_c51caf6350e17b3a980d5cada6b5e0fc=1; pp_idelay_c51caf6350e17b3a980d5cada6b5e0fc=1; cookieyes-consent=consentid:Z3pBZ1ljblM2RFB1b2NHMFRhWWM1TjN5SFNVZVJkbnI,consent:no,action:,necessary:yes,functional:no,analytics:no,performance:no,advertisement:no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
server: hcdn
date: Tue, 23 Jan 2024 04:54:35 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 21 Jun 2022 14:55:56 GMT
etag: "999-62b1dbfc-eaee91891ab84c48;br"
content-encoding: br
platform: hostinger
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: f24a138e1d9edf570b8bb42725a101ff-int-edge1
GET juxtaposetextbookcaptivate.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
200 OK 0 B URL GET HTTP/1.1 juxtaposetextbookcaptivate.com/pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectjuxtaposetextbookcaptivate.com
FingerprintB1:52:08:67:0A:8E:63:4A:7F:DD:22:2B:C4:5C:27:30:96:53:E4:68
ValidityWed, 17 Jan 2024 10:02:37 GMT - Tue, 16 Apr 2024 10:02:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3984&rd=3984&fd=591&bv=24.1.v.6&tmpl=136 HTTP/1.1
Host: juxtaposetextbookcaptivate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET friendshipmale.com/sfp.js
200 OK 28 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Jan 2024 04:54:33 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 20bc6cb9bdb0b63066f374ea6bc33c4f
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 23 Jan 2024 04:54:33 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mYN7db5cx2nlpUiqOcZye29nBzhsaK2097xjh03eUVci2wLz8%2FzxiaamiolhdFzYWvC%2FOSAvQARf9xdcpfKMPz3b7OIcTekxSf417iwyv1Dah1nePg%2FB6x4Ha21va54nYjLTek8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d707c2e2ed97f-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET unseenreport.com/pxf.gif?uuid=19923ee4-345c-4f28-b481-50682c8ba131&eb=d8f513fa04fa0fc0f542720d3e233d24&te=8fbc862283ebc460ae6251d2d40bb774&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6d3ce64dc82ab5ef0688e0525ada09f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=19923ee4-345c-4f28-b481-50682c8ba131&eb=d8f513fa04fa0fc0f542720d3e233d24&te=8fbc862283ebc460ae6251d2d40bb774&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6d3ce64dc82ab5ef0688e0525ada09f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint18:C3:E7:4B:C5:EA:23:FC:38:62:D0:43:31:B5:79:2E:62:86:60:9E
ValiditySun, 21 Jan 2024 08:27:47 GMT - Sat, 20 Apr 2024 08:27:46 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=19923ee4-345c-4f28-b481-50682c8ba131&eb=d8f513fa04fa0fc0f542720d3e233d24&te=8fbc862283ebc460ae6251d2d40bb774&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6d3ce64dc82ab5ef0688e0525ada09f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:38 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 80b23fdb7ead3efa16e1d45cc7f3d789
Strict-Transport-Security: max-age=0; includeSubdomains
GET pogothere.xyz/asd100.bin
200 OK 102 kB IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 102 kB (102401 bytes)
Hash fffc7956ba9a7b58a63c01b6ce1ddc45
d0080f73aa8b494570ad63df1beb25c01ea9eea2
884c9311d7b21518d39a523cd9dfa9790b82a5c6ad7f3f8497a4393bfd50cfb7
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:35 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://matshortener.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 1090
last-modified: Tue, 23 Jan 2024 04:36:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XDYHglkgI0Vu8L4vGPWF593T54xLFqYU%2Bx6%2FWVTI5h4pTldsQR68PrlVKvriFH2PRZaoXE9tGBXuaw%2FJkZJQh1E006hDSVR%2Brh6U95iYqhQ72OLBis3KH6xrmLh3%2FpBX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 849d70851d371c06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET medicalpompousfatty.com/watch.825805766054.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
307 Temporary Redirect 3.3 kB URL GET HTTP/1.1 medicalpompousfatty.com/watch.825805766054.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectmedicalpompousfatty.com
Fingerprint56:67:42:E3:16:26:59:F1:AF:D9:22:2B:45:74:A1:76:C7:15:65:30
ValidityWed, 17 Jan 2024 09:54:18 GMT - Tue, 16 Apr 2024 09:54:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.825805766054.js?key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&tz=0&dev=e&res=14.2071&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: medicalpompousfatty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Location: https://medicalpompousfatty.com/watch.825805766054.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985730&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=dc0f0f0eace0bf4d42e712a70dab566cb54cfe00b61844144e30204de79d1c37a5e618d5e01d6e96539db70b576d1bdf0fd11ebe8565beb29e4205bceb16ae52f5ba54436f45efcacd7b586c3d0acece666688c7e9a83abe05dd42db4cb9&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
Set-Cookie: u_pl=15622284; expires=Wed, 24 Jan 2024 04:54:30 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4; expires=Tue, 23 Jan 2024 04:55:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f315b62319bb1a0e49bbea380838476
Strict-Transport-Security: max-age=0; includeSubdomains
GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T01GWM97WV&cid=1381542511.1705985670>m=45je41h0v9100384128&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=502056007
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T01GWM97WV&cid=1381542511.1705985670>m=45je41h0v9100384128&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=502056007
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint65:B5:24:9C:49:7C:BE:1B:DB:9A:2A:CF:A6:1B:63:16:2F:A7:EF:70
ValidityMon, 11 Dec 2023 08:12:08 GMT - Mon, 04 Mar 2024 08:12:07 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-T01GWM97WV&cid=1381542511.1705985670>m=45je41h0v9100384128&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=502056007 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 23 Jan 2024 04:54:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET unseenreport.com/pxf.gif?uuid=19923ee4-345c-4f28-b481-50682c8ba131&eb=d8f513fa04fa0fc0f542720d3e233d24&te=8fbc862283ebc460ae6251d2d40bb774&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c51caf6350e17b3a980d5cada6b5e0fc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
200 OK 0 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=19923ee4-345c-4f28-b481-50682c8ba131&eb=d8f513fa04fa0fc0f542720d3e233d24&te=8fbc862283ebc460ae6251d2d40bb774&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c51caf6350e17b3a980d5cada6b5e0fc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint18:C3:E7:4B:C5:EA:23:FC:38:62:D0:43:31:B5:79:2E:62:86:60:9E
ValiditySun, 21 Jan 2024 08:27:47 GMT - Sat, 20 Apr 2024 08:27:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=19923ee4-345c-4f28-b481-50682c8ba131&eb=d8f513fa04fa0fc0f542720d3e233d24&te=8fbc862283ebc460ae6251d2d40bb774&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c51caf6350e17b3a980d5cada6b5e0fc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:38 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b58cd7f89bb72a39b89bfd87267f5a0d
Strict-Transport-Security: max-age=0; includeSubdomains
GET fonts.googleapis.com/css2?family=Fira+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
200 OK 42 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Fira+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint59:56:55:62:78:0C:21:25:FB:11:29:98:6E:A8:21:EF:64:2B:33:C0
ValidityMon, 11 Dec 2023 08:09:11 GMT - Mon, 04 Mar 2024 08:09:10 GMT
Hash 87ace43917780c62c6432d186c00daf0
48681b3634b0f4a8e842f56e88785003deaa5a51
078a7392f1c936a294cd7a8585365007fc8eb48c440606d98c9c93269263db43
GET /css2?family=Fira+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Jan 2024 04:54:28 GMT
date: Tue, 23 Jan 2024 04:54:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pogothere.xyz/
200 OK 27 B IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 2cd11805a44f7d2c459f9dd3906e7e3a
2b586b855de6bd027968a7451f6f5fe490e3fcfb
ac6076b0f0b45c6d0ad4c8c50876c716e60113d874efc6af4fb5344f92e4b396
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:35 GMT
content-type: text/plain
set-cookie: csu=2165692194800891@1@1705985675; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://matshortener.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=it0Q1VvysBGunyPakIo9%2B7f4%2BI7KNKpXjduFIbY5jGG3vcr%2FWnYnxxGtM6AnSCY0dnvDsUmc0J%2BSF8rcK0A%2Fb2uy%2FqnyxvRDC16r1JJkFxTIHDahgJXbT0FqEKowzkSt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 849d70851d391c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=c1366bcc7f
200 OK 103 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=c1366bcc7f
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint85:8F:B3:71:68:27:34:D2:25:8F:77:4F:EA:FB:69:7D:2B:3D:0A:EE
ValiditySat, 06 Jan 2024 08:50:16 GMT - Fri, 05 Apr 2024 08:50:15 GMT
File type ASCII text, with very long lines (65321)
Size 103 kB (103173 bytes)
Hash edc53d8d44037708e54122b9e30bb2a1
7210b158d88b1e463ba0b08d26835a9fd4e6c57e
b2bfe99e2e78f71c88eb00c49e1392a15531fb6486d0d0c2ea71937dda34deab
GET /releases/v6.5.1/css/free.min.css?token=c1366bcc7f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:52 GMT
etag: W/"edc53d8d44037708e54122b9e30bb2a1"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 851879d53a84651e63e2408132976dfe.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: bb2VBbRAVInbzZoP9RyUh6o4ylhbDTe2VnHf1PQyyHh5xGtsl8wnxQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B7A1ERAEO6gkvzdBW%2BBoXtFg4UyuJP97QyM6FJYBcctn%2BWUI9RYtQ24dUR4LPFOvZ8yVUEEX3S5w6TC%2BmfCO9zSc2HwX8%2FlsolRj06qOug9j0eI7kCLGcWfKEI1wjUCnFMCnCLUUUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 849d70664cee8885-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-font-face.min.css?token=c1366bcc7f
200 OK 1.8 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-font-face.min.css?token=c1366bcc7f
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint85:8F:B3:71:68:27:34:D2:25:8F:77:4F:EA:FB:69:7D:2B:3D:0A:EE
ValiditySat, 06 Jan 2024 08:50:16 GMT - Fri, 05 Apr 2024 08:50:15 GMT
File type ASCII text, with very long lines (1803), with no line terminators
Hash b0e7ed6622101ceea9a31043809aabaf
22fefad8852cf1d903fc7d99970d572ddc6b613c
5f9c11fbca88fe6e6e8ce0de6c76eaca7b8c258572153af5ff88c831316347d0
GET /releases/v6.5.1/css/free-v4-font-face.min.css?token=c1366bcc7f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"cc84affe95dbdd9726525f57d20b4ea6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c86145c1f4d8c302ebef9fae6aaf1f24.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: Kz0nM2Pw5X-P0e39LAuI4LpeJIkA_yKSl7fX67WZseYs_V6dzBMx1Q==
age: 73663
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b1s7%2BQEv3JXkcO607DERPVGwSvEGYiDDxpaweyhqsilZAiKRzn2qrjlRbAoF2y3eLckWZJArkw5JtR1aB2RcZkjLUjFl21d5wAkUqPo6MMfNWtqVTqWvDMo1O0LgFyvcJIPMduLvCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 849d70666d208885-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=c1366bcc7f
200 OK 28 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=c1366bcc7f
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint85:8F:B3:71:68:27:34:D2:25:8F:77:4F:EA:FB:69:7D:2B:3D:0A:EE
ValiditySat, 06 Jan 2024 08:50:16 GMT - Fri, 05 Apr 2024 08:50:15 GMT
File type ASCII text, with very long lines (27377)
Hash 604d6da359831b0dc67e0f522f1ff94d
48b776b939a780fde0270dedf7cc163d25e28bb1
5031c11dd77875afefe4eeddfaa320af07fdccea327f7416a5ee8980674c9c76
GET /releases/v6.5.1/css/free-v4-shims.min.css?token=c1366bcc7f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:30 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"604d6da359831b0dc67e0f522f1ff94d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 67c28c3777e19eb797bcdb8909f34c46.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: ilS20mdsJAjWdVtX4SGFj01mbbWFU33iw4dnzxpHjphsrJ_fRXXG6Q==
age: 73663
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qHOq2DZGPr69Ok%2Fno2iKT1zPOHQYtRy0A3smoi4u0%2Bnj8uZiro6Np%2BVkc0%2FrCrFr%2B%2BPiymTm9qBmK0sLljqSDwAeTZw%2F9eSW6%2F2XPnjVol2mHDUd%2F5rioidu9t%2F2VPSYFNavwuz3kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 849d70666d188885-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/19/f2/1c/19f21c1bed9621680fc6d126709d678c/1627917293.png
200 OK 48 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/19/f2/1c/19f21c1bed9621680fc6d126709d678c/1627917293.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash 407f211e032589d74fc4efbb9850dc01
aca22f4084875231eeb11c4fbb7578f6158c1613
3c840c1741fd2d23992a213bcfedd3da37a7fa73b3ac47c2607df77d49db93b8
GET /cti/19/f2/1c/19f21c1bed9621680fc6d126709d678c/1627917293.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Jan 2024 04:54:32 GMT
content-type: image/png
content-length: 48540
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:15:00 GMT
etag: "61080bf4-bd9c"
expires: Thu, 25 Jan 2024 04:54:32 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1Ey62abh215zaLz_Q3yJ0Ot3_4wTFNnNfDnkt3cSky2jBwfcXTcI7VgVzSEYTm7XcPMwV3&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1024130273%3A1705985675139777&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1Ey62abh215zaLz_Q3yJ0Ot3_4wTFNnNfDnkt3cSky2jBwfcXTcI7VgVzSEYTm7XcPMwV3&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1024130273%3A1705985675139777&theme=glif
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintC5:94:19:42:28:3A:57:36:10:5E:4A:4E:7B:CE:5E:33:B7:50:8D:89
ValidityTue, 02 Jan 2024 13:02:52 GMT - Tue, 26 Mar 2024 13:02:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp1Ey62abh215zaLz_Q3yJ0Ot3_4wTFNnNfDnkt3cSky2jBwfcXTcI7VgVzSEYTm7XcPMwV3&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1024130273%3A1705985675139777&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Jan 2024 04:54:35 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-J6395DZaZgckPsGsC3nDOw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET rollclassmateneglect.com/watch.390833217607.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=e55b9f0573766c893d6eaebf8ece0f77735f0b84cd0960e6ded9b1b0e42d15a65f85a7dba0c2dc4fb06354018ce81b63b5611162b210e800a3b0270840ff9d19eae08c24c9269c21193ea2a7a902e376dd9ca4e4966cf9600ec3fa0762d26d68a7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
200 OK 3.3 kB URL GET HTTP/1.1 rollclassmateneglect.com/watch.390833217607.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=e55b9f0573766c893d6eaebf8ece0f77735f0b84cd0960e6ded9b1b0e42d15a65f85a7dba0c2dc4fb06354018ce81b63b5611162b210e800a3b0270840ff9d19eae08c24c9269c21193ea2a7a902e376dd9ca4e4966cf9600ec3fa0762d26d68a7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerLet's Encrypt
Subjectrollclassmateneglect.com
FingerprintED:F1:6E:31:1B:0C:BC:D5:C8:BA:FC:AB:E8:ED:70:97:63:4D:47:D2
ValidityWed, 17 Jan 2024 09:46:20 GMT - Tue, 16 Apr 2024 09:46:19 GMT
File type JavaScript source, ASCII text, with very long lines (3352), with no line terminators
Hash 45a382a5b0160d91b5da716693aa3e39
a08892bb64815cca7b7e81c98f32d34338a4f2d6
459c245ce381910f9da1b21f476deb79a3b970ad2ec2c1c2f86e9433718ddc5f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.390833217607.js?dev=e&key=64b7aceffd358a09b102df804e73ffe6&kw=%5B%22nuevo%22%2C%22script%22%2C%22hack%22%2C%22actualizado%22%2C%22de%22%2C%22blox%22%2C%22fruits%22%2C%22update%22%2C%2220%22%2C%22kitsune%22%2C%22auto%22%2C%22farm%22%2C%22fruit%22%2C%22sniper%22%2C%22race%22%2C%22v4%22%2C%22auto%22%2C%22raid%22%2C%22para%22%2C%22pc%22%2C%22y%22%2C%22celular%22%2C%22%E2%80%93%22%2C%22rincondevideojuegos%22%5D&pst=1705985731&refer=https%3A%2F%2Fmatshortener.xyz%2Fnuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2%2F&res=14.2071&rmtc=t&shu=e55b9f0573766c893d6eaebf8ece0f77735f0b84cd0960e6ded9b1b0e42d15a65f85a7dba0c2dc4fb06354018ce81b63b5611162b210e800a3b0270840ff9d19eae08c24c9269c21193ea2a7a902e376dd9ca4e4966cf9600ec3fa0762d26d68a7&tz=0&uuid=19923ee4-345c-4f28-b481-50682c8ba131%3A3%3A1 HTTP/1.1
Host: rollclassmateneglect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15622284; ain=eyJhbGciOiJIUzI1NiJ9.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.1hwctYnuWMlBcTgA_bdgCyrKpwTzv5Z_31N8a0aHAL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 23 Jan 2024 04:54:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://matshortener.xyz
Access-Control-Allow-Origin: https://matshortener.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=19923ee4-345c-4f28-b481-50682c8ba131:3:1; expires=Tue, 30 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 24 Jan 2024 04:54:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c961b18e9967a21d360886de45209e2a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET vsucocesisful.com/utx?cb=X9L7hQ2Kpuwk&top=matshortener.xyz&tid=1018187
204 No Content 0 B URL GET HTTP/2 vsucocesisful.com/utx?cb=X9L7hQ2Kpuwk&top=matshortener.xyz&tid=1018187
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerAmazon
Subjectvsucocesisful.com
Fingerprint43:5C:C8:9D:A9:81:C6:35:F0:9F:36:43:F7:5D:B6:A1:23:40:FD:5C
ValidityFri, 12 Jan 2024 00:00:00 GMT - Sun, 09 Feb 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=X9L7hQ2Kpuwk&top=matshortener.xyz&tid=1018187 HTTP/1.1
Host: vsucocesisful.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://matshortener.xyz
DNT: 1
Connection: keep-alive
Referer: https://matshortener.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 23 Jan 2024 04:54:35 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://matshortener.xyz
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Tue, 23 Jan 2024 04:55:35 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 21258ec71c1aa4499bcd08c6ad0eba38.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: KYS53c1kSLXssgVyo7GsfgYDXIb4vwgpOK2QIPttAhMA1Hl3Z979yA==
X-Firefox-Spdy: h2
GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp25uqbsZmuu_kaqPf5Zp-CdtFbnA_11LB7EtCm6qbP1o4B5bI-gCKMWx3sCz1tl5VNvlJl9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S537231569%3A1705985675146524&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp25uqbsZmuu_kaqPf5Zp-CdtFbnA_11LB7EtCm6qbP1o4B5bI-gCKMWx3sCz1tl5VNvlJl9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S537231569%3A1705985675146524&theme=glif
IP
Requested by https://matshortener.xyz/nuevo-script-hack-actualizado-de-blox-fruits-update-20-kitsune-auto-farm-fruit-sniper-race-v4-auto-raid-para-pc-y-celular-2/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintC5:94:19:42:28:3A:57:36:10:5E:4A:4E:7B:CE:5E:33:B7:50:8D:89
ValidityTue, 02 Jan 2024 13:02:52 GMT - Tue, 26 Mar 2024 13:02:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp25uqbsZmuu_kaqPf5Zp-CdtFbnA_11LB7EtCm6qbP1o4B5bI-gCKMWx3sCz1tl5VNvlJl9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S537231569%3A1705985675146524&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://matshortener.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Jan 2024 04:54:35 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-Hckyv2_IGOh9mm2Ls_nMsQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
84.32.84.190
192.243.59.20
104.21.234.33
18.157.249.149
188.114.97.1
0.0.0.0