Report - web.stagatv.com

Report Overview

Submitted URL
web.stagatv.com
IP
104.21.61.65
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 19:46:31
Access
public
Website Title
StagaTV - Download the Latest Movies, TV Series, Trailers
Final URL
web.stagatv.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fleraprt.com	unknown	2022-01-14	2022-01-14	2024-04-20	571 B	485 B	139.45.195.254
i1.wp.com	6037	1997-03-28	2012-09-27	2024-04-25	7.1 kB	184 kB	192.0.77.2
pixel.wp.com	2545	1997-03-28	2017-01-30	2024-04-25	551 B	249 B	192.0.76.3
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-26	2.2 kB	72 kB	142.250.74.163
offerimage.com	304078	2019-06-10	2019-06-10	2024-04-24	893 B	35 kB	104.22.32.172
www.stagatv.com	unknown	2018-08-25	2019-04-01	2024-02-25	1.1 kB	1.5 kB	172.67.206.242
z.cdn.adtarget.market	unknown	2022-05-19	2022-06-03	2024-04-20	445 B	95 B	5.79.65.76
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	920 B	18 kB	142.250.74.106
i0.wp.com	3021	1997-03-28	2013-09-17	2024-04-25	5.2 kB	50 kB	192.0.77.2
i2.wp.com	5618	1997-03-28	2017-01-30	2024-04-26	5.1 kB	111 kB	192.0.77.2
z.cdn.trafficbass.com	70439	2020-02-28	2020-03-04	2024-04-20	1.2 kB	4.5 kB	213.227.149.183
rtb.cdn.adtarget.market	unknown	2022-05-19	2023-05-26	2024-04-20	445 B	95 B	5.79.65.76
nabauxou.net	unknown	2023-07-18	2023-07-18	2024-04-14	1.4 kB	62 kB	139.45.197.245
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-04-25	463 B	744 B	139.45.195.8
tzegilo.com	unknown	2022-01-14	2022-01-14	2024-04-20	396 B	50 kB	172.67.193.52
stats.wp.com	2711	1997-03-28	2017-01-30	2024-04-25	398 B	8.4 kB	192.0.76.3
i3.wp.com	44229	1997-03-28	2017-01-29	2024-04-23	3.6 kB	30 kB	192.0.77.2
d7.cdn.trafficbass.com	287325	2020-02-28	2020-04-08	2024-04-18	5.9 kB	60 kB	178.162.196.143
bygliscortor.com	unknown	2023-11-30	2023-11-30	2024-04-18	2.7 kB	93 kB	139.45.197.242
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-04-26	441 B	106 kB	45.133.44.10
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-25	1.4 kB	37 kB	104.17.25.14
web.stagatv.com	unknown	unknown	No data	No data	11 kB	472 kB	172.67.206.242
www.topcreativeformat.com	unknown	2023-11-21	2023-11-22	2024-04-26	442 B	13 kB	192.243.61.225
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-25	431 B	422 B	18.185.247.192
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-26	2.6 kB	525 kB	142.250.74.168
supervisebradleyrapidly.com	unknown	2024-04-24	2024-04-25	2024-04-26	2.6 kB	5.9 kB	172.240.253.132
cdn.trafficbass.com	64521	2020-02-28	2020-03-02	2024-04-25	403 B	4.0 kB	62.212.82.90

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	nabauxou.net	Sinkholed
2024-04-26	medium	tzegilo.com	Sinkholed
2024-04-26	medium	nabauxou.net	Sinkholed
2024-04-26	medium	bygliscortor.com	Sinkholed
2024-04-26	medium	supervisebradleyrapidly.com	Sinkholed
2024-04-26	medium	supervisebradleyrapidly.com	Sinkholed
2024-04-26	medium	bygliscortor.com	Sinkholed
2024-04-26	medium	bygliscortor.com	Sinkholed
2024-04-26	medium	nabauxou.net	Sinkholed
2024-04-26	medium	fleraprt.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (42)

	URL	Size	First Seen	Last Seen
	web.stagatv.com/wp-content/themes/moviestream/assets/js/jquery.min.js	100 kB	2023-03-07	2024-04-26
Pretty URL web.stagatv.com/wp-content/themes/moviestream/assets/js/jquery.min.js IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:14:13 Last Seen2024-04-26 21:46:41 Times Seen45 Hash 305dfc4408c3c390acaf2bddc87c6adf 3d5cfee4fade8fca84d575746b1ae13aab625d67 e275020620809b4b3464f0de37e62da8ff1727ab69d9e7e8da6bb1570b357951 Loading...

	data:text/javascript;base64,KGZ1bmN0aW9uKGQseixzLGMpe3Muc3JjPScvLycrZCsnLzQwMC8nK3o7cy5vbmVycm9yPXMub25sb2FkPUU7ZnVuY3Rpb24gRSgpe2MmJmMoKTtjPW51bGx9dHJ5eyhkb2N1bWVudC5ib2R5fHxkb2N1bWVudC5kb2N1bWVudEVsZW1lbnQpLmFwcGVuZENoaWxkKHMpfWNhdGNoKGUpe0UoKX19KSgnYnlnbGlzY29ydG9yLmNvbScsNjg3MDI2Nixkb2N1bWVudC5jcmVhdGVFbGVtZW50KCdzY3JpcHQnKSxfZndma3p4ZWQp	237 B	2024-02-08	2024-04-26
Pretty URL data:text/javascript;base64,KGZ1bmN0aW9uKGQseixzLGMpe3Muc3JjPScvLycrZCsnLzQwMC8nK3o7cy5vbmVycm9yPXMub25sb2FkPUU7ZnVuY3Rpb24gRSgpe2MmJmMoKTtjPW51bGx9dHJ5eyhkb2N1bWVudC5ib2R5fHxkb2N1bWVudC5kb2N1bWVudEVsZW1lbnQpLmFwcGVuZENoaWxkKHMpfWNhdGNoKGUpe0UoKX19KSgnYnlnbGlzY29ydG9yLmNvbScsNjg3MDI2Nixkb2N1bWVudC5jcmVhdGVFbGVtZW50KCdzY3JpcHQnKSxfZndma3p4ZWQp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-08 06:45:11 Last Seen2024-04-26 21:46:39 Times Seen9 Hash cd5f2dbd93b6f06272f67169a4b815bd 801325fddf60bb1886e177889ada258506776ec4 6437e25430295bc70422be7a29d0f215565ed9cf8ef232332d05d4285f6dc7cc Loading...

	unknown	196 B	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:39 Times Seen1 Hash 0f2b4ea19fb3a76ffffe7a084802d666 3323740337da7d7695b6e92fc38fd3c78457994e a6ee7750c9b97a752270c8bd77310148d2791ad76dcd63af18fd0255e0abc5dd Loading...

	web.stagatv.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-07
Pretty URL web.stagatv.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-07 23:51:57 Times Seen345716 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c	302 kB	2024-04-26	2024-04-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:41 Times Seen2 Hash 1c91a2d5c789329ff07c4268e0e16bfb 13ad5f687ce51326ccfac0a5bb093f276b5e7388 aed5095753ff7ad683bff25da40e83841003ffa947b734be30aa8fbf30e5ced6 Loading...

	z.cdn.trafficbass.com/load?z=1783875898&div=zone_1783875898&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1442&pl=5&mi=2&hc=48&n=1714160766049&v=true&i=true&url=web.stagatv.com%2F&vc=0&ti=StagaTV%20-%20Download%20the%20Latest%20Movies%2C%20TV%20Series%2C%20Trailers&zyx=4183453547	9.8 kB	2024-04-26	2024-04-26
Pretty URL z.cdn.trafficbass.com/load?z=1783875898&div=zone_1783875898&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1442&pl=5&mi=2&hc=48&n=1714160766049&v=true&i=true&url=web.stagatv.com%2F&vc=0&ti=StagaTV%20-%20Download%20the%20Latest%20Movies%2C%20TV%20Series%2C%20Trailers&zyx=4183453547 IP 213.227.149.183 ASN #60781 LeaseWeb Netherlands B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:41 Times Seen2 Hash e2598f42e20dbe4fd0e2650e62fb3003 452403bb295779a06448c1f52667a8e90fe7f140 b0233d0ebcd978b5d1cd3e2e807f09de42cbf3652c3fca92b1c6610208fbd984 Loading...

	web.stagatv.com/	6.6 kB	2024-04-19	2024-04-26
Pretty URL web.stagatv.com/ IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 13:22:26 Last Seen2024-04-26 21:46:39 Times Seen2 Hash 57f0df287013d80ebc224e9f05320735 efafc4b0895bb135bc730f47532d3ad50427b2a7 dcfde29a72f26e3417314089bb2e6a6a6e6934440491f573466284403c44a472 Loading...

	web.stagatv.com/	346 B	2024-04-19	2024-04-26
Pretty URL web.stagatv.com/ IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 13:22:26 Last Seen2024-04-26 21:46:39 Times Seen2 Hash db953b0a91dbc9a4151cf84ee96c3dde 713b07ce4fd81d2a761886275942162cbc5884e9 c490ecc2150f5443a81854eaec5608c251ad426beb9a4f80022fef55c51ff8d2 Loading...

	data:text/javascript;base64,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	523 B	2023-10-23	2024-04-26
Pretty URL data:text/javascript;base64,ZnVuY3Rpb24gaGlkZVNoKG4pe2pRdWVyeSgiI3NoYWRvdyIpLnRvZ2dsZSgpO2lmKGpRdWVyeSgiI3NoYWRvdyIpLmlzKCI6aGlkZGVuIikpCmpRdWVyeShuKS5odG1sKCI8c3BhbiBjbGFzcz0nZGFzaGljb25zIGRhc2hpY29ucy1saWdodGJ1bGInPjwvc3Bhbj4gVHVybiBPZmYgTGlnaHQiKS5yZW1vdmVDbGFzcygidHVybmVkT2ZmIik7ZWxzZSBqUXVlcnkobikuaHRtbCgiPHNwYW4gY2xhc3M9J2Rhc2hpY29ucyBkYXNoaWNvbnMtbGlnaHRidWxiJz48L3NwYW4+IFR1cm4gT24gTGlnaHQiKS5hZGRDbGFzcygidHVybmVkT2ZmIil9CmpRdWVyeShkb2N1bWVudCkucmVhZHkoZnVuY3Rpb24oKXtqUXVlcnkoIiNzaGFkb3ciKS5jc3MoImhlaWdodCIsalF1ZXJ5KGRvY3VtZW50KS5oZWlnaHQoKSkuaGlkZSgpO2pRdWVyeSgiLmxpZ2h0U3dpdGNoZXIiKS5jbGljayhmdW5jdGlvbigpe2hpZGVTaCh0aGlzKX0pO2pRdWVyeSgnI3NoYWRvdycpLmNsaWNrKGZ1bmN0aW9uKCl7aGlkZVNoKCIubGlnaHRTd2l0Y2hlciIpfSl9KQ== IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 21:32:25 Last Seen2024-04-26 21:46:39 Times Seen13 Hash 424c867535f1411bcb45607dda3c1f60 7fa0d7bf8d858630e6d2afe7d48d1db5f4c85b75 50fc1403180fe3cdff861d66991acfc9947514d6c894460032962d90bfce8890 Loading...

	data:text/javascript;base64,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	394 B	2023-12-05	2024-04-26
Pretty URL data:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 22:22:25 Last Seen2024-04-26 21:46:39 Times Seen9 Hash 102f4d58be52763aa28efc92485334e3 d4220e6a887982a02873ce6443d781d354e2db79 64ff4c90f6143116681d11a43f1abc95e0ec80fb27de6a5135b5d011d50dbec6 Loading...

	d7.cdn.trafficbass.com/libs/banner_html5.js	2.3 kB	2023-03-10	2024-05-02
Pretty URL d7.cdn.trafficbass.com/libs/banner_html5.js IP 178.162.196.143 ASN #28753 Leaseweb Deutschland GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:06:25 Last Seen2024-05-02 14:35:04 Times Seen86 Hash e8af3a70f128e696da5fb7db91e20b83 5b27789477ee963047725f223cc0b45e913ce132 af5a7eae2f66dba439abe5f6f118adda224cfccab9ca2fff974cd675a602d4de Loading...

	data:text/javascript;base64,JChkb2N1bWVudCkucmVhZHkoZnVuY3Rpb24oKXskKCcudGlwJykuZWFjaChmdW5jdGlvbigpe3ZhciAkdGhpcz0kKHRoaXMpO3ZhciBpZD0kdGhpcy5hdHRyKCdyZWwnKTskdGhpcy5xdGlwKHtjb250ZW50OnthamF4Ont1cmw6J2h0dHBzOi8vd2ViLnN0YWdhdHYuY29tL3dwLWFkbWluL2FkbWluLWFqYXgucGhwJyx0eXBlOidQT1NUJyxsb2FkaW5nOiExLGRhdGE6J2lkPScraWQrJyZhY3Rpb249dG9vbHRpcF9hY3Rpb24nfX0sc2hvdzonbW91c2VvdmVyJyxoaWRlOntkZWxheToyMDAsZml4ZWQ6ITB9LHBvc2l0aW9uOnt0YXJnZXQ6J21vdXNlJyxhZGp1c3Q6e21vdXNlOiExfSx2aWV3cG9ydDokKHdpbmRvdyl9fSl9KX0p	354 B	2024-04-19	2024-04-26
Pretty URL data:text/javascript;base64,JChkb2N1bWVudCkucmVhZHkoZnVuY3Rpb24oKXskKCcudGlwJykuZWFjaChmdW5jdGlvbigpe3ZhciAkdGhpcz0kKHRoaXMpO3ZhciBpZD0kdGhpcy5hdHRyKCdyZWwnKTskdGhpcy5xdGlwKHtjb250ZW50OnthamF4Ont1cmw6J2h0dHBzOi8vd2ViLnN0YWdhdHYuY29tL3dwLWFkbWluL2FkbWluLWFqYXgucGhwJyx0eXBlOidQT1NUJyxsb2FkaW5nOiExLGRhdGE6J2lkPScraWQrJyZhY3Rpb249dG9vbHRpcF9hY3Rpb24nfX0sc2hvdzonbW91c2VvdmVyJyxoaWRlOntkZWxheToyMDAsZml4ZWQ6ITB9LHBvc2l0aW9uOnt0YXJnZXQ6J21vdXNlJyxhZGp1c3Q6e21vdXNlOiExfSx2aWV3cG9ydDokKHdpbmRvdyl9fSl9KX0p IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 13:22:26 Last Seen2024-04-26 21:46:39 Times Seen2 Hash 4e3275f07c04fc54b9334b927ee98f5d 12651ea17c8475c6d55d6df6bff3bb6bd6164566 c6da7f99b5c815e50740420c2b6a48f60df6b0d17e3e995689a3f64ab5c57eb0 Loading...

	data:text/javascript;base64,Y29uc3QgdGhlbWVzaWFfbGFuZz17ImJvb2ttYXJrX2xhYmVsIjoiQm9va21hcmsiLCJib29rbWFya2VkX2xhYmVsIjoiQm9va21hcmtlZCIsImJvb2ttYXJrX2Jyb3dzZXJfbm90X3N1cHBvcnRlZCI6IlNvcnJ5LCB5b3VyIGJyb3dzZXIgaXMgbm90IHN1cHBvcnRlZC5cblVzZSBDaHJvbWUgXC8gRmlyZWZveCBicm93c2VyIiwiYm9va21hcmtfbWF4X2Jvb2ttYXJrX3JlYWNoZWQiOiJTb3JyeSwgeW91ciBtYXhpbXVtIGJvb2ttYXJrIGhhcyBiZWVuIHJlYWNoZWQgXG5wbGVhc2UgcmVtb3ZlIHNvbWUgYm9va21hcmsgaXRlbSJ9	300 B	2023-10-23	2024-04-26
Pretty URL data:text/javascript;base64,Y29uc3QgdGhlbWVzaWFfbGFuZz17ImJvb2ttYXJrX2xhYmVsIjoiQm9va21hcmsiLCJib29rbWFya2VkX2xhYmVsIjoiQm9va21hcmtlZCIsImJvb2ttYXJrX2Jyb3dzZXJfbm90X3N1cHBvcnRlZCI6IlNvcnJ5LCB5b3VyIGJyb3dzZXIgaXMgbm90IHN1cHBvcnRlZC5cblVzZSBDaHJvbWUgXC8gRmlyZWZveCBicm93c2VyIiwiYm9va21hcmtfbWF4X2Jvb2ttYXJrX3JlYWNoZWQiOiJTb3JyeSwgeW91ciBtYXhpbXVtIGJvb2ttYXJrIGhhcyBiZWVuIHJlYWNoZWQgXG5wbGVhc2UgcmVtb3ZlIHNvbWUgYm9va21hcmsgaXRlbSJ9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 21:32:26 Last Seen2024-04-26 21:46:39 Times Seen12 Hash f257a2deedc1ddb5e54d55c0f9712dad 9a5fd178c78b532c45338a387118621a0968c3ca 12aaac9504de773b68753a6310ed6de2fcc5e2b6283653a5bd68b0b16d3857ed Loading...

	data:text/javascript;base64,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	440 B	2024-04-19	2024-04-26
Pretty URL data:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 13:22:26 Last Seen2024-04-26 21:46:39 Times Seen2 Hash d912f010cf51567d6e1755631a43c9c2 565f8407bad07565dfa9da4230c650db7afae6ef 989230298969e56be64ebed7c83385c3b5f36ac91ed9bb81cfc805baad2f743b Loading...

	web.stagatv.com/	59 kB	2024-02-08	2024-04-26
Pretty URL web.stagatv.com/ IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-08 06:45:11 Last Seen2024-04-26 21:46:39 Times Seen15 Hash 1848473f295b1126b403b9798303bee4 87a1a02970a8b3ffefafac1cbb4c133858c76441 f19e75d8eb017ce6401cebad67512c78c364fc0d3e33c6149ab3541d2efbacd2 Loading...

	web.stagatv.com/	59 kB	2024-02-08	2024-04-26
Pretty URL web.stagatv.com/ IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-08 06:45:11 Last Seen2024-04-26 21:46:39 Times Seen9 Hash a2e8d4baa3d119b10851f071d984c741 5ed30642392218f68066c6faa28f60bb3c97be37 dcd80aff22685015ced2fe12e94422dd9490c8934d051115dda178252e867f59 Loading...

	data:text/javascript;base64,KGZ1bmN0aW9uKCl7d2luZG93Lm9ucGFnZXNob3c9ZnVuY3Rpb24oZXZlbnQpe2lmKHR5cGVvZiB3aW5kb3cud3Bmb3JtcyE9PSd1bmRlZmluZWQnJiZldmVudC5wZXJzaXN0ZWQpe3dpbmRvdy5sb2NhdGlvbi5yZWxvYWQoKX19fSgpKQ==	133 B	2024-04-26	2024-04-26
Pretty URL data:text/javascript;base64,KGZ1bmN0aW9uKCl7d2luZG93Lm9ucGFnZXNob3c9ZnVuY3Rpb24oZXZlbnQpe2lmKHR5cGVvZiB3aW5kb3cud3Bmb3JtcyE9PSd1bmRlZmluZWQnJiZldmVudC5wZXJzaXN0ZWQpe3dpbmRvdy5sb2NhdGlvbi5yZWxvYWQoKX19fSgpKQ== IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:39 Times Seen1 Hash b1b26c7dcf69c58324aa7eb9437bf724 33da82cd76bdbb836a399e7d011009428c9ec698 549bf1fa2f3fb01f656540c8fcfe494b05c97a491de10b5f0709ca8f1c8112af Loading...

	stats.wp.com/e-202417.js	7.3 kB	2024-01-05	2024-05-07
Pretty URL stats.wp.com/e-202417.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-05 19:19:44 Last Seen2024-05-07 23:11:38 Times Seen2244 Hash bd2d67186594b0e32223b293fdfcca55 b797a9d012c850b53a7ccc12211adcfbcd9ae0be 4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641 Loading...

	web.stagatv.com/	244 B	2024-04-19	2024-04-26
Pretty URL web.stagatv.com/ IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 13:22:27 Last Seen2024-04-26 21:46:39 Times Seen2 Hash 4908097aa79108e313437369103df2aa 0354e0104cdbf8c8d30cb7fd5921d9ba9040c589 94a618ddaf67763d5556b6fc142218a39f27ccb92638d33931bed4d476f668b7 Loading...

	nabauxou.net/tag.min.js	89 kB	2024-04-26	2024-04-26
Pretty URL nabauxou.net/tag.min.js IP 139.45.197.245 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 19:42:49 Last Seen2024-04-26 23:34:23 Times Seen13 Hash f6571639f64e969eb671bc5ecd9c7d2c cee33075500377f6f8504a7ec57d1aa591292373 af879f8456aa4a3f46dcd37ec6f6a5aeec7a9b5309e85d83b9867cd4b0a7a872 Loading...

	tzegilo.com/stattag.js	19 kB	2024-02-10	2024-05-07
Pretty URL tzegilo.com/stattag.js IP 172.67.193.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-10 03:00:18 Last Seen2024-05-07 23:04:33 Times Seen1602 Hash 70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f Loading...

	data:text/javascript;base64,YXRPcHRpb25zPXsna2V5JzonYjFhNmQ4ODVhNzBkZTY3NzlmODU0ZjczM2RiMzAyNzknLCdmb3JtYXQnOidpZnJhbWUnLCdoZWlnaHQnOjkwLCd3aWR0aCc6NzI4LCdwYXJhbXMnOnt9fQ==	106 B	2024-04-26	2024-04-26
Pretty URL data:text/javascript;base64,YXRPcHRpb25zPXsna2V5JzonYjFhNmQ4ODVhNzBkZTY3NzlmODU0ZjczM2RiMzAyNzknLCdmb3JtYXQnOidpZnJhbWUnLCdoZWlnaHQnOjkwLCd3aWR0aCc6NzI4LCdwYXJhbXMnOnt9fQ== IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:39 Times Seen1 Hash d12cb0a222210a670c49590d0bca91e5 5ed48214c344eb916166859b842d5b8b853786af 7874bf0c5d51633f85596a25ffcaf6e9bc8d63797a0425b0df8d7f677f01b984 Loading...

	cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js	129 kB	2023-03-07	2024-05-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:52 Last Seen2024-05-06 19:02:50 Times Seen668 Hash 2ac19265b38d14235141d184bca54d9a c725eb5a33d093e331e25c3a5ef1272b0f1f648c e2c1132a1877692ca2e8d46203eaae9cf6936b0a9230341c6bfc4b5aedbb1e0e Loading...

	unknown	3.3 kB	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:39 Times Seen1 Hash c3085a67a289f122a0ef973a8d2a4db8 cc161a4b054cec8daa20c0db18c3b4f014fb4f62 a5b57a4c44b7f46d3da6303d4968c7ca7d8208a000ff2e9a98ed1ec476af8eca Loading...

	web.stagatv.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js	12 kB	2023-11-14	2024-05-07
Pretty URL web.stagatv.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 00:53:37 Last Seen2024-05-07 21:21:46 Times Seen2516 Hash 9593c634b81c031342cbe0fa03903d47 dd68ee9d73731b22fb7252f66be8bea5d17227c7 d7bdba02afa8c04c13f280c71a50f8c8186c883711c5dabbd13566dd738bff0a Loading...

	www.topcreativeformat.com/b1a6d885a70de6779f854f733db30279/invoke.js	31 kB	2024-04-26	2024-04-26
Pretty URL www.topcreativeformat.com/b1a6d885a70de6779f854f733db30279/invoke.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:39 Times Seen1 Hash bc2dcf73b5a3b3da8cd38c21a44ca778 654aa9e1fc491d6435cb9d8165c9bdb255760ea1 eb533f173739fb170a9ecb1528d305f5b932fc810d3d076f7bfdd2afb277fe8e Loading...

	web.stagatv.com/wp-content/litespeed/js/ccb76dcf1bcc4d71e944ac9b85f7b1c3.js?ver=947ee	66 kB	2024-04-19	2024-04-26
Pretty URL web.stagatv.com/wp-content/litespeed/js/ccb76dcf1bcc4d71e944ac9b85f7b1c3.js?ver=947ee IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 13:22:26 Last Seen2024-04-26 21:46:40 Times Seen4 Hash ea43b311aca04c9a30f917a840cd544f 4d59687e9cef2dc27d273081595c0fe93837f326 ce3e088d3643d7d2b12b9a86b92bb7478f5bbf06c9be961931d5ea343a382414 Loading...

	data:text/javascript;base64,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	752 B	2024-04-19	2024-04-26
Pretty URL data:text/javascript;base64,dmFyIHNmX3RlbXBsYXRlcz0iPGEgaHJlZj1cIntzZWFyY2hfdXJsX2VzY2FwZWR9XCI+VmlldyBBbGwgUmVzdWx0czxcL2E+Ijt2YXIgc2ZfcG9zaXRpb249JzAnO3ZhciBzZl9pbnB1dD0nLnNlYXJjaC1saXZlJztqUXVlcnkoZG9jdW1lbnQpLnJlYWR5KGZ1bmN0aW9uKCl7alF1ZXJ5KHNmX2lucHV0KS5hamF4eUxpdmVTZWFyY2goeyJleHBhbmQiOiExLCJzZWFyY2hVcmwiOiJodHRwczpcL1wvd2ViLnN0YWdhdHYuY29tXC8/cz0lcyIsInRleHQiOiJTZWFyY2giLCJkZWxheSI6NTAwLCJpd2lkdGgiOjE4MCwid2lkdGgiOjM1MCwiYWpheFVybCI6Imh0dHBzOlwvXC93ZWIuc3RhZ2F0di5jb21cL3dwLWFkbWluXC9hZG1pbi1hamF4LnBocCIsInJ0bCI6MH0pO2pRdWVyeSgiLmxpdmUtc2VhcmNoX2FqYXh5LXNlbGVjdGl2ZS1pbnB1dCIpLmtleXVwKGZ1bmN0aW9uKCl7dmFyIHdpZHRoPWpRdWVyeSh0aGlzKS52YWwoKS5sZW5ndGgqODtpZih3aWR0aDw1MCl7d2lkdGg9NTB9CmpRdWVyeSh0aGlzKS53aWR0aCh3aWR0aCl9KTtqUXVlcnkoIi5saXZlLXNlYXJjaF9hamF4eS1zZWxlY3RpdmUtc2VhcmNoIikuY2xpY2soZnVuY3Rpb24oKXtqUXVlcnkodGhpcykuZmluZCgiLmxpdmUtc2VhcmNoX2FqYXh5LXNlbGVjdGl2ZS1pbnB1dCIpLmZvY3VzKCl9KTtqUXVlcnkoIi5saXZlLXNlYXJjaF9hamF4eS1zZWxlY3RpdmUtY2xvc2UiKS5jbGljayhmdW5jdGlvbigpe2pRdWVyeSh0aGlzKS5wYXJlbnQoKS5yZW1vdmUoKX0pfSk= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 13:22:27 Last Seen2024-04-26 21:46:39 Times Seen2 Hash 1f024444170ca8281962b61662695120 b1a173b9f04db229ad0be42ceacec62d68215da4 25a0b449f8d3907286b117286aba07e757a208b56c6d3d90b61ec79a6c131dd8 Loading...

	unknown	145 B	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:39 Last Seen2024-04-26 21:46:39 Times Seen1 Hash 440837d2a696cc90855496147cea7541 523b1ec9ae331a27288b94e10f2282c36a157156 bb42558a59f10e059719975473797d68a30bb1f17014777ee8040819f0400d42 Loading...

	cdn.trafficbass.com/libs/e.js	6.6 kB	2023-12-13	2024-05-03
Pretty URL cdn.trafficbass.com/libs/e.js IP 62.212.82.90 ASN #60781 LeaseWeb Netherlands B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-13 19:19:55 Last Seen2024-05-03 01:43:45 Times Seen278 Hash 298983aca8fdb305836136f285867212 dc7ecf476f2c28961b008d9ce6917d5cf852dd2f 0637427601544bf4dc9e3e0385f502bce87ce1e31a061c46748355f82bc89f75 Loading...

	web.stagatv.com/	8.3 kB	2023-03-07	2024-05-07
Pretty URL web.stagatv.com/ IP 172.67.206.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-07 23:09:01 Times Seen2081 Hash eb78fac132e7cff1e4556b0ee5be04cf 8c0633f511df47c21639be83c719ae0e1ea26555 163c4d52fb653e1c2463e1a0e397faa297729ad6269b5205b915f3ed4b8b8d8b Loading...

	www.googletagmanager.com/gtag/js?id=UA-125408543-1	203 kB	2024-04-26	2024-04-26
Pretty URL www.googletagmanager.com/gtag/js?id=UA-125408543-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:40 Last Seen2024-04-26 21:46:40 Times Seen2 Hash adf97e99b816b9257e24eb364a23c994 8c333e22ba924744d78612f71a49a18bc96bdcfa e1ffa8f004e73fb6b36b5919fad2197089ddd6f790eaf21b44589403450c434d Loading...

	data:text/javascript;base64,dmFyIHN3aXBlcj1uZXcgU3dpcGVyKCcuc3dpcGVyLWNvbnRhaW5lcicse2NlbnRlcmVkU2xpZGVzOiEwLGF1dG9wbGF5OntkZWxheTo2MDAwLGRpc2FibGVPbkludGVyYWN0aW9uOiExLH0sbG9vcDohMCxwYWdpbmF0aW9uOntlbDonLnN3aXBlci1wYWdpbmF0aW9uJyxjbGlja2FibGU6ITAsfSx9KQ==	169 B	2023-10-23	2024-04-26
Pretty URL data:text/javascript;base64,dmFyIHN3aXBlcj1uZXcgU3dpcGVyKCcuc3dpcGVyLWNvbnRhaW5lcicse2NlbnRlcmVkU2xpZGVzOiEwLGF1dG9wbGF5OntkZWxheTo2MDAwLGRpc2FibGVPbkludGVyYWN0aW9uOiExLH0sbG9vcDohMCxwYWdpbmF0aW9uOntlbDonLnN3aXBlci1wYWdpbmF0aW9uJyxjbGlja2FibGU6ITAsfSx9KQ== IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 21:32:26 Last Seen2024-04-26 21:46:40 Times Seen11 Hash a3da725d3999b9fdea1803df75d88873 0dfebed661a7710f4d5c5ef331dac0ee06e51eac 083115c6a37b742d78532c269b98a0d1d24655bf71f033b78ef7f2776422a423 Loading...

	data:text/javascript;base64,dmFyIGFqYXh1cmw9J2h0dHBzOi8vd2ViLnN0YWdhdHYuY29tL3dwLWFkbWluL2FkbWluLWFqYXgucGhwJzt2YXIgbWF4X2Jvb2ttYXJrPTUw	81 B	2024-04-19	2024-04-26
Pretty URL data:text/javascript;base64,dmFyIGFqYXh1cmw9J2h0dHBzOi8vd2ViLnN0YWdhdHYuY29tL3dwLWFkbWluL2FkbWluLWFqYXgucGhwJzt2YXIgbWF4X2Jvb2ttYXJrPTUw IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 13:22:26 Last Seen2024-04-26 21:46:40 Times Seen2 Hash bb7a4d9b24ea78f7fa486a221da3a0eb f9dcc53468f0a4f8b42faa9e495a57349d7ea876 14542c2a004160bc6d45e8ac21e0fb250066279960460e10e745ae5959b0295e Loading...

	data:text/javascript;base64,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	441 B	2024-02-13	2024-04-26
Pretty URL data:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-13 00:29:54 Last Seen2024-04-26 21:46:40 Times Seen7 Hash a813b7035c4ecbec9152e080b23b4ee7 475e97e42c498c6b0c86d7c679924590cafe0e5d 9da5eff15ed541e882fdb4c5ac44374317e1be559c14dc92d018a261919c85ae Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-07
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-07 23:51:56 Times Seen345206 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	data:text/javascript;base64,JChkb2N1bWVudCkucmVhZHkoZnVuY3Rpb24oKXskKCIuc2hvdy1tZW51IikuY2xpY2soZnVuY3Rpb24oKXskKCIubWVudSIpLnRvZ2dsZUNsYXNzKCJtZW51c2hvdyIpfSk7JCgiLm1zIikuY2xpY2soZnVuY3Rpb24oKXskKCIuc2VhcmNoeCIpLnRvZ2dsZUNsYXNzKCJtc2UiKX0pOyQoIi5maWx0ZXJtIikuY2xpY2soZnVuY3Rpb24oKXskKCIuYmlnZmlsdGVyIikudG9nZ2xlQ2xhc3MoImJpZ3Nob3ciKX0pOyQoIi50cmFpbGVyYnV0dG9uIikuY2xpY2soZnVuY3Rpb24oKXskKCIudHJhaWxlcnNob3ciKS5hZGRDbGFzcygic2h3Iil9KX0p	306 B	2023-10-23	2024-04-26
Pretty URL data:text/javascript;base64,JChkb2N1bWVudCkucmVhZHkoZnVuY3Rpb24oKXskKCIuc2hvdy1tZW51IikuY2xpY2soZnVuY3Rpb24oKXskKCIubWVudSIpLnRvZ2dsZUNsYXNzKCJtZW51c2hvdyIpfSk7JCgiLm1zIikuY2xpY2soZnVuY3Rpb24oKXskKCIuc2VhcmNoeCIpLnRvZ2dsZUNsYXNzKCJtc2UiKX0pOyQoIi5maWx0ZXJtIikuY2xpY2soZnVuY3Rpb24oKXskKCIuYmlnZmlsdGVyIikudG9nZ2xlQ2xhc3MoImJpZ3Nob3ciKX0pOyQoIi50cmFpbGVyYnV0dG9uIikuY2xpY2soZnVuY3Rpb24oKXskKCIudHJhaWxlcnNob3ciKS5hZGRDbGFzcygic2h3Iil9KX0p IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 21:32:25 Last Seen2024-04-26 21:46:40 Times Seen13 Hash 12c8857c3757e4b9f83ae9e2537331b9 9466d4a32a1cb086e8e6881b1ffc7d012d3ce1cf 43037e142b9ea0dd6994ea8842941ca672190503a92d9da1e051bf8e4069281d Loading...

	data:text/javascript;base64,dHNfcG9wdWxhcl93aWRnZXQucnVuKDE3MTQxNjA3NjMp	33 B	2024-04-26	2024-04-26
Pretty URL data:text/javascript;base64,dHNfcG9wdWxhcl93aWRnZXQucnVuKDE3MTQxNjA3NjMp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:40 Last Seen2024-04-26 21:46:40 Times Seen1 Hash d5f8f966cfee8ca4e83c895b01302369 7434ad4dccc031ca79787191733c1eae75d4632b 7ac9e4f5f992585c827182534b21a3bf04d8765088a7b79f7ee2e1a84ad9b656 Loading...

	bygliscortor.com/400/6870266	91 kB	2024-04-26	2024-04-26
Pretty URL bygliscortor.com/400/6870266 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:40 Last Seen2024-04-26 21:46:41 Times Seen2 Hash 95e8d330984d61b80a8da7851bdac758 4adccef3da01ffd95d8f1790fa7bbc92244f256d 870eb3ee71b7c8d2c9b95705e470e2bd449b9684ac26336198c7340e5f730a4b Loading...

	www.googletagmanager.com/gtag/js?id=G-KJFELQY1RT	243 kB	2024-04-26	2024-04-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-KJFELQY1RT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 21:46:40 Last Seen2024-04-26 21:46:40 Times Seen2 Hash e1fa3f5a828ab7f3f9678e48d9a5349b ef1841d5596504d4340a7618dfc64c75882fc35a 549422bf1d10593061a2fec52ba48525b75bd6367126543c2807aabc5cc63557 Loading...

	data:text/javascript;base64,d2luZG93LmRhdGFMYXllcj13aW5kb3cuZGF0YUxheWVyfHxbXTtmdW5jdGlvbiBndGFnKCl7ZGF0YUxheWVyLnB1c2goYXJndW1lbnRzKX0KZ3RhZygnanMnLG5ldyBEYXRlKCkpO2d0YWcoJ2NvbmZpZycsJ1VBLTEyNTQwODU0My0xJyk=	134 B	2023-12-05	2024-04-26
Pretty URL data:text/javascript;base64,d2luZG93LmRhdGFMYXllcj13aW5kb3cuZGF0YUxheWVyfHxbXTtmdW5jdGlvbiBndGFnKCl7ZGF0YUxheWVyLnB1c2goYXJndW1lbnRzKX0KZ3RhZygnanMnLG5ldyBEYXRlKCkpO2d0YWcoJ2NvbmZpZycsJ1VBLTEyNTQwODU0My0xJyk= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 22:22:26 Last Seen2024-04-26 21:46:40 Times Seen9 Hash 369b5d04954aa1f1699f17ba40ae4378 22f12654684f71cd63ac61237e02cd348516c62d c22e99bb3bc172ff6ef4969b20e33d65c621dee7fe9adb7817074a2814759837 Loading...

		Size	First Seen	Last Seen
	#1 Eval - c1b2e2c90b522c9ca11d58c0e1853f77	2.1 kB	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 21:46:40 Last Seen2024-04-26 21:46:40 Times Seen1 Hash c1b2e2c90b522c9ca11d58c0e1853f77 0f32d67c2f5578e0b31c2edc8eed26d7d58e153b 1edd56ae3d32b5f44d2ec6a0e9ed4c7e0ca747401d89b1f072b0f25dbc476844 Loading...

HTTP Transactions (108)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/css/swiper.min.css?ver=4.5.1

104.17.25.14

200 OK

2.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/css/swiper.min.css?ver=4.5.1
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19533)
Size
2.6 kB (2588 bytes)
Hash
1a1424b0f9a102a7c2bbc06871d4e4f9
9014b2fdf02d67947d2dd1c06df863ecbf672245
0c161dae3ec1c4a337b2531ea815565f6a2dc7bc787aaa074490ac483274371c

HTTP Headers

GET /ajax/libs/Swiper/4.5.1/css/swiper.min.css?ver=4.5.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: text/css; charset=utf-8
content-length: 2588
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-4d58"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1271701
expires: Wed, 16 Apr 2025 19:46:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TMeqPMPko7l9HhLDU7MyFmAh9rt96SYkY0CFpwqP5i3h5mvoVKdMQTraSucLNxG2ZHNpxwhy7u29X%2BU1q4U%2FND%2FK%2FwQ8E7wR3Fag84Jy7F7bcgQZf8zkV66gUslIhi1JKX2Smdyd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a913a73ff65699-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-KJFELQY1RT

142.250.74.168

200 OK

87 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-KJFELQY1RT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
87 kB (86641 bytes)
Hash
554dc79568c845b1b3f9a3cdc9fdb1f5
ad41f831026bddd2364b199c96724e6fc9b7f696
1be32eb006a0527aa32099c02091d4f8b14a4040b6996289ad06302428336f94

HTTP Headers

GET /gtag/js?id=G-KJFELQY1RT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 19:46:04 GMT
expires: Fri, 26 Apr 2024 19:46:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86641
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.wp.com/e-202417.js

192.0.76.3

200 OK

8.0 kB

URL GET HTTP/2
stats.wp.com/e-202417.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7329), with no line terminators
Size
8.0 kB (8012 bytes)
Hash
bd2d67186594b0e32223b293fdfcca55
b797a9d012c850b53a7ccc12211adcfbcd9ae0be
4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641

HTTP Headers

GET /e-202417.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402356565.5398
content-encoding: br
expires: Mon, 21 Apr 2025 16:24:18 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-solid-900.woff2

172.67.206.242

200 OK

79 kB

URL GET HTTP/3
web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-solid-900.woff2
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79444, version 331.524
Size
79 kB (79444 bytes)
Hash
b15db15f746f29ffa02638cb455b8ec0
75a88815c47a249eadb5f0edc1675957f860cca7
7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7

HTTP Headers

GET /wp-content/themes/moviestream/assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: font/woff2
content-length: 79444
last-modified: Thu, 28 Sep 2023 08:45:04 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:13 GMT
cf-cache-status: HIT
age: 707318
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ocetVjD2C7Vo1HlhZuHxaYhj8uhIHbubjk8ptUcc%2Fq3OKPB68ZuhKmqgMNpLvUaY80qBEcKj%2BDWg1j1NVkW%2F11Lu0qTowN2OFAEOHXk%2BzP2haAOpfajt0EMQkcJZqC6gILM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913a8ec5b5691-OSL
alt-svc: h3=":443"; ma=86400

web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-regular-400.woff2

172.67.206.242

200 OK

14 kB

URL GET HTTP/3
web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-regular-400.woff2
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13584, version 331.524
Size
14 kB (13584 bytes)
Hash
c20b5b7362d8d7bb7eddf94344ace33e
260bb01acd44d88dcb7f501a238ab968f86bef9e
6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65

HTTP Headers

GET /wp-content/themes/moviestream/assets/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: font/woff2
content-length: 13584
last-modified: Thu, 28 Sep 2023 08:45:04 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:13 GMT
cf-cache-status: HIT
age: 36528
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2BorKSPCG%2FYGRPp2xNcpFuPrxKQbApiy2VkjguiSvKyhDE%2BAoYF5ZVh0lUwUIrlSOZMR8qj%2FHnNJdj%2BQ442Rshu93HKaTY1VLIF%2F68X3%2ByWBgTfVQ6G5M9ELinzqt6xSseI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913a93cc65691-OSL
alt-svc: h3=":443"; ma=86400

web.stagatv.com/

172.67.206.242

0 B

URL GET
web.stagatv.com/
IP
172.67.206.242:0
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
vary: accept,content-type
x-litespeed-tag: 44e_HTTP.200
link: <https://web.stagatv.com/wp-json/>; rel="https://api.w.org/"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3cBcOfa2bobfB0iLZclLwCXdm2s4XL2GEbV6Uk1VsZoWt3R9um39p1zg45ffNObEucxkRlHz5x%2BdVMPr6rInLa7rm4r%2FJp5WPZobuX027S%2F8FNg%2FblGpTSaD0WvngNQFEfQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913a84b6f5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web.stagatv.com/

172.67.206.242

0 B

URL GET
web.stagatv.com/
IP
172.67.206.242:0
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
vary: accept,content-type
x-litespeed-tag: 44e_HTTP.200
link: <https://web.stagatv.com/wp-json/>; rel="https://api.w.org/"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5PhOD0hHi0QuAqdSFv45vKrsIvux3AZ6JXeBVcFBh9h5qS%2FerUARZNUFBQ5Q2TXasuRvt62FhT1Z3%2FBq7b3R0YKHkkXuqd8gWEXHBWnTuvVzcEwOL%2F%2BLqnlRwdPail6K1tM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913a88bcc5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web.stagatv.com/wp-content/plugins/litespeed-cache/guest.vary.php

172.67.206.242

7.9 kB

URL
web.stagatv.com/wp-content/plugins/litespeed-cache/guest.vary.php
IP
172.67.206.242:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
JSON text data
Size
7.9 kB (7926 bytes)
Hash
e2bb2c7e02e214822b4ffffc314ca27e
2d193e2847595361f1b0ce151dfd28c2f855c510
76fb65f605df2b2d124684c3c4ec3e0c75fdf013b2727af6cdb68b73b5c8a9bb

HTTP Headers

POST /wp-content/plugins/litespeed-cache/guest.vary.php HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.stagatv.com/
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-litespeed-cache-control: no-cache
set-cookie: _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; expires=Sun, 28-Apr-2024 19:46:04 GMT; Max-Age=172800; path=/; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pj4%2BZBg7v42NqxOV8wRZYv5xDUhcTnxOpAcFz9HTUCMANAopCvduyAZgjfdTLBUNLqLCX0gKGhT%2FO7HK16NmmXY5r6mmi8Gq6X%2BLCEtaWwNIkTUMOaGC4%2FAIIEd4U%2BGGFGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913a9cda15691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i1.wp.com/web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png

192.0.77.2

200 OK

3.3 kB

URL GET HTTP/3
i1.wp.com/web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.3 kB (3282 bytes)
Hash
7e7adff495f821a553f12f352b9e5e05
92734dc093f1dc856cf08a8cafe335524cfb5541
eb3640dd8d61a9790aa05a46aa219987b9621325dc0fbddbe52353be5810e666

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 3282
last-modified: Sun, 17 Mar 2024 11:29:05 GMT
expires: Tue, 17 Mar 2026 23:29:05 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png>; rel="canonical"
x-content-type-options: nosniff
etag: "3e185a431121237d"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/03/Elsbeth-season-1.jpg?resize=200,300

192.0.77.2

200 OK

9.0 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/03/Elsbeth-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
9.0 kB (8952 bytes)
Hash
1718f3198d780142111ad8dc95ce9714
cc0936e46ca2eb10521416090845809e2fe3df8d
a5994569692c8eaa6235d3addc601eb58e1095c69564a92d459c3333f98e05a9

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/Elsbeth-season-1.jpg?resize=200,300 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 8952
last-modified: Sun, 17 Mar 2024 11:43:34 GMT
expires: Tue, 17 Mar 2026 23:43:34 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/Elsbeth-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a4a0e0b17cb00502"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg?resize=200,300

192.0.77.2

200 OK

7.4 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.4 kB (7414 bytes)
Hash
ec7b6b89d4d40b73121b3bc0f0fd3aa4
8bacd4e5eca109386514d5ed41a1751916342a22
011f486a4c25a872aef006e2e9bb67336c84cd67dd1216ae5a37678f16d14752

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg?resize=200,300 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 7414
last-modified: Wed, 17 Apr 2024 18:42:20 GMT
expires: Sat, 18 Apr 2026 06:42:20 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "2da9e9a72ece0672"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg?resize=60,90

192.0.77.2

200 OK

1.1 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1124 bytes)
Hash
045c6100629176e80009905b000a684b
24f0c3e5d8d4f30378d56a4424374c863e9b6c65
a7d78417d05e3f1f19f6430b70485c20ad031801230b61d99bd2f39496eae63a

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg?resize=60,90 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 1124
last-modified: Sun, 21 Apr 2024 07:03:07 GMT
expires: Tue, 21 Apr 2026 19:03:07 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0899bcae83f0ce19"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg?resize=200,300

192.0.77.2

200 OK

2.9 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.9 kB (2880 bytes)
Hash
f30d2880bdc76f51f385d93be5700782
f2ed4f0cd371c1bcffdcca12dd14c9a59677863b
4c357972dc51591b532981eeba616c49160a4281d31e7b61e6dd9a82c88477f0

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg?resize=200,300 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 2880
last-modified: Fri, 26 Apr 2024 05:59:13 GMT
expires: Sun, 26 Apr 2026 17:59:13 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "427a031a797b4985"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg?resize=60,90

192.0.77.2

200 OK

416 B

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
416 B (416 bytes)
Hash
a552ccf9c28f0cb144ed4dcd533d4277
7522d16528ccc5f0c72d2fcaa0050a346321f8aa
20c7034de137dded156cb358d38b2c631eb173679872909f2900a1756b1cd2e7

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg?resize=60,90 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 416
last-modified: Thu, 25 Apr 2024 00:04:40 GMT
expires: Sat, 25 Apr 2026 12:04:40 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0d177eaf758e2047"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg?resize=60,90

192.0.77.2

200 OK

1.5 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.5 kB (1498 bytes)
Hash
78803a9bd3a90fc97e628144fd189bb0
88f31a61535060a4195ec26534cf8007c5d38ff0
2e6e4f3c1230d771b871b43c073dbcfc770036cb705165336df2d039a005f019

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg?resize=60,90 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 1498
last-modified: Sun, 07 Apr 2024 00:57:08 GMT
expires: Tue, 07 Apr 2026 12:57:08 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a3eca2e81cfa5f32"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

www.stagatv.com/wp-content/uploads/2020/04/stagatv-main-image.png

172.67.206.242

301 Moved Permanently

167 B

URL GET HTTP/3
www.stagatv.com/wp-content/uploads/2020/04/stagatv-main-image.png
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

HTTP Headers

GET /wp-content/uploads/2020/04/stagatv-main-image.png HTTP/1.1
Host: www.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: text/html
content-length: 167
location: https://web.stagatv.com/wp-content/uploads/2020/04/stagatv-main-image.png
cache-control: max-age=3600
expires: Fri, 26 Apr 2024 20:46:04 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CaSrta1SCv9BQMKWiuzwmMmARKr%2BdNAek1fOZevtcyvd2tMHOt79YxhrDoyHVUTO39Crd9bGOGqWk2%2FBmBP6uaH8OM5sSt9aoQXLdg7tAAeJnXeMpM0FBvwcBMkzG4%2Fu%2FZg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913aabf2b5691-OSL
alt-svc: h3=":443"; ma=86400

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg?resize=60,90

192.0.77.2

200 OK

1.4 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.4 kB (1386 bytes)
Hash
8198bc21ad07f6b31df6c01139923cd9
a8193e96843ca3c5f15e17aa4240d0f803c0cb8d
7e22c6784354f189d2b4de7f01a17a31e63f6bb7ef3e206ec2110a0d0c713f5a

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg?resize=60,90 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: image/webp
content-length: 1386
last-modified: Fri, 19 Apr 2024 13:02:04 GMT
expires: Mon, 20 Apr 2026 01:02:04 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "98ceb15d7938e979"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-125408543-1

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-125408543-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73340 bytes)
Hash
7e20cb88c1f8cf4ef1faf2964890ded9
71141843d675970be408f016f0f0a962f8754ba9
8b24974e4542c5ffdb3f3a98383c1378f896598bf4e834a6e50712d492c26bf2

HTTP Headers

GET /gtag/js?id=UA-125408543-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 19:46:04 GMT
expires: Fri, 26 Apr 2024 19:46:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73340
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c

142.250.74.168

200 OK

101 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
101 kB (100711 bytes)
Hash
ded8b4c56c6034c1d8527788f55bedc7
01141e928112dadb53d2b8a8b3a6d43ad6cb98a7
9ad79582f5c8b3a826371c8e34fbc93395746ad978fce9a942984de1db14eb25

HTTP Headers

GET /gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 19:46:04 GMT
expires: Fri, 26 Apr 2024 19:46:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100711
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

nabauxou.net/tag.min.js

139.45.197.245

200 OK

28 kB

URL GET HTTP/2
nabauxou.net/tag.min.js
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectnabauxou.net
Fingerprint5C:68:BC:04:67:32:92:60:99:B0:5D:39:78:E9:FE:AD:6F:58:7A:1C
ValidityFri, 15 Mar 2024 05:26:30 GMT - Thu, 13 Jun 2024 05:26:29 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (28088 bytes)
Hash
f6571639f64e969eb671bc5ecd9c7d2c
cee33075500377f6f8504a7ec57d1aa591292373
af879f8456aa4a3f46dcd37ec6f6a5aeec7a9b5309e85d83b9867cd4b0a7a872

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: nabauxou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: text/javascript; charset=utf-8
content-length: 28088
content-encoding: br
x-trace-id: 549c211495b9be54fb1aaa40e058eda9
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 26 Apr 2024 13:38:20 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=00804a2226814510f1bdb18591dc76e5

139.45.195.8

65 B

URL
my.rtmark.net/gid.js?userId=00804a2226814510f1bdb18591dc76e5
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON text data
Size
65 B (65 bytes)
Hash
7e33a9339b203fe9db65c03f73d6d67e
df387cf7624fbf75779182d11935f01fec8ca4bc
dc61727f3762dbb37747f0be48b98fadd8d71ca88f16dc2a70c6a8576ed313e0

HTTP Headers

GET /gid.js?userId=00804a2226814510f1bdb18591dc76e5 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://web.stagatv.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804a2226814510f1bdb18591dc76e5; expires=Sat, 26 Apr 2025 19:46:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-KJFELQY1RT

142.250.74.168

200 OK

87 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-KJFELQY1RT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
87 kB (86690 bytes)
Hash
e1fa3f5a828ab7f3f9678e48d9a5349b
ef1841d5596504d4340a7618dfc64c75882fc35a
549422bf1d10593061a2fec52ba48525b75bd6367126543c2807aabc5cc63557

HTTP Headers

GET /gtag/js?id=G-KJFELQY1RT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 19:46:05 GMT
expires: Fri, 26 Apr 2024 19:46:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86690
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/css/swiper.min.css?ver=4.5.1

104.17.24.14

200 OK

2.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/css/swiper.min.css?ver=4.5.1
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19533)
Size
2.6 kB (2588 bytes)
Hash
1a1424b0f9a102a7c2bbc06871d4e4f9
9014b2fdf02d67947d2dd1c06df863ecbf672245
0c161dae3ec1c4a337b2531ea815565f6a2dc7bc787aaa074490ac483274371c

HTTP Headers

GET /ajax/libs/Swiper/4.5.1/css/swiper.min.css?ver=4.5.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: text/css; charset=utf-8
content-length: 2588
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-4d58"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1271702
expires: Wed, 16 Apr 2025 19:46:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fksuh6x5rOp3Pb%2B06Cz9e8lfLa7uiScuzzhIebvrVTm6gDPcjtqPeGGMg3hYMtQTm6T%2FuCp%2F21oBU7gPbIMCoh21%2Bhmgt2ZmwRq1UeFd0e2XogX6w4pT1D9ut%2FV%2Fxb9BgeMAlmuN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a913aea888b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.topcreativeformat.com/b1a6d885a70de6779f854f733db30279/invoke.js

192.243.61.225

200 OK

12 kB

URL GET HTTP/1.1
www.topcreativeformat.com/b1a6d885a70de6779f854f733db30279/invoke.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjecttopcreativeformat.com
Fingerprint6D:98:D9:61:FC:CF:D9:8C:FE:5E:1C:15:5A:A5:F2:28:38:04:A4:A4
ValidityWed, 20 Mar 2024 07:51:41 GMT - Tue, 18 Jun 2024 07:51:40 GMT

File type
JavaScript source, ASCII text, with very long lines (31301), with no line terminators
Size
12 kB (11844 bytes)
Hash
81653b31d13231a51d67badcba880d5a
41fd4487a0a2f9030879193f764f67350065d6d3
f2c6e470da98c4ca4386c9d4fb43582fed125e730e481e6d6462aa63a5727094

HTTP Headers

GET /b1a6d885a70de6779f854f733db30279/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 19:46:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d2641fda6f40a8480ce903d8fa38d699
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

web.stagatv.com/wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee

172.67.206.242

200 OK

51 kB

URL GET HTTP/3
web.stagatv.com/wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
51 kB (51198 bytes)
Hash
637a582b9a6db419ec5fe14c8ca0df69
bfb6f641b3c6b306ae134a73dc97380d3d9ed9ce
8e4f46e8c47ceb6add2611db13bf5a679f3fffaac1a5f31c5966a0f685971093

HTTP Headers

GET /wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=259197
last-modified: Fri, 26 Apr 2024 00:28:39 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C2pSYMwnU%2FLp88dKgCamsx%2FdKDkRyR3iYh0SK0fPreeNX6XpQbp43xuQ%2FtTq0XaeirTxS5LX7tcYtmigPyf%2BI7XYJ2HesMZBK5y8wASmOf%2Fb4XKuRF1FuEu8jFRhMDkE3mA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913ae7d3a56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=UA-125408543-1

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-125408543-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73339 bytes)
Hash
adf97e99b816b9257e24eb364a23c994
8c333e22ba924744d78612f71a49a18bc96bdcfa
e1ffa8f004e73fb6b36b5919fad2197089ddd6f790eaf21b44589403450c434d

HTTP Headers

GET /gtag/js?id=UA-125408543-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 19:46:05 GMT
expires: Fri, 26 Apr 2024 19:46:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

web.stagatv.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js

172.67.206.242

200 OK

15 kB

URL GET HTTP/3
web.stagatv.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
JavaScript source, ASCII text, with very long lines (1392)
Size
15 kB (15084 bytes)
Hash
9593c634b81c031342cbe0fa03903d47
dd68ee9d73731b22fb7252f66be8bea5d17227c7
d7bdba02afa8c04c13f280c71a50f8c8186c883711c5dabbd13566dd738bff0a

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:04 GMT
content-type: application/javascript
last-modified: Tue, 05 Mar 2024 18:28:48 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:14 GMT
cf-cache-status: HIT
age: 1725945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qYwN5bmfGcWXef7XZxOT8CTgFXujnJwFZ%2BXp4%2B24aBhthNGpLbZ0MP2u3cRzznrVok1LitkH1Zxa4nrn7pIGdlFrMhXBfbNOxHTz3I8O%2BJWFMJS8ukm5iSFVkmXSoAzdOko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913aa4e635691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web.stagatv.com/wp-content/uploads/2024/04/tele.jpg.webp

172.67.206.242

200 OK

7.9 kB

URL GET HTTP/3
web.stagatv.com/wp-content/uploads/2024/04/tele.jpg.webp
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 612x612, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.9 kB (7906 bytes)
Hash
219ff1f8c6627f44729f7ca682ec2b8d
db6ac1b99298be456f42968f458e3eb238b1ec40
cc39e45e0cf1f0877fd1df4f4d9e484027ed931e567ca3950c76129b1b061237

HTTP Headers

GET /wp-content/uploads/2024/04/tele.jpg.webp HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 7906
last-modified: Sat, 13 Apr 2024 02:17:58 GMT
cache-control: max-age=31557600
expires: Sun, 13 Apr 2025 08:18:19 GMT
cf-cache-status: HIT
age: 1155019
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vXm3qRvK9eCpAjkChG9r2f6DkWTe5VCojsnRpaOcVVDPccmXzGjEXmED2KjPZwS2txtXN8Ot9vTc2PScwBDnE9PW8C%2BgeKW3A8Ldp9IVQAnLAOGUKO9uj02Npo%2F6abKFHFA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b00f5b56c7-OSL
alt-svc: h3=":443"; ma=86400

i2.wp.com/image.tmdb.org/t/p/w1280/vTlK3chwsEToSoQJYUcJaHlNhIf.jpg?resize=1280%2C500

192.0.77.2

200 OK

22 kB

URL GET HTTP/2
i2.wp.com/image.tmdb.org/t/p/w1280/vTlK3chwsEToSoQJYUcJaHlNhIf.jpg?resize=1280%2C500
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x500, Scaling: [none]x[none], YUV color, decoders should clamp
Size
22 kB (22266 bytes)
Hash
d657ad578909c52084761a2451f437b1
01fa57bf5df541570d1dacbf6b8c2749f94bd622
073b087f4a5703f4b5fd38373ee7b9a9c0501d3414988373c30411f8b195d66f

HTTP Headers

GET /image.tmdb.org/t/p/w1280/vTlK3chwsEToSoQJYUcJaHlNhIf.jpg?resize=1280%2C500 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 22266
last-modified: Tue, 23 Apr 2024 08:30:22 GMT
expires: Thu, 23 Apr 2026 20:30:22 GMT
cache-control: public, max-age=63115200
link: <http://image.tmdb.org/t/p/w1280/vTlK3chwsEToSoQJYUcJaHlNhIf.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "54c3742a100309cf"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i2.wp.com/image.tmdb.org/t/p/w1280/e7aYqV8SvNrSri45RwzXymSwm6d.jpg?resize=1280%2C500

192.0.77.2

200 OK

18 kB

URL GET HTTP/2
i2.wp.com/image.tmdb.org/t/p/w1280/e7aYqV8SvNrSri45RwzXymSwm6d.jpg?resize=1280%2C500
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x500, Scaling: [none]x[none], YUV color, decoders should clamp
Size
18 kB (17854 bytes)
Hash
7f27c6589fdbb6c56da558b44a212629
8deac0ceca01fd5f66f6c239bd19de1bf37e2a29
d9004e2a967cfc5d5c033fc3af511283dc1e56a70c1f1590b8df0f645d349ecf

HTTP Headers

GET /image.tmdb.org/t/p/w1280/e7aYqV8SvNrSri45RwzXymSwm6d.jpg?resize=1280%2C500 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 17854
last-modified: Fri, 26 Apr 2024 07:11:23 GMT
expires: Sun, 26 Apr 2026 19:11:23 GMT
cache-control: public, max-age=63115200
link: <http://image.tmdb.org/t/p/w1280/e7aYqV8SvNrSri45RwzXymSwm6d.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "826f31024cc28cc8"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-solid-900.woff2

172.67.206.242

200 OK

79 kB

URL GET HTTP/3
web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-solid-900.woff2
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79444, version 331.524
Size
79 kB (79444 bytes)
Hash
b15db15f746f29ffa02638cb455b8ec0
75a88815c47a249eadb5f0edc1675957f860cca7
7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7

HTTP Headers

GET /wp-content/themes/moviestream/assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: font/woff2
content-length: 79444
last-modified: Thu, 28 Sep 2023 08:45:04 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:13 GMT
cf-cache-status: HIT
age: 707319
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aRbjNQhGqAT9ZJE9hK0fjDkLkiDLPRaeXc717Dnx7V6Ew5ze%2BPB7BwHGDYvY52PbS1X2hwOnZKYnIjDqlm3W1SeRGwWkQaoTcemYeN080UYPsu5H9BaG8fKaJ8izk3ERe%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b02f8c56c7-OSL
alt-svc: h3=":443"; ma=86400

tzegilo.com/stattag.js

172.67.193.52

200 OK

49 kB

URL GET HTTP/3
tzegilo.com/stattag.js
IP
172.67.193.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1
ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT

File type
JavaScript source, ASCII text, with very long lines (18486)
Size
49 kB (49433 bytes)
Hash
70ebd404c2e1e7bad13998538b56887c
86e57af8ba3cfc2c004da3311835f6b54ba6d848
d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5767
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6m8BhgwiLqw7C5IOHezewYRBQ8rj7%2F%2BQUdH0i9juabLB4Txz4KyF%2FRfer32iC9GF%2F47gmwwKqtrp35U4kDSKr479Tnm4l8kPca9%2B4AnHuQUwgtikYELTecuqHDuPaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913ae9da6568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i1.wp.com/image.tmdb.org/t/p/w1280/7ViwIWGGrRs8TTwyMH8tz6cXyOw.jpg?resize=1280%2C500

192.0.77.2

200 OK

85 kB

URL GET HTTP/2
i1.wp.com/image.tmdb.org/t/p/w1280/7ViwIWGGrRs8TTwyMH8tz6cXyOw.jpg?resize=1280%2C500
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x500, Scaling: [none]x[none], YUV color, decoders should clamp
Size
85 kB (84804 bytes)
Hash
af5e23538b136bf64fa9ae6a728dff29
1589f7a0350eeaecbc12dd8fdcc5d5c136e7855d
58a1c8064e1eabd69ead3af25b0cd499c62269d5236d7b569ad7c8fd3242df07

HTTP Headers

GET /image.tmdb.org/t/p/w1280/7ViwIWGGrRs8TTwyMH8tz6cXyOw.jpg?resize=1280%2C500 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 84804
last-modified: Fri, 26 Apr 2024 06:54:00 GMT
expires: Sun, 26 Apr 2026 18:54:00 GMT
cache-control: public, max-age=63115200
link: <http://image.tmdb.org/t/p/w1280/7ViwIWGGrRs8TTwyMH8tz6cXyOw.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e2ac28ce57f75691"
vary: Accept
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-regular-400.woff2

172.67.206.242

200 OK

14 kB

URL GET HTTP/3
web.stagatv.com/wp-content/themes/moviestream/assets/webfonts/fa-regular-400.woff2
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13584, version 331.524
Size
14 kB (13584 bytes)
Hash
c20b5b7362d8d7bb7eddf94344ace33e
260bb01acd44d88dcb7f501a238ab968f86bef9e
6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65

HTTP Headers

GET /wp-content/themes/moviestream/assets/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/wp-content/litespeed/css/b66a1e002ccd3b93d07097460a5cc987.css?ver=947ee
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: font/woff2
content-length: 13584
last-modified: Thu, 28 Sep 2023 08:45:04 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:13 GMT
cf-cache-status: HIT
age: 36529
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IfUWhVBzDBgXfWW999A4o25mJzQiHPSn0pjeddOkH0pChZB90ikHCNesCLHaWouP4UmDx2j0oJx%2BJAtO3usH1uyBq%2FE26Yv4ChBJ5uahu4OP2Yadxz3AMBu6VJ48Bu7OtX0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b0780a56c7-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js

104.17.25.14

200 OK

29 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65269)
Size
29 kB (28993 bytes)
Hash
2ac19265b38d14235141d184bca54d9a
c725eb5a33d093e331e25c3a5ef1272b0f1f648c
e2c1132a1877692ca2e8d46203eaae9cf6936b0a9230341c6bfc4b5aedbb1e0e

HTTP Headers

GET /ajax/libs/Swiper/4.5.1/js/swiper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 28993
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-1f6e9"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 60879
expires: Wed, 16 Apr 2025 19:46:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y08%2FuJh7ixoqR2Fd95JrLIXyVH8Na6zaO3Qv8o7aM9YLlpIuehiNcxTFKbPTBuWqLjGChf8EoN82i91O893x0F0n4kJ5iELAUvVumVPCRp2PU0aJ%2BUsd40XINCNWv8mMOlZKCCrU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a913b0beafb500-OSL
alt-svc: h3=":443"; ma=86400

web.stagatv.com/

172.67.206.242

0 B

URL GET
web.stagatv.com/
IP
172.67.206.242:0
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
vary: accept,content-type
x-litespeed-tag: 44e_HTTP.200
link: <https://web.stagatv.com/wp-json/>; rel="https://api.w.org/"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QkZ8UcW2Nvh9OnYTwaEXy9mRXfJV1PdXi2F2%2FZIo4gQr%2BfZ8r4tnnyE%2BQH%2FBp1l6t9QMf3ClI3%2FRfshnNnw8nVS%2Fk%2BCP6UPXAG4Hn18z%2BM92mMqEB5QT7ulEjOlpKeF3g%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913afff5356c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Knuckles-2024-season-1.jpg?resize=200,300

192.0.77.2

200 OK

9.2 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Knuckles-2024-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
9.2 kB (9210 bytes)
Hash
1ef2b9295d714de8f95360cb97f86c63
8904501e83149631813905b93ab1ef31833e6437
7bb2c5bf07d41b6fe7e60c14cad124fca0cd6c17b44915430b7ba35ec67d3790

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/Knuckles-2024-season-1.jpg?resize=200,300 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 9210
last-modified: Fri, 26 Apr 2024 09:14:25 GMT
expires: Sun, 26 Apr 2026 21:14:25 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/Knuckles-2024-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "2ce0595b6e98127c"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

web.stagatv.com/wp-content/litespeed/js/ccb76dcf1bcc4d71e944ac9b85f7b1c3.js?ver=947ee

172.67.206.242

200 OK

32 kB

URL GET HTTP/3
web.stagatv.com/wp-content/litespeed/js/ccb76dcf1bcc4d71e944ac9b85f7b1c3.js?ver=947ee
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
JavaScript source, ASCII text, with very long lines (44168)
Size
32 kB (31910 bytes)
Hash
ea43b311aca04c9a30f917a840cd544f
4d59687e9cef2dc27d273081595c0fe93837f326
ce3e088d3643d7d2b12b9a86b92bb7478f5bbf06c9be961931d5ea343a382414

HTTP Headers

GET /wp-content/litespeed/js/ccb76dcf1bcc4d71e944ac9b85f7b1c3.js?ver=947ee HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=66380
last-modified: Fri, 26 Apr 2024 00:28:39 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PpXPHNop%2BUvv5tynPCi8y6UsJVp7AwdkLO4UI06x4aRJv5TWBEq0dgx%2B7owNmfd5umufo6mDBG%2FpUjlxrjKgX4XBjrRreoRCuV1hvllhhxYZdN%2Bdzgei1rXFjQV52Rrrkz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b0b86c56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714115212-8414-mXB2XGbKoRx9LHsCK9RIs9tfGxa.jpg?resize=200,300

192.0.77.2

200 OK

10 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714115212-8414-mXB2XGbKoRx9LHsCK9RIs9tfGxa.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
10 kB (10522 bytes)
Hash
9ffe56feecee8c6ba0aea158015ee06e
e981094e2366b546cc00826cb0bf7c69a3252b57
6b8f7126812fbef9872cd4872b7d991faa1ae64e8d9a0845716a9fc53118db74

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714115212-8414-mXB2XGbKoRx9LHsCK9RIs9tfGxa.jpg?resize=200,300 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 10522
last-modified: Fri, 26 Apr 2024 07:06:59 GMT
expires: Sun, 26 Apr 2026 19:06:59 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714115212-8414-mXB2XGbKoRx9LHsCK9RIs9tfGxa.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "95d762b079fb5cae"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg?resize=200,300

192.0.77.2

200 OK

7.4 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.4 kB (7414 bytes)
Hash
ec7b6b89d4d40b73121b3bc0f0fd3aa4
8bacd4e5eca109386514d5ed41a1751916342a22
011f486a4c25a872aef006e2e9bb67336c84cd67dd1216ae5a37678f16d14752

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg?resize=200,300 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 7414
last-modified: Wed, 17 Apr 2024 18:42:20 GMT
expires: Sat, 18 Apr 2026 06:42:20 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/Sugar-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "2da9e9a72ece0672"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Franklin-Season-1.jpg?resize=200,300

192.0.77.2

200 OK

13 kB

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Franklin-Season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
13 kB (13438 bytes)
Hash
81edc4023ce0c0c82bcfd3acb4a8791c
c179d5b5ebbcae9bf5411a07ea67ab04abbc2b08
0a86a84c2ec63d85e83ace28a48e33c1eee5daac004c5cce291e5896877451e6

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/Franklin-Season-1.jpg?resize=200,300 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 13438
last-modified: Fri, 12 Apr 2024 02:58:07 GMT
expires: Sun, 12 Apr 2026 14:58:07 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/Franklin-Season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "19fa2d0aeb3060c5"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

web.stagatv.com/

172.67.206.242

51 kB

URL GET
web.stagatv.com/
IP
172.67.206.242:0
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
HTML document, ASCII text, with very long lines (53063)
Size
51 kB (51326 bytes)
Hash
7e2058bfb02d1aa9ff1395a8c7710adb
7e46d913b2b1e6a866e819e149478f901e31f959
1b14f50c9744b4e0c561949c3df39593bf58f69cbf5815e6b586cc111663829b

HTTP Headers

GET / HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:03 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
vary: accept,content-type
link: <https://web.stagatv.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-tag: 44e_HTTP.200,44e_PGSRP,44e_home,44e_URL.6666cd76f96956469e7be39d750cc7d9,44e_F,44e_guest,44e_,44e_MIN.b66a1e002ccd3b93d07097460a5cc987.css,44e_MIN.ccb76dcf1bcc4d71e944ac9b85f7b1c3.js
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hMtDCPCPAQCcU%2B%2F4d9lH1cab0UGuInAELqYIrLw6fyhGOKO8lj%2BV2W7TTqLzqpCpIECzNZs9Wncbd9306qZsJTQjzs2kO7u8S8Q2zYiAUxYtGZLwV0IRTy0DLkYUzrhLRdQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913a1fde156b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

web.stagatv.com/

172.67.206.242

0 B

URL GET
web.stagatv.com/
IP
172.67.206.242:0
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
vary: accept,content-type
x-litespeed-tag: 44e_HTTP.200
link: <https://web.stagatv.com/wp-json/>; rel="https://api.w.org/"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WJoMTSt2S2I7tXvo8EwN6hpaDFoG0QCdq4qMoS4RvUNea%2BG3A25fO06G9HI0Hq177XAzkUTcrUL7KAPOwcCk7mKYkyUbUpFHhn2a74nJvti4BwS87%2FdoVuyGug%2FfZKbDIIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913b00f5856c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714112152-5991-cjQzJ9xFdaN9KAwu7HUImIgbc2Y.jpg?resize=200,300

192.0.77.2

200 OK

8.1 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714112152-5991-cjQzJ9xFdaN9KAwu7HUImIgbc2Y.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.1 kB (8056 bytes)
Hash
70191dc4b5539fc2ae4e823469a9ca39
8ea1107dd8a5557e351087d2845191e5d47d44fd
a47d50bbf749f678dcc20446f02fb66a81fb7ffa6124074bd0b4672415b1b3bc

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714112152-5991-cjQzJ9xFdaN9KAwu7HUImIgbc2Y.jpg?resize=200,300 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 8056
last-modified: Fri, 26 Apr 2024 06:15:55 GMT
expires: Sun, 26 Apr 2026 18:15:55 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714112152-5991-cjQzJ9xFdaN9KAwu7HUImIgbc2Y.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "238f626953ce6ef1"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/03/A-Gentleman-in-Moscow-season-1.jpg?resize=200,300

192.0.77.2

200 OK

12 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/03/A-Gentleman-in-Moscow-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
12 kB (12472 bytes)
Hash
bc333e7a890abbd8ed3ca46f622d7754
520bc4322a105b332d7d9656e3a803d46d4fa30b
1a2ec3cef10f873a6629b3f86cc03d6dad45df52f92328d41e79b12f17ec018f

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/A-Gentleman-in-Moscow-season-1.jpg?resize=200,300 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 12472
last-modified: Fri, 19 Apr 2024 08:19:45 GMT
expires: Sun, 19 Apr 2026 20:19:45 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/A-Gentleman-in-Moscow-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6ac56ddb5f3ed37f"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg?resize=200,300

192.0.77.2

200 OK

14 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
14 kB (14370 bytes)
Hash
a37b3cfc8b9207aaf23d6ba3bc384c3b
cff3ad25f80d382891124aaa7937e474b9f6ff37
9172381534b8efa82355af017cf49e7cadecb16a6750f44b1a63f4a073632572

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg?resize=200,300 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 14370
last-modified: Sun, 17 Mar 2024 11:31:21 GMT
expires: Tue, 17 Mar 2026 23:31:21 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c171f8bf9fb7edcc"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Dead-Boy-Detectives-season-1.jpg?resize=200,300

192.0.77.2

200 OK

14 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Dead-Boy-Detectives-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
14 kB (14114 bytes)
Hash
593534af369bec857fb0a6f7df35cf7d
ddc8b574a40ed77b30bc4f6491a0100838392886
28467737f2342c4a514f37045ea3299eb5e6968d9a73a428c0f345af689013bc

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/Dead-Boy-Detectives-season-1.jpg?resize=200,300 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 14114
last-modified: Fri, 26 Apr 2024 05:49:10 GMT
expires: Sun, 26 Apr 2026 17:49:10 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/Dead-Boy-Detectives-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "19bed77ae96b47fc"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg?resize=200,300

192.0.77.2

200 OK

2.9 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.9 kB (2880 bytes)
Hash
f30d2880bdc76f51f385d93be5700782
f2ed4f0cd371c1bcffdcca12dd14c9a59677863b
4c357972dc51591b532981eeba616c49160a4281d31e7b61e6dd9a82c88477f0

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg?resize=200,300 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 2880
last-modified: Fri, 26 Apr 2024 05:59:13 GMT
expires: Sun, 26 Apr 2026 17:59:13 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714111143-1405-p7jyFWiLyHPttqYBFAlLJwtYTYH.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "427a031a797b4985"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714053180-3693-g8ak4QAGLZpqMs3CpnFHWWfIzJQ.jpg?resize=200,300

192.0.77.2

200 OK

11 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714053180-3693-g8ak4QAGLZpqMs3CpnFHWWfIzJQ.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
11 kB (11018 bytes)
Hash
1c1eb43b8ca3b9a5ed8a64f4ffc8d23c
02885a7fce409661bc9588300b6d6671df2efaa8
33f4ecb0d7687dec2f3c8d15a051061cc74de513d13975d4785ef5adc3ce266a

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714053180-3693-g8ak4QAGLZpqMs3CpnFHWWfIzJQ.jpg?resize=200,300 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 11018
last-modified: Thu, 25 Apr 2024 13:53:03 GMT
expires: Sun, 26 Apr 2026 01:53:03 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714053180-3693-g8ak4QAGLZpqMs3CpnFHWWfIzJQ.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "fad1d81a6c2ae64d"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Star-Trek-Discovery-season-5.jpg?resize=200,300

192.0.77.2

200 OK

5.5 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/Star-Trek-Discovery-season-5.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.5 kB (5468 bytes)
Hash
ff4083e361e2ac83cd05ee7a4ceb2cf9
3b928db5d0311f267440ba007ec766292ad6984a
67ea1412f7b0b3ee0f912e4b95f984bdacfa2a8485ac4d2289dccecbb4c63359

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/Star-Trek-Discovery-season-5.jpg?resize=200,300 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 5468
last-modified: Fri, 12 Apr 2024 03:11:35 GMT
expires: Sun, 12 Apr 2026 15:11:35 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/Star-Trek-Discovery-season-5.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8c0be01c931c066c"
vary: Accept
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/web.stagatv.com/wp-content/uploads/2023/10/Chucky-season-3.jpg?resize=200,300

192.0.77.2

200 OK

11 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2023/10/Chucky-season-3.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
11 kB (10556 bytes)
Hash
99ad3259330898c362780ab468c27d98
07cf47be730f0e303bbd705785fa13b5bbca604d
b73513a663d8ee0d2683990893a964218f041e524fa2d0a5b90e110985f5821d

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2023/10/Chucky-season-3.jpg?resize=200,300 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 10556
last-modified: Sun, 17 Mar 2024 12:00:20 GMT
expires: Wed, 18 Mar 2026 00:00:20 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2023/10/Chucky-season-3.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b002e9b0580b5196"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg?resize=60,90

192.0.77.2

200 OK

1.1 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1124 bytes)
Hash
045c6100629176e80009905b000a684b
24f0c3e5d8d4f30378d56a4424374c863e9b6c65
a7d78417d05e3f1f19f6430b70485c20ad031801230b61d99bd2f39496eae63a

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg?resize=60,90 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1124
last-modified: Sun, 21 Apr 2024 07:03:07 GMT
expires: Tue, 21 Apr 2026 19:03:07 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713682968-6733-ic5Hs6zYcM4YUuxyezFUAFQie39.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0899bcae83f0ce19"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg?resize=60,90

192.0.77.2

200 OK

416 B

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
416 B (416 bytes)
Hash
a552ccf9c28f0cb144ed4dcd533d4277
7522d16528ccc5f0c72d2fcaa0050a346321f8aa
20c7034de137dded156cb358d38b2c631eb173679872909f2900a1756b1cd2e7

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg?resize=60,90 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 416
last-modified: Thu, 25 Apr 2024 00:04:40 GMT
expires: Sat, 25 Apr 2026 12:04:40 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713855460-1026-4lhR4L2vzzjl68P1zJyCH755Oz4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0d177eaf758e2047"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713855476-6384-gxVcBc4VM0kAg9wX4HVg6KJHG46.jpg?resize=60,90

192.0.77.2

200 OK

1.3 kB

URL GET HTTP/2
i1.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713855476-6384-gxVcBc4VM0kAg9wX4HVg6KJHG46.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.3 kB (1252 bytes)
Hash
ccdd42b1fb3a5459dbbf2bf480d70be4
623948e46230c565070326275139436e8a8410e0
b377d62125b17260aeeb3e4d806001269a5ca96d7767ce8f61f3206a36333db4

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713855476-6384-gxVcBc4VM0kAg9wX4HVg6KJHG46.jpg?resize=60,90 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1252
last-modified: Thu, 25 Apr 2024 00:02:08 GMT
expires: Sat, 25 Apr 2026 12:02:08 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713855476-6384-gxVcBc4VM0kAg9wX4HVg6KJHG46.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "569801e251d8fa8a"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/03/Palm-Royale-season-1.jpg?resize=200,300

192.0.77.2

200 OK

12 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/03/Palm-Royale-season-1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
12 kB (11544 bytes)
Hash
c6b527307e9ac63f9cea056b041f268c
1f42a0a9ab84d3d2350023f69aa80ff9e580b527
9c804618b94ec6b5de5fd38a318679584f183daa1e812d439dd2d285733276a7

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/Palm-Royale-season-1.jpg?resize=200,300 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 11544
last-modified: Wed, 17 Apr 2024 11:12:53 GMT
expires: Fri, 17 Apr 2026 23:12:53 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/Palm-Royale-season-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c81677e69187aa87"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg?resize=60,90

192.0.77.2

200 OK

1.4 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.4 kB (1386 bytes)
Hash
8198bc21ad07f6b31df6c01139923cd9
a8193e96843ca3c5f15e17aa4240d0f803c0cb8d
7e22c6784354f189d2b4de7f01a17a31e63f6bb7ef3e206ec2110a0d0c713f5a

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg?resize=60,90 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1386
last-modified: Fri, 19 Apr 2024 13:02:04 GMT
expires: Mon, 20 Apr 2026 01:02:04 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713531714-2705-cxevDYdeFkiixRShbObdwAHBZry.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "98ceb15d7938e979"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714122264-2090-w88Obs6wAdhlmYziKXz8EsKDmJs.jpg?resize=60,90

192.0.77.2

200 OK

1.4 kB

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714122264-2090-w88Obs6wAdhlmYziKXz8EsKDmJs.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.4 kB (1408 bytes)
Hash
282eb9ad6d79bede1f2cbe59c45a2797
cb984549056e775ed407986d16cef7c6a7916c6f
89ade6c91676774b9a384e8e038218d9e737ed065fda89f36deb7fa5ef50638d

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714122264-2090-w88Obs6wAdhlmYziKXz8EsKDmJs.jpg?resize=60,90 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1408
last-modified: Fri, 26 Apr 2024 09:07:47 GMT
expires: Sun, 26 Apr 2026 21:07:47 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714122264-2090-w88Obs6wAdhlmYziKXz8EsKDmJs.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4311106815e04e17"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714110057-3649-346ju9C5zy0tkzfQoetOYtM74gw.jpg?resize=60,90

192.0.77.2

200 OK

1.1 kB

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714110057-3649-346ju9C5zy0tkzfQoetOYtM74gw.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1050 bytes)
Hash
f5fcba1a6cbb0e7c0d65a8add0263721
4fd02564d540fdd6c3fe385f6cb342a981b955f0
dbdf607037b57aba2d62f0db77ce7b7aff6692669b3743f6b6367c009d36073c

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714110057-3649-346ju9C5zy0tkzfQoetOYtM74gw.jpg?resize=60,90 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1050
last-modified: Fri, 26 Apr 2024 05:41:13 GMT
expires: Sun, 26 Apr 2026 17:41:13 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714110057-3649-346ju9C5zy0tkzfQoetOYtM74gw.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "966e957269a449c4"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1712887297-7815-AnsSKR9LuK0T9bAOcPVA3PUvyWj.jpg?resize=60,90

192.0.77.2

200 OK

1.5 kB

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1712887297-7815-AnsSKR9LuK0T9bAOcPVA3PUvyWj.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.5 kB (1532 bytes)
Hash
52ff3c08dcd0a2b449c64934beeb8d92
75c38d17143432f96a5e750f9e3b617ae69cc7ee
8b2763bc0f7e541f914e32a65ea4bb5e68c79cd77d166dc4df2a562c6ec09fcf

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1712887297-7815-AnsSKR9LuK0T9bAOcPVA3PUvyWj.jpg?resize=60,90 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1532
last-modified: Sat, 13 Apr 2024 00:00:32 GMT
expires: Mon, 13 Apr 2026 12:00:32 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1712887297-7815-AnsSKR9LuK0T9bAOcPVA3PUvyWj.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "edb6fcf0c3eba99e"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/02/1709016052-4495-7O4iVfOMQmdCSxhOg1WnzG1AgYT.jpg?resize=60,90

192.0.77.2

200 OK

944 B

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/02/1709016052-4495-7O4iVfOMQmdCSxhOg1WnzG1AgYT.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
944 B (944 bytes)
Hash
199e22342e3bb4ef8728cb8b7b83536c
11eec673f5eb2737e34dede8a1e10d437683a230
746457810aaaa031e3d027bf94bec6fa299b48bf5c033afb516f6f1d58de71d3

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/02/1709016052-4495-7O4iVfOMQmdCSxhOg1WnzG1AgYT.jpg?resize=60,90 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 944
last-modified: Sun, 17 Mar 2024 11:29:01 GMT
expires: Tue, 17 Mar 2026 23:29:01 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/02/1709016052-4495-7O4iVfOMQmdCSxhOg1WnzG1AgYT.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "829fc019a8cef4d4"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713786625-1269-sjVWimyIr07Thn7mOpKFc7wHhLC.jpg?resize=60,90

192.0.77.2

200 OK

780 B

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713786625-1269-sjVWimyIr07Thn7mOpKFc7wHhLC.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
780 B (780 bytes)
Hash
d42b2abcc841fa140083af77a0d97fe1
1624a9d4d243113ee6c667e77a14a6246b69ed6c
f5f707d6bb91a7bccdbc3763076145d948d24d04e6009174c4e21763036f6537

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713786625-1269-sjVWimyIr07Thn7mOpKFc7wHhLC.jpg?resize=60,90 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 780
last-modified: Mon, 22 Apr 2024 11:50:46 GMT
expires: Wed, 22 Apr 2026 23:50:46 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713786625-1269-sjVWimyIr07Thn7mOpKFc7wHhLC.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9f06d9ac65852077"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg?resize=60,90

192.0.77.2

200 OK

1.5 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.5 kB (1498 bytes)
Hash
78803a9bd3a90fc97e628144fd189bb0
88f31a61535060a4195ec26534cf8007c5d38ff0
2e6e4f3c1230d771b871b43c073dbcfc770036cb705165336df2d039a005f019

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg?resize=60,90 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1498
last-modified: Sun, 07 Apr 2024 00:57:08 GMT
expires: Tue, 07 Apr 2026 12:57:08 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/1709276886-1601-6d2QSfxD4x0v2kEvhyOm7r797ut.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a3eca2e81cfa5f32"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i2.wp.com/web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg?resize=60,90

192.0.77.2

200 OK

2.4 kB

URL GET HTTP/3
i2.wp.com/web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.4 kB (2362 bytes)
Hash
56aaafb59717fd5fd441903975785237
99cb60f674fca366256f40ce028994135e21e300
7ec094aebd9e70dae366e141d66fa87029bc93ee25525ebd257d46c970e30904

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg?resize=60,90 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 2362
last-modified: Mon, 18 Mar 2024 00:02:16 GMT
expires: Wed, 18 Mar 2026 12:02:16 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/03/BMF-season-3.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7325dc2918c93468"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713126179-8030-JYgbVEMgW53uGVu2NvGJziCoTN.jpg?resize=60,90

192.0.77.2

200 OK

1.3 kB

URL GET HTTP/3
i0.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1713126179-8030-JYgbVEMgW53uGVu2NvGJziCoTN.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.3 kB (1334 bytes)
Hash
9eba23b266d8c6e2fb5826aa3f890f78
ea2e13f3a502de88d806bd16541fdda553dd9bdb
7c188d1823232fc2f984ba88288c959bc1e492f1bc9c275d820186d8f1d0d5c6

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1713126179-8030-JYgbVEMgW53uGVu2NvGJziCoTN.jpg?resize=60,90 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 1334
last-modified: Sun, 14 Apr 2024 20:23:57 GMT
expires: Wed, 15 Apr 2026 08:23:57 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1713126179-8030-JYgbVEMgW53uGVu2NvGJziCoTN.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "97cf4674e7a4cfbb"
vary: Accept
x-nc: HIT arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

web.stagatv.com/wp-content/uploads/2020/04/stagatv-main-image.png

172.67.206.242

200 OK

7.6 kB

URL GET HTTP/3
web.stagatv.com/wp-content/uploads/2020/04/stagatv-main-image.png
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
PNG image data, 300 x 143, 8-bit colormap, non-interlaced
Size
7.6 kB (7617 bytes)
Hash
855bf2613bd0a5cc9dd16fa9dbbbdb78
776300627aa6b39d7320fbc6ebf5faaaa1816400
33d2cbcebb09c7a158b3d0103b11642f092f0937e5ce68f448340ff15ae23f1c

HTTP Headers

GET /wp-content/uploads/2020/04/stagatv-main-image.png HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.stagatv.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.1.1714160765.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/png
content-length: 7617
last-modified: Tue, 27 Jul 2021 06:48:35 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:09 GMT
cf-cache-status: HIT
age: 55653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ARkzkkDlrYPtyfbideRJvcBwA%2FXKe7IHsibVbRoW7gM%2B3W0kzMeuhcR%2B3jjAVuc2AWNQQHU8oqayv7yLPOktZVymg8LKG2vGUqRP5mRnS7vRgDSbbIbnFmQGG3oaR7DiYvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b22a5456c7-OSL
alt-svc: h3=":443"; ma=86400

pixel.wp.com/g.gif?v=ext&blog=151246701&post=0&tz=1&srv=web.stagatv.com&j=1%3A13.3.1&host=web.stagatv.com&ref=&fcp=802&rand=0.3740743345125781

192.0.76.3

200 OK

50 B

URL GET HTTP/3
pixel.wp.com/g.gif?v=ext&blog=151246701&post=0&tz=1&srv=web.stagatv.com&j=1%3A13.3.1&host=web.stagatv.com&ref=&fcp=802&rand=0.3740743345125781
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=151246701&post=0&tz=1&srv=web.stagatv.com&j=1%3A13.3.1&host=web.stagatv.com&ref=&fcp=802&rand=0.3740743345125781 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400

nabauxou.net/tag.min.js

139.45.197.245

200 OK

28 kB

URL GET HTTP/2
nabauxou.net/tag.min.js
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectnabauxou.net
Fingerprint5C:68:BC:04:67:32:92:60:99:B0:5D:39:78:E9:FE:AD:6F:58:7A:1C
ValidityFri, 15 Mar 2024 05:26:30 GMT - Thu, 13 Jun 2024 05:26:29 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (28088 bytes)
Hash
f6571639f64e969eb671bc5ecd9c7d2c
cee33075500377f6f8504a7ec57d1aa591292373
af879f8456aa4a3f46dcd37ec6f6a5aeec7a9b5309e85d83b9867cd4b0a7a872

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: nabauxou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: OAID=00804a2226814510f1bdb18591dc76e5; oaidts=1714160765; syncedCookie=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: text/javascript; charset=utf-8
content-length: 28088
content-encoding: br
x-trace-id: 54e9e8c382fa367bf2b9ba445b931f08
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 26 Apr 2024 13:38:20 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c

142.250.74.168

200 OK

101 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
101 kB (100635 bytes)
Hash
1c91a2d5c789329ff07c4268e0e16bfb
13ad5f687ce51326ccfac0a5bb093f276b5e7388
aed5095753ff7ad683bff25da40e83841003ffa947b734be30aa8fbf30e5ced6

HTTP Headers

GET /gtag/js?id=G-38WTG9ZRV2&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 19:46:05 GMT
expires: Fri, 26 Apr 2024 19:46:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1712736250-8651-ecadxev4EzvZpJrEgLksiBIXHy7.jpg?resize=60,90

192.0.77.2

200 OK

928 B

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1712736250-8651-ecadxev4EzvZpJrEgLksiBIXHy7.jpg?resize=60,90
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 60x90, Scaling: [none]x[none], YUV color, decoders should clamp
Size
928 B (928 bytes)
Hash
81eb5eb28962aad4cbe1112c1c0f0518
f190b00a8807826298b1b47f64700e9da1cd9632
a9edd691c376d406993982f214afa6917ceb4aaadad8f786642e7c0b6b6eced7

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1712736250-8651-ecadxev4EzvZpJrEgLksiBIXHy7.jpg?resize=60,90 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 928
last-modified: Wed, 10 Apr 2024 08:04:28 GMT
expires: Fri, 10 Apr 2026 20:04:28 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1712736250-8651-ecadxev4EzvZpJrEgLksiBIXHy7.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e75159e81f228e25"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

proftrafficcounter.com/stats

18.185.247.192

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.247.192:443
ASN
#16509 AMAZON-02

Requested by
https://web.stagatv.com/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
b0bf20444cf0e9c6cff491b3668e606c
3fa661cfc19d10cda33dbd16d2725d0d2066ede1
2cf2333bb0e36ced173a367b97f986d544abadd09a0199896ba4814f8cb95bc2

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://web.stagatv.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=a209f8f9-c23a-4d56-9319-4f1986e5211b:1:1; expires=Mon, 24 Apr 2034 19:46:05 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

cdn.trafficbass.com/libs/e.js

62.212.82.90

200 OK

3.4 kB

URL GET HTTP/1.1
cdn.trafficbass.com/libs/e.js
IP
62.212.82.90:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
JavaScript source, ASCII text
Size
3.4 kB (3354 bytes)
Hash
298983aca8fdb305836136f285867212
dc7ecf476f2c28961b008d9ce6917d5cf852dd2f
0637427601544bf4dc9e3e0385f502bce87ce1e31a061c46748355f82bc89f75

HTTP Headers

GET /libs/e.js HTTP/1.1
Host: cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:05 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 11 Dec 2023 15:07:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"657725a4-19a8"
Expires: Sat, 27 Apr 2024 19:46:05 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip

i1.wp.com/web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png

192.0.77.2

200 OK

3.3 kB

URL GET HTTP/3
i1.wp.com/web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.3 kB (3282 bytes)
Hash
7e7adff495f821a553f12f352b9e5e05
92734dc093f1dc856cf08a8cafe335524cfb5541
eb3640dd8d61a9790aa05a46aa219987b9621325dc0fbddbe52353be5810e666

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: image/webp
content-length: 3282
last-modified: Sun, 17 Mar 2024 11:29:05 GMT
expires: Tue, 17 Mar 2026 23:29:05 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-192x192.png>; rel="canonical"
x-content-type-options: nosniff
etag: "3e185a431121237d"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i1.wp.com/web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-32x32.png

192.0.77.2

200 OK

560 B

URL GET HTTP/3
i1.wp.com/web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-32x32.png
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
560 B (560 bytes)
Hash
2219c1de754f418a79eff6b7f9ebbacf
68372b4e51f36ad20b4bfaf49d4e0c6cd77e115d
a02f8f94222ef45b9fa227e8266817101c914e1b87b7801e18013f5b2d11b5f8

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-32x32.png HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: image/webp
content-length: 560
last-modified: Sun, 17 Mar 2024 11:29:06 GMT
expires: Tue, 17 Mar 2026 23:29:06 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2019/05/cropped-received_433516973837625-1-32x32.png>; rel="canonical"
x-content-type-options: nosniff
etag: "abef52074a0baae2"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

z.cdn.trafficbass.com/load?z=1783875898&div=zone_1783875898&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1442&pl=5&mi=2&hc=48&n=1714160766049&v=true&i=true&url=web.stagatv.com%2F&vc=0&ti=StagaTV%20-%20Download%20the%20Latest%20Movies%2C%20TV%20Series%2C%20Trailers&zyx=4183453547

213.227.149.183

200 OK

3.7 kB

URL GET HTTP/2
z.cdn.trafficbass.com/load?z=1783875898&div=zone_1783875898&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1442&pl=5&mi=2&hc=48&n=1714160766049&v=true&i=true&url=web.stagatv.com%2F&vc=0&ti=StagaTV%20-%20Download%20the%20Latest%20Movies%2C%20TV%20Series%2C%20Trailers&zyx=4183453547
IP
213.227.149.183:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
JavaScript source, ASCII text, with very long lines (579)
Size
3.7 kB (3726 bytes)
Hash
e2598f42e20dbe4fd0e2650e62fb3003
452403bb295779a06448c1f52667a8e90fe7f140
b0233d0ebcd978b5d1cd3e2e807f09de42cbf3652c3fca92b1c6610208fbd984

HTTP Headers

GET /load?z=1783875898&div=zone_1783875898&cw=1280&ch=1024&sr=1280x1024&bh=2&tl=1442&pl=5&mi=2&hc=48&n=1714160766049&v=true&i=true&url=web.stagatv.com%2F&vc=0&ti=StagaTV%20-%20Download%20the%20Latest%20Movies%2C%20TV%20Series%2C%20Trailers&zyx=4183453547 HTTP/1.1
Host: z.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 3726
content-encoding: br
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: -1
p3p: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
vary: Accept-Encoding
set-cookie: AU=9f61b351443c085d; Expires=Fri, 25 Apr 2036 21:00:10 GMT; Path=/; HttpOnly; SameSite=None; Secure
sC=1; expires=Sun, 28 Apr 2024 21:00:13 GMT; path=/;
X-Firefox-Spdy: h2

z.cdn.trafficbass.com/event?z=1783875898&m=1521559889&n=5701973280321569210&u=9f61b351443c085d&t=

213.227.149.183

400 Bad Request

35 B

URL GET HTTP/2
z.cdn.trafficbass.com/event?z=1783875898&m=1521559889&n=5701973280321569210&u=9f61b351443c085d&t=
IP
213.227.149.183:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
GIF image data, version 89a, 1 x 1
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /event?z=1783875898&m=1521559889&n=5701973280321569210&u=9f61b351443c085d&t= HTTP/1.1
Host: z.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: AU=9f61b351443c085d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 400 Bad Request
server: nginx
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: image/gif
content-length: 35
X-Firefox-Spdy: h2

z.cdn.adtarget.market/smc?s=176&u=9f61b351443c085d

5.79.65.76

204 No Content

0 B

URL GET HTTP/2
z.cdn.adtarget.market/smc?s=176&u=9f61b351443c085d
IP
5.79.65.76:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectadtarget.market
Fingerprint1E:2C:F3:CA:5D:80:5F:5D:F0:21:3B:85:7A:3D:8A:EA:BF:23:1C:28
ValidityFri, 08 Mar 2024 08:19:18 GMT - Thu, 06 Jun 2024 08:19:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /smc?s=176&u=9f61b351443c085d HTTP/1.1
Host: z.cdn.adtarget.market
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Fri, 26 Apr 2024 19:44:06 GMT
X-Firefox-Spdy: h2

rtb.cdn.adtarget.market/smc?s=4&u=9f61b351443c085d

5.79.65.76

204 No Content

0 B

URL GET HTTP/2
rtb.cdn.adtarget.market/smc?s=4&u=9f61b351443c085d
IP
5.79.65.76:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectadtarget.market
Fingerprint1E:2C:F3:CA:5D:80:5F:5D:F0:21:3B:85:7A:3D:8A:EA:BF:23:1C:28
ValidityFri, 08 Mar 2024 08:19:18 GMT - Thu, 06 Jun 2024 08:19:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /smc?s=4&u=9f61b351443c085d HTTP/1.1
Host: rtb.cdn.adtarget.market
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Fri, 26 Apr 2024 19:44:06 GMT
X-Firefox-Spdy: h2

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766

178.162.196.143

537 B

URL
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
IP
178.162.196.143:0
ASN
#28753 Leaseweb Deutschland GmbH

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
537 B (537 bytes)
Hash
8ce05dc9431adcf71f6ea9e4effb46f3
1074a1f0db0fe3db33261cdd185e9bc0a558753f
2191597a71a1872b9d46e7e0d84e1ef2a83a5e159e4fee8dd24c5062b5645645

HTTP Headers

GET /uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766 HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: text/html; charset=utf-8
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638a078c-608"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css

178.162.196.143

200 OK

2.8 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
ASCII text
Size
2.8 kB (2807 bytes)
Hash
2af8b997757fd1f048889cccbc93e129
54b952f6c590e1e62d3899260b64e263f3cac772
609a610912a1866628be2d0dcb9fef41ae192181491c5a73a3930ff624c72360

HTTP Headers

GET /uploads/media/9/5/74759/v2/css/style.css HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: text/css
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638a078c-38ba"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip

d7.cdn.trafficbass.com/libs/banner_html5.js

178.162.196.143

200 OK

884 B

URL GET HTTP/1.1
d7.cdn.trafficbass.com/libs/banner_html5.js
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
JavaScript source, ASCII text
Size
884 B (884 bytes)
Hash
e8af3a70f128e696da5fb7db91e20b83
5b27789477ee963047725f223cc0b45e913ce132
af5a7eae2f66dba439abe5f6f118adda224cfccab9ca2fff974cd675a602d4de

HTTP Headers

GET /libs/banner_html5.js HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 03 Mar 2022 13:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6220c8ce-8da"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/logo.png

178.162.196.143

200 OK

2.0 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/logo.png
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
PNG image data, 203 x 45, 8-bit colormap, non-interlaced
Size
2.0 kB (1997 bytes)
Hash
28bd38678ed3d17b9f7d41486ef1b864
0504de6accd616783e1de11c42658eb1a91415aa
1d21877f45b1b67eec326dbde9f4106b6e0cda9dc8f89a30dd43f485cf26b88c

HTTP Headers

GET /uploads/media/9/5/74759/v2/img/logo.png HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: image/png
Content-Length: 1997
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Connection: keep-alive
ETag: "638a078c-7cd"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/bg-ball.png

178.162.196.143

200 OK

1.9 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/bg-ball.png
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
PNG image data, 195 x 79, 8-bit colormap, non-interlaced
Size
1.9 kB (1860 bytes)
Hash
7d5ed0889bfec78b6f72de431b2f60f7
7a6336a32ed1e811915a63bd40aaf69d2b565b62
c390b79e8b700a136404757e49b9c48ff85f6a8e2f40bac1f87746fd1b5c59fb

HTTP Headers

GET /uploads/media/9/5/74759/v2/img/bg-ball.png HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: image/png
Content-Length: 1860
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Connection: keep-alive
ETag: "638a078c-744"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/s1-hyper-bonus.png

178.162.196.143

200 OK

12 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/s1-hyper-bonus.png
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
PNG image data, 331 x 202, 8-bit colormap, non-interlaced
Size
12 kB (11707 bytes)
Hash
62c94cc10fc7eb813d79557b1c4d858b
b4c74c3f8579a540f1f4fc92a104a0861354fa23
e81e3012d52984a4b5846bc565cbda12881101dc8db07ad8fb5da4d1fc330e56

HTTP Headers

GET /uploads/media/9/5/74759/v2/img/s1-hyper-bonus.png HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: image/png
Content-Length: 11707
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Connection: keep-alive
ETag: "638a078c-2dbb"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes

bygliscortor.com/500/6870266?excludes=&oaid=00804a2226814510f1bdb18591dc76e5&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fweb.stagatv.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.242

200 OK

0 B

URL OPTIONS HTTP/2
bygliscortor.com/500/6870266?excludes=&oaid=00804a2226814510f1bdb18591dc76e5&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fweb.stagatv.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectbygliscortor.com
Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C
ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /500/6870266?excludes=&oaid=00804a2226814510f1bdb18591dc76e5&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fweb.stagatv.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://web.stagatv.com/
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:06 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://web.stagatv.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/s2-img.png

178.162.196.143

200 OK

7.7 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/s2-img.png
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
PNG image data, 167 x 118, 8-bit colormap, non-interlaced
Size
7.7 kB (7705 bytes)
Hash
e6cd07259b9143175116a3e87ac4b611
507b7b48efdc148c895d52952ec354e8d1a5fe1f
8df504584dbd198f89c9c6966d8ee36a06ae7a9430719d6ae2117c29ea5a2212

HTTP Headers

GET /uploads/media/9/5/74759/v2/img/s2-img.png HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: image/png
Content-Length: 7705
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Connection: keep-alive
ETag: "638a078c-1e19"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/bg-balls.png

178.162.196.143

200 OK

9.9 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/bg-balls.png
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
PNG image data, 456 x 368, 8-bit colormap, non-interlaced
Size
9.9 kB (9945 bytes)
Hash
bea55a74999bb9309580d7fce4f7163c
380c2ed65d85a8fa7c5753054399e21495d96572
96bde6a5611ca73d66823130f55cefc84cabde8b9b029c5532d7ff6d27031700

HTTP Headers

GET /uploads/media/9/5/74759/v2/img/bg-balls.png HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: image/png
Content-Length: 9945
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Connection: keep-alive
ETag: "638a078c-26d9"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes

d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/s3-img.png

178.162.196.143

200 OK

15 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/img/s3-img.png
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
PNG image data, 182 x 174, 8-bit colormap, non-interlaced
Size
15 kB (15171 bytes)
Hash
736077d638b5b1f1ae23f543d1066035
b35552886433ebf5f1a174ca66117c52ace1cab5
46a8558919796fef36fd6ba157a5323312a4ea3187c303762e75d98aa4c1b8ea

HTTP Headers

GET /uploads/media/9/5/74759/v2/img/s3-img.png HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: image/png
Content-Length: 15171
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Connection: keep-alive
ETag: "638a078c-3b43"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes

fonts.gstatic.com/s/robotocondensed/v27/ieVo2ZhZI2eCN5jzbjEETS9weq8-_d6T_POl0fRJeyVVpcBO5Xw.woff2

142.250.74.163

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/robotocondensed/v27/ieVo2ZhZI2eCN5jzbjEETS9weq8-_d6T_POl0fRJeyVVpcBO5Xw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21140, version 1.0
Size
21 kB (21140 bytes)
Hash
89e51a47e901bffba3df1acdaad7d6db
1a8275e4b0701c094dbd3189bad25426bbf38d3e
9514372ab8ac313ea8019966fdcfe91b201c3aa69f92de8346ab34af461bbad2

HTTP Headers

GET /s/robotocondensed/v27/ieVo2ZhZI2eCN5jzbjEETS9weq8-_d6T_POl0fRJeyVVpcBO5Xw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://d7.cdn.trafficbass.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:52:35 GMT
expires: Sat, 26 Apr 2025 05:52:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 18 Oct 2023 17:53:05 GMT
content-type: font/woff2
age: 50011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://d7.cdn.trafficbass.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:54:44 GMT
expires: Fri, 25 Apr 2025 02:54:44 GMT
cache-control: public, max-age=31536000
age: 147082
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto+Condensed:wght@700&family=Roboto:wght@900&display=swap

142.250.74.106

200 OK

733 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto+Condensed:wght@700&family=Roboto:wght@900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
733 B (733 bytes)
Hash
bf5f985ef139c4b8c09a0afc86f088d7
806ee514925f74cea0db529371e34f773c17c2aa
57c935e18addb3d715d64c1d2a97ddeea233d392f4e7671e6a02cbcfed9f5845

HTTP Headers

GET /css2?family=Roboto+Condensed:wght@700&family=Roboto:wght@900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d7.cdn.trafficbass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 19:46:06 GMT
date: Fri, 26 Apr 2024 19:46:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg

104.22.32.172

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg
IP
104.22.32.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
17 kB (17173 bytes)
Hash
9c6355bcf96815c755fbba83f9fd8f64
ce698b45fb51ef1494f80f432b7aff0985247724
2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906

HTTP Headers

GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Sat, 27 Apr 2024 13:29:13 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 22613
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b83a3e8f55-CPH
X-Firefox-Spdy: h2

web.stagatv.com/page/2/

172.67.206.242

301 Moved Permanently

167 B

URL GET HTTP/3
web.stagatv.com/page/2/
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

HTTP Headers

GET /page/2/ HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.1.1714160765.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.1.1714160766.0.0.0; prefetchAd_6870250=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: text/html; charset=UTF-8
location: https://www.stagatv.com/
x-dns-prefetch-control: on
vary: accept,content-type
expires: Fri, 26 Apr 2024 20:46:06 GMT
cache-control: max-age=3600
x-litespeed-tag: 44e_HTTP.301,44e_HTTP.301
x-redirect-by: redirection
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YoCkB06VCh9QZaw%2F1HYMnla%2FYo0tqVjGQveDEoWTRYbeYiAFXOhhH364B2VGXWIOAuk8x%2BEo2AI6MA1J%2BuT0trv2QTt5uT5PLBRNe0MsXs0D1nusJoBJH%2Fvxf0%2BUAwGcpug%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a913b88b8d56c7-OSL
alt-svc: h3=":443"; ma=86400

supervisebradleyrapidly.com/watch.162485523389.js?key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&refer=https%3A%2F%2Fweb.stagatv.com%2F&tz=0&dev=e&res=14.2071&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1

172.240.253.132

307 Temporary Redirect

0 B

URL GET HTTP/1.1
supervisebradleyrapidly.com/watch.162485523389.js?key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&refer=https%3A%2F%2Fweb.stagatv.com%2F&tz=0&dev=e&res=14.2071&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectsupervisebradleyrapidly.com
FingerprintB9:18:E3:8A:C9:DC:5E:0A:A3:8F:1C:44:1F:63:28:86:43:4F:A2:E2
ValidityWed, 24 Apr 2024 15:15:52 GMT - Tue, 23 Jul 2024 15:15:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.162485523389.js?key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&refer=https%3A%2F%2Fweb.stagatv.com%2F&tz=0&dev=e&res=14.2071&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1 HTTP/1.1
Host: supervisebradleyrapidly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 19:46:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://web.stagatv.com
Access-Control-Allow-Origin: https://web.stagatv.com
Access-Control-Allow-Credentials: true
Location: https://supervisebradleyrapidly.com/watch.162485523389.js?dev=e&key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&pst=1714160827&refer=https%3A%2F%2Fweb.stagatv.com%2F&res=14.2071&rmtc=t&shu=aaa5511348f91698d8cf963efd8fcffe596ad8bd1d3769708a0948d4f21c9cc15c5a2307b6265f14d6020210b09cc583551d8b528ea65fe1b7c388093f37f138c8331331237e61b24201341232832e32335a6ff89f3bed3ebebe5fc632bbd82b53&tz=0&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1
Set-Cookie: u_pl=20543554; expires=Sat, 27 Apr 2024 19:46:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.y8ERhfirmtJ2mOshrk-I6RMOHmO4wLcJSZqM4IfZgOI; expires=Fri, 26 Apr 2024 19:47:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e8a7a7d49162fa3d1bf1d5ab2b9c7976
Strict-Transport-Security: max-age=0; includeSubdomains

supervisebradleyrapidly.com/watch.162485523389.js?dev=e&key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&pst=1714160827&refer=https%3A%2F%2Fweb.stagatv.com%2F&res=14.2071&rmtc=t&shu=aaa5511348f91698d8cf963efd8fcffe596ad8bd1d3769708a0948d4f21c9cc15c5a2307b6265f14d6020210b09cc583551d8b528ea65fe1b7c388093f37f138c8331331237e61b24201341232832e32335a6ff89f3bed3ebebe5fc632bbd82b53&tz=0&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1

172.240.253.132

200 OK

2.1 kB

URL GET HTTP/1.1
supervisebradleyrapidly.com/watch.162485523389.js?dev=e&key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&pst=1714160827&refer=https%3A%2F%2Fweb.stagatv.com%2F&res=14.2071&rmtc=t&shu=aaa5511348f91698d8cf963efd8fcffe596ad8bd1d3769708a0948d4f21c9cc15c5a2307b6265f14d6020210b09cc583551d8b528ea65fe1b7c388093f37f138c8331331237e61b24201341232832e32335a6ff89f3bed3ebebe5fc632bbd82b53&tz=0&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectsupervisebradleyrapidly.com
FingerprintB9:18:E3:8A:C9:DC:5E:0A:A3:8F:1C:44:1F:63:28:86:43:4F:A2:E2
ValidityWed, 24 Apr 2024 15:15:52 GMT - Tue, 23 Jul 2024 15:15:51 GMT

File type
JavaScript source, ASCII text, with very long lines (2659)
Size
2.1 kB (2117 bytes)
Hash
d64db8aa14581ab5b03fb8202b1661a0
6d56653c9eb6223002711dc38b122955d9437c56
b1e54857f0030b40288d6456740aee4fca459a853c93bcf8e290cbc7b5ac4353

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.162485523389.js?dev=e&key=b1a6d885a70de6779f854f733db30279&kw=%5B%22stagatv%22%2C%22-%22%2C%22download%22%2C%22the%22%2C%22latest%22%2C%22movies%22%2C%22tv%22%2C%22series%22%2C%22trailers%22%5D&pst=1714160827&refer=https%3A%2F%2Fweb.stagatv.com%2F&res=14.2071&rmtc=t&shu=aaa5511348f91698d8cf963efd8fcffe596ad8bd1d3769708a0948d4f21c9cc15c5a2307b6265f14d6020210b09cc583551d8b528ea65fe1b7c388093f37f138c8331331237e61b24201341232832e32335a6ff89f3bed3ebebe5fc632bbd82b53&tz=0&uuid=a209f8f9-c23a-4d56-9319-4f1986e5211b%3A1%3A1 HTTP/1.1
Host: supervisebradleyrapidly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.stagatv.com
Referer: https://web.stagatv.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=20543554; ain=eyJhbGciOiJIUzI1NiJ9.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.y8ERhfirmtJ2mOshrk-I6RMOHmO4wLcJSZqM4IfZgOI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 19:46:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://web.stagatv.com
Access-Control-Allow-Origin: https://web.stagatv.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a209f8f9-c23a-4d56-9319-4f1986e5211b:1:1; expires=Fri, 03 May 2024 19:46:07 GMT; secure; SameSite=None
iprcc934ec455a9c13410f0dbaf5b47f3596=3569808; expires=Fri, 26 Apr 2024 23:46:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 27 Apr 2024 19:46:07 GMT; secure; SameSite=None
uncs=1; expires=Sat, 27 Apr 2024 19:46:07 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 27 Apr 2024 19:46:07 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 27 Apr 2024 19:46:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1d576f2d7a3734e2633cc195d8ba067d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png

45.133.44.10

200 OK

106 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced
Size
106 kB (105910 bytes)
Hash
a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e

HTTP Headers

GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:07 GMT
content-type: image/png
content-length: 105910
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Sun, 28 Apr 2024 19:46:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

bygliscortor.com/impression/1d6h0W7Jl00UA9oK-5mszdDLFGzkGd314x_cUlwdszuC5Yn_0Z7XoniRr4c0zGUoxQlfxbsu2zRocIuCE2_TiXPXhjYVoDVtOUiNo3RjAwn8gAT_2Oygn0kuPZghYERMgwLZyo1ce1um8Lm_vKg9kwGGKLu6gSlabsTIsY7PSLAJgPVEw4W_B8oGWagJJLXQNo8-oZgu61H6DxWa0eyo1y2QogNhUlJvdp1v9iQOBvsg0OtNJqmZMcW-0BoKxVSOxaSMiz4Bs_C38Cvm6Fu7288IfL1b8TljV3LOsI3YAiUKDvXQzz5A82oxIY9ZnmCqu3Ou2VMI3uMUSTKF-gns7ywe7lXPsHOPXoujSVtHZ4_DEAMytBxOV-JYQEMtgeyDzCNEFzO1TaXYNiqpTi26HKipF8lu1vSl0hP2ZWerXaXZBE_rGyc6VqbmoFbBo2rdGpfuJS9HfAeCu_O7giohvg20GZktqvQzAqL601eabkYd3rszLu5xfTmOlribKIFaIy2bDitgwpbTyoJ48mv4SKQF-b5R-sQeOI4AS6Pg7lZ5jFqVukNxgxHolGMFrusUCxoAaEj2cYiW9HbVtz3YVB7C8vaxVcMdykXFru-FCB7jW5lT3QV2hzcgL2mXtOqgmw1iH3tXwTW7GnoIi55f4f5vnox6BnURJGm4vpUt1jXVGSCLWTwOwQ7y13eB7oP7C-z2yG21FlqdxTVp?_z=6870266&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fweb.stagatv.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.242

200 OK

43 B

URL GET HTTP/2
bygliscortor.com/impression/1d6h0W7Jl00UA9oK-5mszdDLFGzkGd314x_cUlwdszuC5Yn_0Z7XoniRr4c0zGUoxQlfxbsu2zRocIuCE2_TiXPXhjYVoDVtOUiNo3RjAwn8gAT_2Oygn0kuPZghYERMgwLZyo1ce1um8Lm_vKg9kwGGKLu6gSlabsTIsY7PSLAJgPVEw4W_B8oGWagJJLXQNo8-oZgu61H6DxWa0eyo1y2QogNhUlJvdp1v9iQOBvsg0OtNJqmZMcW-0BoKxVSOxaSMiz4Bs_C38Cvm6Fu7288IfL1b8TljV3LOsI3YAiUKDvXQzz5A82oxIY9ZnmCqu3Ou2VMI3uMUSTKF-gns7ywe7lXPsHOPXoujSVtHZ4_DEAMytBxOV-JYQEMtgeyDzCNEFzO1TaXYNiqpTi26HKipF8lu1vSl0hP2ZWerXaXZBE_rGyc6VqbmoFbBo2rdGpfuJS9HfAeCu_O7giohvg20GZktqvQzAqL601eabkYd3rszLu5xfTmOlribKIFaIy2bDitgwpbTyoJ48mv4SKQF-b5R-sQeOI4AS6Pg7lZ5jFqVukNxgxHolGMFrusUCxoAaEj2cYiW9HbVtz3YVB7C8vaxVcMdykXFru-FCB7jW5lT3QV2hzcgL2mXtOqgmw1iH3tXwTW7GnoIi55f4f5vnox6BnURJGm4vpUt1jXVGSCLWTwOwQ7y13eB7oP7C-z2yG21FlqdxTVp?_z=6870266&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fweb.stagatv.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectbygliscortor.com
Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C
ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impression/1d6h0W7Jl00UA9oK-5mszdDLFGzkGd314x_cUlwdszuC5Yn_0Z7XoniRr4c0zGUoxQlfxbsu2zRocIuCE2_TiXPXhjYVoDVtOUiNo3RjAwn8gAT_2Oygn0kuPZghYERMgwLZyo1ce1um8Lm_vKg9kwGGKLu6gSlabsTIsY7PSLAJgPVEw4W_B8oGWagJJLXQNo8-oZgu61H6DxWa0eyo1y2QogNhUlJvdp1v9iQOBvsg0OtNJqmZMcW-0BoKxVSOxaSMiz4Bs_C38Cvm6Fu7288IfL1b8TljV3LOsI3YAiUKDvXQzz5A82oxIY9ZnmCqu3Ou2VMI3uMUSTKF-gns7ywe7lXPsHOPXoujSVtHZ4_DEAMytBxOV-JYQEMtgeyDzCNEFzO1TaXYNiqpTi26HKipF8lu1vSl0hP2ZWerXaXZBE_rGyc6VqbmoFbBo2rdGpfuJS9HfAeCu_O7giohvg20GZktqvQzAqL601eabkYd3rszLu5xfTmOlribKIFaIy2bDitgwpbTyoJ48mv4SKQF-b5R-sQeOI4AS6Pg7lZ5jFqVukNxgxHolGMFrusUCxoAaEj2cYiW9HbVtz3YVB7C8vaxVcMdykXFru-FCB7jW5lT3QV2hzcgL2mXtOqgmw1iH3tXwTW7GnoIi55f4f5vnox6BnURJGm4vpUt1jXVGSCLWTwOwQ7y13eB7oP7C-z2yG21FlqdxTVp?_z=6870266&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fweb.stagatv.com%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: OAID=00804a2226814510f1bdb18591dc76e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:10 GMT
content-type: image/gif
content-length: 43
x-trace-id: 0fe6e5448ffcad0b80a82f062235ba04
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg

104.22.32.172

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg
IP
104.22.32.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
17 kB (17173 bytes)
Hash
9c6355bcf96815c755fbba83f9fd8f64
ce698b45fb51ef1494f80f432b7aff0985247724
2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906

HTTP Headers

GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 19:46:10 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Sat, 27 Apr 2024 13:29:13 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 22617
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913cffb7f8f55-CPH
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 291578
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700

142.250.74.106

200 OK

17 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
17 kB (16564 bytes)
Hash
619cfed0a61996e890a01366475d6c6d
a1a2e20e09f1e83177b35909d12ea9865879f827
d2a15c06e5a94563f4ff09b171fc76d7127071402a17658ae3431cac53746b44

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 19:46:10 GMT
date: Fri, 26 Apr 2024 19:46:10 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714114070-2781-u4mA7TVwNlkv14SyZ5AJg50x9x1.jpg?resize=200,300

192.0.77.2

200 OK

7.1 kB

URL GET HTTP/3
i3.wp.com/web.stagatv.com/wp-content/uploads/2024/04/1714114070-2781-u4mA7TVwNlkv14SyZ5AJg50x9x1.jpg?resize=200,300
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.1 kB (7132 bytes)
Hash
b75e77a9913fff2a922a117f982e2340
d3d6194c98feebd8cbab2daa913dda2e3aa25844
a064c2720d0c5895ab196d08a00a5b2d62c7885cf327b6298fc252d8c463a35f

HTTP Headers

GET /web.stagatv.com/wp-content/uploads/2024/04/1714114070-2781-u4mA7TVwNlkv14SyZ5AJg50x9x1.jpg?resize=200,300 HTTP/1.1
Host: i3.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 7132
last-modified: Fri, 26 Apr 2024 06:47:58 GMT
expires: Sun, 26 Apr 2026 18:47:58 GMT
cache-control: public, max-age=63115200
link: <http://web.stagatv.com/wp-content/uploads/2024/04/1714114070-2781-u4mA7TVwNlkv14SyZ5AJg50x9x1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "0ce93f569532734c"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

www.stagatv.com/

172.67.206.242

301 Moved Permanently

0 B

URL GET HTTP/3
www.stagatv.com/
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Referer: https://web.stagatv.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.1.1714160765.0.0.0; _ga=GA1.1.1788738746.1714160764; _ga_38WTG9ZRV2=GS1.1.1714160764.1.1.1714160766.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 301 Moved Permanently
date: Fri, 26 Apr 2024 19:46:06 GMT
content-type: text/html
content-length: 167
location: https://web.stagatv.com/
cache-control: max-age=3600
expires: Fri, 26 Apr 2024 20:46:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y4khxKAw2LYm61DgcX44YqJnXjq9sbZfUaYcpl7ihM419wUHltBVB%2FpEu7cQUYeQMIBo8LQN0gJO%2BOUv%2FP5GiGLm4G9JoWVzfSpB2PZh8IZIFARVzH6YUUX0H44%2BuAcW4uE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913b99d0156c7-OSL
alt-svc: h3=":443"; ma=86400

178.162.196.143

200 OK

1.5 kB

URL GET HTTP/1.1
d7.cdn.trafficbass.com/uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766
IP
178.162.196.143:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://web.stagatv.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint57:6F:20:E6:B0:40:1C:C7:13:E8:48:0C:11:F9:28:1A:C5:9E:24:49
ValidityThu, 07 Mar 2024 08:49:35 GMT - Mon, 07 Apr 2025 11:37:26 GMT

File type
HTML document, ASCII text, with very long lines (1707), with no line terminators
Size
1.5 kB (1544 bytes)
Hash
d1208e431f09d9e7fbfb152a4783cb0a
1af6e9ce0dc6d188f4ceb19a5cc376f36377d50a
bb92afe09b2fb7392567004ea5b30b929c34b0385a9dd0e3b671adbf58b00148

HTTP Headers

GET /uploads/media/9/5/74759/v2/index.html?clickTag=http://z.cdn.trafficbass.com/go?z=1783875898&m=1521559889&c=1168679183&p0=2027709301&p1=2031305422&p2=1870598794&u=9f61b351443c085d&t=1714160766 HTTP/1.1
Host: d7.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: text/html; charset=utf-8
Last-Modified: Fri, 02 Dec 2022 14:11:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638a078c-608"
Expires: Sat, 27 Apr 2024 19:46:06 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip

bygliscortor.com/400/6870266

139.45.197.242

200 OK

91 kB

URL GET HTTP/2
bygliscortor.com/400/6870266
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectbygliscortor.com
Fingerprint49:A3:CB:8D:EA:21:B9:93:E6:13:B1:95:59:D9:5A:92:A6:22:8F:8C
ValiditySun, 18 Feb 2024 05:12:42 GMT - Sat, 18 May 2024 05:12:41 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90718 bytes)
Hash
95e8d330984d61b80a8da7851bdac758
4adccef3da01ffd95d8f1790fa7bbc92244f256d
870eb3ee71b7c8d2c9b95705e470e2bd449b9684ac26336198c7340e5f730a4b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /400/6870266 HTTP/1.1
Host: bygliscortor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: OAID=03004a82e77540dce8c79b3cccc36102
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/javascript
x-trace-id: 73f808dbc76d28bee483388bff98c1a2
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03004a82e77540dce8c79b3cccc36102; expires=Sat, 26 Apr 2025 19:46:05 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

i1.wp.com/image.tmdb.org/t/p/w1280/rtujL4mutqlzk7ELbkyJhLfUbEX.jpg?resize=1280%2C500

192.0.77.2

200 OK

42 kB

URL GET HTTP/2
i1.wp.com/image.tmdb.org/t/p/w1280/rtujL4mutqlzk7ELbkyJhLfUbEX.jpg?resize=1280%2C500
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x500, Scaling: [none]x[none], YUV color, decoders should clamp
Size
42 kB (41994 bytes)
Hash
33b0f803c564f8828902bb6213f96b15
efe2ec246d4adb1dc9785d3d8395989b1418d452
ee0e5c526ea59ca36286f1929f21c6f40e009a91cf4568a6607243654dded5ae

HTTP Headers

GET /image.tmdb.org/t/p/w1280/rtujL4mutqlzk7ELbkyJhLfUbEX.jpg?resize=1280%2C500 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: image/webp
content-length: 41994
last-modified: Fri, 26 Apr 2024 06:06:49 GMT
expires: Sun, 26 Apr 2026 18:06:49 GMT
cache-control: public, max-age=63115200
link: <http://image.tmdb.org/t/p/w1280/rtujL4mutqlzk7ELbkyJhLfUbEX.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "adefbc42382a7db6"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

nabauxou.net/5/6870250/?oo=1&aab=1

139.45.197.245

200 OK

2.8 kB

URL GET HTTP/2
nabauxou.net/5/6870250/?oo=1&aab=1
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectnabauxou.net
Fingerprint5C:68:BC:04:67:32:92:60:99:B0:5D:39:78:E9:FE:AD:6F:58:7A:1C
ValidityFri, 15 Mar 2024 05:26:30 GMT - Thu, 13 Jun 2024 05:26:29 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3062), with no line terminators
Size
2.8 kB (2820 bytes)
Hash
103fca940bf61f8451c77ebd7781c69c
4452d1272f581f33a3ea1036d50f9fc64808a2a0
4ce738a4b685665b0522b9111de1220b87e4ee96fd8c58008b65dd17d38f8642

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6870250/?oo=1&aab=1 HTTP/1.1
Host: nabauxou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: OAID=00804a2226814510f1bdb18591dc76e5; oaidts=1714160765; syncedCookie=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/json
x-trace-id: bf844c8ce473d229e08845f5735eed15
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://web.stagatv.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00804a2226814510f1bdb18591dc76e5; expires=Sat, 26 Apr 2025 19:46:05 GMT; path=/; secure; SameSite=None
oaidts=1714160765; expires=Sat, 26 Apr 2025 19:46:05 GMT; path=/; secure; SameSite=None
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://web.stagatv.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:54:32 GMT
expires: Sat, 26 Apr 2025 05:54:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 49898
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=080dc58d-cf28-4a5e-abc9-0b2f58c503f7

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=080dc58d-cf28-4a5e-abc9-0b2f58c503f7
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://web.stagatv.com/
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C
ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
6949f52318584a4b51c719a9b84a7287
9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905
72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=080dc58d-cf28-4a5e-abc9-0b2f58c503f7 HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1384
Origin: https://web.stagatv.com
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 26 Apr 2024 19:46:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://web.stagatv.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

web.stagatv.com/wp-content/themes/moviestream/assets/js/jquery.min.js

172.67.206.242

200 OK

100 kB

URL GET HTTP/3
web.stagatv.com/wp-content/themes/moviestream/assets/js/jquery.min.js
IP
172.67.206.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.stagatv.com/
Certificate
IssuerLet's Encrypt
Subjectstagatv.com
Fingerprint53:7D:BE:A8:8D:B8:D9:DC:3C:B2:D0:57:96:13:E0:FA:6B:A9:79:7E
ValidityFri, 29 Mar 2024 23:59:49 GMT - Thu, 27 Jun 2024 23:59:48 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
100 kB (100491 bytes)
Hash
305dfc4408c3c390acaf2bddc87c6adf
3d5cfee4fade8fca84d575746b1ae13aab625d67
e275020620809b4b3464f0de37e62da8ff1727ab69d9e7e8da6bb1570b357951

HTTP Headers

GET /wp-content/themes/moviestream/assets/js/jquery.min.js HTTP/1.1
Host: web.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.stagatv.com/
Cookie: _ga_KJFELQY1RT=GS1.1.1714160764.1.0.1714160764.0.0.0; _ga=GA1.1.1788738746.1714160764; _lscache_vary=ea39f6bc89f5a15d76ae0c13f0a9dd00; _ga_38WTG9ZRV2=GS1.1.1714160764.1.0.1714160764.0.0.0; prefetchAd_6870250=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 19:46:05 GMT
content-type: application/javascript
last-modified: Thu, 28 Sep 2023 08:45:04 GMT
cache-control: max-age=31557600
expires: Thu, 03 Apr 2025 14:38:14 GMT
cf-cache-status: HIT
age: 2012080
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bIJEh0%2F38NOQRpFjKKMOkxtqivfuG1rqRw8MozHon7dr4TjNyA3AAdMCtKKPahpqC1gkecjOkiFCwJy%2FSryYJMKLJSr401%2BYeEJqk1pwE9GI8%2BRm8V7hRefqiX1tmHKOsdg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a913ae9d6356c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (42)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL