Overview

URL https://d1p95xdz29qw8e.cloudfront.net/consumer/js/prototype/windows/mid/kazakhstan-vs-russia-live-hd.html
IP143.204.51.137
ASN
Location United States
Report completed2019-03-24 15:07:15 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 143.204.51.137

Date UQ / IDS / BL URL IP
2019-04-19 09:01:14 +0200
0 - 0 - 2 www.sporters1.com/so1ske/en/index-uni.html 143.204.51.137
2019-04-15 13:02:52 +0200
0 - 0 - 2 www.sporters1.com/so1ske/en/index-uni-don.html 143.204.51.137
2019-04-14 21:02:59 +0200
0 - 0 - 2 www.sporters1.com/so1ske/en/index-uni-don.html 143.204.51.137
2019-04-13 08:58:40 +0200
0 - 0 - 2 www.sporters1.com/so1sme/ca/index-uni.html 143.204.51.137
2019-04-13 00:55:54 +0200
0 - 0 - 2 www.sporters1.com/so1sme/en/index-uni.html 143.204.51.137
2019-04-12 18:43:47 +0200
0 - 0 - 1 i.softplanet.com/installers/1200134600-1.exe 143.204.51.137
2019-04-11 13:09:33 +0200
0 - 0 - 1 www.sporters1.com/so1sme/jp/index-uni.html 143.204.51.137
2019-04-11 09:03:18 +0200
0 - 0 - 2 www.sporters1.com/so1sme/cl/index-uni.html 143.204.51.137
2019-04-10 21:15:31 +0200
0 - 0 - 1 www.sporters1.com/ 143.204.51.137
2019-04-10 21:00:55 +0200
0 - 0 - 2 www.sporters1.com/so1ske/th/index-uni.html 143.204.51.137

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-04-20 13:16:52 +0200
0 - 0 - 6 icooc.net/xrf 185.214.99.232
2019-04-20 13:16:42 +0200
0 - 0 - 1 fantasyforeigner.com/grade_12_accounting_exam (...) 46.101.127.31
2019-04-20 13:16:39 +0200
0 - 0 - 1 fantasyforeigner.com/_erkins1300_hop_anual_.pdf 46.101.127.31
2019-04-20 13:16:36 +0200
0 - 0 - 1 fantasyforeigner.com/_tep_p_o_taar_orkbooks_.pdf 46.101.127.31
2019-04-20 13:16:30 +0200
0 - 0 - 1 fantasyforeigner.com/_abalah_liphoth_nd_oetic (...) 46.101.127.31
2019-04-20 13:16:28 +0200
0 - 0 - 1 fantasyforeigner.com/scheda_analitico_descrit (...) 46.101.127.31
2019-04-20 13:16:26 +0200
0 - 0 - 1 fantasyforeigner.com/oracle_project_manufactu (...) 46.101.127.31
2019-04-20 13:15:29 +0200
0 - 0 - 1 fantasyforeigner.com/_u_temps_des_mammouths_a (...) 46.101.127.31
2019-04-20 13:13:39 +0200
0 - 0 - 1 gregorykim.net/ 159.203.100.19
2019-04-20 13:13:33 +0200
0 - 0 - 1 fantasyforeigner.com/_ntergraph_ds_anual_.pdf 46.101.127.31

Last 10 reports on domain: d1p95xdz29qw8e.cloudfront.net

Date UQ / IDS / BL URL IP
2019-03-26 02:14:54 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.180
2019-03-25 00:23:05 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.131
2019-03-25 00:07:40 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.131
2019-03-24 23:49:43 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.180
2019-03-24 22:38:48 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.131
2019-03-24 22:23:24 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.137
2019-03-24 22:09:15 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.131
2019-03-24 21:49:42 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.131
2019-03-24 21:36:54 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.137
2019-03-24 21:08:02 +0100
0 - 0 - 0 https://d1p95xdz29qw8e.cloudfront.net/consume (...) 143.204.51.180


JavaScript

Executed Scripts (31)


Executed Evals (1)

#1 JavaScript::Eval (size: 44, repeated: 4) - SHA256: efc5123fa1fc7da87164e918454d71af7dd897eae4ef89e41c3b9a465540815c

                                        (function() {
    return window.location.hash
})();
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 150, repeated: 1) - SHA256: 6a58ba8d40db77bbd0663aa0c5eebfe7b268e49d6dbc95c596f6f8c20dd8615b

                                        < script src = "https://ssl.google-analytics.com/ga_exp.js?utmxkey=&utmx=&utmxx=&utmxtime=1553436409594"
type = "text/javascript"
charset = "utf-8" > < /script>
                                    


HTTP Transactions (66)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=159065
Date: Sun, 24 Mar 2019 14:06:41 GMT
Etag: "5c97426c-1d7"
Expires: Tue, 26 Mar 2019 10:17:46 GMT
Last-Modified: Sun, 24 Mar 2019 08:40:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b82ec67489757704bda9411f0f1124a4
Sha1:   bbd207c5364ae4be41fba0f30fda4c38244bbad2
Sha256: 06f7b5c35d0aa2e597da6a34ffe741e7bdd34c0fad96cc707de3f60a497817e2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=135893
Date: Sun, 24 Mar 2019 14:06:41 GMT
Etag: "5c96cfb0-1d7"
Expires: Tue, 26 Mar 2019 03:51:34 GMT
Last-Modified: Sun, 24 Mar 2019 00:30:40 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    32288449d0bd5e19f112dff0d1a45827
Sha1:   5920e837917c37772a18e5a7519f6db0f52fd5b3
Sha256: 5d5f9733bf7182c57caf98d9b5ad74cd29c151ef7e2aed99d4604b857f8e96dd
                                        
                                            POST / HTTP/1.1 
Host: s.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.52.27.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1754
Content-Transfer-Encoding: binary
Cache-Control: max-age=311093, public, no-transform, must-revalidate
Last-Modified: Thu, 21 Mar 2019 04:28:32 GMT
Expires: Thu, 28 Mar 2019 04:28:32 GMT
Date: Sun, 24 Mar 2019 14:06:41 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1754
Md5:    8d7b8279498ae213ff4075bb1c513f63
Sha1:   371fbd14d8dcdfd630f3f0ba8f71cf8e1f97c258
Sha256: 7cadb22f65a39e08981634f5ceed96375e859c36e508ed334a7758e460ac4062
                                        
                                            GET /consumer/js/prototype/windows/mid/kazakhstan-vs-russia-live-hd.html HTTP/1.1 
Host: d1p95xdz29qw8e.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         143.204.51.131
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 15155
Connection: keep-alive
Date: Sun, 24 Mar 2019 14:06:43 GMT
Last-Modified: Sun, 24 Mar 2019 13:44:55 GMT
Etag: "5874f254bf06fdbdf174d43ea6eb8c85"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Id: V0-iM7wfR2UVjvDBK4BPLzfBrYCwt65uflg-cKDlClcs45ugisAadw==


--- Additional Info ---
Magic:  HTML document text
Size:   15155
Md5:    5874f254bf06fdbdf174d43ea6eb8c85
Sha1:   d6e3b873ab21c4d0b55efc5c001141d222639dc6
Sha256: 78b3c6ee9623060a9f3b27fbe6b841ea0941612702062eab3c31157922219ea6
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 14:06:42 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    abc61b83ab44f54e3e32169e4c0b4379
Sha1:   8e76b2acc45448fee3fa97e5002b1495e1e4d555
Sha256: 753b6e601c699d85c6c8c913d502f48fbd9a87646b5272fc24b6f4a029a3ec4d
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 14:06:42 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "6D734A726A96646363B765B8F987901ABE2F1081CE6595ACE24B19CEC0436930"
Last-Modified: Fri, 22 Mar 2019 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=34922
Expires: Sun, 24 Mar 2019 23:48:45 GMT
Date: Sun, 24 Mar 2019 14:06:43 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    2f11e9b471dcb3bf9066955791ddeb4e
Sha1:   fc9c8a80ade1ee1cbf3d1c8b80f9684f7dc402b2
Sha256: 6d734a726a96646363b765b8f987901abe2f1081ce6595ace24b19cec0436930
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.17
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Sun, 24 Mar 2019 05:58:25 GMT
Etag: "46ba34f86823e22b81263f039e8d600d09c4b363"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=31699
Expires: Sun, 24 Mar 2019 22:55:02 GMT
Date: Sun, 24 Mar 2019 14:06:43 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    27919c0455fb60ea95064e92b61d27cc
Sha1:   46ba34f86823e22b81263f039e8d600d09c4b363
Sha256: 624ff66b4eb17fe6c92df01634eb16b72fa0f7e6d17b8883484e271576b808be
                                        
                                            GET /allsports/ HTTP/1.1 
Host: liveanysports.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://d1p95xdz29qw8e.cloudfront.net/consumer/js/prototype/windows/mid/kazakhstan-vs-russia-live-hd.html

                                         
                                         70.32.29.36
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Last-Modified: Tue, 11 Dec 2018 18:03:47 GMT
Accept-Ranges: bytes
Etag: "26663ddd7b91d41:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 24 Mar 2019 14:06:42 GMT
Content-Length: 1824


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1824
Md5:    45eacf3bf1588a8754e7c2815d038cf2
Sha1:   a5414d34f6bb15261398bd9eefdfe05457fd13ad
Sha256: 001a6e11be0b39d7f4fa04945337f3f544354515e33a711298cbd9af8f8b96f0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 18 Mar 2019 15:41:05 GMT
Etag: 0AAEAD192F6E2097D8147083652D824BB1CC0F44
X-OCSP-Responder-ID: mcdpcaocsp10
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=91404
Expires: Mon, 25 Mar 2019 15:30:09 GMT
Date: Sun, 24 Mar 2019 14:06:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c4d95236fb564d6bee5781627f1bb8b5
Sha1:   0aaead192f6e2097d8147083652d824bb1cc0f44
Sha256: 7600e3869666824fe13a07ae07265d12e7537a79bb60838607f2d9f9477e6971
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 21 Mar 2019 11:19:13 GMT
Etag: 0FD4B749F712CA8A4DD7A94FFB1322096D7FF117
X-OCSP-Responder-ID: mcdpcaocsp2
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=334989
Expires: Thu, 28 Mar 2019 11:09:54 GMT
Date: Sun, 24 Mar 2019 14:06:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    7b15de315ba3ae077ce9c61e83df4032
Sha1:   0fd4b749f712ca8a4dd7a94ffb1322096d7ff117
Sha256: ccac984f47f49b70297e0f40a5edc8ddd6ccb8031a301d644aaeabee96830c8f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 21 Mar 2019 11:19:13 GMT
Etag: EF3F10350FEC2627247EFAD0AEF89041AB0703E0
X-OCSP-Responder-ID: mcdpcaocsp10
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=334960
Expires: Thu, 28 Mar 2019 11:09:25 GMT
Date: Sun, 24 Mar 2019 14:06:45 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    126bb0921e3b3c457356fa4ded6155d7
Sha1:   ef3f10350fec2627247efad0aef89041ab0703e0
Sha256: f9c32c302da1f77365ad251385087e1f68d30ca7c1f1969aea1e3fab6012f0a8
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: d1p95xdz29qw8e.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         143.204.51.131
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 24 Mar 2019 14:06:45 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Id: vreb3JABJ6nHx5P2WN6O2cvHd2fglgMHVMpgtG_0vnHalPP7NwwhrA==


--- Additional Info ---
Magic:  XML document text
Size:   486
Md5:    76ac80a75fd484c987b97b4bfbbf75a9
Sha1:   ece0ca510f33f38647c7108aa248ec13688c044c
Sha256: d762b4ab673ccb5a9f05cc028bca630eb8717ab9cab663cabd6922ee069a282b
                                        
                                            GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 14:06:45 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1544639719"
Content-Encoding: gzip
Content-Length: 5442
Last-Modified: Wed, 12 Dec 2018 18:35:19 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT
timing-allow-origin: *
Cache-Control: public, max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5442
Md5:    1aa1104797575473032e0bcfd05ba149
Sha1:   424fc0cba55cf0e87198e8a2603c3b9fdad8c817
Sha256: a18106d76b8973ebc285ff8fa75e0a5b0583a93d463720c355b32d5be70c1d58
                                        
                                            GET /bootstrap/3.3.4/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 14:06:45 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1544639647"
Content-Encoding: gzip
Content-Length: 19240
Last-Modified: Wed, 12 Dec 2018 18:34:07 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT
timing-allow-origin: *
Cache-Control: public, max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19240
Md5:    b37e2d322555b93b98bec27263fc5e77
Sha1:   f42db655bd896c12e9686a2ed666af7add1e0336
Sha256: 6a5850cd46b58a817fa7f99c05b6e297d19939ad1ed9242879e1ae6e2495ac2c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=112764
Date: Sun, 24 Mar 2019 14:06:46 GMT
Etag: "5c955f95-1d7"
Expires: Mon, 25 Mar 2019 21:26:10 GMT
Last-Modified: Fri, 22 Mar 2019 22:20:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    997a8bbe19b0e944c57ec15307e768dd
Sha1:   c890354c94b8c09a952494553b3efdb587acb719
Sha256: 4c9c6c816ddc4a3eda6e882d46950df7291edb80d746a63eb5c04678be4486b6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=153822
Date: Sun, 24 Mar 2019 14:06:46 GMT
Etag: "5c963c09-1d7"
Expires: Tue, 26 Mar 2019 08:50:28 GMT
Last-Modified: Sat, 23 Mar 2019 14:00:41 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    35eefbf9495f918026cb10bb316edff0
Sha1:   d00ff592401434379a5f8f891ebf5a4d99b183a7
Sha256: b57e6a6f066fa6646174e6a33a2b6ec3a503f68d9da21f10ef383c7593a82eaa
                                        
                                            GET /bootstrap/3.3.4/css/bootstrap-theme.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 14:06:45 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1544639647"
Content-Encoding: gzip
Content-Length: 2352
Last-Modified: Wed, 12 Dec 2018 18:34:07 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT
timing-allow-origin: *
Cache-Control: public, max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2352
Md5:    bd851d3c8fe68c6d725506ee2ed64868
Sha1:   6aa3ca91290d3b90ab7324cd38b4ae5ae6dc120d
Sha256: 7e038e413304e604d99f6153aa3b0d563c923a1710ab2d422b11c8d2209c286e
                                        
                                            GET /sisal-portal-responsive-theme/images/loading.gif HTTP/1.1 
Host: www.rivenditorisisal.it
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         5.97.112.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 24 Mar 2019 14:06:46 GMT
Server: Apache/2.2.15 (CentOS) DAV/2 mod_jk/1.2.40 mod_ssl/2.2.15 OpenSSL/1.0.0-fips
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
filter-class: com.liferay.portal.servlet.filters.header.HeaderFilter
Vary: Accept-Encoding
Cache-Control: max-age=315360000, public
Accept-Ranges: bytes
Etag: W/"11763-1431614102000"
Last-Modified: Thu, 14 May 2015 14:35:02 GMT
Content-Length: 11763
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 188 x 188
Size:   11763
Md5:    c9ce85b7b97604c9eace6de11fd95123
Sha1:   56edb1fd0a857c31756e3594aa8c373d8e786be3
Sha256: ea4f299f6035001d8e1e584888c3d6c6e89ae48096e1ca64b839448e0947c9e0
                                        
                                            GET /include/css/style.css HTTP/1.1 
Host: liveanysports.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         70.32.29.36
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Cache-Control: no-cache, must-revalidate, max-age=0
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Server: Microsoft-IIS/10.0
Link: <https://liveanysports.de/wp-json/>; rel="https://api.w.org/"
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 24 Mar 2019 14:06:45 GMT
Content-Length: 11259


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   11259
Md5:    c542438e12d8e9e8ce69739c8a0a5475
Sha1:   d64787bb29a6e0ad4a57d0a723af1b7cd1853400
Sha256: 935783598807bfd49d621e68d684be2b017409101ddbe7b59ef87bb070b3fbfa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "56166C60730DDC69814903526CB8E4866B9539723779FDB56A643A9995B86ABC"
Last-Modified: Thu, 21 Mar 2019 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6541
Expires: Sun, 24 Mar 2019 15:55:47 GMT
Date: Sun, 24 Mar 2019 14:06:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    72cedb7a71053bf151084e52a4569249
Sha1:   b90bfecbf802556db63b3322223ebe70de0b95ce
Sha256: 56166c60730ddc69814903526cb8e4866b9539723779fdb56a643a9995b86abc
                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         46.105.201.240
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Sun, 24 Mar 2019 14:01:16 GMT
Etag: "-139234964"
Last-Modified: Thu, 06 Dec 2018 14:12:12 GMT
Content-Length: 4525
Content-Encoding: gzip
Vary: Accept-Encoding
X-CDN-Pop: sbg
X-CDN-Pop-IP: 137.74.120.32/27
X-Cacheable: Matched cache
Accept-Ranges: bytes
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   4525
Md5:    763ce5a1e48424c491ef06b2b5883af1
Sha1:   0b62d5b81e5ff1e7b2a8d55546b0749c574d8c19
Sha256: f18e53777c7fb17d833bb7518856f2ab845ebf9ce3339193eb8bcb47e5b2f75c
                                        
                                            GET /stats/0.php?3982920&@f16&@g1&@h1&@i1&@j1553436406686&@k0&@l1&@mAll%20Sports%20-%20Live%40%20Stream%C3%A2%E2%80%9E%C2%A2%20Online%20Free&@n0&@ohttps%3A%2F%2Fd1p95xdz29qw8e.cloudfront.net%2Fconsumer%2Fjs%2Fprototype%2Fwindows%2Fmid%2Fkazakhstan-vs-russia-live-hd.html&@q0&@r0&@s0&@ten-US&@u1176&@b1:3342622&@b3:1553436407&@b4:js15_as.js&@b5:60&@a-_0.2.1&@vhttps%3A%2F%2Fliveanysports.de%2Fallsports%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://liveanysports.de/allsports/

                                         
                                         198.27.69.19
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 14:06:47 GMT
Content-Length: 51
Connection: close
Set-Cookie: CountUid=f71ebeba-d5tx-4693-8194-19da633cce7a; domain=.histats.com; Max-Age=31536000; Expires=Mon, 23-Mar-2020 14:06:47 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   51
Md5:    e865138ebcc81d11374e3b74aa46891d
Sha1:   68d4620c41cd478d28fa2338fb37f6c40b56f9e4
Sha256: 6729f6865a501b9d135bf28362a879c31805617f48996d8296ea2c26c73c59e2
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: liveanysports.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: HstCfa3982920=1553436406686; HstCla3982920=1553436406686; HstCmu3982920=1553436406686; HstPn3982920=1; HstPt3982920=1; HstCnv3982920=1; HstCns3982920=1; c_ref_3982920=https%3A%2F%2Fd1p95xdz29qw8e.cloudfront.net%2Fconsumer%2Fjs%2Fprototype%2Fwindows%2Fmid%2Fkazakhstan-vs-russia-live-hd.html

                                         
                                         70.32.29.36
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 24 Mar 2019 14:06:46 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /offer?prod=224&ref=5052890 HTTP/1.1 
Host: look.djfiln.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         79.125.121.154
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 14:06:47 GMT
Location: https://titan.infra.systems/signup?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524
Set-Cookie: site_id=783; Path=/; Expires=Mon, 22 Jul 2019 14:06:47 GMT
Vary: Accept
X-Powered-By: Express
Content-Length: 408
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   408
Md5:    e352e73b3e1a03e56495af0c17ecdca1
Sha1:   99b7dd1e75de47c8ae2b601883bca39ee0553f1a
Sha256: f05c2b33b8f71b4b463858fe2f9cf7f5b4b44454297e3a0cfc4b2489f2246f7f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 22 Mar 2019 01:30:18 GMT
Etag: 694673D020BE9E5432623A537735FEA6C52E05E1
X-OCSP-Responder-ID: mcdpcaocsp5
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=386022
Expires: Fri, 29 Mar 2019 01:20:29 GMT
Date: Sun, 24 Mar 2019 14:06:47 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0fbc9c159e3f22a7f1a285a39f61ac89
Sha1:   694673d020be9e5432623a537735fea6c52e05e1
Sha256: 495ee4aa82179060b9abebdea9ff397d0b49046af3ed689d9d9230b8c5527769
                                        
                                            GET /signup?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524 HTTP/1.1 
Host: titan.infra.systems
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         18.185.163.80
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 14:06:47 GMT
Location: https://go-studcat.infra.systems/signup?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e
Set-Cookie: lpid=524; Max-Age=10368000; Path=/; Expires=Mon, 22 Jul 2019 14:06:47 GMT; HttpOnly lid=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e; Path=/; Expires=Sun, 07 Apr 2019 14:06:47 GMT
Vary: Accept
Content-Length: 508
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   508
Md5:    8901eaa78e74ff8c2bdfbf875a6e2cea
Sha1:   911126e1173b049486e348fa0769e10d32559ab4
Sha256: 5eeb96c56092b1f54fc4433e265a2169726d226b30e296af584e06b14dc97930
                                        
                                            GET /signup?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e HTTP/1.1 
Host: go-studcat.infra.systems
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.54.52.189
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 14:06:48 GMT
Location: http://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Set-Cookie: p224=s%3A673.5ODXX0rYaqn5uH6%2BASlK1G8Yjlar64VBCf%2FbRPrLgnU; Max-Age=86400; Path=/; Expires=Mon, 25 Mar 2019 14:06:48 GMT session_id=s%3A6490a9eca712e47bfcd0c03b00e7c225.VpqNDRdmaGOLeMF%2FBQeS67j6wzN8299tMvPJOz8ZqXo; Max-Age=2592000; Path=/; Expires=Tue, 23 Apr 2019 14:06:48 GMT e224=s%3Anull.Mv0OAVkADWhxZImfXF%2Bbjf%2BDxB74TSnU9q35RKqDjko; Max-Age=86400; Path=/; Expires=Mon, 25 Mar 2019 14:06:48 GMT
Vary: Accept
Content-Length: 840
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   840
Md5:    262fa1f2e79456f7b160a5675ad94d4c
Sha1:   436c925afd3269f0a62a446e6b382aeca8e55e41
Sha256: f2e0a9750f805f429f96633884848479bc5ab0e66f38dd9f9cc616b2e8ae3d55
                                        
                                            GET /signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.137.180.14
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Date: Sun, 24 Mar 2019 14:06:48 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Location: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Pragma: no-cache
Server: nginx/1.4.6 (Ubuntu)
Set-Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; path=/
X-Powered-By: PHP/5.5.9-1ubuntu4.25
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         143.204.51.201
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=126232
Date: Sun, 24 Mar 2019 14:06:48 GMT
Etag: "5c96d910-1d7"
Expires: Tue, 26 Mar 2019 01:10:40 GMT
Last-Modified: Sun, 24 Mar 2019 01:10:40 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Id: mGUYavdGySPS910-eSFVXjwoSAEgKE8pWM8bGhUV0yEt0NQpL4Shzg==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    70bf9f40977ea4a2eaa1fc623dfb7ea8
Sha1:   383e86a480a7ecb67d9e5faf47947fe03832ba46
Sha256: 0fbf45244a9dd4e74f55f587f54a80905fefb97264daaa9f61bf7f0a89f390ca
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         143.204.51.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Sun, 24 Mar 2019 14:06:48 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.8/2018-10-18)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 2wED01ZfEX_P2pzmGETtiqeRPCveqIs6zlIwfzPGHmuA57toCBo1pg==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    689964513ca66b65df0f5416fb6795f7
Sha1:   181605cc8f9e16ff9cdc6b856c3290674056dc07
Sha256: 081621b27eccb038e67d2270663a34e09391f83fdf29d413a4546296d20cadf6
                                        
                                            GET /signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Encoding: gzip
Date: Sun, 24 Mar 2019 14:06:49 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Server: nginx/1.4.6 (Ubuntu)
Set-Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; path=/ studcat=1; expires=Tue, 23-Apr-2019 14:06:49 GMT; Max-Age=2592000
X-Powered-By: PHP/5.5.9-1ubuntu4.25
Content-Length: 3379
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3379
Md5:    c713476f426cbaa69daae2c98582ae2e
Sha1:   884e6e8abd158422793555287eb055e0139d2c76
Sha256: 601650307ac458d63e2f8088216b7aae54fdd1fcb2c0ed5a96886501667037de
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 14:06:49 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b6cb8d40a21d4b136b4bad26e476df30
Sha1:   3a2872e39c2fd761f195d1dc93e59238e22c4290
Sha256: b2f0324ea819468069851ba568dc787f66f8fadc378d9326d2a302b8df670519
                                        
                                            GET /ga_exp.js?utmxkey=&utmx=&utmxx=&utmxtime=1553436409594 HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.207.232
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 14:06:49 GMT
Expires: Sun, 24 Mar 2019 14:06:49 GMT
Cache-Control: private, max-age=30
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Server: HTTP server (unknown)
Content-Length: 0
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
                                        
                                            GET /css/signup/movies/cd/main.php?cache_control=1 HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: 31536000
Content-Encoding: gzip
Date: Sun, 24 Mar 2019 14:06:49 GMT
Expires: Mon, 23 Mar 2020 14:06:49 GMT
Pragma: public
Server: nginx/1.4.6 (Ubuntu)
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.9-1ubuntu4.25
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14325
Md5:    ea653d3b00ea6379f79ea9322bef6d86
Sha1:   c02be1126755a9bf3b28612bba857744e37b5821
Sha256: 345f98022cfb85c90744c11b94aabe7f4149472848166f67c9056e3317d4a1c8
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 14:06:49 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    163a87a4317c1d0878fcac1fda6926b4
Sha1:   ceaceed04b60e2f7934e21148d29026062817f66
Sha256: b346cf2c5ed936d253812328bfbdecd9cff15baed42b46bec5c29299b409b60d
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
timing-allow-origin: *
Date: Sun, 24 Mar 2019 13:27:26 GMT
Expires: Sun, 24 Mar 2019 15:27:26 GMT
Last-Modified: Tue, 19 Feb 2019 19:44:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17543
Cache-Control: public, max-age=7200
Age: 2363
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17543
Md5:    a6ce90b9145f18e7a721eb3819daaaab
Sha1:   1c422016bd20a08535d2cc37448c498cf4a0f829
Sha256: 94fe45c14a2ce4fd5f1401c835e5d63111ebf89ff58e03d6b780592f02abf778
                                        
                                            GET /ajax/libs/webfont/1.4.2/webfont.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         172.217.20.42
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
timing-allow-origin: *
Content-Length: 6918
Date: Fri, 08 Mar 2019 05:28:50 GMT
Expires: Sat, 07 Mar 2020 05:28:50 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1413479
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6918
Md5:    6aea4e62669de58af14650229b6018a8
Sha1:   2bbe94418d88c5e8ff0a3773d041a695fd1fd696
Sha256: ffacd2e09d1f7e4396fcbe79884f84cf0f6e05273f25a21622074b4d980aa49e
                                        
                                            GET /js/signup/movies/cd/modernizr.js HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 14:06:49 GMT
Etag: "5c939a8e-2bf3"
Last-Modified: Thu, 21 Mar 2019 14:07:10 GMT
Server: nginx/1.4.6 (Ubuntu)
Content-Length: 11251
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   11251
Md5:    6346638d1d6424809c3cd6e7b3c93de7
Sha1:   15cca5595848ad4920acb0bd206cecfd61cd9317
Sha256: e9b62ed2448a63e4ae67f4736d62052df628e53179c2850456b374a418448041
                                        
                                            GET /gtm.js?id=GTM-SPQR HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         172.217.21.136
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 14:06:49 GMT
Expires: Sun, 24 Mar 2019 14:06:49 GMT
Cache-Control: private, max-age=900
Last-Modified: Fri, 22 Mar 2019 23:15:01 GMT
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   37640
Md5:    c61d429b191f7930edba6180a86be460
Sha1:   0bc5aef3aa9bf818f80cadb17642cb612a1eec04
Sha256: 17a37c3f0ce852a0b4bc7db9fbb622cf0f0016cc4716dc488497dab77f3f487d
                                        
                                            GET /set-cookie.gif?media=sports&sport= HTTP/1.1 
Host: www.shglegle.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.80.53.132
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Apache-Coyote/1.1
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="CAO PSA OUR"
Set-Cookie: ecvtcn_media=sports; Domain=.www.shglegle.com; Expires=Mon, 23-Mar-2020 14:06:50 GMT; Path=/ ecvtcn_sport=""; Domain=.www.shglegle.com; Expires=Mon, 23-Mar-2020 14:06:50 GMT; Path=/
Accept-Ranges: bytes
Content-Length: 49
Date: Sun, 24 Mar 2019 14:06:49 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    56398e76be6355ad5999b262208a17c9
Sha1:   a1fdee122b95748d81cee426d717c05b5174fe96
Sha256: 2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
                                        
                                            GET /css?family=Open+Sans:400,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
timing-allow-origin: *
Expires: Sun, 24 Mar 2019 14:06:50 GMT
Date: Sun, 24 Mar 2019 14:06:50 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   253
Md5:    a87063fb8af2db922194022a401c37b2
Sha1:   cfbc663c284ea018130a54c59826685a35d42d37
Sha256: e505e4f4de641628b1a2fd6786187312d707851012a5b4d844ad009b080da3b0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "22470B6F926E3E0851373484018EE540DFF4978F1CD543CCD44F57621DF65AD3"
Last-Modified: Sat, 23 Mar 2019 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=34181
Expires: Sun, 24 Mar 2019 23:36:31 GMT
Date: Sun, 24 Mar 2019 14:06:50 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    00b8d1cb43f4837370d74fbf30e44db8
Sha1:   124de7a5f8006848a3b9064226ce5248b30528e4
Sha256: 22470b6f926e3e0851373484018ee540dff4978f1cd543ccd44f57621df65ad3
                                        
                                            GET /js/signup/movies/cd/main.php?cache_control=&lng=NO HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: 31536000
Content-Encoding: gzip
Date: Sun, 24 Mar 2019 14:06:50 GMT
Expires: Mon, 23 Mar 2020 14:06:50 GMT
Pragma: public
Server: nginx/1.4.6 (Ubuntu)
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.9-1ubuntu4.26
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   94713
Md5:    076aab7238937121a9ee76de637e8ec9
Sha1:   bc29e7b2e0cf8f9e0e177a884ba9e0bf3e8bc70c
Sha256: c59ff9460604b2b100cbdcbca0fe72980f2744a4214deede0003811b72f13f2f
                                        
                                            GET /images/signup/movies/cd//sports-header.jpg HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/css/signup/movies/cd/main.php?cache_control=1
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 14:06:50 GMT
Etag: "5c939a8c-710f"
Last-Modified: Thu, 21 Mar 2019 14:07:08 GMT
Server: nginx/1.4.6 (Ubuntu)
X-Robots-Tag: noindex, nofollow, noarchive, noodp, noimageindex, nosnippet
Content-Length: 28943
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   28943
Md5:    92b3dab9ffa4f2ce3a2bbd970b9fde19
Sha1:   e8b84dce460a250f920b21db96d710bc9ba68c3d
Sha256: 4ef49a4b5b21ef577032a872a510a3dd9b7614c2f273a913f31ef70932f6ffba
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: liveanysports.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: HstCfa3982920=1553436406686; HstCla3982920=1553436406686; HstCmu3982920=1553436406686; HstPn3982920=1; HstPt3982920=1; HstCnv3982920=1; HstCns3982920=1; c_ref_3982920=https%3A%2F%2Fd1p95xdz29qw8e.cloudfront.net%2Fconsumer%2Fjs%2Fprototype%2Fwindows%2Fmid%2Fkazakhstan-vs-russia-live-hd.html

                                         
                                         70.32.29.36
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 24 Mar 2019 14:06:49 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:400,600,700
Origin: https://go.nipsplay.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
timing-allow-origin: *
Content-Length: 18476
Date: Sat, 16 Mar 2019 07:39:45 GMT
Expires: Sun, 15 Mar 2020 07:39:45 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:43 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 714425
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   18476
Md5:    623e3205570002af47fc2b88f9335d19
Sha1:   b5f79d1934da79c8a4ba381092dad82ffb0582cb
Sha256: 5e03e0c7668266486cab9529702019d75c219fcec2b1e82a7c11797ba9b78506
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:400,600,700
Origin: https://go.nipsplay.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
timing-allow-origin: *
Content-Length: 18296
Date: Fri, 08 Mar 2019 06:21:56 GMT
Expires: Sat, 07 Mar 2020 06:21:56 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:52 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1410294
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   18296
Md5:    1cd5320f8937d337b61d5117cf9d7b28
Sha1:   24798ef7ac55ba93aaa033fefdb7ca4d57da44ad
Sha256: e19b28ad1aafcb23735d02cbec4e2697ebbf7d608cf47fb8f8565def01b28c2a
                                        
                                            GET /images/signup/movies/cd//site-bg.jpg HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/css/signup/movies/cd/main.php?cache_control=1
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 14:06:50 GMT
Etag: "5c939a8c-2ae92"
Last-Modified: Thu, 21 Mar 2019 14:07:08 GMT
Server: nginx/1.4.6 (Ubuntu)
Content-Length: 175762
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   175762
Md5:    f8ae1ba703edefc221140afb43e79897
Sha1:   3beff6766e8b30fd97bdb7a135dfb978ca965e8a
Sha256: b14bfa661f679fc735bd37912b91c77ae1719fa9498ec3b3abb9b250ed66f0d9
                                        
                                            GET /js/show_ads_adsurge.js?pubId=3247 HTTP/1.1 
Host: www.morbitempus.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         199.80.53.132
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=utf-8
                                        
Server: Apache-Coyote/1.1
Cache-Control: max-age=600
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 14:06:50 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   9419
Md5:    8c462fe8b4718c44ed4aa5132746f27c
Sha1:   fe0e0d1a1c7c7b777ed6e1f0d610578351dcaed8
Sha256: 386922f8b4864392491fe0f67eded5cb6822ce4616d5e266035fb7b14e41383c
                                        
                                            GET /css?family=Droid+Sans:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
timing-allow-origin: *
Expires: Sun, 24 Mar 2019 14:06:50 GMT
Date: Sun, 24 Mar 2019 14:06:50 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   241
Md5:    721ff3c5ff75ad0aa678b3fdbc6a5ffc
Sha1:   5830b67d210482f9c334298a8e18cfd9daa8a187
Sha256: a1cfddfb30fd56cbc146369a520448e74914b4223af759f9603ed675b408eed1
                                        
                                            GET /images/signup/movies/cd/video-throbber.gif HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 14:06:51 GMT
Etag: "5c939a8c-d874"
Last-Modified: Thu, 21 Mar 2019 14:07:08 GMT
Server: nginx/1.4.6 (Ubuntu)
Content-Length: 55412
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 110 x 110
Size:   55412
Md5:    0e7ca6fcbe5188f55c2f5e3d3c9a0fc5
Sha1:   64930ebec1ed267719ed1d16f330383b37c77345
Sha256: c525abaeff84e0f564f6f4918fbd12287c17c2c2af08433df345d06924278c63
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 24 Mar 2019 14:06:52 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8f1fe18b479a00236af18d43e8cf6faf
Sha1:   32b4bc53c63a39dbc1fdc5383cb2fd17bb7d82b2
Sha256: 2d8f0602fbd5b25e202f581a266379c6b7ff53896da50ef4cf413f7de792b4e9
                                        
                                            GET /images/signup/movies/cd/red-dot.png HTTP/1.1 
Host: go.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO
Cookie: PHPSESSID=6490a9eca712e47bfcd0c03b00e7c225; vid=1553436409.c47af2808abdb1f12d92146f9c2831c8; step0_visit_tracked=1

                                         
                                         46.137.180.14
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 14:06:53 GMT
Etag: "5c939a8c-43d"
Last-Modified: Thu, 21 Mar 2019 14:07:08 GMT
Server: nginx/1.4.6 (Ubuntu)
Content-Length: 1085
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   1085
Md5:    46151d0c5bdb858597dd8400c7c6c853
Sha1:   2de0b85a8bf0407cbc71a2b1e21ddbc963aecd33
Sha256: 6181d1d43261dd7df5b227b5c18273f3abebafddd35cfd14a1831345397715de
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:400,600,700
Origin: https://go.nipsplay.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
timing-allow-origin: *
Content-Length: 17704
Date: Thu, 07 Mar 2019 22:32:13 GMT
Expires: Fri, 06 Mar 2020 22:32:13 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1438480
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   17704
Md5:    bf2d0783515b7d75c35bde69e01b3135
Sha1:   0e92462e402c15295366d912a7b8be303d0257d8
Sha256: 054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
                                        
                                            GET /collect?v=1&_v=j73&a=335657048&t=pageview&_s=1&dl=https%3A%2F%2Fgo.nipsplay.com%2Fsignup%2F%3Fad_domain%3Dlook.djfiln.com%26ad_path%3D%252Fsmart_asdf%252Fdisplay%26prod%3D224%26ref%3D5052890%26sf%3Dsports%26adserver%3D1.3.4%26m%3Dsports%26lp%3D524%26lid%3D74b9dd98-bd4a-465c-97c7-780fb71ebc4e%26session_id%3D6490a9eca712e47bfcd0c03b00e7c225%26header_languages%3D%255B%2522EN%2522%255D%26_sign%3D06bef3919c7a7ad523747f81f47ce8d3%26_signt%3D1553436468%26lng%3DNO%26country%3DNO&dp=%2Faffiliate&ul=en-us&de=UTF-8&dt=4K%20Sports%20-%20Live%20Stream&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=aGBAgAQAE~&jid=271797269&gjid=1683974614&cid=528719568.1553436412&tid=UA-35287253-12&_gid=24523303.1553436412&cd1=sports_eone&cd2=search&cd3=eMedia&cd4=search&cd15=No&cd18=Search%20Loader&cd19=All&z=2122467886 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 08 Mar 2019 02:07:40 GMT
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Cache-Control: no-cache, no-store, must-revalidate
Age: 1425553
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /r/collect?t=dc&aip=1&_r=3&v=1&_v=j73&tid=UA-35287253-12&cid=528719568.1553436412&jid=271797269&gjid=1683974614&_gid=24523303.1553436412&_u=aGBAgAQAE~&z=159559570 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         74.125.131.157
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Sun, 24 Mar 2019 14:06:53 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.207.232
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
timing-allow-origin: *
Date: Sun, 24 Mar 2019 13:13:40 GMT
Expires: Sun, 24 Mar 2019 15:13:40 GMT
Last-Modified: Tue, 19 Feb 2019 19:44:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17168
Cache-Control: public, max-age=7200
Age: 3193
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            GET /css?family=Open+Sans HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
timing-allow-origin: *
Expires: Sun, 24 Mar 2019 14:06:53 GMT
Date: Sun, 24 Mar 2019 14:06:53 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   200
Md5:    c3ca402894d5667f6d33f4020c7c3c88
Sha1:   f6f889f7c28e0af6efa101bcbb4d8f564a35b476
Sha256: ec72e73268c4541c2a32746b02e29d2c3b1f22914623d929f6dc90bbdfbe2e65
                                        
                                            GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=627021806&utmhn=go.nipsplay.com&utme=8(det*3!product*m_gen)9(sports_eone*3!eMedia*search)&utmcs=UTF-8&utmsr=1176x885&utmvp=1176x754&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=4K%20Sports%20-%20Live%20Stream&utmhid=335657048&utmr=-&utmp=%2Faffiliate&utmht=1553436413480&utmac=UA-35287253-1&utmcc=__utma%3D219825734.528719568.1553436412.1553436413.1553436413.1%3B%2B__utmz%3D219825734.1553436413.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1882925926&utmredir=1&utmu=ixCgAAAAACAAAAAAAAABAAAE~ HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         216.58.207.232
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-35287253-1&cid=528719568.1553436412&jid=1882925926&_v=5.7.2&z=627021806
Access-Control-Allow-Origin: *
Date: Sun, 24 Mar 2019 14:06:53 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 369
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   369
Md5:    4d98c590eb8cbb5984b6f3408a90fbda
Sha1:   1bfe931ca96956e7822def8d86797c3aace61e4a
Sha256: 3b5a7366aadbbb10803a5499f6ddf9f1c2e5cb01afaa482af76311828aa32aa6
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-35287253-1&cid=528719568.1553436412&jid=1882925926&_v=5.7.2&z=627021806 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         74.125.131.157
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Sun, 24 Mar 2019 14:06:53 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /consumer/js/prototype/windows/mid/0 HTTP/1.1 
Host: d1p95xdz29qw8e.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://d1p95xdz29qw8e.cloudfront.net/consumer/js/prototype/windows/mid/kazakhstan-vs-russia-live-hd.html

                                         
                                         143.204.51.131
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 24 Mar 2019 14:06:42 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Id: KT1qOPWJVK4mNFJPE3WD3wF65wjdJqe-FjN8zKVkzgATNBUlo32bQw==


--- Additional Info ---
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:400,600,700
Origin: https://go.nipsplay.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: www.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://go.nipsplay.com/signup/?ad_domain=look.djfiln.com&ad_path=%2Fsmart_asdf%2Fdisplay&prod=224&ref=5052890&sf=sports&adserver=1.3.4&m=sports&lp=524&lid=74b9dd98-bd4a-465c-97c7-780fb71ebc4e&session_id=6490a9eca712e47bfcd0c03b00e7c225&header_languages=%5B%22EN%22%5D&_sign=06bef3919c7a7ad523747f81f47ce8d3&_signt=1553436468&lng=NO&country=NO

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: www.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: www.nipsplay.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---