Overview

URLkhomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/
IP 172.67.177.117 (United States)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 22:48:14 UTC
StatusLoading report..
IDS alerts0
Blocklist alert21
urlquery alerts No alerts detected
Tags None

Domain Summary (21)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
adigi.icu (64) 0 2022-07-08 04:37:34 UTC 2022-11-29 22:25:19 UTC 104.26.10.49 Unknown ranking
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
fonts.gstatic.com (6) 0 2014-09-09 00:40:21 UTC 2022-12-01 22:08:56 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.214.236.46
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-12-01 21:18:15 UTC 142.250.74.110
googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-12-01 20:58:36 UTC 142.250.74.66
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
www.googletagmanager.com (2) 75 2013-05-22 02:07:37 UTC 2022-12-01 18:48:44 UTC 172.217.21.168
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-12-01 17:28:41 UTC 142.250.74.106
chat.livebong88.tv (1) 0 2022-11-25 13:13:51 UTC 2022-11-29 22:25:04 UTC 172.67.177.76 Unknown ranking
ocsp.digicert.com (8) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-01 17:12:49 UTC 34.117.237.239
khomuc5.tv (38) 0 2022-05-25 02:51:13 UTC 2022-12-01 21:14:29 UTC 188.114.96.1 Unknown ranking
cdnjs.cloudflare.com (1) 235 2015-04-17 20:46:33 UTC 2022-12-01 18:10:44 UTC 104.17.25.14
e1.o.lencr.org (1) 6159 No data No data 23.36.76.226
api.livebong88.tv (3) 0 2022-07-23 10:55:56 UTC 2022-11-29 22:25:05 UTC 172.67.177.76 Unknown ranking
pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-12-01 21:54:52 UTC 142.250.74.2
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-01 17:14:08 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
ocsp.pki.goog (12) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
storage.livebong88.tv (9) 0 2022-07-10 16:48:22 UTC 2022-11-29 22:25:05 UTC 104.21.80.103 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/bootstrap5/bootstrap.min.css?v (...) Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/bootstrap5/bootstrap.min.js?ve (...) Phishing
2022-12-01 2 khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/ Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/videojs/videojs-contrib-1.js Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/countdown/countdown.js?v=1.1.6 Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/auth.js?v=1668490726 Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/app.js?v=1669775740 Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/js/trigger-add-button-bet-now.js?v=1.0.8 Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/vendor/slick/slick.min.js?v=1.0.0 Phishing
2022-12-01 2 khomuc5.tv/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js Phishing
2022-12-01 2 khomuc5.tv/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js Phishing
2022-12-01 2 khomuc5.tv/assets/ic_send.e1f5a286.svg Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/images/ic-ttwc.svg?ver=1 Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/fonts/SVN-OuterSans-Regular.ttf Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/videojs/video.min.js Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/fonts/SVN-OuterSans-Bold.ttf Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/images/logo.svg Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/images/ic-next.svg Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/images/ic-prev.svg Phishing
2022-12-01 2 khomuc5.tv/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-12-01 2 khomuc5.tv/wp-content/themes/khomuctv/assets/jquery/jquery-ui.js?v=1.13.1 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.177.117
Date UQ / IDS / BL URL IP
2022-12-04 18:45:11 +0000 0 - 0 - 24 khomuc5.tv/truc-tiep-england-vs-senegal-05-12 (...) 172.67.177.117
2022-12-01 22:48:14 +0000 0 - 0 - 21 khomuc5.tv/truc-tiep-costa-rica-vs-germany-02 (...) 172.67.177.117
2022-11-25 15:21:43 +0000 0 - 0 - 23 khomuc5.tv/truc-tiep-netherlands-vs-ecuador-2 (...) 172.67.177.117
2022-11-05 04:56:29 +0000 0 - 0 - 2 cracksoftwaress.co/steinberg-nuendo-10-crack- (...) 172.67.177.117
2022-09-04 03:19:13 +0000 0 - 0 - 2 ulvabuyout.xyz/ 172.67.177.117


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-01-28 14:21:42 +0000 0 - 1 - 0 www.gol8102.com/apps/ole777idr-setup-3.1.0.ex (...) 188.114.96.1
2023-01-28 14:20:30 +0000 0 - 1 - 0 www.arcai.com/download/netcut.exe 188.114.96.1
2023-01-28 14:19:59 +0000 0 - 1 - 0 suntrees.icu/KJ8DUI6FDPONF76F32KFUY1WQNB0?o=3 (...) 172.67.173.24
2023-01-28 14:19:43 +0000 0 - 2 - 0 tehnofan.com.ua/2023/01/28/kyyivstar-cherez-d (...) 188.114.97.1
2023-01-28 14:19:27 +0000 0 - 2 - 5 rdsurvey366.top/finance-survey.html 104.21.23.243


Last 5 reports on domain: khomuc5.tv
Date UQ / IDS / BL URL IP
2022-12-10 21:25:19 +0000 0 - 0 - 21 khomuc5.tv/truc-tiep-england-vs-france-11-12- (...) 188.114.97.1
2022-12-06 07:30:23 +0000 0 - 0 - 22 khomuc5.tv/truc-tiep-france-vs-poland-04-12-2 (...) 188.114.96.1
2022-12-04 18:45:11 +0000 0 - 0 - 24 khomuc5.tv/truc-tiep-england-vs-senegal-05-12 (...) 172.67.177.117
2022-12-03 21:57:28 +0000 0 - 0 - 22 khomuc5.tv/truc-tiep-south-korea-vs-portugal- (...) 188.114.97.1
2022-12-01 22:48:14 +0000 0 - 0 - 21 khomuc5.tv/truc-tiep-costa-rica-vs-germany-02 (...) 172.67.177.117


No other reports with similar screenshot

JavaScript

Executed Scripts (27)

Executed Evals (1)
#1 JavaScript::Eval (size: 31) - SHA256: 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1
(a = 0) => {
    let b;
    const c = class {};
}

Executed Writes (0)


HTTP Transactions (167)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7618
Expires: Fri, 02 Dec 2022 00:54:59 GMT
Date: Thu, 01 Dec 2022 22:48:01 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1015
Cache-Control: max-age=129606
Date: Thu, 01 Dec 2022 22:48:01 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:48:07 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 22:19:49 GMT
cache-control: public,max-age=3600
age: 1692
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2491
Expires: Thu, 01 Dec 2022 23:29:32 GMT
Date: Thu, 01 Dec 2022 22:48:01 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: /U/jcuiUHGhiLRihDPGIBS0a0KO+0sjdgzQA9jol0SmWlgvNpIPmc7m4uNP/bSyXW5U8h8sSbjQ=
x-amz-request-id: ZD20RXBY1YXYSP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 22:46:28 GMT
age: 93
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 22:48:01 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/themes/khomuctv/assets/jquery/jquery.min.js?v=3.6.0 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-15d9d"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2BVoz7LiXCMUem78mGFAGlfUbFS1p8XAbg4Pa%2Bz8npWjsL23TqniqEikdLzKLCNTQI%2BLzalVomIwj3z%2BcnDupsNCQUQwXMgigZ4TSo4LSaGrIDXGlBLQe2JiCVqb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e32f9eeb4f4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   34778
Md5:    581d5dbdcf26ba2614721e41b238c2c7
Sha1:   bfde8b5e1d2a57ceafcaf76fc5088a48f2964745
Sha256: cb0ae46753c8b5f437bb72dc01417690f0b520bbabecc486d06bd421d552d3d0
                                        
                                            GET /wp-content/themes/khomuctv/assets/font-awesome/css/font-awesome.min.css HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-7918"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FkmJccthYBD7aC4OpeeYpkcKbmiZo1KoQTOVSCElp9tPBhQyONkOF06I3rvDHSm%2B53f3%2BlNTsvdJsJMHmcRZ8bmG8RUEXiGHeIbwrwmGZZAbYrammUThTevKNFbb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e32fc7cb52d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   7807
Md5:    72e5580f63813b931f26cc394f03dafe
Sha1:   a142f0f90b34d3119e7a20d45faff1aa32864bf2
Sha256: 5b2d00a1e9b566eec47655ce8c8981d87493da936a57a3857a35bb526c5f75e9
                                        
                                            GET /wp-content/themes/khomuctv/assets/jquery/jquery-ui.min.css HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-7d4c"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5VgTL9zJhEaDBvJ9WglWRcMJDxV8NnbaoU3zjjJqtGfimz6Eq3vOULwLnEuhRrGHpkrHlbofCDPPfhGQDebwNV4cXBz17Kc8ibFxSsT3OCig7DBSvgtPD1Qyyewx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e330c700b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (29137)
Size:   8898
Md5:    571ef5bb416a0a1d1cc99761031d6ce8
Sha1:   4d0efacd7c827c751410aff4c1963050b87027b9
Sha256: cb800b0349f4f0ae40b2f7b9a8e2ac2b1a9c8f8cdbdb6f6f5fd23d4ce7f296c6
                                        
                                            GET /wp-content/themes/khomuctv/assets/bootstrap5/bootstrap.min.css?ver=5.9.1 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-28021"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BUkiDXni7y8%2Bu8e9g5ouoJuykRjl1H2DRGCi8Dv2u3TIKnlXeiDFkNHqDHwyJLmE8ZZJ3OubAD1LG1LiqtUzAahNuwBcKhPtXzTpK6p%2FhN7fn%2FXtAiUlYYZd9BRT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e330e1fb4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65306)
Size:   29770
Md5:    b562001eb0789848aaf601e2f733fa7f
Sha1:   e2e75a04078854076f6f984944db951b821fe27e
Sha256: b18eb78bdcfb244911595dce04601cc570a5d31d6b93282dd10ae8175e7a736c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/videojs/video-js.css HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-b48d"
Expires: Fri, 30 Dec 2022 19:07:16 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99644
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=loBI11KXRSSvfWwXhCdxIBDTRK9%2BWdik8bUJhZyN5t2NVhccNIanS%2BtgbIqGL9edI%2BGa%2Be%2FWzOD5VMFcjMSfgy5QLTd9zICyQ0%2FXI%2FKGOJPNleUR4yrSdRSfy8Co"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e331c97b52d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5844)
Size:   12391
Md5:    cca32eca4f7437feaf4a989a367c27b3
Sha1:   16f5b6e0b48bf2b7b415b4ea4fa492fb8f8c987d
Sha256: b455adf26e154c37ad9ca73d8c56fd232d972ba5045803e3c66c4ee760910b3b
                                        
                                            GET /wp-content/themes/khomuctv/assets/bootstrap5/bootstrap.min.js?ver=5.9.1 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-e753"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iqby17GMpc8dyO61E0GzmUgoApc8yVyS8FYfOnPxn7v6uqCBDxA8D7Je7ZpjfBHfHVzjMNZ1TpsCP4dfBG7jzt1ObWrI7OrJfHEvxS4zbxVc%2B1%2B%2F41NtpgiCjcz9"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e331a03b4f4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (58940)
Size:   18917
Md5:    2bc53c1712c621c13e67cccb3bc02866
Sha1:   a630925b052cf7a4f8e0a8eff362594b2316dfff
Sha256: f0e080d7e8555bfc41d8f472016a29decf201c116c32cba78ff10b6a6c169202

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/ HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 21:14:41 GMT
Vary: Accept-Encoding, Cookie
Cache-Control: no-cache, no-store, must-revalidate
X-Rocket-Nginx-Serving-Static: HIT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bZF837yjGsVpK2%2BMkxjqQ4MGemzFsMXcVEOcWMHap8zC0D6lglE8p3pIvFczPE0sPIiIzRBx32ta6kKS68BZ22OlpKO8rp3xClhxrsiLlvTJpfCUVOR9yx5VPbPi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e2fcb68b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size:   16000
Md5:    fd83cf2e6ce92e470d833a30177548d9
Sha1:   3cd88f70e086bd9c05d858f42a9ab63b9f0ed776
Sha256: ec2f1181f52ec08fae0e7f7da4ce3ca8c59204d02be71c9203c84eead97bce79

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/videojs/videojs-contrib-1.css HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-3cf"
Expires: Fri, 30 Dec 2022 19:07:31 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99630
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z7uPuQ0qxQKvW50GpFZLUcyqld2RyUObBG3EtC1kplkzpBpm%2Fc7eMeDU27Yo%2FZ6wSpklrtTwH81E3tQe99BU2LAGKG5x57wiPbKFbAV%2BXEY6EKiidRsvhIYo1nF3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e334e83b4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (974)
Size:   335
Md5:    41c46910f892bd18e4991130e9a22e5b
Sha1:   2ef45f30b23e8ce75e59ed41a155b0595dcf3bb4
Sha256: 9de744c43acb42907eef2f761f915529da0e60bba4d938cc0417c6606f868a8c
                                        
                                            GET /wp-content/themes/khomuctv/assets/videojs/videojs-contrib-1.js HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-16e3b"
Expires: Fri, 30 Dec 2022 19:07:31 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99630
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZVlUqEzMkvLMrKz8M8L5vf9P0J%2FNveE%2BzPiLqyTxlrOD2y4aYTJes2y92%2BHVETQc4r00EjvSz%2BDz76a2WEKdZIaVjkkXXOtJIF4Pz9CRyABFQu8I8kLqfhtLVYJZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e335cd6b52d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   27156
Md5:    09863b8bb2d903942a095cdc4ea180c7
Sha1:   112c854d902dbcf84012dbf6e620dfcc2ae6c10f
Sha256: 98f9d234b38130ff3df3aed14325c88648f9f90803abd186873b4b42ceac7b90

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/countdown/countdown.js?v=1.1.6 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 Aug 2022 07:34:36 GMT
Vary: Accept-Encoding
ETag: W/"62e8d38c-8f9"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tW8picuWG0dxVTnBMO4qNKQ1MZjaEWYnG5s82ILIbEwpsG%2F3BPFszoNIt%2B1p05LzF0VpWDWy2BR0cdRru%2BttSc%2BPJqbq18w9KEip04jpZBPn%2B0Smm12nn99C2s3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e335a4cb4f4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   824
Md5:    db7c95b734690845c8e6b402be275a9d
Sha1:   9f8eca0b77c34f5cb7a4670d0c5ca60aab8bb778
Sha256: 657c8154e53165412143fe2d429a0ca5a675447f01189ab1f538d8c62c7c35e8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/videojs/videojs-resolution-switcher.js?v=1.0 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-33bc"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lkrTZphXwFco8%2F1Y5sjtuQwnpEw1ZVEqMt4hwqbRfjT83HbarQS03juaLWME%2BJmPuI8vIogwzLFC5hnL6WX%2BYy%2F2K2PqOWaOIDusZGaqO7zZvfiJR9ICi%2BCN0k4F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e334a55b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   3918
Md5:    d35922db1266bfc21bcbbbdb8a7d5e32
Sha1:   191578bb6f709dcbdc6d910a45828caa8e7971b9
Sha256: 3364139226d1a9917463b2433d8c62f5a72c13c6a1e605fd9cd98a4ad9e9d39d
                                        
                                            GET /wp-content/themes/khomuctv/assets/countdown/init.js?v=1.1.2 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-142"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YGFBYTetjlM1B9gRlsWbMaB5MiFA58VJYGCtutPwTU1ax%2FtX7iySdLmLbUNO23upgoY6vHfc5H84jTvreKMpCouJ4YTU%2F%2BvWPt0A8gBN8X6l4%2BCgLljC4RcOTLEU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33afc4b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   219
Md5:    d0667b548a3b05cc6328b1bacc7b8a45
Sha1:   c632d340c38a33dfc4434eee655c12ce550cf1b9
Sha256: 892efd333f9d04e27aaf17522a78cd7852b49607c7f87e36345d59b61fae55fe
                                        
                                            GET /wp-content/themes/khomuctv/assets/match.js?v=1669300782 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 14:39:42 GMT
Vary: Accept-Encoding
ETag: W/"637f822e-126b2"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jQz9Ow6N6ntrxtLMMP7%2Bqtw0bv1P25rDEb73lYQ%2BG24lcxRnhYnYAUzy14Ps%2B7zFuw7qvAO9qHHVFAUfPOQbZiiFPbdlsYvA1GFkim6TEQseuhhTDUmVnYSvT9vK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33aee7b4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1093)
Size:   16945
Md5:    bef343e3d2e726a0782fff616984e3a9
Sha1:   d34a62d6c3056eb84cae19c4dba8bc7108b9a512
Sha256: dbb5f6fec77b90f904f6669cd1608f992e07ad895b117d5fa6d0db841a296b09
                                        
                                            GET /wp-content/themes/khomuctv/assets/auth.js?v=1668490726 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 05:38:46 GMT
Vary: Accept-Encoding
ETag: W/"637325e6-7fe"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AzTGfIo35dKRcXxyJ38EcFKBxYyOFmKdoZRxPdY38UDHGdO%2BwbL%2FWx%2Fd%2B5S%2FWJ8BKs8p6LoFTFO8csLYpth7UDSoowZHhY90d2GfFU6XNsaJjtkbQl9lYVdNAUmI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33ad17b52d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   710
Md5:    f97250c3b27b976453c2c9f27f70864f
Sha1:   f82db47a3fde6d25c7f754dec186981b5685b74b
Sha256: 21d9dcdcdbaeeeff842f86da5a4e98771bb022fdaa19b6498a070fb8889ca5a5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/app.js?v=1669775740 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 02:35:40 GMT
Vary: Accept-Encoding
ETag: W/"6386c17c-237c"
Expires: Fri, 30 Dec 2022 19:07:16 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99644
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9h4RCyIqpHbTNDhgJVlLvCgH6yo40%2BSHUFC5UyrCc%2Bdd7qyHiWwURPnsniu08Ng%2Fz6v59XMnh19Y4vTD%2FLVg0h5Oj0LaFEUYUvkW0DNL1iFeNnI5xOa3bAavsPka"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33acc00b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   2265
Md5:    6be5c6409d05df5dd733e02ffc2b6312
Sha1:   4d8767a759a6f3fa3d52af4b045972a55852765a
Sha256: b5386183d86e1a8880af07637d8e9fba805c85dfc6e00a0de7cac7c9727d7323

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/js/trigger-add-button-bet-now.js?v=1.0.8 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
ETag: W/"62bc8adf-70"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UVdIqCgRyvj%2BqlEd%2BBwoPkeNZQaitYO2MypS3nP53x6smiT4pit%2BXCWVzgGQ8vxvS%2FjKbyUGbLODd9p5XJiH436Yb57ZK2QeqyVpmQV6GuX4V0H10AHHNkbfZS3A"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e33bfd4b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   130
Md5:    0a125c732550dc12c0a5dcbf293bdfb7
Sha1:   aa1fae4c6a37d85719883002fc32e625bc892505
Sha256: ec3c680211919640c972617b9ca52b2a5ca2dfe1655eae72467d9d289ae4fd54

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wordpress-rabbitmq/public/css/wordpress-rabbitmq-public.css?ver=1.0.0 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2016 19:02:16 GMT
ETag: "58027d38-0"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 555195
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=agzu8N1b3B2XagZQwwUwUQcZ9myPu0FeKlNvF5URhB9Kg4nQ9HL9c%2B%2F93ggU68FmUqtgRZqtzfP5B5z38CJ0Cjm8nw5vs6nWV63qEKTioftih2F5fCGGiNmBpD1E"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e33cd29b52d-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /wp-content/themes/khomuctv/assets/vendor/slick/slick.min.js?v=1.0.0 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-cfbc"
Expires: Fri, 30 Dec 2022 19:07:16 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99644
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e2qmJOlfH0tR5pg0mcEjewwhityq%2B0kOSOWYNBtL%2FOcFpXTscOnlbCAG%2Fa8n16nMlkN3uipJwwG6DkrC6JDndRIym%2BYRSsxBFLodXkqEC8PISYcSaFb132YJknyN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33bad4b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (53179)
Size:   13523
Md5:    c9d705569b875f622c4adc4ec9df0a60
Sha1:   fd575e119772556287b937f23f7845ab9340d6b8
Sha256: a13cf92c9b33f4a742ec99f1685cd5dc661308557b879757f4281a7cacf4df39

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/style.css?ver=1669735488 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 15:24:48 GMT
Vary: Accept-Encoding
ETag: W/"63862440-f61d"
Expires: Thu, 29 Dec 2022 22:25:04 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 174177
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yKk8deyerBjHXCeiE65F1qtkdcg4UU2kvEP4de0d9ow%2Bsp1Uc7UnkiRUpMn8NfFpfcgkNGxMKWOlclUAtsFkmn8PXtjxl4g6WAq49U7fEQbynjSUGtp3uZIQEswH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33ccdb0b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  assembler source, Unicode text, UTF-8 text
Size:   14090
Md5:    2905b8b728e342f22e5d07ce54b102df
Sha1:   e521e9ecd0dcd46f7baae80a01c64fdf9b30eb4d
Sha256: 69ff5860fb9a39473cdd8f8b116c43853a97f02117540b68989f9be545f9a587
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.1 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 20:32:12 GMT
Vary: Accept-Encoding
ETag: W/"6215484c-145a9"
Expires: Fri, 30 Dec 2022 19:07:16 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99644
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L91FxmltkTATh8%2FLun6mgCLbn4aIkqnsSrlzu1EXR8mpF4C4RYLEuy6XyO6Wt37%2BvwFvB2%2FaiIgG0Gh3q%2FHL3NqQacLx3S1CXZ%2B8M18BBDbTolX%2BqhTRLkp2oTrf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e33bf04b4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (39759)
Size:   13840
Md5:    b97f4ed46daf5b34267bf2dfc6de82d7
Sha1:   b8bab8b90e05090a05667c3c83f512ae98de4d21
Sha256: 42415e5e9871f5dad7d02416e5c20285a8d4cdd38fa922934422f1039458ca88
                                        
                                            GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 11:03:53 GMT
Vary: Accept-Encoding
ETag: W/"6360fd19-2064"
Expires: Sun, 25 Dec 2022 12:34:47 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555194
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IX7zZbK3m%2Fs5mA%2FKURN6WVKnfM%2FNgGuWPVBXos%2FUslbmRlGvdkcVr6zFoB6%2FKYrvfNpXqUtmticqqkBNsUjJsOnYvzZgkkofyWcSN0D03te%2FPdkM%2BwVx31CUIeab"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e346bb9b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (8290), with CRLF line terminators
Size:   3108
Md5:    7b027d3538b6bbe03433707e355e837d
Sha1:   474cfd5cd375f641fe4c77a262296c9c84d75bb0
Sha256: 494ad0ef87f0e2bf45e2f3f08b10ca94dc95fcb80529248df1cf13c84846c861

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 18:31:41 GMT
ETag: W/"6387a18d-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJvmOr2k45lQ2YhVnMwiM48neFcZ5kIGVbGz13I6azjma3eGLywLAaVyqY3nbTZvqA9ZC4eYdAqufVASrSBCq0BFAlx9%2FWvtyPttBrQTMo1Xn8%2B8fshy5C3SqEX8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e346d550b31-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Sat, 03 Dec 2022 22:48:01 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1238)
Size:   655
Md5:    bc3ba461c8a309acf61b6d9c41cb6236
Sha1:   88482306ecc9258d5e9cbb9ba5314dab223a5db4
Sha256: 31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/chat-app.js?v=1669130849 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 15:27:29 GMT
Vary: Accept-Encoding
ETag: W/"637cea61-192d0"
Expires: Fri, 30 Dec 2022 19:07:18 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 99643
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i1sgyCSAUaTEXAhh2%2FY8N20du%2FpcnUnF%2FHmdNRGDJv1UOOgYep%2BmaeeWZuh27QzYLu0hIj%2BmjtmTtQm4P3zLmAiFCKhMNHDeHKvplwe2k18gj4Qqj7BzdVDBrQkW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e346f84b4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (63007)
Size:   41624
Md5:    c7aa292ee16ddbe4197cc455a40adb02
Sha1:   634914410db1b227eaa9787b9d9665b0ebaed0d3
Sha256: a80a5395e12231d311e8ed19dd0a97ff0b607a384544affc97f456a554b9c4cf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/js-cookie/3.0.1/js.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://khomuc5.tv
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 01 Dec 2022 22:48:02 GMT
content-length: 714
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61fd34d9-2ca"
last-modified: Fri, 04 Feb 2022 14:14:49 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1819277
expires: Tue, 21 Nov 2023 22:48:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j7gHV9VTE6Vzz7ebSnhwk0jywR9beu2K%2BQnrJC7pXsaZmqyCpkn4Qhy4ty5yJGMQHl2kFhKfYRzPCyxB%2BxITjv0d3EIaz3rTVjBDNLM9vVo4C%2F9mOY%2Fxht7LQYnZcMrmdKh2tEwQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 772f5e348842b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1650)
Size:   714
Md5:    039a724c861b0a97184e6e97f4d8933f
Sha1:   89573149b2e51d906cbd44dc6d39db409d26370b
Sha256: bce21e6461b325d13768a4855462172cff484243a359d200dc6c0ad491c93d38
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "75189A8BF00E3696082DBAEE216D1089A648640290B9FD6293BEC76CFC571CFC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4073
Expires: Thu, 01 Dec 2022 23:55:55 GMT
Date: Thu, 01 Dec 2022 22:48:02 GMT
Connection: keep-alive

                                        
                                            GET /gtag/js?id=UA-236098031-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.217.21.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 22:48:02 GMT
expires: Thu, 01 Dec 2022 22:48:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 22:13:37 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43566
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43566
Md5:    5b0828cf6b19aa9fcd1749113613294b
Sha1:   aeecbc04138ad7681c348bd6709f0f4c1b5e845a
Sha256: a95110d01423da388a9b3f313672ca021dc620b022fda2dbf96cea9dcabdb028
                                        
                                            GET /gtag/js?id=UA-213458148-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.217.21.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 22:48:02 GMT
expires: Thu, 01 Dec 2022 22:48:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 22:13:37 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43577
Md5:    45e733ff3130419f64456b539dde5f0f
Sha1:   376ed9f005852409897dd263c812e5214d5f4b16
Sha256: 896c0af7570c5b7623e9a52552565045b1c704584f5d864acc86146dbb68b709
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 22:11:15 GMT
cache-control: public,max-age=3600
age: 2207
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /assets/ic_send.e1f5a286.svg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 06:11:47 GMT
Vary: Accept-Encoding
ETag: W/"63732da3-303"
Expires: Sun, 25 Dec 2022 12:34:48 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555194
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xsh7xFoBC3TIxyJT%2FYtQ%2FcRDtvHLDwVGys2YWwF86eQAqdp7ynl01yZl0HRShQlLVpyA4eB8bGiY2qrrOlqNjwhtcJQwFxKPYYyyzZMH4VvvkRWCFtW%2FO7LvV1Nc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e365ec70b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (668), with CRLF line terminators
Size:   487
Md5:    da4a21debc76c6233948d4c6e96ab4ea
Sha1:   2b34b3aa1324cf9ac21231c8af618eadf6353f24
Sha256: 6bc45268bfd4f31a89331f7776f42058a91e80c7baeb98d6f7f74c5da845799b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/images/ic-ttwc.svg?ver=1 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/wp-content/themes/khomuctv/style.css?ver=1669735488

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-17dcd"
Expires: Sun, 25 Dec 2022 13:13:51 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 552851
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nJNo2k9LT6DEG8af6WUUZ%2F4ZWwYeIJ%2FNuR5%2Fazpt8ZFsg7FlzJjBBaAlSSC9L0Zz4vdR0Y3Sigth5cAvYMqwZOKdeyRipsUgL18nzY7xlQL0iwxDf1%2F5b2Y4jr3U"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e366db2b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6327)
Size:   27727
Md5:    4c3a4bee9783db71ec36126f566ee63a
Sha1:   95a8486640d53ef8b1431998b327cec310f0f0fa
Sha256: 74bb384c6dd64e8665a867cd515f20ebaaeb655830888de94abc6df9bb83ebaf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/images/bg-match-detail.jpg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/wp-content/themes/khomuctv/style.css?ver=1669735488

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Content-Length: 30106
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
ETag: "62bc8adf-759a"
Expires: Sun, 25 Dec 2022 12:34:47 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 555195
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OrAwgtHvaGULuSFaDxscsGyE6XyTsCyXzElFDNznvn9egLrNWbfGzjKo951zOrZ1ApGJvh3milniIayOQ92awPCKYh4p42yuheTwQFx75RoUV0OXFtvE777itjxq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e366d73b4f4-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1106x95, components 3\012- data
Size:   30106
Md5:    2baed1916e211af547c7c6be5ebf0fa3
Sha1:   953164c30e2988143faf630c2110db320a0d7893
Sha256: c6b6ea22f9760b1758dc298d0c785e373e05f2e4b0bac24cf12298847849461d
                                        
                                            GET /wp-content/themes/khomuctv/assets/fonts/SVN-OuterSans-Regular.ttf HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/wp-content/themes/khomuctv/style.css?ver=1669735488

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Content-Length: 143684
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
ETag: "62bc8adf-23144"
Expires: Sat, 31 Dec 2022 15:45:14 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 25368
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ptQrnilxUnMeXVDv95GTDHN7gKzqHmr98X%2FLmRUWnIvbM2BrV%2F129VhaP9Cu5FvEgzmBLuWorCxJkbbDZ5xaU7foGV8duu3kV01zEL95ngY3CoPshWZZFGDujqeQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e366f4db52d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  TrueType Font data, 17 tables, 1st "GPOS", 26 names, Macintosh, Copyright (c) 2019 by MadeType. All rights reserved.SVN-Outer SansRegularMadeType: MADE Outer Sa\012- data
Size:   143684
Md5:    bdb03b83931ef118e3e520b68839c88f
Sha1:   93033e1ba601822207193361682cddd0ab2b981a
Sha256: ff2d57c32adc79c4e5043641a870b65a2888f97b12798301c12fb5c0c7c30fe0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://khomuc5.tv/wp-content/themes/khomuctv/assets/font-awesome/css/font-awesome.min.css

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Content-Length: 77160
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
ETag: "62bc8adf-12d68"
Expires: Tue, 27 Dec 2022 19:08:36 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 358766
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JAL%2FH%2FbZgQW66KDfNRlvOW5UYnm2Swivx2orD7rjoJeq8Z%2BmYM6dRjaDx%2FhawG2LNFP28L%2FH3NeVD0rQ26PcvypsyuyYP0h4vp9FntJ5h8x79UP2BFnfNdmbzo%2FX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e366a06b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /wp-content/themes/khomuctv/assets/videojs/video.min.js HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 01 Dec 2022 22:48:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-89f7f"
Expires: Sun, 25 Dec 2022 12:34:46 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 555195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i4RhEKPZ6s2J%2BB74vogkGs9IYgLDfxpt4U9%2Fk7ISJo4FH27zKFiGP5iz9iayOqu2KxIuVKYzKugszH2tU%2Fy4gWNBzhv6bzXWRtKl99i9hLZ526SqzJ0yb0eBkeYL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e331c7d0b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  data
Size:   1313112
Md5:    3d9127ac9bee083e459c0bb2babd0e88
Sha1:   fd68ca92b3217dbd73236ecd5fc317664a0c6d7d
Sha256: 9e366d174115ede80f41661101b099047dd4430cad744e8e39f78951f7dc6cd5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/fonts/SVN-OuterSans-Bold.ttf HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/wp-content/themes/khomuctv/style.css?ver=1669735488

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Content-Length: 148368
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
ETag: "62bc8adf-24390"
Expires: Sat, 31 Dec 2022 15:45:14 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 25368
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lR0VqrkXDsNuXUQiBIapiBeAaYHCB74bHNIzbXufz2pxjCzOoEgwjO8wXxcqu8bEIt59DV4YEdaw9VXk%2FyqIS8Gt6frOJSQGrT%2FmYo6a9rrCuhqIAdsKo0mDvDo6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e36ef200b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  TrueType Font data, 17 tables, 1st "GPOS", 26 names, Macintosh, Copyright (c) 2019 by MadeType. All rights reserved.SVN-Outer SansBoldMadeType: MADE Outer Sans \012- data
Size:   148368
Md5:    c7f8c9a61fc1ee91007fc2310d57e98c
Sha1:   c6eb9773f646a0454dd592263b33f022ffef22fc
Sha256: 44d3e68eea1a3282e604612b57428a4d3df3fc9ce4237c5f48490a10b2624806

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 972
Cache-Control: max-age=124499
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:23:01 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/khomuctv/images/logo.svg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-225e"
Expires: Sun, 25 Dec 2022 13:13:51 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 552851
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1BtN1V4hVmoH2Chyr1CrBg1A8Nx5z%2FN9C4geeTvvCklYYubTPhO85Fgey09fL43FWkB7AncU4kxrpDCt6l0fxOxEMmtdZVQo2pTC%2FXboFh7b4niZIERE1cK2gcoZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e378b0cb4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3438)
Size:   3464
Md5:    e5545a97941bc5ff24a2812e9e85e5c5
Sha1:   5c17d7237eaf235c273e0e8f646fe084d966605e
Sha256: ad1fe23abf720484fe1111e0d1c464b7a9ca10268602b3c92f844af9b2771fcc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=127837
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "63887f7f-116"
Expires: Sat, 03 Dec 2022 10:18:39 GMT
Last-Modified: Thu, 01 Dec 2022 10:18:39 GMT
Server: nginx
Content-Length: 278

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/khomuctv/images/logo_nbet_800x500-(1).jpg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Content-Length: 11569
Connection: keep-alive
Last-Modified: Thu, 15 Sep 2022 10:21:11 GMT
ETag: "6322fc97-2d31"
Expires: Sun, 25 Dec 2022 13:13:51 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: HIT
Age: 552851
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2b6wo0ltMBSiJuRq%2Fqtlr7X3QyCPil6lt643LF9QDYNME%2Bb9mGHvvyxQCKPrGhFfl6mYvKjZ%2FyjaVC5Nei%2FgM87wPHTF8CZcmOCi1IfFlDw6YTAukFTofZFGpYkn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f5e37eb5eb4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x94, components 3\012- data
Size:   11569
Md5:    22fb8b9fe4c9cdba88af9424237daa82
Sha1:   6604747ad4e2b6b7172514f5b9e52918d3a1856f
Sha256: f48a2658c093dc1d3c5c1b4e0dcc979531fbdc5fb9f4f898e513ce2968f6fbdf
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 20:55:53 GMT
expires: Thu, 30 Nov 2023 20:55:53 GMT
cache-control: public, max-age=31536000
age: 93129
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5548, version 1.0\012- data
Size:   5548
Md5:    cdaab83619fcacd4027a77c99dd51e69
Sha1:   9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
Sha256: 4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 22:25:27 GMT
expires: Sun, 26 Nov 2023 22:25:27 GMT
cache-control: public, max-age=31536000
age: 433355
last-modified: Wed, 11 May 2022 19:24:43 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size:   11824
Md5:    deb26e9b1a25438118e5d39d741ae6b6
Sha1:   a2801defb4c8bed8e4083dfde0b2a5a9c0537020
Sha256: fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 98048
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:42:24 GMT
expires: Thu, 30 Nov 2023 19:42:24 GMT
cache-control: public, max-age=31536000
age: 97538
last-modified: Wed, 11 May 2022 19:25:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size:   11872
Md5:    87ace20058325aa069320aa4af875dff
Sha1:   b743548770c46d905ae1ba06310bc001c587fe8e
Sha256: 3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=152364
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "6388df4e-116"
Expires: Sat, 03 Dec 2022 17:07:26 GMT
Last-Modified: Thu, 01 Dec 2022 17:07:26 GMT
Server: nginx
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=152364
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "6388df4e-116"
Expires: Sat, 03 Dec 2022 17:07:26 GMT
Last-Modified: Thu, 01 Dec 2022 17:07:26 GMT
Server: nginx
Content-Length: 278

                                        
                                            GET /wp-content/themes/khomuctv/assets/images/ic-next.svg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-28f"
Expires: Sun, 25 Dec 2022 13:13:51 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 552850
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=496%2F53SzkWSzQXSl%2FgxvzCphxLLl34Hj8YKloNiIHWAdbn9%2FyEUAVso4bfG9ef0%2Fa98Pwnd86jp4edblqVeMsqsHpcQywi4gBcDT%2B60zf55%2BHZyNQg5OzW21%2BIL%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e38884d0b31-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   335
Md5:    4f3c534d6dd30c7e503f8f14a2ff30c7
Sha1:   b70916f7d05a5b6d3545601ece45445e735f9bd4
Sha256: d6ee95393730de9d8e6b0f9580bd27f73a95d5ee756ffc9e11fe885eea812e92

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/khomuctv/assets/images/ic-prev.svg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/truc-tiep-costa-rica-vs-germany-02-12-2022-0200-2/

search
                                         188.114.96.1
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Jun 2022 17:24:47 GMT
Vary: Accept-Encoding
ETag: W/"62bc8adf-2c0"
Expires: Sun, 25 Dec 2022 13:13:51 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: MISS
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 552851
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X93qpI2t08KIrKmatLwWeh2BdFEL3qnPAIEuchk%2BgBPh8DI9twNsi1CPGYXPbA27eu9OkJ%2BqGIpQzEDrInhIm4BhK%2Bk2Onts2caHGaHhwaibZm4iNPmr6kVYlSkP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e388c1db4f3-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   355
Md5:    ec895d24fcaaf90a0dd7f2945683b28d
Sha1:   384776c094f86d2d355fe809ad3f9a40447b62a1
Sha256: 7d6d486d5b0f50307923c8a39a9dfc01847582b2463e60a98b7645e4e766d07f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 98027
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /api-football-images/football/teams/25.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:02 GMT
content-length: 150475
last-modified: Mon, 07 Nov 2022 12:51:35 GMT
etag: "6368ff57-24bcb"
expires: Fri, 02 Dec 2022 18:53:23 GMT
cache-control: public, max-age=86400
cf-cache-status: HIT
age: 14078
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DZ4kSFKT18TGd0naWTP%2Bp38Xxh%2BughNfXdKLqaB1T0hqKvIyfHVLLPvY17%2FfMy4U5XT0bbdMRUX4eNpHSXIVZZslzxpEMx2tqYSLWsnZvFzAdeS%2FaRXb4iEbU%2FvTFc40hZCldnyKVDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad3cb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   150475
Md5:    e879dfb98392475206f708904cd4904b
Sha1:   830600429ab88e187ecc2135c8a85befc553cac5
Sha256: 32c125c71a294ce75b167b44f46537f38b61e63700222dbee3408e8ce7640fbb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=152364
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "6388df4e-116"
Expires: Sat, 03 Dec 2022 17:07:26 GMT
Last-Modified: Thu, 01 Dec 2022 17:07:26 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /wp-content/uploads/2022/04/11.jpg HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Dec 2022 22:48:02 GMT
content-length: 20525
last-modified: Mon, 04 Apr 2022 14:39:29 GMT
etag: "624b0321-502d"
expires: Sun, 25 Dec 2022 13:13:51 GMT
cache-control: max-age=2592000
x-rocket-nginx-serving-static: MISS
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 552851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8lnrVoxbR0rZaKvxNcBH6ByvlzUDP9%2FLcvnudeP2Ie4tVk7wvEHur0nes5ZRzrQ%2BhpiWRINaEKmmqnYfaD%2FqsiLsmAtCNptSz1CdoDPbNvpF3M6F6huknD%2FyqD0Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ebc6b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 78x78, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 1280x924, components 3\012- data
Size:   20525
Md5:    76dd9e2573bf4a53fde683ed0fd387be
Sha1:   0ab3733faa1f14b093956cae7850157ff9391ae4
Sha256: fde9642a3830280eb468796319e1614911886d96b2a2bcd36a6144fa68b4d3e4
                                        
                                            GET /api-football-images/football/teams/29.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:02 GMT
content-length: 150475
last-modified: Mon, 07 Nov 2022 12:51:36 GMT
etag: "6368ff58-24bcb"
expires: Fri, 02 Dec 2022 18:53:23 GMT
cache-control: public, max-age=86400
cf-cache-status: HIT
age: 14078
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iAy0g2zQI%2FlhgA%2BGH8%2B70UY4VrNuQ6F4P4QAGg5yhEKe1Pz3ddpP6MI6Jd5IBZ4T1R%2Fo8q9IUv24l5emI2TXPgDBakoRpQ2mMptUXvoB%2F8UlNy2C4j6293sPnkLQcvCgNjB8CZiKSGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38fd99b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   150475
Md5:    3a9f2e266a66da04b72ba182ae5c81c6
Sha1:   4f9d39419d0ff0210540f200a85efeb223649d00
Sha256: 80ee8c4ec9bab75bc86ab0be89092f1d4ae80834ffe289454a4ddf0295f8ba39
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:55:01 GMT
expires: Thu, 30 Nov 2023 19:55:01 GMT
cache-control: public, max-age=31536000
age: 96781
last-modified: Wed, 11 May 2022 19:24:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Size:   5560
Md5:    ca3b09b62fda648a4511700413313fd0
Sha1:   109cd4c5435bd6614391bb8722c47c287c96b2ec
Sha256: 77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
                                        
                                            GET /css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,600;0,700;1,300;1,400;1,500;1,600;1,700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 22:48:02 GMT
date: Thu, 01 Dec 2022 22:48:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2593765
Md5:    38473a72599dad37568cccef82ea3daf
Sha1:   afe1ba1288a045a65e4a7f1c15200c81a4f11296
Sha256: a9eee77f5890bdb0345f30f732e61c0188a770b15b0454013e64eb1b1fdd4d42
                                        
                                            GET /wp-content/uploads/2022/03/1200px-2022_FIFA_World_Cup.svg_-1.png HTTP/1.1 
Host: khomuc5.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:02 GMT
content-length: 200225
last-modified: Tue, 29 Mar 2022 02:10:32 GMT
etag: "62426a98-30e21"
expires: Sat, 31 Dec 2022 18:53:23 GMT
cache-control: max-age=2592000
x-rocket-nginx-serving-static: MISS
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 14079
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ApJlePcWI3DGiptCHZh9f6iR2ybCJSNuEGeqpqw1WWzpVuBPn%2Bb8LWX9Q3F4pbn4Jsf%2FC0keubmLbSJv%2FONLLgmovuBnw1Hu%2FcNQkim4MFdDgsPXV5eDQoDnCUeX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e396c2db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1200 x 1434, 8-bit/color RGBA, non-interlaced\012- data
Size:   200225
Md5:    e5ca7464373e3aca1590987f43c9542c
Sha1:   a11726dd553569feae57143ff1528ee6dfa7eb26
Sha256: 6e4e1545d77d371cfef9295bc746f389c8ca4ae6d162aad21e1b9aae6f8cfbc8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=127837
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "63887f7f-116"
Expires: Sat, 03 Dec 2022 10:18:39 GMT
Last-Modified: Thu, 01 Dec 2022 10:18:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xDrRMHxGKX0fzqU8GiIUTg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.214.236.46
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +RwX7+GNA+WcmonVLTK4dKHPkmU=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=152364
Date: Thu, 01 Dec 2022 22:48:02 GMT
Etag: "6388df4e-116"
Expires: Sat, 03 Dec 2022 17:07:26 GMT
Last-Modified: Thu, 01 Dec 2022 17:07:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /socket.io/?EIO=4&transport=websocket HTTP/1.1 
Host: chat.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://khomuc5.tv
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3lhfU4c2t8SRCkQ9WoJqag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         172.67.177.76
HTTP/1.1 101 Switching Protocols
                                        
Date: Thu, 01 Dec 2022 22:48:03 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KWdAybIqcmF8rNnN5Fu/R51p09M=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2cI57Od8sTxouZrOuLEqj1r84OBKepCQg8AFXt8q%2B6N5WdO304qyaQgfLon0zjF7S3wzkpW1oLAkFh1SRRElrDVUkuKat6ice%2FGGwe8Ytt66%2BJCtIycVKOQwvkpJ153ctzhlMqY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e38fd890b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

                                        
                                            GET /football/static/live-matches.json?v=1669934881 HTTP/1.1 
Host: api.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.67.177.76
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Dec 2022 22:48:03 GMT
content-length: 2
x-powered-by: Express
access-control-allow-origin: http://khomuc5.tv
vary: Origin
access-control-allow-credentials: true
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Thu, 01 Dec 2022 22:48:00 GMT
etag: W/"2-184cfe016a3"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LGz12DccOpxGrOmi3jEg8eaeZhOBIuoruJM2IuIQ7K9c6RVObZeRPFtturPim2spM8j67uILtzW43F3xsfkWNqBC%2FUl3I6vGKNsEbAoankZxlyudmjlNGDvnTbktmNICkSL%2FCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772f5e3aced1b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /api-football-images/football/teams/14.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:03 GMT
content-length: 135451
last-modified: Mon, 07 Nov 2022 12:51:34 GMT
etag: "6368ff56-2111b"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E9rAfxwKp8XBGmDhWkciy8O2Kh5q1r6Olp1UBNHbIIya3MX0kBLyyQI4U9oiUqnWOkAS3p4iTOQuBJqzURrXvON4OZfCJeSjCDemMclZuSHqNskW3OpY6e76uM%2BWGvrohFb42skpv6c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad3bb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 225 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   135451
Md5:    e48ffdd396743ef192b6fa7cef347ffd
Sha1:   ec9d730caeeaa0227901959728d74cb83b142847
Sha256: 8bfe412bd47a791341b404e93ce2168a1f644d2fded8c76beaceee460ce3b383
                                        
                                            GET /api-football-images/football/teams/7.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:03 GMT
content-length: 135451
last-modified: Mon, 07 Nov 2022 12:51:34 GMT
etag: "6368ff56-2111b"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ORtYSa%2BtEmSbBHOhjnuqBlvhDu04keuXfhxHSknfuOHDJcNjOEFpVdk5F6cfbQN%2FLGOr4mNz2wbwwlT%2FXGQErADGkrlLcoXvLVCjOh2nyl0icCw9t89%2F0e506WBaWzTTT0lTKVd6qPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad39b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 225 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   135451
Md5:    319cc7449e3bd45e587021022d31e0fe
Sha1:   b9267bc27afbfdea2b73023ba92abbfb0f37507d
Sha256: 4c096ae9b0cdec93d6fe833e60c9a877f1158ee01d5edf861fc085badf8ca4b3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10105
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 22:48:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10105
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 22:48:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10105
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 22:48:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10105
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 22:48:04 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 3488
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2942
Md5:    b47431190f34eccf0a6efb98e2a32b7d
Sha1:   9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
Sha256: 08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
age: 3391
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11402
Md5:    1c80b8025242ddfcc816ec612456b99e
Sha1:   aa944d10fe4a44b790b01ef62edc0f85a6d558e3
Sha256: a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10105
Expires: Fri, 02 Dec 2022 01:36:29 GMT
Date: Thu, 01 Dec 2022 22:48:04 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 3545
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3711
Md5:    89e1a735e16f55c78fa75ae434294029
Sha1:   6c56f4015305eff04a99cec9758cd40bf4e5f704
Sha256: 26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 3553
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7591
Md5:    d147ccb10bda82b153a596c3c967cd6a
Sha1:   ffd0763f997e71a8c1458523fc17cafe8849dfdf
Sha256: 1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2ihxuuXiECC4oX11t_vswhnLF0UpqDuboPLkrhpWwp-vfCR5pxGGxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:50 GMT
age: 3254
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10270
Md5:    4c7113338bc3310b13d23ca415c177e2
Sha1:   2cb4edc6b161c6d2d5b47aa498ae54e677966466
Sha256: 3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5675
x-amzn-requestid: a47e049a-6f76-4af4-8064-fd7722bcfb17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepGYEIAMFeQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-09e13afe27c4dc5b44e828be;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U_3ah2pFrsQl9IVVqm9EVI99FnF79b9zOUFVBGX966JAjkDg6UF--A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 3608
etag: "898d50ac6e372609656fccee27de3d036bc0281c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5675
Md5:    89502a302863c914b4de5e8c6a7f6846
Sha1:   898d50ac6e372609656fccee27de3d036bc0281c
Sha256: 9bc1f83d570d70b7e17e5de7a1546885851431ea989d915852ae7130387c422f
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.110
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 01 Dec 2022 22:41:08 GMT
expires: Fri, 02 Dec 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 416
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         142.250.74.2
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 01 Dec 2022 22:48:04 GMT
Expires: Thu, 01 Dec 2022 22:48:04 GMT
Cache-Control: private, max-age=3600
ETag: 14008997869043524420
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 51578
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text, with very long lines (4885)
Size:   51578
Md5:    342575e60447ef5e5f83ffc8378541eb
Sha1:   7d4edac5b4c4314fa7530bc5ca532be9bc8a6470
Sha256: ae0868980fd05cb04bd8546f53f804f5d1c453e58adc2f0914e179d111406c19
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 01 Dec 2022 10:32:03 GMT
expires: Thu, 15 Dec 2022 10:32:03 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
age: 44161
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Size:   4242
Md5:    2fb3574102373e2e076cfa2ff90cdf25
Sha1:   d06c985183def975546d6e47ab6369c11dcf7195
Sha256: e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 22:48:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /www/delivery/asyncjs.php HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.26.10.49
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Thu, 01 Dec 2022 22:48:02 GMT
vary: Accept-Encoding
expire: Thu, 01 Dec 2022 23:48:02 GMT
cache-control: private, max-age=3600
p3p: CP="CUR ADM OUR NOR STA NID"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: LarVPS
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sQOO8UtJT4cpwMbKwyjWxFs3PIIBJZGYysbhY4N0oRTnc4EuEsOR2CpDve%2FWTb9Iw2Wgl5cU6%2BbCSblcS%2FS2%2FbJVEFUtgDIvE9%2FgTsSHPYL2d%2Bb%2B78yTqHH0oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772f5e34d97cb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4342), with no line terminators
Size:   92263
Md5:    e9beeacaaa36529c72a2db35a4b1ad04
Sha1:   df5b9ff0056223948939dd657331265f3fbfe41e
Sha256: b984ee7191ee310c0c3c6050f2da3479be2300bd275b958526d3549ea8c5ef47
                                        
                                            GET /api-football-images/football/teams/6.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:04 GMT
content-length: 128834
last-modified: Mon, 07 Nov 2022 12:51:33 GMT
etag: "6368ff55-1f742"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XE8LkNMXbUZe37WtJbVU0DU4ZIVcB%2BkQTWNIE1YGW5%2BLEO3v7g9OPyXxNVtGR7ypuy9iSfcYgTQTQ2B499npEh3XX1ih1tnrAgNV5cRquLhVJTDg7YIch88eShpbmlBVFKtHPyB%2BykE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad34b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 214 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   128834
Md5:    478130ee5c74ae3a1d447afbe3b6f85e
Sha1:   b74a3e7de5b647552240761d288d7d2bd43b6ca4
Sha256: e0e97e34d40e18d528bb09ee15aaefe1749b5a11c9676b79c0070121b5e4f3bb
                                        
                                            GET /api-football-images/football/teams/27.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:04 GMT
content-length: 135451
last-modified: Mon, 07 Nov 2022 12:51:35 GMT
etag: "6368ff57-2111b"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vB3WZhkjcvQb4I%2B75eTIciukOaENxeAH3w%2BsQfbPjD%2BDUCj037BrcZ0l7Wd5be4KwEeywoj1aS6xzpWbVgmjetxBWKujE5JV5PLRJUv5QneHlL6xCXcZ0%2FMb41IxwQYU331SIAe8EZk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad36b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 225 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   135451
Md5:    6026b55d8c039f4319046f30764665d3
Sha1:   3bff8d751a6390b134cdbeb26791f0882e43e0d1
Sha256: b1ecbca27518f3807d2059c91e53be28770e6889dfe5f90b719e731458ac0a27
                                        
                                            GET /api-football-images/football/teams/1504.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:04 GMT
content-length: 135451
last-modified: Mon, 07 Nov 2022 12:51:36 GMT
etag: "6368ff58-2111b"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=INmN0vyVZHEQdd8vnA7q2eGzaOjDlXHPbg7GydL4RExBIElcJhiYFGuE2Qcpp0rJ5224%2Bj9lXj1gMiXzQdLNnbrv9%2FCzME%2Fy8grSvvK6yyK%2BSVjZlxbGUrJ4e5iY7ITvpOnldMxyHtQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad38b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 225 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   135451
Md5:    f5b980acc5f7b7eeacc9a167a4600f60
Sha1:   56111d5325e12e6ef6ecf8e2df109e3f7d914db5
Sha256: fd6c1ece0ecdb3163b945489992e4d5a45366d3414602e704bf5f7db924a723f
                                        
                                            GET /api-football-images/football/teams/1530.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:04 GMT
content-length: 135451
last-modified: Mon, 07 Nov 2022 12:51:36 GMT
etag: "6368ff58-2111b"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jqcLczQehN%2FydK0V0iR4T9O6a991sONZlDcOBrhKde%2Bh4Vj3IIBvkhet8N6%2BO1H2xtrnBqWEMsFKyoCjeOItQALERSNTQovV4j88YQIMlalclsoPZpqdHSX22%2FcJ1mLdN%2F2TBmxn8Xk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad32b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 225 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   135451
Md5:    f4d67ada399e57e48b724d10bdd89b57
Sha1:   8c3e7444a224e2ddc8eb05f1856bf23e4616ceea
Sha256: 572f7fa86626148c1eb84d2f6452668aaebf4cacbaee31af91be6e7b34d6f46c
                                        
                                            GET /api-football-images/football/teams/17.png HTTP/1.1 
Host: storage.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.80.103
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 22:48:05 GMT
content-length: 135451
last-modified: Mon, 07 Nov 2022 12:51:35 GMT
etag: "6368ff57-2111b"
expires: Fri, 02 Dec 2022 22:48:03 GMT
cache-control: public, max-age=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S5xQiFTXFmJ9oWEBdu3oBHjRiYCrFDLTe0IrTrW%2FL3pWAFMnefZpqFvIodvWwAgXCA2ZmOnFi7hdnrUaU69ylQ3NXJiIEDC25sQRG2pAhzmci%2FT1PRTEJ9dCULEONqQcAlJDuEg36uY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f5e38ad2eb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 225 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   135451
Md5:    70c11768b1970859b13e782feb793833
Sha1:   949eb3cf39e58d6e1081211d6573803405f3391c
Sha256: 74d9edd1681e8f16ece1aacd5a3897ca2008cdf3008568a2557096722884bdab
                                        
                                            GET /profile/v1/guest/chat HTTP/1.1 
Host: api.livebong88.tv
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: http://khomuc5.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.67.177.76
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 01 Dec 2022 22:48:03 GMT
x-powered-by: Express
access-control-allow-origin: http://khomuc5.tv
vary: Origin
access-control-allow-credentials: true
etag: W/"cf-dnMmJCNUtgP0bDyzuRL4tyG66kg"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aQ93jCYBPtawn1sUTUahwJf7IsSNsDPxnwhw60kB5Ca44LEAUsRE7TGZJS4VMkGMj0Dwz%2FCScGdc%2BsGKXGIyvlo4I2PKSv9RVc32r%2BPyuChSUYPbctk1YtVkT2W2cVfwN%2FyIAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772f5e3aceceb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size:   5978
Md5:    c4d79908e89261a7df99e75dcdd6abb6
Sha1:   c2e462c7886710f2929afe40ba0b55dfc158e029
Sha256: 25e01510049919ec72463a7918eb7bad769734b0e36ecffd5b2b4deaa51912c8
                                        
                                            GET /www/delivery/asyncspc.php?zones=146%7C239%7C240%7C241%7C282%7C283%7C295%7C296%7C149%7C248%7C249%7C250%7C270%7C281%7C293%7C294%7C284%7C285%7C147%7C246%7C148%7C289%7C290%7C291%7C292%7C211%7C210%7C212%7C213%7C160%7C208%7C297%7C161%7C209%7C269&prefix=revive-0-&loc=http%3A%2F%2Fkhomuc5.tv%2Ftruc-tiep-costa-rica-vs-germany-02-12-2022-0200-2%2F HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://khomuc5.tv
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Fri, 01-Dec-2023 22:48:06 GMT; Max-Age=31536000; path=/; SameSite=none
Access-Control-Allow-Origin: http://khomuc5.tv
Access-Control-Allow-Credentials: true
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Powered-By: LarVPS
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tS2R6%2FMYT%2FkByuV9enpZxX98grJEz5cQNtCAvNSWxS1AiLw%2FBzO%2BD3xg01NGj40shwEtGcwKbUzfBSf1RwxWgPsHIq0j4fRPDEcsFwZnHc164hzt9oM%2F6qUXFw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4c2dba0b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (30408), with no line terminators
Size:   5015
Md5:    e49ee59a56873a1fda206520e89089c5
Sha1:   d0e255b4e18115c18b05d26eee0d8651829b0d0b
Sha256: 2acd04d4a91a984db6128217269a5c265fc2ace28d192d0a3d246c7e8c1c0d7c
                                        
                                            GET /www/images/2dc13bbce716359c81bd9541edbf1439.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 107575
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 07:58:13 GMT
ETag: "63749815-1a437"
Expires: Fri, 16 Dec 2022 07:58:15 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9886
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jp3XOSN6%2BR%2Bs%2Bjr9FKbBt01%2Bby%2FK%2F%2BKyXIJww40vQI9rigLCJdtcmCUlTO9vumCw3cBjXCOzvx84ZIooU8k3Qny7qgdGEKOywu%2FMpDTOs8E8GHbGfjZSKbrt1w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4f58610b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   107575
Md5:    2dc13bbce716359c81bd9541edbf1439
Sha1:   55e6c6882c246843e307990002e4f4355037418d
Sha256: 5c5c1d597234f35bcad707a941bf03960e83379db434cbef0adfd2eb7b6f4a3c
                                        
                                            GET /www/images/07fa168c2881f5a322685b8c4b22f0b4.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 359041
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 10:57:08 GMT
ETag: "63888884-57a81"
Expires: Sat, 31 Dec 2022 10:57:08 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9886
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I86qHyqJgnXxfkoUYMdgKroIN5B8jTg3UuC0UIiJ2CPzd4ApOe3C%2B8qvZnGgBxSfZZy6J%2FnqGvxVMwbKR3CAJuSXDhaqbGnd7W3xOtca0lnyyIh1dXoouuxbwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4fad4ab4ff-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   359041
Md5:    07fa168c2881f5a322685b8c4b22f0b4
Sha1:   6fd2656e0c1e7589de373335fd1fd9252b632811
Sha256: f93f7ea09422a79f025849c01f16a71c0f4c9555bc870ec0d7c5da2b4f08d137
                                        
                                            GET /www/images/2e0925a05169a9e1a1d3634569631dbb.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 230893
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 02:03:19 GMT
ETag: "63880b67-385ed"
Expires: Sat, 31 Dec 2022 02:03:19 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 28242
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CL%2Bv1RhYpQMQtqAhgMyV%2FPvbHebVAILl%2BnxQa%2BuxGnOXF9%2BCwoCff05sE5tqqMwDbzXIMLyHIoQO0r0FQ1eT1klSMAJcB2BdbC3uUlremJGgSwtRiqxgbeij3g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4fbf64b4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   230893
Md5:    2e0925a05169a9e1a1d3634569631dbb
Sha1:   f11afca91dc45d33356b34d39bd463569c222a30
Sha256: 607ca42715e310002435047b0367583d6aa3edc6d7166d1a45203a1c7b6a623f
                                        
                                            GET /www/images/3b53f98314ee17113cb4999352cee881.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 796945
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 03:14:06 GMT
ETag: "634f6b7e-c2911"
Expires: Sun, 18 Dec 2022 04:19:36 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9886
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xLtpBYfNd0eV872UzLYtvhLQgNorZtAFrVIPtKfnwT5My7vr8HhBLoj0cIWs4MWRdJwUnIGN%2BWHb12VetKEu0ZbeYUkg1K5rqc%2FDQBaMe34g44hpxLjeiVAQHg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4f98cd0b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 542 x 67\012- data
Size:   796945
Md5:    3b53f98314ee17113cb4999352cee881
Sha1:   868492b879d7434504dba6c4a25856de7f690951
Sha256: 5a377665b8fdbb0e08c01ef11798f986e49c48f7297d59b609d8b7dfd8b45ff5
                                        
                                            GET /www/images/7e555f0403126791a73c951b76679295.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 274778
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 02:01:25 GMT
ETag: "638567f5-4315a"
Expires: Thu, 29 Dec 2022 02:01:25 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9885
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbV1hhcMqlQsyBsfzjY2BOhLfHAF3ki%2F4UexnpvuV7lRcFZlbA6Ao5XnTEE2nbqErFRKPVTqF6ZJcE7g7dSvR46Qn86GcN9JBo1iYkzvS1BJtR4JtReY23%2BGug%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4fdd7eb4ff-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   274778
Md5:    7e555f0403126791a73c951b76679295
Sha1:   096c3d8b4d684b305757874a1cb6a71a789ef2c2
Sha256: 296cfeb0ec5ab4ff1ef3782bd0fccf769db293c0da8dbf1fa4759b431dc0a399
                                        
                                            GET /www/images/81972a4eb8712069c35d513f37ffa776.png HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 56470
Connection: keep-alive
Last-Modified: Fri, 03 Jun 2022 07:13:51 GMT
ETag: "6299b4af-dc96"
Expires: Fri, 02 Dec 2022 09:20:27 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9886
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jBzqQoohiTajpeJ%2BOsh9OcnF1rewqwyxEV2x3rt2a3XKArw5biiR1VxmXrWWBgu8jJWXbMCZfQkiestlLWOD%2FmqK08rZZH8EbBiYcUHdDUra%2BeVhQUz%2BvKQMXw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e5019300b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Size:   56470
Md5:    81972a4eb8712069c35d513f37ffa776
Sha1:   4063820c91091ad1368066030e8e0b6c5b2b37cd
Sha256: 1540e4f6745d47d27d45e83efce6a6cb42ef450028efdb1a4fe0500f723c02b2
                                        
                                            GET /www/images/68c53bcfa4c5400123a0a1a9bcc332eb.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 339750
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 02:47:15 GMT
ETag: "637ae6b3-52f26"
Expires: Wed, 21 Dec 2022 02:47:16 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9886
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TNsbPIoFfHcqnRRzIUBFB2MpQzYCSHiaWKTQUI1ltlTSliHIXVPNyBSB8gK6bKuAau0%2BKQYe6LtxeMEo%2Bd4OSiqTwTBNb%2B4U0yflV7mipmqXPz7TzLXOMcOjTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e503dcbb4ff-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   339750
Md5:    68c53bcfa4c5400123a0a1a9bcc332eb
Sha1:   2570a6b331a4c485278b3a6381d61c1002e33949
Sha256: 50c0c8f292d1047e3bff86bd5366bd1d22a0f481db37972b199fa1dc8637452b
                                        
                                            GET /www/images/7ce3ca124d45d722c21d1aef3d9792fe.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 240390
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2022 09:40:22 GMT
ETag: "636e1886-3ab06"
Expires: Fri, 16 Dec 2022 00:25:03 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 28232
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eR6ys3q9Qfe%2F4Q3w0zcJBaHAO3MgHoCv2hINRFLpVy00Chvek7G9RfK4%2BWU6hHMWzjdLwjh90NRKJfxReeNOIEVEyC5zYNqbsH6JgNBgCVyPASi538RdIzJPdA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e5039470b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   240390
Md5:    7ce3ca124d45d722c21d1aef3d9792fe
Sha1:   362610544f46f8921417dcf47ea770ae0384f225
Sha256: 7b11565056ac89dc7dd106cd682e1610d56d0800f584e8bf6818b33b2170242a
                                        
                                            GET /www/images/18f26f47d2f8313a2257f11e60d5fd2d.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 1217582
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 07:07:55 GMT
ETag: "63772f4b-12942e"
Expires: Sun, 18 Dec 2022 07:07:56 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 28242
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VFiexDjI4ezZ60xOtUCP5ZTJ27NG4zIKjMoHKqCTV5jP2bd6FwIAuGMbeZoMoYIkFe5kjkvy9qjAFjnTiD5RC3Rdn%2F6ifHiYMxjoSJu3LU89SINt0ZmVv3YuKw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4fef8ab4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   1217582
Md5:    18f26f47d2f8313a2257f11e60d5fd2d
Sha1:   76fe6e9bb082b484d9afa7eab30af373b0f8c7e4
Sha256: 5b7aa1e4d445dbe454eceb8adf6bfb5a24b6164ea6a9c85472f6f1757af2f1e5
                                        
                                            GET /www/images/de7adc28752ea54394c5ad44bf85b273.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 202218
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 10:15:19 GMT
ETag: "634936b7-315ea"
Expires: Sun, 27 Nov 2022 05:36:15 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 638773
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JreATts7hPRFFBaO9Ou%2FOPj9qGxrqZZMpfrHIm%2F5ljVQulXnVWMMfa55KgFIZFa1XpuyYY11SfLvYhH4FPucXKF%2BOT7YBtNeoSkHvKbXgsJq7YFzj2dg9s1%2B%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e505df2b4ff-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   202218
Md5:    de7adc28752ea54394c5ad44bf85b273
Sha1:   2a3aafd271b5c3a434a701eba6fbe6748a7050df
Sha256: 95daf4e80ef8607febfa6cad5fa11fc9a8719f304b37ffea7be86bb07ff3c70b
                                        
                                            GET /www/images/bad94a13a558051f5c9f813d6f925e29.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 154869
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 02:41:38 GMT
ETag: "63608762-25cf5"
Expires: Sun, 11 Dec 2022 17:32:21 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 358661
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0rxFg53%2BLP4f98KClHJbjfNKO4avr6FxW7XRazSzSD6ZejldoXffJrSHSaQMAz%2BZ%2BVXtOCJgF2%2FBh5NvIsWdUwZy09I2hZWP4FD6uYsGID7ef%2BLm%2FQXArkH8GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e50a99b0b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 133 x 333\012- data
Size:   154869
Md5:    bad94a13a558051f5c9f813d6f925e29
Sha1:   c5011d4ce08b5bdb11e8d71ab112c19a96fb0e65
Sha256: 08192026abd8032b11e9afb7f056c5c92d93b5f495d9a5f84efe001bd3c71a7b
                                        
                                            GET /www/images/7a42a07194c953ead8b8b3231dcb7a02.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 29628
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 09:19:55 GMT
ETag: "6362363b-73bc"
Expires: Fri, 02 Dec 2022 12:28:44 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9885
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LV00qz3BUuF6RGJBmjJUajk4nyZDAbK0NzdlRp0%2FBDLfHGfxHIEu%2BN6VnyBV2HxOscDMkSH5jm8VEcSnEgTAwBVx8XV5GVXwUALd1gyU82Hge6aVbfQKzPLKZw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e50a876b4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 120 x 300\012- data
Size:   29628
Md5:    7a42a07194c953ead8b8b3231dcb7a02
Sha1:   9480dd0be6788dea679edf811a92ea5d95417aa4
Sha256: a2f2f837a00a62fe0f7341100a3c807ef481748c6b69a30f283780a12c1ee573
                                        
                                            GET /www/images/a2e48718b9f2d7a2fe53c457868c1950.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 1146282
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 07:52:32 GMT
ETag: "637496c0-117daa"
Expires: Fri, 16 Dec 2022 07:52:36 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 358661
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4c9otPHbDkblnv%2ByiddbKIquGU9WXRfhydP7Uf8JzitzxyvnVRHNeO7kZoXdqjISeuH76UOYU%2BY9Be0%2BRYXIZ6EPKvmcYtG2dBzh14hfyWl7P5AW84Y%2BxnjtIA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e50ce69b4ff-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 500 x 500\012- data
Size:   1146282
Md5:    a2e48718b9f2d7a2fe53c457868c1950
Sha1:   8ebf18a187588353b912a27179600a9782012269
Sha256: ade108b45004621c884501270ae5362b66b4199d6dee3ba178f0b7e77d5c41c1
                                        
                                            GET /www/images/78fa62126ee41d29dfac45e41397fe6a.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 272533
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 07:07:02 GMT
ETag: "63788096-42895"
Expires: Mon, 19 Dec 2022 07:07:03 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9885
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WF1S4LbF2oBKKyo%2BnGkNbvwqMN0t%2B0Y924sVE0o2gcJ65bydypoJR3FoWu2t26kGPzB3CjlI706Eiz%2FriH5cIuqP3ykKdG7jKQj8iBSDyE1ZQVC8Lx3nxeLAMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e50d9c10b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   272533
Md5:    78fa62126ee41d29dfac45e41397fe6a
Sha1:   599518645c851a336eadd52acf03113b0e6fbeaa
Sha256: df05a671a0d6ebf614a765a59c26d5aaf7c49db69eaa22e1d75bf773d42c8503
                                        
                                            GET /www/images/bb5b4f12dd0f28a4205cac5af10b8b4d.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 179078
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 08:16:21 GMT
ETag: "632ebcd5-2bb86"
Expires: Wed, 23 Nov 2022 08:43:02 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 970415
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=extYDiy7b3%2FPeOK6%2BPOc0iTh99SAjkuEDV%2FqUnSAvPkw6jG33TNOEDHnEhBItBzuv7Fb06qVmhZbRKoMnElUq%2FsPXny3H5YkVvyIdJVroOmwUdfKGCwr7ZvoEA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e50d8abb4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   179078
Md5:    bb5b4f12dd0f28a4205cac5af10b8b4d
Sha1:   ddb6d0c4cf97dfecdf9af137e368408182d5e62d
Sha256: 9cf4b1d57b81f78a69a122277616709bb9d69b3e8f5d951aa4143615a215a163
                                        
                                            GET /www/images/fe1808a4df038a7acba39dd67d699cca.gif HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Content-Length: 80274
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 06:59:03 GMT
ETag: "6375dbb7-13992"
Expires: Sat, 17 Dec 2022 06:59:10 GMT
Cache-Control: public, max-age=2592000
Pragma: public
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9885
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CvGfMTNTyGCG6qYirK1%2B1eDUcP%2Fm6dcYG20xylsNHWzvenExgJSLkQZLU8dRVyVOZrced7C2LLDe1PSlYvZQdTjVToUgLBFCWQlX0Cuts%2BbncmFrq%2Bxman54mg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e515f24b4ff-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   80274
Md5:    fe1808a4df038a7acba39dd67d699cca
Sha1:   6316f5867c2e533c1ae6b32af8ae274c61e5f596
Sha256: ddfa810d853e9ae32fbe3cbd9bf3b3ec3a9824b10d4edbf4c1b2ca4bc36dd656
                                        
                                            GET /www/delivery/lg.php?bannerid=515&campaignid=53&zoneid=146&loc=http%3A%2F%2Fkhomuc5.tv%2Ftruc-tiep-costa-rica-vs-germany-02-12-2022-0200-2%2F&cb=7d47c0d605 HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Fri, 01-Dec-2023 22:48:06 GMT; Max-Age=31536000; path=/; SameSite=none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Powered-By: LarVPS
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FRKxiKFqFfKHPapgNZZuspN%2FHepeqo%2FRM4C1cNltBnewEGnHb7CILbO%2BinkxyPah0TOh7pwAI9cPNkm86p9y48F9qsSKWRxowxYT%2FCQKEknZZOGd%2BNNPcYdMCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4f691eb4e8-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /www/delivery/lg.php?bannerid=223&campaignid=53&zoneid=239&loc=http%3A%2F%2Fkhomuc5.tv%2Ftruc-tiep-costa-rica-vs-germany-02-12-2022-0200-2%2F&cb=9b6eba6e88 HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Fri, 01-Dec-2023 22:48:06 GMT; Max-Age=31536000; path=/; SameSite=none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Powered-By: LarVPS
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NtH6teRZcvKTq%2BAwKV8v%2Fi2%2BlyO7RSrboydkEpFHWMRmQZAEsaYeO2SzFWKC249dbrYQUu90JASuKTsJIlkd7iI9XU%2BKSVezWYgLFeQB3yUOa4H3InQYRzdCXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4f98920b49-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /www/delivery/lg.php?bannerid=224&campaignid=53&zoneid=240&loc=http%3A%2F%2Fkhomuc5.tv%2Ftruc-tiep-costa-rica-vs-germany-02-12-2022-0200-2%2F&cb=d6559abc44 HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Fri, 01-Dec-2023 22:48:06 GMT; Max-Age=31536000; path=/; SameSite=none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Powered-By: LarVPS
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A2UhEZK97XMQfX7cwsugoCThvORTxsX%2BhcnWsSeiEcbA5N%2BwM8FzzqE2YmTOLVWGs%2F4u4JEYlhXFVChaV15PxdMauxpkzeCfgDZf0iDGONH38JEWhybUDQsh7A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e4fbd9fb4eb-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /www/delivery/lg.php?bannerid=271&campaignid=83&zoneid=282&loc=http%3A%2F%2Fkhomuc5.tv%2Ftruc-tiep-costa-rica-vs-germany-02-12-2022-0200-2%2F&cb=21bc333694 HTTP/1.1 
Host: adigi.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://khomuc5.tv/

search
                                         104.26.10.49
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 01 Dec 2022 22:48:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Fri, 01-Dec-2023 22:48:06 GMT; Max-Age=31536000; path=/; SameSite=none
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Powered-By: LarVPS
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u4dX5tHJgsCWVRgyQL%2FQONaYTrWJuClMezSclOE3XBpdw5bo3l2tBWAL8V3par9CFHFfQOrsBuFmGQRXZm7%2BhgnuntlOOZ46ttQLTIhzCArXNZ6sDba4eBlllw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f5e515933b4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49