s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css
87.248.119.252200 OK 107 kB URL GET HTTP/2 s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (42867)
Size 107 kB (106809 bytes)
Hash ea481464ba6569b3e2231a864005708d
11701ff5cf633e33b702623e6cac4a5dbffb9444
298eff68c8072fab66a60d677784d66bcd6a0d77e112c50c9e9271a882209e63
GET /wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Wo9JOMkmRe+1e4L4KlFI6+T4pEWHqwVSxYKfAExBfFkITqjmX1n6AIremES4dRlXqL7JydskuKE/+HZ4gOuWRH+2NCSgD59r4syn1TVeSV8=
x-amz-request-id: MQP3DAYJ0MFP5Q17
date: Wed, 27 Mar 2024 00:52:00 GMT
last-modified: Tue, 26 Oct 2021 13:54:24 GMT
etag: "ea481464ba6569b3e2231a864005708d-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
accept-ranges: bytes
content-type: text/css
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 3363783
content-encoding: gzip
content-length: 106809
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/ss/rapid-3.53.30.js
87.248.119.252200 OK 18 kB URL GET HTTP/2 s.yimg.com/ss/rapid-3.53.30.js
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash 665798d28ecf9be7cbc434e75267920d
55864f76f012bb11a354c6bacdcc7769a5ec6fa2
7bc917ebee12bcd521ae88840228032579459c25a3ccf8953d8a2dbe5e085be9
GET /ss/rapid-3.53.30.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: o7auiS1Xb1ZJRxbCNo1QG/BtiHRE37a+L5XvbFw3QpmyHht13FICx50OjCtOEy0fhU0XrqrZr50=
x-amz-request-id: ZJCCPW9M5P9E6EFZ
date: Wed, 27 Mar 2024 15:04:22 GMT
last-modified: Tue, 29 Jun 2021 01:45:07 GMT
etag: "665798d28ecf9be7cbc434e75267920d-df"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, immutable
x-amz-version-id: .Bcg25AHAdRCkTvv5tMdNmGVEjznZ_m3
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 3312641
content-encoding: gzip
content-length: 17971
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/bundle.js
87.248.119.252200 OK 50 kB URL GET HTTP/2 s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/bundle.js
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (29565)
Hash 9d0d35eeb38380d91dbb5f4514dd867a
41292bf95c6d373b4f57fbc158a8f37bd522b3c1
60d695ebfb8891875444d4f4b8fb0ed3983a25b6ff0521e88ad8e28a83979394
GET /wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/bundle.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: KNrBJfjvoHnMf+P1x7r8kZdbVkZHckjGRxmjNtgWbTrOOGhrMCy7tPTISghC7Z6nOnfsomyla2c=
x-amz-request-id: VPNRJV7BN3FWB6C5
date: Thu, 28 Mar 2024 19:44:37 GMT
last-modified: Tue, 26 Oct 2021 13:54:24 GMT
etag: "9d0d35eeb38380d91dbb5f4514dd867a-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 3209426
content-encoding: gzip
content-length: 49494
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
188.125.94.204404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 188.125.94.204:443
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.pubgw.ads.yahoo.com
Fingerprint3E:F4:7E:9E:F3:37:18:AB:B8:A2:E0:B1:41:F7:BF:32:98:0D:1B:3D
ValidityMon, 15 Apr 2024 00:00:00 GMT - Wed, 05 Jun 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash a4e145724d0828a19469c2c158624264
3256b1f30a6e609f0038c328ba5befce9c730559
27f0d5c932684fa35029e8125aa54f31d5468977189edb99f19987dad2179ba1
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sat, 04 May 2024 23:15:02 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBHbBNmYCEDuB5VRqoDJEx1RiirDKGwMFEgEBAQESOGZAZvmfzSMA_eMAAA&S=AQAAAsxXR-JXiWhimKYGpvuB1UM; Expires=Mon, 5 May 2025 05:15:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/4-10-0/js/g-r-min.js
87.248.119.252403 Forbidden 243 B URL GET HTTP/2 s.yimg.com/rq/darla/4-10-0/js/g-r-min.js
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type XML 1.0 document, ASCII text
Hash 40adb64a172ef13d77289df28af9da27
7f7ec19145f3e5f74d5fb2597bc1b311d3f181e5
094c4f3f7d1b97ce58ee97163854f56c4e0ad7e87fd70edb6e5a1654766dab98
GET /rq/darla/4-10-0/js/g-r-min.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
x-amz-request-id: EJEMBGS73BQ4YBHM
x-amz-id-2: fxKh4246yVYX7KrA1tO3FipHe1HxzBwJ4QhAEzs8x9NA1M4f49T4lNY2AEGSyPIT5Sqo1F2gBKA=
content-type: application/xml
date: Sat, 04 May 2024 23:15:01 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
expires: Sat, 04 May 2024 23:20:02 GMT
age: 1
content-length: 243
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Regular.woff2
87.248.119.252200 OK 29 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Regular.woff2
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 28860, version 1.0
Hash a99b283070afc519f4816e4300c515d2
65b78d03d56de125060e61069debfc47e38fb3df
fc0e2df417e7959509df87df6b4de2eb1479c8718bc2d8ab0bc70d3753c68560
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Regular.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gd-bj9.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: eUqfV3BH2LZbpPpB8piJwTHXInj/5UaUEsDoikmXfIvfPKJpr1yovkLmk6kQ7v5mdf72DepX34A=
x-amz-request-id: WJC6SQFMRJFY6HBH
date: Sun, 31 Mar 2024 10:42:46 GMT
last-modified: Thu, 19 Apr 2018 19:06:41 GMT
etag: "a99b283070afc519f4816e4300c515d2"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:51 GMT
x-amz-meta-mbst-etag: "YM:1:cb5e4811-e042-455c-b2b2-f984d5f70e0200055a9e8550b736"
x-amz-meta-x-ysws-mbst-vtime: 1507011771545398
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 28860
referrer-policy: no-referrer-when-downgrade
age: 2982737
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Semibold.woff2
87.248.119.252200 OK 29 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Semibold.woff2
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 29040, version 1.0
Hash af9fdad7698452697b016850fff96423
710130c79bf56297f8abcc6d6c575172590133b0
b8989e0be6a0c3a8a407d8b69b7884eb5ebf401b7eee8b8b98c5eeec3ba497fa
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Semibold.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gd-bj9.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: cHW8ozjwd6aHxMEw6SwXiQoMEJPs/5Rfrww3ixk7D7QF/uOrIizcG90q7CrEgkGn4UV1NjnE4+I=
x-amz-request-id: S41KSFRAHV5CRXKG
date: Fri, 03 May 2024 08:16:21 GMT
last-modified: Thu, 19 Apr 2018 17:33:29 GMT
etag: "af9fdad7698452697b016850fff96423"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:51 GMT
x-amz-meta-mbst-etag: "YM:1:95620d49-21c2-4044-b803-58b70c8e419700055a9e854fb9f1"
x-amz-meta-x-ysws-mbst-vtime: 1507011771480561
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 29040
referrer-policy: no-referrer-when-downgrade
age: 140323
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Medium.woff2
87.248.119.252200 OK 29 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Medium.woff2
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 29228, version 1.0
Hash 7c7c02dcee2bf1c2528db6092d4ad1fa
988a01f705c074261490625c70f94b2642413693
d5312dacbe6f248c6c4b60251d7acf77bc3bc891cd9b880dead36d9babb288c4
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Medium.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gd-bj9.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: aTpwAQhFIjgYrCYW/CwWRDjrto8fnwAW2zSn0edvtbhuLHo8w+ShGed2ZwiozI6dUidAGWkPmOY=
x-amz-request-id: GVYDD434DAZV0N2Z
date: Tue, 19 Mar 2024 06:36:28 GMT
last-modified: Thu, 19 Apr 2018 16:25:50 GMT
etag: "7c7c02dcee2bf1c2528db6092d4ad1fa"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:52 GMT
x-amz-meta-mbst-etag: "YM:1:1bb49599-26ac-442e-b6b8-f4e40f067ea500055a9e855b6ecb"
x-amz-meta-x-ysws-mbst-vtime: 1507011772247755
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 29228
referrer-policy: no-referrer-when-downgrade
age: 4034315
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
188.125.94.204404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 188.125.94.204:443
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.pubgw.ads.yahoo.com
Fingerprint3E:F4:7E:9E:F3:37:18:AB:B8:A2:E0:B1:41:F7:BF:32:98:0D:1B:3D
ValidityMon, 15 Apr 2024 00:00:00 GMT - Wed, 05 Jun 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash ced1613f0a64cd4f532a69bbdf0d0dd2
c6f000caba2ca0a31dc557ff97422008700ae662
006ed608a5c507370ff2fe5d74471a7d4e6d899a7c4fbaddab0eaa05ad9d06bd
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Sat, 04 May 2024 23:15:02 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBHbBNmYCEE1A-iouSMUh8-4XNoRT_lUFEgEBAQESOGZAZvmfzSMA_eMAAA&S=AQAAAiDGCh5hGa2xpzwIp7X6XZE; Expires=Mon, 5 May 2025 05:15:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
188.125.94.204404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 188.125.94.204:443
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.pubgw.ads.yahoo.com
Fingerprint3E:F4:7E:9E:F3:37:18:AB:B8:A2:E0:B1:41:F7:BF:32:98:0D:1B:3D
ValidityMon, 15 Apr 2024 00:00:00 GMT - Wed, 05 Jun 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash 30811474f269d1eef42fd6ab2b30b14d
3685599a6a967f8f036c5ab35c97ba06aa4bd1d3
06536bd9e475ad403df351d86e12e9a716d96861dd939a6d1b3f430f5d3c8c86
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Sat, 04 May 2024 23:15:03 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBHfBNmYCEIlaR9-L4K-_gX_em9-lLokFEgEBAQESOGZAZvmfzSMA_eMAAA&S=AQAAAiMxAjxxhgKzELjP2WXm7fk; Expires=Mon, 5 May 2025 05:15:03 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/4-10-0/html/r-csc.html
87.248.119.252403 Forbidden 243 B URL GET HTTP/2 s.yimg.com/rq/darla/4-10-0/html/r-csc.html
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type XML 1.0 document, ASCII text
Hash f4ea6a28969f8c1604eba91b350d1c52
3bfaa720073a594eef51dec9418c4de8e0b57475
bedf5ae6abc54065cf78bc3dc4be2869445bc85c0c4b70a6e58a9f85535d0067
GET /rq/darla/4-10-0/html/r-csc.html HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
x-amz-request-id: N9QC4SREP2WQASAV
x-amz-id-2: Bm+vVhwzjRGH5FKzabLiCkR+aG3/vKoF+gJfJFnAgGNLmlP3iBCQCLgQTPG7NZBZmfR/l98rFjc=
content-type: application/xml
date: Sat, 04 May 2024 23:10:16 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
expires: Sat, 04 May 2024 23:15:16 GMT
age: 287
content-length: 243
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
188.125.94.204404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 188.125.94.204:443
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.pubgw.ads.yahoo.com
Fingerprint3E:F4:7E:9E:F3:37:18:AB:B8:A2:E0:B1:41:F7:BF:32:98:0D:1B:3D
ValidityMon, 15 Apr 2024 00:00:00 GMT - Wed, 05 Jun 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash 9326a02ea683ef7a1fc343ac77dc87c4
c872ad41504bd7036cc302042659fc1d75bf817c
b364507015125b531d2b4bb7fef26febf61423db0f2d04aa4af457b9957b6636
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Sat, 04 May 2024 23:15:03 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBHfBNmYCEMpXvbaVEK5o4t5xCdHiwvUFEgEBAQESOGZAZvmfzSMA_eMAAA&S=AQAAArOI8pLaXGcSbM0B1dW9upw; Expires=Mon, 5 May 2025 05:15:03 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/images/show-v0.0.1.svg
87.248.119.252200 OK 660 kB URL GET HTTP/2 s.yimg.com/wm/mbr/images/show-v0.0.1.svg
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Size 660 kB (660114 bytes)
Hash 7023de5408ffa052a862ba84dbedea53
2de51ab317838302a14b33180add0386e787d2eb
fc0d81c23cc7191b8d6f9216725c78d42f81f34037c8802df4d21556ad0f7c69
GET /wm/mbr/images/show-v0.0.1.svg HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: +MRaEC4l47ngvxRi9q/pfU9H2gW3TMnQW/zERrlSWNpsrkFLb+UhBBdM7PU4RIjcxfMm95z1ktgGZ0qlpAVCp8sM2DBvkC60ngJOOfHEdU0=
x-amz-request-id: KMGVWN5NW2PYGKFP
date: Sun, 07 Apr 2024 01:52:52 GMT
last-modified: Tue, 16 Jul 2019 23:13:44 GMT
etag: "7023de5408ffa052a862ba84dbedea53-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=315360000
accept-ranges: bytes
content-type: image/svg+xml
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2409732
content-encoding: gzip
content-length: 660114
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/images/yahoo-apple-touch-v0.0.2.png
87.248.119.252200 OK 13 kB URL GET HTTP/2 s.yimg.com/wm/mbr/images/yahoo-apple-touch-v0.0.2.png
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGB, interlaced
Hash a9d2dde886cd61f73365a84878c78475
6f1f1f7414116c4b01f04ee0a07b41202c2da539
b168c836ccef9cf1cbf7b2440bc11d26667c4ae19613f1e7cf5e6cdc303c7de4
GET /wm/mbr/images/yahoo-apple-touch-v0.0.2.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zsAhCkQ228yeBpXOFf8JvUrfDOdC3Ta4Vg6HZevY7rkrKg51UEvK7+PMlyZl19+jBbvq9qcymmdu6FmwfUjyB6r/667O84+C
x-amz-request-id: Z6BXS6H611MJYZC3
date: Fri, 12 Apr 2024 01:06:31 GMT
last-modified: Thu, 12 Sep 2019 21:58:38 GMT
etag: "a9d2dde886cd61f73365a84878c78475"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=315360000
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 12635
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 1980513
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/images/yahoo-favicon-img-v0.0.2.ico
87.248.119.252200 OK 1.4 kB URL GET HTTP/2 s.yimg.com/wm/mbr/images/yahoo-favicon-img-v0.0.2.ico
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
Hash b6814ae5582d7953821acbd76e977bb4
75a33fc706c2c6ba233e76c17337e466949f403c
4a491acd00880c407a2b749619003716c87e9c25ac344e5934c13e8f9aa0e8b3
GET /wm/mbr/images/yahoo-favicon-img-v0.0.2.ico HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GlhPsbK2NVP/8MnYsf7qP7A0aqtkXGRWkc0p6ywNeQzbV9kGVKCk+f3D5EZ7DWrZKpWdo61FYZX+waq6EJAKHQ==
x-amz-request-id: HRT2FAAZ5K0M8RB6
date: Thu, 02 May 2024 20:47:56 GMT
last-modified: Wed, 11 Sep 2019 18:01:04 GMT
etag: "b6814ae5582d7953821acbd76e977bb4"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=315360000
accept-ranges: bytes
content-type: image/vnd.microsoft.icon
server: ATS
content-length: 1406
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 181628
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
3p-udc.yahoo.com/v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=794200019&yhlCT=2&yhlBTMS=1714864502832&yhlClientVer=3.53.30&yhlRnd=UjvkeNMXyd5RECi7&yhlCompressed=0
188.125.72.139204 No Content 0 B URL POST HTTP/2 3p-udc.yahoo.com/v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=794200019&yhlCT=2&yhlBTMS=1714864502832&yhlClientVer=3.53.30&yhlRnd=UjvkeNMXyd5RECi7&yhlCompressed=0
IP 188.125.72.139:443
ASN #34010 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subjectyahoo.com
Fingerprint36:A7:B0:5A:BE:AF:8C:B2:89:38:0B:50:1C:E5:7E:0D:2D:94:E9:79
ValidityTue, 20 Feb 2024 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=794200019&yhlCT=2&yhlBTMS=1714864502832&yhlClientVer=3.53.30&yhlRnd=UjvkeNMXyd5RECi7&yhlCompressed=0 HTTP/1.1
Host: 3p-udc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1732
Origin: https://gd-bj9.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://gd-bj9.pages.dev
vary: Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, private, max-age=0
p3p: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
pragma: no-cache
expires: -1
x-envoy-upstream-service-time: 1
date: Sat, 04 May 2024 23:15:02 GMT
server: ATS
age: 1
strict-transport-security: max-age=31536000
set-cookie: A3=d=AQABBHfBNmYCEA6dm0rvvjtjFfMLZo2We8sFEgEBAQESOGZAZvmbzSMA_eMAAA&S=AQAAAj_rO4ER6o_cOx2_qHuJs6Q; Expires=Mon, 5 May 2025 05:15:03 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/boot.js
87.248.119.252403 Forbidden 746 B URL GET HTTP/2 s.yimg.com/rq/darla/boot.js
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash 151373afa271aea3c481a30398515e9d
a1e7dc738a828e098be0e767435dbf60af7e9a99
39c94b17ee98a43036e837c8bd64c1f31ab3146f42364b774050caf5c5157ef9
GET /rq/darla/boot.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
x-amz-request-id: EJEXVJXJ9X6A74Q8
x-amz-id-2: 7ExJ2xMouCcTWpFSdDwSxuKM3/evP6b0oAQcq9D+nmOTE+/0pGtJNU/4R80eNBzyPhYJKSSSK4M=
content-type: application/xml
date: Sat, 04 May 2024 23:15:02 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/4-10-0/js/g-r-min.js
87.248.119.252403 Forbidden 746 B URL GET HTTP/2 s.yimg.com/rq/darla/4-10-0/js/g-r-min.js
IP 87.248.119.252:443
ASN #203220 Yahoo-UK Limited
Requested by https://gd-bj9.pages.dev/
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96
ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash be4c717b0ee2bcbdda4c3528b38cf2b2
9c20a8be480f7c0f892db7e8c902d6f14f1bde5c
b18d42c29ecfdbd3cddfc99b8f016b4f40f3e5f957fb08ad9e465a9572309103
GET /rq/darla/4-10-0/js/g-r-min.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gd-bj9.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
x-amz-request-id: EJEMBGS73BQ4YBHM
x-amz-id-2: fxKh4246yVYX7KrA1tO3FipHe1HxzBwJ4QhAEzs8x9NA1M4f49T4lNY2AEGSyPIT5Sqo1F2gBKA=
content-type: application/xml
date: Sat, 04 May 2024 23:15:01 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
188.114.96.1200 OK 29 kB URL User Request GET HTTP/2 IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subjectgd-bj9.pages.dev
Fingerprint40:64:27:FB:31:10:C1:DA:00:36:89:08:51:87:C6:C9:18:BB:26:DD
ValiditySat, 06 Apr 2024 10:12:36 GMT - Fri, 05 Jul 2024 10:12:35 GMT
File type JavaScript source, ASCII text, with very long lines (14294), with CRLF line terminators
Hash 7fc90c44f0a4b02163b0212b32beb9a7
c06ded4b78f8a273423c40e04d628de4c4f96ff3
51cce8b8b3e01a3c9cee9ab902284c9dd5e3b9be98212cf52a828c442b7b64c9
Analyzer Verdict Alert urlquery phishing Phishing - Yahoo
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: gd-bj9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:15:01 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"67cf01e837973df9177d9bd0d8688af1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ka5tQcJd%2FEFS7CBD29ss6LN9MrsU73FCglPjlQAFCoS61akul4I4dVN6UaynymQrZdSzJA%2FC%2B50bX5t29E1BhkeBePnvAhgiLgpLP8aN4C1NcByLoaIKasUrPTkS%2BX9WABtn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec30bf6af60b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2