firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 16:12:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UoRaNWH8TwWnSSgEqHtn_z-iwPf0dRKMyJ4BItnLCZQbRh0wdRV5rQ==
Age: 374
streamlivenow.me/lala/index.php?stream=125164839?sid=1491075
200 OK 1.6 kB URL HTTP/1.1 streamlivenow.me/lala/index.php?stream=125164839?sid=1491075
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (599)
Hash dbbab4d757ef5fbe771c7f65b2889664
80d23fecf8bdb148b422278589f6d1873af0789f
35a5c4f0e9bfbb2bbd4fcd1b489e1bbcb577f828c213c0b425cab5bded4d0f95
GET /lala/index.php?stream=125164839?sid=1491075 HTTP/1.1
Host: streamlivenow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 18 Sep 2022 17:18:33 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 18 Sep 2022 11:36:50 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QMMZMdbnqAlWaymg94unih3WR2dU%2BjOIub1L880xirSpcLzxCPbkwyWCNDkbnqqvei%2FAVM1p0JnJjzkTSW36xiJXqQiHsUDyQ0OFzBRFhtCzzad%2B6uL0U%2Fxdi7Vl4oF6Gb3Y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74cb65f01c960b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8335
Expires: Sun, 18 Sep 2022 18:37:28 GMT
Date: Sun, 18 Sep 2022 16:18:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 03:30:43 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kAOj6jq7Y9R9vVsoKeBgBgUTG5qlMphKPNOJYUy-Ux_bGX_Rkgr46w==
age: 46070
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 16:18:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Sun, 18 Sep 2022 16:18:34 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0f5ee3168d5b8aa0b580d8c3d39a05cd
16e4ae394dcbe98682c97984e739825cea1d3ec5
8b120d9083bda1fd7bc79e01f33b919eaff642730c575855b88ce0ece2c220de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B120D9083BDA1FD7BC79E01F33B919EAFF642730C575855B88CE0ECE2C220DE"
Last-Modified: Sat, 17 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2176
Expires: Sun, 18 Sep 2022 16:54:50 GMT
Date: Sun, 18 Sep 2022 16:18:34 GMT
Connection: keep-alive
ardslediana.com/5/5319948
200 OK 23 kB URL HTTP/1.1 ardslediana.com/5/5319948
IP
File type ASCII text, with very long lines (62281), with no line terminators
Hash bb224d7a85637e28398594460590153e
e3131c304c89c870b309e468a318733f25cb8b99
a4044d7b1a298083f9d9a5ac6be035cf5ac03aacf2c8383b8a4154817e23d2ec
Analyzer Verdict Alert quad9 Sinkholed
GET /5/5319948 HTTP/1.1
Host: ardslediana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: e716d1df47bd19a1aac29ca505283111
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=6dbc070e84f84f79914c8d758e2d211f; expires=Mon, 18 Sep 2023 16:18:34 GMT; path=/
oaidts=1663517914; expires=Mon, 18 Sep 2023 16:18:34 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
streamlivenow.me/streams/125164839/1491075
200 OK 960 B URL HTTP/1.1 streamlivenow.me/streams/125164839/1491075
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2addd5eb03a8a3bf8e3447becbaf9022
a3c837e36d2d9a57768adb024cdfc0cead075ba7
701b6fd3718fe6056d95d4311ec1271bac56980b13dc325c9f42ce28f0bfeaf0
GET /streams/125164839/1491075 HTTP/1.1
Host: streamlivenow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/lala/index.php?stream=125164839?sid=1491075
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=3600
Expires: Sun, 18 Sep 2022 17:18:34 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 18 Sep 2022 11:36:50 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bSTZu0dzADmE80KxY54qnsVwifsZbOYDMWbAuWJ20vzKOnA2KCBnHvrMblgOrOfknWV3uSkJv1a2tDGcOT9%2Bq9powT0eNwfzy9SUFLMbFcLbC7ni3cK8CPrk8DuENjkO92HD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74cb65f20ec30b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
s7.addthis.com/js/300/addthis_widget.js
200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP
File type ASCII text, with very long lines (54602)
Size 116 kB (116535 bytes)
Hash 84b44e681f04bb7032e0d030b0397eae
3f5a6c556ade0233d734369002614c0c89d8f483
0ae94967eaf831699eeb820e200d6301ac0941a1299f3650936bf0f3fb6b8af4
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://streamlivenow.me/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116535
date: Sun, 18 Sep 2022 16:18:34 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
streamlivenow.me/css/stream.code.css?v=1.1b
200 OK 936 B URL HTTP/1.1 streamlivenow.me/css/stream.code.css?v=1.1b
IP
File type ASCII text, with very long lines (2461), with no line terminators
Hash 877c92d334524b57546b4c8d1df7bb1d
4fbbe48ce8abf75e626a1dede7794f92d6a67293
e4eccd0c0de92f8f74294e68f95bcfb5643b0a8b80c4e188f7813b3a617ab350
GET /css/stream.code.css?v=1.1b HTTP/1.1
Host: streamlivenow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/streams/125164839/1491075
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=604800
Cf-Bgj: minify
Cf-Polished: origSize=2786
Expires: Tue, 18 Oct 2022 15:32:50 GMT
Last-Modified: Wed, 01 Aug 2018 00:20:08 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Age: 2744
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yC6%2ByZkWq7XH8PY6NljCPNGOG561QRgOfuV6da3kTIWbwPZCBZ%2FI9aAJUuxHxjuFGscQvS8XWG0WNPpGKXtmcajIsEW3cyyFODC5TnfXE%2FqDfi1AK2LI1pUXlcSZfs8zTutg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74cb65f35c10b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
streamlivenow.me/js/player.js
200 OK 1.5 kB URL HTTP/1.1 streamlivenow.me/js/player.js
IP
File type ASCII text, with very long lines (800)
Hash 613828468ff55ec849d6161e2db9793b
d296c17d27bea91e4afefdd3309af8d441cde8d7
57a56b319876bfe37040eac9b7013e6ecdc35561c04a931dca8d2d8ea2c79dcd
GET /js/player.js HTTP/1.1
Host: streamlivenow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/streams/125164839/1491075
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=1016000
Cf-Bgj: minify
Cf-Polished: origSize=4696
Expires: Tue, 18 Oct 2022 15:32:50 GMT
Last-Modified: Wed, 01 Aug 2018 00:21:56 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Age: 2744
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2Fw9Wxl1kINtWHn%2BrZmDEmNdXOMRXYJPCw0%2BpBoDPSQKH0YY3yOLksv9PXwE1NPLmfmBhYnOg7oBmjcBHkva9iGlQfomYMGTFWLFkA6Ei4xxRNiE0R2diXUkd9SFViBoqn6h"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74cb65f358250b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
code.jquery.com/jquery-3.3.1.min.js
200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:34 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663517914.dop010.sk1.t,1663517914.cds206.sk1.hn,1663517914.cds072.sk1.c
X-Firefox-Spdy: h2
vjs.zencdn.net/6.6.3/video-js.css
200 OK 16 kB URL HTTP/2 vjs.zencdn.net/6.6.3/video-js.css
IP
File type ASCII text, with very long lines (14763)
Hash b1d08545bcf6e62a5254b3b4619691a6
8ccb2099d43a5bd1794543177da37c7dd18c9519
d86da170b8e7ae35b6f2df3da4136c6bc241a6ced591f680ac43605c6f6fb74d
GET /6.6.3/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Jan 2018 19:07:51 GMT
etag: "48169240598eb5b1a1754806f81f7e50"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Sun, 18 Sep 2022 16:18:34 GMT
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 23
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 15764
X-Firefox-Spdy: h2
vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js
200 OK 8.9 kB URL HTTP/2 vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Hash c1f1df0d15c6c2385354cd6f1d55ac90
29d75b7acb3856360eaf22df07d5d8fe8e9917db
8fb2e6f24918cbce5dc1984062388d8d2a2191bf107606bedbae6e2f4451b151
GET /ie8/1.1.2/videojs-ie8.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2016 20:27:09 GMT
etag: "2ff9bb22f0b1789ac170247b0825488f"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Sun, 18 Sep 2022 16:18:34 GMT
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 3954
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 8924
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 18 Sep 2022 16:18:34 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash c5f23f94270a39081bb9d749a97d5704
97e18938c56b7d7c43bddac19abc7dbd2eccc952
dfefc859840a50bfc0eaa8e38dadae38a65514f0060af98cad8c1ab0892b1330
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 15 Sep 2022 18:25:20 GMT
Expires: Thu, 22 Sep 2022 18:25:19 GMT
Etag: "97e18938c56b7d7c43bddac19abc7dbd2eccc952"
Cache-Control: max-age=352604,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb65f3ecd0b51d-OSL
my.rtmark.net/gid.js?userId=6dbc070e84f84f79914c8d758e2d211f
200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=6dbc070e84f84f79914c8d758e2d211f
IP
File type JSON data\012- , ASCII text
Hash c0bbe91d1dd948be04a18ad04e89d1d5
6162167022fe684e5cefd3fdbbca65edda140369
66abea7c40878fe45c2d638d529ead5e933bc1f3c58286fac0cb39ba493a75f7
GET /gid.js?userId=6dbc070e84f84f79914c8d758e2d211f HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 16:18:34 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://streamlivenow.me
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=6dbc070e84f84f79914c8d758e2d211f; expires=Mon, 18 Sep 2023 16:18:34 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
streamlivenow.me/favicon.ico
200 OK 769 B URL HTTP/1.1 streamlivenow.me/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 57d77f65fe10d39e7ee847265d28314e
98115b6a56974fc7460c773d0a25cb2d5f0def63
4450696a78e6a2281c07c61b3b7c9f7052981364351ff3908e339b132973b4a6
GET /favicon.ico HTTP/1.1
Host: streamlivenow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/lala/index.php?stream=125164839?sid=1491075
Cookie: __atuvc=1%7C38; __atuvs=632744c7814f991f000
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: image/x-icon
Content-Length: 769
Connection: keep-alive
Last-Modified: Wed, 01 Aug 2018 00:20:10 GMT
Cache-Control: public, max-age=2592000
Expires: Mon, 18 Sep 2023 15:26:57 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 3097
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bdk8sMi4vgK3ea4r%2FaqRKEYMlrSX1yZikWOyV3jMXhiydfg0NXKPrXvIwq268rEN2XJt0ttLH7o%2FQQ8r5DdTj%2FaEJk4X%2Fqtx32V94o3QtUwQ6aOONgq%2BN0CLwBTKcHWepFiY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74cb65f55e90b50f-OSL
alt-svc: h2=":443"; ma=60
z.moatads.com/addthismoatframe568911941483/moatframe.js
200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=28719
date: Sun, 18 Sep 2022 16:18:34 GMT
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20006
Date: Sun, 18 Sep 2022 14:20:45 GMT
Expires: Sun, 18 Sep 2022 16:20:45 GMT
Cache-Control: public, max-age=7200
Age: 7069
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 18 Sep 2022 16:03:22 GMT
Expires: Sun, 18 Sep 2022 16:05:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nIVvFeFk5f4dfM5F93XF1gEo05tv2q0cYzLoEa0QtqFmWzgeKlxF6w==
Age: 912
v1.addthisedge.com/live/boost/ra-5dc9840997af99ce/_ate.track.config_resp
200 OK 555 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-5dc9840997af99ce/_ate.track.config_resp
IP
File type ASCII text, with very long lines (1608), with no line terminators
Hash 000d89274fec89b7611c06c6861317a0
b046b2572ee96ed46651a015798e2a122c930ad6
e4279e05b947680453f847dc7593f06f2f29583a947ed2fe02fc44502690f55c
GET /live/boost/ra-5dc9840997af99ce/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 555
etag: -1674473246--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=27, s-maxage=86400
date: Sun, 18 Sep 2022 16:18:34 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.addthis.com/live/red_lojson/300lo.json?si=632744c70d2ea20e&bkl=0&bl=1&pdt=405&sid=632744c70d2ea20e&pub=ra-5dc9840997af99ce&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=streamlivenow.me&fp=lala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663517895759&jsl=0&uvs=632744c7814f991f000&skipb=1&callback=addthis.cbs.jsonp__41488261437461240
200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=632744c70d2ea20e&bkl=0&bl=1&pdt=405&sid=632744c70d2ea20e&pub=ra-5dc9840997af99ce&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=streamlivenow.me&fp=lala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663517895759&jsl=0&uvs=632744c7814f991f000&skipb=1&callback=addthis.cbs.jsonp__41488261437461240
IP
File type ASCII text, with no line terminators
Hash b7042c196ff9e880b0605da882543a80
71be2adbdd72fe3b792d7a086a34ddd5663545e6
77f01d6aa1b816ab23ca71dde7244a6f65415265d455fe73b8e23c02b54b6ab5
GET /live/red_lojson/300lo.json?si=632744c70d2ea20e&bkl=0&bl=1&pdt=405&sid=632744c70d2ea20e&pub=ra-5dc9840997af99ce&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=streamlivenow.me&fp=lala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663517895759&jsl=0&uvs=632744c7814f991f000&skipb=1&callback=addthis.cbs.jsonp__41488261437461240 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Sun, 18 Sep 2022 16:18:34 GMT
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j96&aip=1&a=1939067487&t=pageview&_s=1&dl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=2010158994&gjid=874988364&cid=1786052239.1663517896&tid=UA-60210697-8&_gid=1623400534.1663517896&_r=1&_slc=1&z=462971702
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&aip=1&a=1939067487&t=pageview&_s=1&dl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=2010158994&gjid=874988364&cid=1786052239.1663517896&tid=UA-60210697-8&_gid=1623400534.1663517896&_r=1&_slc=1&z=462971702
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j96&aip=1&a=1939067487&t=pageview&_s=1&dl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=2010158994&gjid=874988364&cid=1786052239.1663517896&tid=UA-60210697-8&_gid=1623400534.1663517896&_r=1&_slc=1&z=462971702 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://streamlivenow.me
date: Sun, 18 Sep 2022 16:18:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streamlivenow.me/
Content-Type: text/plain;charset=UTF-8
Origin: http://streamlivenow.me
Content-Length: 1542
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 18 Sep 2022 16:18:49 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://streamlivenow.me
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9b19d20af774aa4c4de18c09845d54b9
cd0d41b4957edf5b2f7f66df082b7d1010acceb8
067f454a8ba17fba5f10b67b6a594edd9d9775beb5fb87cb6c98ff462a9f2fe1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5070
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:34 GMT
Last-Modified: Sun, 18 Sep 2022 14:54:04 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ardslediana.com/?rb=E0ihNdJFjb7dUeNFmLrcWA_p_V4iD3WgS72JKHyD-Vfe5Bi7O8SD92-dVzQ-gaU8KH9NA4z9UMn3-jIcKoAu1cTmaXjr7m4Zr4ZkGjxW7waZP1gyfbBvMzKKQ3Szv-TiH3l1Z5-P74mZO5wdfniDMxtIE1O1n5dnTzoKFnNRHduJ3rkgjJ8ye_V1vOTbZl8pLAi9F6gioqTz4aYlYV8JR4cmhUA%3D&request_ab2=0&zoneid=5319948&js_build=iclick-v1.426.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.426.0&bs=5771f4a3-4ed6-423f-bbb9-6b5775217ebf&userId=6dbc070e84f84f79914c8d758e2d211f&m=link
200 OK 1.7 kB URL HTTP/1.1 ardslediana.com/?rb=E0ihNdJFjb7dUeNFmLrcWA_p_V4iD3WgS72JKHyD-Vfe5Bi7O8SD92-dVzQ-gaU8KH9NA4z9UMn3-jIcKoAu1cTmaXjr7m4Zr4ZkGjxW7waZP1gyfbBvMzKKQ3Szv-TiH3l1Z5-P74mZO5wdfniDMxtIE1O1n5dnTzoKFnNRHduJ3rkgjJ8ye_V1vOTbZl8pLAi9F6gioqTz4aYlYV8JR4cmhUA%3D&request_ab2=0&zoneid=5319948&js_build=iclick-v1.426.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.426.0&bs=5771f4a3-4ed6-423f-bbb9-6b5775217ebf&userId=6dbc070e84f84f79914c8d758e2d211f&m=link
IP
File type JSON data\012- , ASCII text, with very long lines (2190), with no line terminators
Hash f82b986618eb61c5eb49e9e85158f7ce
07a372627930be100ea4aa0a1a6afa7a7db872a3
e5804c55ae1dfde2ba6da47783b84a1459314dd3f61cf1f9f22fdf662d6c5095
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=E0ihNdJFjb7dUeNFmLrcWA_p_V4iD3WgS72JKHyD-Vfe5Bi7O8SD92-dVzQ-gaU8KH9NA4z9UMn3-jIcKoAu1cTmaXjr7m4Zr4ZkGjxW7waZP1gyfbBvMzKKQ3Szv-TiH3l1Z5-P74mZO5wdfniDMxtIE1O1n5dnTzoKFnNRHduJ3rkgjJ8ye_V1vOTbZl8pLAi9F6gioqTz4aYlYV8JR4cmhUA%3D&request_ab2=0&zoneid=5319948&js_build=iclick-v1.426.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.426.0&bs=5771f4a3-4ed6-423f-bbb9-6b5775217ebf&userId=6dbc070e84f84f79914c8d758e2d211f&m=link HTTP/1.1
Host: ardslediana.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streamlivenow.me/
Origin: http://streamlivenow.me
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 9afd62a321422d48c158e578382bceb8
Access-Control-Allow-Origin: http://streamlivenow.me
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=6dbc070e84f84f79914c8d758e2d211f; expires=Mon, 18 Sep 2023 16:18:34 GMT; path=/
oaidts=1663517914; expires=Mon, 18 Sep 2023 16:18:34 GMT; path=/
syncedCookie=true; expires=Sun, 25 Sep 2022 16:18:34 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
st.chatango.com/js/gz/emb.js
200 OK 24 kB URL HTTP/1.1 st.chatango.com/js/gz/emb.js
IP
File type ASCII text, with very long lines (1651)
Hash 43a6e3a24c5f6d710f01cd9ea166bedf
2b172372c84de07111687133d38ecaee8a15c99e
65878e1003da0b2d589980ebda0a59206831ff7e8be7747532c4080e35c600d7
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 16:18:34 GMT
Content-Type: application/x-javascript
Content-Length: 23804
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Expires: Sun, 18 Sep 2022 16:18:34 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
oaphoace.net/500/5345130?excludes=&oaid=6dbc070e84f84f79914c8d758e2d211f&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
200 OK 0 B URL HTTP/2 oaphoace.net/500/5345130?excludes=&oaid=6dbc070e84f84f79914c8d758e2d211f&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/5345130?excludes=&oaid=6dbc070e84f84f79914c8d758e2d211f&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://streamlivenow.me/
Origin: http://streamlivenow.me
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 16:18:34 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://streamlivenow.me
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9u5LaFF6ZTiYY7BCetZA2Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: L5TZ+AGKeM4qCAgTGjYFunBOWAQ=
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Sun, 18 Sep 2022 16:18:35 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c2900cacb3e6b33190e657a697ca589b
102eb3b32fc710cef2b7053100454c30d097bab3
d5bad2878173240c5dbcef360dd701c4f13de4576ba5dedbe882745ae7ea2fb0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&gjid=874988364&_gid=1623400534.1663517896&_u=YEBAAEAAAAAAAC~&z=1242486790
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&gjid=874988364&_gid=1623400534.1663517896&_u=YEBAAEAAAAAAAC~&z=1242486790
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&gjid=874988364&_gid=1623400534.1663517896&_u=YEBAAEAAAAAAAC~&z=1242486790 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://streamlivenow.me
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 18 Sep 2022 16:18:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
v3.sportsonline.to/channels/bra/SCCfwxq.png
200 OK 1.2 kB URL HTTP/2 v3.sportsonline.to/channels/bra/SCCfwxq.png
IP
File type PNG image data, 588 x 454, 8-bit colormap, non-interlaced\012- data
Hash 613678c01b1604d5cd1e515517e095a1
cb306e19705d9e1da2aa1487283b7f9f69ad330a
ae0433ac5d000ac03daf9059492d0390e427b7461332f0f488bbc6f44b5107a7
GET /channels/bra/SCCfwxq.png HTTP/1.1
Host: v3.sportsonline.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/channels/bra/br4.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: image/png
content-length: 1220
last-modified: Tue, 07 Dec 2021 14:48:15 GMT
etag: "61af742f-4c4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1740
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I1Dcnz98O6demRbbuA2iBlAmu5pnLjDvDEpgJzJ8Ig3Z%2FwGk5IbJvGplqYKseV8UmJTwZXbU4Ku%2BtzAMjou9ncyVd2dirwTOFVZbVtisHmWbEVn3dj1xq66yKgGiDiTvrhlyAzI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65f9abe5b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c2900cacb3e6b33190e657a697ca589b
102eb3b32fc710cef2b7053100454c30d097bab3
d5bad2878173240c5dbcef360dd701c4f13de4576ba5dedbe882745ae7ea2fb0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash c9148641f0ee3113f21de5ac67aff05c
2253a91991f2f841748c1642dcf70eb7b7c22371
931647517a7f0cdd3ab7a15f4604b36d2d323133c87670445856995088c9bb27
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "931647517A7F0CDD3AB7A15F4604B36D2D323133C87670445856995088C9BB27"
Last-Modified: Fri, 16 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12044
Expires: Sun, 18 Sep 2022 19:39:19 GMT
Date: Sun, 18 Sep 2022 16:18:35 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 919503e6c6c0d3ba143d7e3cb465a5f5
1673dd8383dbdb4f35a6f8b9c6fc43ad6a83fa9d
6987d6fe5bffd90a2f2e59fd8848a056f78a4622c336e7d73bafb52ad46729e7
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "6987D6FE5BFFD90A2F2E59FD8848A056F78A4622C336E7D73BAFB52AD46729E7"
Last-Modified: Fri, 16 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8572
Expires: Sun, 18 Sep 2022 18:41:27 GMT
Date: Sun, 18 Sep 2022 16:18:35 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-202511892-1
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-202511892-1
IP
File type ASCII text, with very long lines (1720)
Hash eb16db344d57cf5b28f30133fcf579b6
e1eede807de7b9b178c7426cc8288ce7ff90e97b
af269127d1a45aa1aa0e437ebd24cc26fede4546b2f08a71ac76d8cad5e57d1d
GET /gtag/js?id=UA-202511892-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Sep 2022 16:18:35 GMT
expires: Sun, 18 Sep 2022 16:18:35 GMT
cache-control: private, max-age=900
last-modified: Sun, 18 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42365
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superfastcdn.com/script/bootstrap.js
200 OK 35 kB URL HTTP/2 superfastcdn.com/script/bootstrap.js
IP
File type Unicode text, UTF-8 text, with very long lines (37814), with NEL line terminators
Hash 77a7839d719cc22c6193d67d8d03f136
05da4002692cc57a8b1a7efd0179c4b708c5fcd6
f49f676e40510885d12e1f96a5b4af9c2162484e5bb56b38a4544d619cd238e3
GET /script/bootstrap.js HTTP/1.1
Host: superfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdtIdFbEcftp9_8YvgIsPRNzE02uaUX_mG_-wT0H74a7FBpllpKZIxpROw0NQSvC2oOQjXICsOHH1mPH3i-gelIr
x-goog-generation: 1662626315119008
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100523
x-goog-hash: crc32c=PsCFGQ==, md5=kKQG58EUy5y9vRcdgoLiJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 18 Sep 2022 16:41:29 GMT
cache-control: public, max-age=14400
last-modified: Thu, 08 Sep 2022 08:38:35 GMT
etag: W/"90a406e7c114cb9cbdbd171d8282e224"
age: 2226
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EWz%2Fh10gvuqsMnLCki3vvMIedrA9mK44sKFt1tghWOMH9eApFXYP%2BqOQ6Yu6sF1PaXuBZZcncwvUMtUxHJFiPghhxBXG%2BwVro0sLZ%2B4g%2FslZwe%2FLj%2F3RxIlNKVhzVeKcOmHW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65f9fd410b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
v3.sportsonline.to/channels/bra/br4.php
200 OK 98 kB URL HTTP/2 v3.sportsonline.to/channels/bra/br4.php
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (822), with CRLF, LF line terminators
Hash cd3366d3f8fd32c3a80d94882d335aa4
873cfce4d3c99d221514c9af7eba47fd1075a771
3356fdced7fc9474589f2d66a96df63b6f2611eb95c879adb62b5bdd9d93f34a
GET /channels/bra/br4.php HTTP/1.1
Host: v3.sportsonline.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RsZMZ6TvGqgCBNvgDLbyq3eM8Q2hMXkZuxNnisrc%2Fsu%2BvuyTzKx9ZNo9eMX2GbFQFS3ndDs3IxuGCsBzy%2BkA5e0yR6TgLuXMPa1Ds3BNoXNG0kZdTHieZvESRIZzv3qjCcZ1HZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cb65f728fab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 4194de7cf168acc45fab74fcfef31916
c8a9629f3e21345f0cd0cd021dfe0c4081b3fae2
69c4f74c1b67c44c8bb359c78f978f6aa909d951e021e88c400e9f8516c5e20d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 05:29:14 GMT
Expires: Sat, 24 Sep 2022 05:29:13 GMT
Etag: "c8a9629f3e21345f0cd0cd021dfe0c4081b3fae2"
Cache-Control: max-age=478837,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb65fb59050b31-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 102e5f9b265818c813026b0b9bfc25d1
fa1e7f9c4dea40295aedbb6526cd79ac156b1c1b
f2a53e987fb86c7173d962309daba462ebddf69fdd937f3bdde618f22f18a4b8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 17:22:26 GMT
Expires: Sat, 24 Sep 2022 17:22:25 GMT
Etag: "fa1e7f9c4dea40295aedbb6526cd79ac156b1c1b"
Cache-Control: max-age=521629,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb65fa8edeb51d-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 846cbf15e676b7aa9477514a183675a5
a4d9089b67555c61684a7d0b9b58668a34a16c7c
bb8e766ec5696ec9fc878a7db1496cc5fc07ef046ce53092182c0fc98c927ecc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 26 kB IP
Hash e550b82579060d98cd4303ad74a17e20
7518cac62158309828cc496d201ec81175c20e1c
1ab1159955203b20b02003c054847d758438f097ccdce1a9845c7cb8c23b25fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash c9148641f0ee3113f21de5ac67aff05c
2253a91991f2f841748c1642dcf70eb7b7c22371
931647517a7f0cdd3ab7a15f4604b36d2d323133c87670445856995088c9bb27
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "931647517A7F0CDD3AB7A15F4604B36D2D323133C87670445856995088C9BB27"
Last-Modified: Fri, 16 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12044
Expires: Sun, 18 Sep 2022 19:39:19 GMT
Date: Sun, 18 Sep 2022 16:18:35 GMT
Connection: keep-alive
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&_u=YEBAAEAAAAAAAC~&z=1009018194
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&_u=YEBAAEAAAAAAAC~&z=1009018194
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&_u=YEBAAEAAAAAAAC~&z=1009018194 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Sep 2022 16:18:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&_u=YEBAAEAAAAAAAC~&z=1009018194
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&_u=YEBAAEAAAAAAAC~&z=1009018194
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-60210697-8&cid=1786052239.1663517896&jid=2010158994&_u=YEBAAEAAAAAAAC~&z=1009018194 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Sep 2022 16:18:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash d354ace91c615c3415540369eab54c1c
79cfe2fccbb7fddab9dcd16c46df649b56d6537f
59bbb07e9d706ac3eba01c24ca1980983208de1ed60d74627c4d16b2d9f2698d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 06:12:19 GMT
Expires: Sat, 24 Sep 2022 06:12:18 GMT
Etag: "79cfe2fccbb7fddab9dcd16c46df649b56d6537f"
Cache-Control: max-age=481422,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb65fb1e4cb4f3-OSL
cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js
200 OK 141 kB URL HTTP/2 cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (141142 bytes)
Hash 7e7fdfacdb1943ea810449001d165a53
fc230e8b4a933497a2da4a783574a5b07b889a7e
d530a67ca2ed5e6d11c2f4ef080c8b8c1cc55a587af2ef45da9a9415ebd788cf
GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4mj8w7qdfg86gg.smokelearned.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 18 Sep 2022 16:18:35 GMT
age: 15705
x-served-by: cache-fra19125-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 141142
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 306ca1345fdf0ca28498ad115cea782b
97f61ca341ad256d80ca5d18b534e16497a781fa
3c96cc4baa7a17c0c6319f91b533a568f474554bd402c399456fe99078d09f9d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash e4f248ed009e3cff3b4a39b431403d7d
78c5e7b601b2d0371ca97f7a67ba5baaacae733f
90bc4461cbf7254eb1b6a192881f096c6886df2be7d50847632f1bd22231ae4d
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "14C390FE97C42FEB40A30EF79029658260166DEC"
Expires: Mon, 19 Sep 2022 03:00:00 GMT
Last-Modified: Sun, 18 Sep 2022 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2552
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cb65fc8aeeb506-OSL
4mj8w7qdfg86gg.smokelearned.net/css/embed.min.css?v=0.4
200 OK 982 B URL HTTP/2 4mj8w7qdfg86gg.smokelearned.net/css/embed.min.css?v=0.4
IP
File type ASCII text, with very long lines (1263)
Hash e0043fe4b6dea4c470bea6a8d464c4a3
51b490aebec62b4907498ea426e3f9d8e999bd22
1f40b4bfb4d18878770346696f911a0edcdff2a4592791a1e7dbbcde0a2a949d
GET /css/embed.min.css?v=0.4 HTTP/1.1
Host: 4mj8w7qdfg86gg.smokelearned.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4mj8w7qdfg86gg.smokelearned.net/embed/q9lwkay
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: text/css
last-modified: Thu, 09 Jun 2022 09:49:16 GMT
etag: W/"62a1c21c-4f0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Txqa9vi7k%2FLcd%2Bgdmzj20TEtNHJ1oi49lbH4v79THlI6alMu%2B7GC55mFgpLIycGuz31UJ892Y32kJllmAIg1o5aZZJ8FYC5hnrK3rJZ31ohTgmSFy94%2BYjcE698XXJUY4k4Uq2%2FEXuIcSGK6YyEurqQ8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65fc0d341c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 102e5f9b265818c813026b0b9bfc25d1
fa1e7f9c4dea40295aedbb6526cd79ac156b1c1b
f2a53e987fb86c7173d962309daba462ebddf69fdd937f3bdde618f22f18a4b8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 17:22:26 GMT
Expires: Sat, 24 Sep 2022 17:22:25 GMT
Etag: "fa1e7f9c4dea40295aedbb6526cd79ac156b1c1b"
Cache-Control: max-age=521629,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb65fd1ae10b31-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash d354ace91c615c3415540369eab54c1c
79cfe2fccbb7fddab9dcd16c46df649b56d6537f
59bbb07e9d706ac3eba01c24ca1980983208de1ed60d74627c4d16b2d9f2698d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 06:12:19 GMT
Expires: Sat, 24 Sep 2022 06:12:18 GMT
Etag: "79cfe2fccbb7fddab9dcd16c46df649b56d6537f"
Cache-Control: max-age=481422,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb65fb1fcab4eb-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab87e1e4dc6abd919cf683dff901fe8
07cfbf03a72cb316844c48669a10484e63b7f887
d68b40168e5c06bd69b83e8529ea0b15996e7124d2c8b3c5b0be81c8946f04c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://4mj8w7qdfg86gg.smokelearned.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:10:21 GMT
expires: Wed, 13 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 428894
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab87e1e4dc6abd919cf683dff901fe8
07cfbf03a72cb316844c48669a10484e63b7f887
d68b40168e5c06bd69b83e8529ea0b15996e7124d2c8b3c5b0be81c8946f04c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
st.chatango.com/cfg/nc/r.json?3064050020000317151332914
200 OK 20 B URL HTTP/1.1 st.chatango.com/cfg/nc/r.json?3064050020000317151332914
IP
File type JSON data\012- , ASCII text
Hash 67a235cdf67d15044e66db2b3b799581
c6ddd33c979392cd5ba3a70d7c90360641e60c29
6eea499926669878dc267d25feeebbfd7826db0e55b82ce10db9e0004a3172b7
GET /cfg/nc/r.json?3064050020000317151332914 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: application/octet-stream
Content-Length: 20
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6106
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6106
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6106
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:18:36 GMT
Connection: keep-alive
4mj8w7qdfg86gg.smokelearned.net/embed/q9lwkay
200 OK 17 kB URL HTTP/2 4mj8w7qdfg86gg.smokelearned.net/embed/q9lwkay
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (21362)
Hash e50c1e0df9746849f20fd4904fe33f1e
5cf506767fd857889d24df0d1dcd796ceb1e4c63
537dd2fbb96ee55de922ad8427c51c125792cc8c87d9dec00d944e1582bd9684
GET /embed/q9lwkay HTTP/1.1
Host: 4mj8w7qdfg86gg.smokelearned.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: text/html; charset=UTF-8
set-cookie: hf1=1; expires=Mon, 19-Sep-2022 04:18:35 GMT; Max-Age=43200; path=/
hf2=1; expires=Mon, 19-Sep-2022 04:18:35 GMT; Max-Age=43200; path=/
hf3=1; expires=Mon, 19-Sep-2022 04:18:35 GMT; Max-Age=43200; path=/
hf4=1; expires=Mon, 19-Sep-2022 16:18:35 GMT; Max-Age=86400; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ncwpConabsBTK8Nx0wWUZKY%2FMcwruOEsFdK%2FbJ2UgM2TvTtmgf2jJphKNZTV7SADjg6z0tQURSPOrnZQF%2FzbRDboa7A976A3%2BwZkV5FNgXbwO%2BBNBD2Rc2bWSRDvCvobXq2hs40XojGVwEuADycJDoGr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cb65f9eb221c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7334a6bdb209350f41e4640960c9ce2a
0b00e1a594dc88c8fb05044a69cc0ba1eafc4946
bf946afeb52d95f27e2a271486accf87a0c169e5e78f6d57cace80564e2ed668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10554
x-amzn-requestid: 07497447-33e7-4f60-a3ff-974f581c5704
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn5tlG_7IAMFaIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263cbd-1964dc6548cb5f7c09f65b78;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:31:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4c7A4n-fW5-zEG1OjjUo8zWdY80KTpzwJdfKuDT0OjW5NpkZxxWB-A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:35 GMT
age: 66541
etag: "0b00e1a594dc88c8fb05044a69cc0ba1eafc4946"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51d067e534c477ce996b3e806f6a132e
451c1f67948e45909e636828e3d2a3099de922f0
e13318949733eb7992695c61570cc8b2961d881a8343c677a77cd035e787bbaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6869
x-amzn-requestid: 8d5cf972-bd9a-42b8-ba33-5dd05191e9f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6u1GspIAMF9vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263e5e-12430c8c7122a3594aba8949;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:38:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: leqr7rYJyeBFlYuFM2D-wGJfb7_w-5HbW2Y1aHwjTzZ9_4MTFybNaA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:08:03 GMT
age: 65433
etag: "451c1f67948e45909e636828e3d2a3099de922f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
youradexchange.com/script/suurl4.php?r=4827899&cbur=0.7025427209501504&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=http%3A%2F%2Fstreamlivenow.me%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0
200 OK 6.5 kB URL HTTP/2 youradexchange.com/script/suurl4.php?r=4827899&cbur=0.7025427209501504&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=http%3A%2F%2Fstreamlivenow.me%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0
IP
Hash 8565bdb2d7c61e42907433193b188b47
26769e052085c8a053abd4f1aabb8142aa8a9c9f
bdf4656cfc9550f8917e87ee213591a46ff18e4b4673488e42c7d1ce0ac115ca
GET /script/suurl4.php?r=4827899&cbur=0.7025427209501504&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=http%3A%2F%2Fstreamlivenow.me%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://v3.sportsonline.to/
Origin: https://v3.sportsonline.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9a9211e94d6aa2429e9663ef317707e
ac0d1af96508d026f9a1252d358660bd5671f9bd
36663b67119ae58b665e43d86b73045472cf23d73bf2c981754f479989690791
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5448
x-amzn-requestid: 3b63d209-af92-4d64-866a-d8f677aa62a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn659H9DIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263ea5-30e7f8a32603ba70671addec;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqzHFWav9sDzwBhF58p314oyYPwfcbmlplVt2oF9QxSBIi5ktgpS7w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:54 GMT
age: 66522
etag: "ac0d1af96508d026f9a1252d358660bd5671f9bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Q6pjncaouCXUu0Pz7v6xF_8ClxxVypUSeggW23Z-UTsPamKCTgwjmA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:00:17 GMT
age: 65899
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
st.chatango.com/h5/gz/r0817221641/id.html
200 OK 224 kB URL HTTP/1.1 st.chatango.com/h5/gz/r0817221641/id.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size 224 kB (224127 bytes)
Hash fc3ae4d65fdfcf6587ee0fd2e6341ca1
29b97c7cfc4081d173d28c84c774bc3ce891724d
b0a40dcfdea8674321e505dac154350a1bb1ef6067670208b02b6e4bd874f3a9
GET /h5/gz/r0817221641/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 16:18:35 GMT
Content-Type: text/html
Content-Length: 224127
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Expires: Mon, 18 Sep 2023 16:18:35 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
cdn.taboola.com/libtrc/chatango-network/loader.js
200 OK 21 kB URL HTTP/2 cdn.taboola.com/libtrc/chatango-network/loader.js
IP
File type ASCII text, with very long lines (65184)
Hash db18b0ec3bdba6d0f813f772efeb9b1c
2f898d9dc89056a95ea1ddd80d9b5e92e8878530
a2b8af200c85bf230584fb88708ab154899906fc5aae6ef745cc1b71febc71dd
GET /libtrc/chatango-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
etag: "39fb8b84b7960c6535373cd396dd0b5c2dc7db64"
last-modified: Sun, 18 Sep 2022 13:32:34 UTC
x-amz-id-2: 3PR5hkcc/aqERKIImTbRO4HPog5p/iQpNmPU+BCzncg+Q/j+3spOjahd6TimITugLmlMyHna/to=
x-amz-request-id: E3P0QGQP6BC1JTN5
x-amz-version-id: phOjDPexu8wB2HGMFR35txelEYJYdKRl
x-from-cache: 1
x-envoy-upstream-service-time: 4
accept-ranges: bytes
date: Sun, 18 Sep 2022 16:18:36 GMT
via: 1.1 varnish
age: 154
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663517917.560837,VS0,VE1
cache-control: private,max-age=14400
vary: Accept-Encoding, Accept-Encoding
abp: 30
content-length: 21384
X-Firefox-Spdy: h2
youradexchange.com/script/suurl4.php?r=5954546&cbur=0.664347576648568&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=https%3A%2F%2Fv3.sportsonline.to%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0
200 OK 146 kB URL HTTP/2 youradexchange.com/script/suurl4.php?r=5954546&cbur=0.664347576648568&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=https%3A%2F%2Fv3.sportsonline.to%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0
IP
Size 146 kB (145685 bytes)
Hash 247d744418cfc3d347d8dde9aa4008bc
615a1eb0bd3f51c2a259d7ab36fa3f371066c8c1
f305a2d2ecbb690b6652fb6583de17b9bc84074cf8e5e33562fd9d15d57b99ef
GET /script/suurl4.php?r=5954546&cbur=0.664347576648568&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=https%3A%2F%2Fv3.sportsonline.to%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4mj8w7qdfg86gg.smokelearned.net/
Origin: https://4mj8w7qdfg86gg.smokelearned.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP
File type ASCII text, with very long lines (3936)
Hash ccbe1595614949962ea0f4c9ec84e783
65525e8918223db782724d28fce74efb513a0fb0
f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 18 Sep 2022 02:41:00 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _jpXWWNZ-ayrff7WdA-Ltp2W2Gy2GPKTnlmHTYM9chQjS4ex3VML0A==
age: 49059
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash f16c86ef00d0afc54f4dfc073c1358c0
6fe0da2998f5a699dc004f46ab51ee530eccfc80
8c24e913cdac6e3bcf00913e420a88d426f3b65229d4a5c51f7e1ac4806b9dd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2157
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:37 GMT
Last-Modified: Sun, 18 Sep 2022 15:42:40 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=16%3A18%3A18.436&type=usage&msg=rtus&llvl=2&id=7179&cv=20220918-2-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=16%3A18%3A18.436&type=usage&msg=rtus&llvl=2&id=7179&cv=20220918-2-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chatango-chatango1/log/2/debug?tim=16%3A18%3A18.436&type=usage&msg=rtus&llvl=2&id=7179&cv=20220918-2-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 18 Sep 2022 16:18:37 GMT
x-fastly-to-nlb-rtt: 23850
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 9a5c295d5ce16b9dd85f0c4ee8832b6d
1283bcadb0bf5eea2e440d1421fb029d7fbc6d5e
ff167f9b20212414e521e02f544bcc4cc5db458b34d74212178af082445ecc4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1835
Cache-Control: max-age=127119
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:37 GMT
Etag: "63268b41-139"
Expires: Tue, 20 Sep 2022 03:37:16 GMT
Last-Modified: Sun, 18 Sep 2022 03:06:41 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=bt0xE180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRlBhZXFRdnVRa2llRWRlcVNzNFdzcWNORzIxNjdxWDVsc2liRG1vVllZUg; expires=Fri, 13 Oct 2023 16:18:37 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 248666
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash c3117d901833d7000c2c09931a94e69a
abd5bdace6ba59ded79c3ff876c5bc0146958e75
d19ab39f76568678bd6049922d69c12ddb110073bc055a5d869c3fd1e1e3d16c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5608
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:37 GMT
Last-Modified: Sun, 18 Sep 2022 14:45:10 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash c3117d901833d7000c2c09931a94e69a
abd5bdace6ba59ded79c3ff876c5bc0146958e75
d19ab39f76568678bd6049922d69c12ddb110073bc055a5d869c3fd1e1e3d16c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5608
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:37 GMT
Last-Modified: Sun, 18 Sep 2022 14:45:10 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://st.chatango.com/
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 419236
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 3c332920bda17c131bfd2819aa4241e3
494308095340a47c938be13160b2137be8a1f931
3fcbdb176cd7754b7cdb31d147eb57e1dcae3263a5543c8aee9d20cfd8af394a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5169
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 16:18:37 GMT
Last-Modified: Sun, 18 Sep 2022 14:52:28 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:37 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
widgets.amung.us/draw/?w=colored&n=89700&c=000000ffffff&p=left
200 OK 1.7 kB URL HTTP/2 widgets.amung.us/draw/?w=colored&n=89700&c=000000ffffff&p=left
IP
File type PNG image data, 81 x 29, 8-bit colormap, non-interlaced\012- data
Hash c5e3e898386c5c58c6b1fc8d33d70f22
7f63b5611da11d005b858cc398ded5912da47de8
0e78ae89b325570d9a461c5dc6b2b813f8221560b683411c7e4b85aa44e587f4
GET /draw/?w=colored&n=89700&c=000000ffffff&p=left HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4mj8w7qdfg86gg.smokelearned.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: image/png
content-disposition: filename=wau-widget.png
expires: Sun, 18 Sep 2022 14:14:07 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 93869
last-modified: Sat, 17 Sep 2022 14:14:07 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb66038ac4b509-OSL
X-Firefox-Spdy: h2
oaphoace.net/impression/prJ6Z6vgGmEfu7J-pw0TUdQSdk6CbUQQHISnN6ipI7yblpmRApzkkQRp6lVwPTROATmVGuMg975E0BbHH2l7qckMbPk5rMVK7pzOzdTf4BaeAZYdhNapR22F3vYV7-wzRyeG6MyzGL9L-mctLR2UG3Fn9moPTW2MTrr7xWk8CPeo93LPq5bbHEopzh57AqVZpWG-57CFUgGcW02kgC6aWFmK84GSZqGRcNtF46Dskh6RimNl_hmv045v9zxcEsygBPrQst71Ec8LD19pcfIqQFBAxjt9cYsYGnowAMqEq2zGpbnlPry3YhhArtvv1MNAGwJjrUeM7dRiolLZBpndi7OssB9_myLx6gCPTeHOLDG0UpkCY22c7sQpl2lSxjtS7bEe0Zyxgpn8T786DxfZXlkaLOoPRmMTMgi_AiJ4RCl7sVLVxHJ8_A4NOJJNUu8EF7CKrgC3BwkYxc8TZW3d-u9I5gvqRECcz145nhtXtSgwkYYmu7CDPsBfJjOkF14IMnDKJuswtwbHMMcW_L26g29iTwXa1wPkbpDa-tYzs3HOSaoyZMWSARUaTV9ATbVRB9-6h-G1aLofYy9m9hwYMxmXKE6Y5jTM?_z=5345130&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
200 OK 43 B URL HTTP/2 oaphoace.net/impression/prJ6Z6vgGmEfu7J-pw0TUdQSdk6CbUQQHISnN6ipI7yblpmRApzkkQRp6lVwPTROATmVGuMg975E0BbHH2l7qckMbPk5rMVK7pzOzdTf4BaeAZYdhNapR22F3vYV7-wzRyeG6MyzGL9L-mctLR2UG3Fn9moPTW2MTrr7xWk8CPeo93LPq5bbHEopzh57AqVZpWG-57CFUgGcW02kgC6aWFmK84GSZqGRcNtF46Dskh6RimNl_hmv045v9zxcEsygBPrQst71Ec8LD19pcfIqQFBAxjt9cYsYGnowAMqEq2zGpbnlPry3YhhArtvv1MNAGwJjrUeM7dRiolLZBpndi7OssB9_myLx6gCPTeHOLDG0UpkCY22c7sQpl2lSxjtS7bEe0Zyxgpn8T786DxfZXlkaLOoPRmMTMgi_AiJ4RCl7sVLVxHJ8_A4NOJJNUu8EF7CKrgC3BwkYxc8TZW3d-u9I5gvqRECcz145nhtXtSgwkYYmu7CDPsBfJjOkF14IMnDKJuswtwbHMMcW_L26g29iTwXa1wPkbpDa-tYzs3HOSaoyZMWSARUaTV9ATbVRB9-6h-G1aLofYy9m9hwYMxmXKE6Y5jTM?_z=5345130&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert quad9 Sinkholed
GET /impression/prJ6Z6vgGmEfu7J-pw0TUdQSdk6CbUQQHISnN6ipI7yblpmRApzkkQRp6lVwPTROATmVGuMg975E0BbHH2l7qckMbPk5rMVK7pzOzdTf4BaeAZYdhNapR22F3vYV7-wzRyeG6MyzGL9L-mctLR2UG3Fn9moPTW2MTrr7xWk8CPeo93LPq5bbHEopzh57AqVZpWG-57CFUgGcW02kgC6aWFmK84GSZqGRcNtF46Dskh6RimNl_hmv045v9zxcEsygBPrQst71Ec8LD19pcfIqQFBAxjt9cYsYGnowAMqEq2zGpbnlPry3YhhArtvv1MNAGwJjrUeM7dRiolLZBpndi7OssB9_myLx6gCPTeHOLDG0UpkCY22c7sQpl2lSxjtS7bEe0Zyxgpn8T786DxfZXlkaLOoPRmMTMgi_AiJ4RCl7sVLVxHJ8_A4NOJJNUu8EF7CKrgC3BwkYxc8TZW3d-u9I5gvqRECcz145nhtXtSgwkYYmu7CDPsBfJjOkF14IMnDKJuswtwbHMMcW_L26g29iTwXa1wPkbpDa-tYzs3HOSaoyZMWSARUaTV9ATbVRB9-6h-G1aLofYy9m9hwYMxmXKE6Y5jTM?_z=5345130&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Cookie: OAID=6dbc070e84f84f79914c8d758e2d211f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 16:18:39 GMT
content-type: image/gif
content-length: 43
x-trace-id: 2de12e9dec01f7ff7f33afdc3d96fa63
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 333871
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 333871
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
whos.amung.us/cwidget/h6qfsjssi5/000000ffffff.png
307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/cwidget/h6qfsjssi5/000000ffffff.png
IP
GET /cwidget/h6qfsjssi5/000000ffffff.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4mj8w7qdfg86gg.smokelearned.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/draw/?w=colored&n=89700&c=000000ffffff&p=left
cache-control: max-age=295
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74cb660228ddb509-OSL
X-Firefox-Spdy: h2
4mj8w7qdfg86gg.smokelearned.net/js/jquery.min.js
200 OK 0 B URL HTTP/2 4mj8w7qdfg86gg.smokelearned.net/js/jquery.min.js
IP
GET /js/jquery.min.js HTTP/1.1
Host: 4mj8w7qdfg86gg.smokelearned.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4mj8w7qdfg86gg.smokelearned.net/embed/q9lwkay
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: application/javascript
last-modified: Mon, 09 Nov 2020 18:05:02 GMT
etag: W/"5fa984ce-15283"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IN4C%2Feq1Ude%2BC3A1GKsvQi0iV%2BE88BpFoNktOtqVOppVjCVqyc6v%2FDLk68ZQ9%2FP%2FEjpO5Iqm%2FAPoQtfgKVh1BJJPK9dLQDmvPFeUwckbu7%2BIyb3e7noPr1JU9ETDxUETiXk%2BMKryYzL%2Ft80f4lpHaXFZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65fc0d371c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
swarm.video/nsns.js
200 OK 0 B IP
GET /nsns.js HTTP/1.1
Host: swarm.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4mj8w7qdfg86gg.smokelearned.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=519718
etag: W/"7ee26-1814955381e"
last-modified: Thu, 09 Jun 2022 16:38:50 GMT
x-powered-by: Express
cf-cache-status: HIT
age: 161245
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gKUctndfY46n41FGXGOleB%2B4MjF23ajHynqUV9GqItm4bvNvcZAtq%2FAU3J5x%2Bckay019tR5SUfsVMciP2GUHPeBEPp8spuTVCi%2BEaY19Eeczfh4wVSIieCT1hvO0MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65fee91c1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://st.chatango.com/
x-crto-bundle: 5zuWSF9vTmY3empOcHJBaHlzcyUyQlZsSlElMkJyb2pocFZUbnJZcTZIbUk0eXVQSXZJbGZUQVFmWGNMYVh1Tnl4eVRYeE1pV3I5WWs3QTRPT051RXdaJTJGYk9jSzRJZ2VpNUtwNEZRRElJRzF4ZnlacWVyRDNDUk9jNUFoRGJFcDlsV1VaZDIlMkI5Tlk1V2dsN3dkOUNyNCUyQiUyQkRleGM1b0ElM0QlM0Q
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:37 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 1879461
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
oaphoace.net/500/5345130?excludes=&oaid=6dbc070e84f84f79914c8d758e2d211f&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
200 OK 0 B URL HTTP/2 oaphoace.net/500/5345130?excludes=&oaid=6dbc070e84f84f79914c8d758e2d211f&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /500/5345130?excludes=&oaid=6dbc070e84f84f79914c8d758e2d211f&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D125164839%3Fsid%3D1491075&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Cookie: OAID=8368e8db50fe42f8a6bddad8ffd8857c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 16:18:34 GMT
content-type: application/javascript
x-trace-id: 8b46eaf8a56df22ed3bdb2d47594c8e4
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: http://streamlivenow.me
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=6dbc070e84f84f79914c8d758e2d211f; expires=Mon, 18 Sep 2023 16:18:34 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
awstats.cloud/js/plausible.js
200 OK 0 B URL HTTP/2 awstats.cloud/js/plausible.js
IP
GET /js/plausible.js HTTP/1.1
Host: awstats.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4mj8w7qdfg86gg.smokelearned.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zVGsPwsjUkVFXZdrr6IiE7CSwNH98cdI7g2ilaZx5%2Fcd1LfxXiVe8wXecnNmeBrKzc%2FpbJXzyMqaQB9H8Ljf3h56I2zyH4rf7ebpATslND5oZ7q%2FKcBtLJUiCpTFvcqk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65fc4a8eb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:37 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 621716
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
200 OK 0 B IP
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:34 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWmCHz7WuEoLnJkhEMUae61Wa1eJzK0Fk7fpgMwigeCiVlcpFIxmUgScB36hYTpyXt4znenQqmxDslQQzpogBoVw4YirZjoS1Q1GJVfiD1bTCLG8%2FzRqBvWysUURYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65f43f280b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whos.amung.us/cwidget/sportsonline/000000ffffff.png
307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/cwidget/sportsonline/000000ffffff.png
IP
GET /cwidget/sportsonline/000000ffffff.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/draw/?w=colored&n=27900&c=000000ffffff&p=left
cache-control: max-age=295
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74cb65fb9f6fb509-OSL
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 101517
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=streamlivenow.me&info=IbqIXF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRlBhZXFRdnVRa2llRWRlcVNzNFdzcWVESjFTSVYycWdOMERiWFZRaU00eA&idsd=-422684878,1724850354&rtusCallerId=72&lsw=1
200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=streamlivenow.me&info=IbqIXF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRlBhZXFRdnVRa2llRWRlcVNzNFdzcWVESjFTSVYycWdOMERiWFZRaU00eA&idsd=-422684878,1724850354&rtusCallerId=72&lsw=1
IP
GET /sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=streamlivenow.me&info=IbqIXF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRlBhZXFRdnVRa2llRWRlcVNzNFdzcWVESjFTSVYycWdOMERiWFZRaU00eA&idsd=-422684878,1724850354&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=streamlivenow.me
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 516970
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
oaphoace.net/401/5345130
200 OK 0 B IP
Analyzer Verdict Alert quad9 Sinkholed
GET /401/5345130 HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 16:18:34 GMT
content-type: application/javascript
x-trace-id: 8afc0cb34e9655a1d87e42fd5f07bcf6
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=8368e8db50fe42f8a6bddad8ffd8857c; expires=Mon, 18 Sep 2023 16:18:34 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
widgets.amung.us/draw/?w=colored&n=27900&c=000000ffffff&p=left
200 OK 0 B URL HTTP/2 widgets.amung.us/draw/?w=colored&n=27900&c=000000ffffff&p=left
IP
GET /draw/?w=colored&n=27900&c=000000ffffff&p=left HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://v3.sportsonline.to/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:35 GMT
content-type: image/png
content-disposition: filename=wau-widget.png
expires: Sun, 18 Sep 2022 11:24:43 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 104032
last-modified: Sat, 17 Sep 2022 11:24:43 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb65fc68d6b509-OSL
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=streamlivenow.me
200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=streamlivenow.me
IP
GET /syncframe?origin=rtus&topUrl=streamlivenow.me HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=0761323e-3b11-46a6-ad87-dac9fd2689c5; expires=Fri, 13 Oct 2023 16:18:36 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 335250
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=bt0xE180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRlBhZXFRdnVRa2llRWRlcVNzNFdzcWNORzIxNjdxWDVsc2liRG1vVllZUg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 16:18:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=IbqIXF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRlBhZXFRdnVRa2llRWRlcVNzNFdzcWVESjFTSVYycWdOMERiWFZRaU00eA; expires=Fri, 13 Oct 2023 16:18:37 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 268941
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
104.21.67.43
34.120.237.76
178.250.2.150
139.45.197.239
104.21.72.239
151.101.85.229
141.226.228.48
23.36.76.226