Report - ww.hitstreams.live/channels/ksi-live-streams.php

Report Overview

URL

ww.hitstreams.live/channels/ksi-live-streams.php
IP

104.21.41.19

ASN

#13335 CLOUDFLARENET
Submitted

2023-01-14T21:49:47Z

Access
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

1
Threat Detection Systems

2

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
audit-tcfv2.quantcast.mgr.consensu.org (1)	9560	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	779	166	52.58.102.196
e1.o.lencr.org (2)	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676	1458	23.36.77.32
content-signature-2.cdn.mozilla.net (1)	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413	5855	34.160.144.191
ocsp.pki.goog (10)	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3458	80039	142.250.74.131
fonts.gstatic.com (1)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	499	17060	142.250.74.35
ust.chatango.com (1)	43894	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	421	364	208.93.230.28
csm.nl.eu.criteo.net (1)	6830	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	599	164419	178.250.2.150
quantcast.mgr.consensu.org (1)	2151	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420	732	143.204.55.76
dnacdn.net (1)	3760	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508	707	178.250.2.146
firefox.settings.services.mozilla.com (2)	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	2373	35.241.9.150
www.googletagmanager.com (2)	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	772	89869	142.250.74.168
www.google-analytics.com (1)	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371	20731	216.239.34.178
st.chatango.com (2)	37357	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	858	248797	208.93.230.24
img-getpocket.cdn.mozilla.net (6)	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3246	55152	34.120.237.76
adserve.mahimeta.com (6)	145146	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5485	199049	104.21.13.2
services.vlitag.com (1)	17877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398	547	172.67.21.227
contile.services.mozilla.com (1)	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333	391	34.117.237.239
i.imgur.com (3)	5110	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1147	50645	151.101.84.193
gum.criteo.com (5)	381	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2808	10996	178.250.2.146
gem.gbc.criteo.com (1)	6039	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387	5544	178.250.6.109
csi.gstatic.com (1)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4151	545	142.250.141.120
adserve2.mahimeta.com (2)	159996	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1077	1498	104.21.13.2
mahimeta.com (1)	81253	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383	24619	188.114.96.1
ww.hitstreams.live (2)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	856	26145	172.67.189.9
r3.o.lencr.org (9)	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3042	7976	23.36.77.32
ocsp.globalsign.com (1)	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368	1920	104.18.20.226
waufooke.com (2)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	765	27284	139.45.197.238
my.rtmark.net (1)	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	430	126519	139.45.195.8
cdn.jsdelivr.net (4)	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1608	219805	151.101.129.229
ocsp.sectigo.com (2)	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680	1926	104.18.32.68
push.services.mozilla.com (1)	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606	127	35.155.76.146
cdn.taboola.com (2)	1040	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	177083	151.101.65.44
trc-events.taboola.com (1)	1779	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	564	163	141.226.228.48
s4.histats.com (1)	12782	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	632	184	54.39.156.32
ag.gbc.criteo.com (1)	5925	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386	492	178.250.6.145
celeritascdn.com (2)	77558	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	764	1597	104.16.91.6
cdnjs.cloudflare.com (1)	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391	19937	104.17.24.14
ocsp.digicert.com (5)	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1705	18117	93.184.220.29
youradexchange.com (1)	273384	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	584	1466	35.190.41.116
sb.scorecardresearch.com (2)	134	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	968	926	143.204.55.25
test.quantcast.mgr.consensu.org (1)	5820	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	452	3362	143.204.55.116
pagead2.googlesyndication.com (1)	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	613	649	142.250.74.98

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-14T21:49:35Z	medium	Client IP	172.67.189.9	ETPRO HUNTING Observed Unusual Host (ww.)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-01-14	medium	waufooke.com	Sinkholed
2023-01-14	medium	waufooke.com	Sinkholed

ThreatFox

No alerts detected

HTTP Transactions (93)

URL IP Response Size

ww.hitstreams.live/channels/ksi-live-streams.php

172.67.189.9

301 Moved Permanently

URL HTTP/1.1

ww.hitstreams.live/channels/ksi-live-streams.php
IP

172.67.189.9:0
ASN

#13335 CLOUDFLARENET

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	medium	ETPRO HUNTING Observed Unusual Host (ww.)

HTTP Headers

                                        GET /channels/ksi-live-streams.php HTTP/1.1
Host: ww.hitstreams.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        HTTP/1.1 301 Moved Permanently
Date: Sat, 14 Jan 2023 21:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 14 Jan 2023 22:49:35 GMT
Location: https://ww.hitstreams.live/channels/ksi-live-streams.php
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x38FV4EoT%2FcahgJME3rX8Ue1VUuH4v%2BSLnuq%2FDYL8dnKkdUyegZQWtLCVCnRW0ii4KOLFUgPWGu0Iy0eL0H0OPukvry51pcpfFgdyzuoBnUAj%2BEDqospF6POU%2FYGPGfDMBehe9Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7899951a29470afa-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

a8b4f1afb0e830b797238d34ab9254aa

e011acef3d05c959a65205d53b651ecd18a889fe

f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3705
Expires: Sat, 14 Jan 2023 22:51:20 GMT
Date: Sat, 14 Jan 2023 21:49:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

3063227f59d1935298b0620fa7919145

478e1d8bef04b1f95381cac01829c03b6779d420

619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14041
Expires: Sun, 15 Jan 2023 01:43:36 GMT
Date: Sat, 14 Jan 2023 21:49:35 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939

URL HTTP/2

firefox.settings.services.mozilla.com/v1/
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (939), with no line terminators

Size

939
Hash

ff250d3ef3fa45322bf05039a0122a9f

b3e7a2c383bce1bab807dbe1a03c375258b51f1d

d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

                                        GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 21:42:03 GMT
content-type: application/json
age: 452
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

f7bd85a261739c122eefb74ffddaec99

e2e059b0740592e8591d432249aafe5fcb8af23c

71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5819
Expires: Sat, 14 Jan 2023 23:26:35 GMT
Date: Sat, 14 Jan 2023 21:49:36 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

345

URL HTTP/1.1

e1.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

345
Hash

31da9b772bd767cfb59e69be19a5653e

8dea73edd90982f387d6159a65e50c42657e8a95

ee6449c1cfa3df192bde69903f2e7378ff420883a8ba11ae8398cbf911dc7166

HTTP Headers

                                        POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "EE6449C1CFA3DF192BDE69903F2E7378FF420883A8BA11AE8398CBF911DC7166"
Last-Modified: Thu, 12 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11372
Expires: Sun, 15 Jan 2023 00:59:08 GMT
Date: Sat, 14 Jan 2023 21:49:36 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5348

URL HTTP/2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP

34.160.144.191:0
ASN

#15169 GOOGLE

Magic

PEM certificate\012- , ASCII text

Size

5348
Hash

7b922915ebf1fa3639b333f994c74f24

144a3f80b98fd0652d4614f24cf6cbbee40f8938

adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

                                        GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
x-amz-id-2: 1xk2RguTqwwW+ZQSuT1SN9rvemxvJTQbhBVZbzgZms8Zppbb96Ryi4gCXECMUxWstk4aE3OPHR2icBsraHYnLA==
x-amz-request-id: 6WHRVPP0KZ0ST06P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 21:43:53 GMT
age: 343
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

URL HTTP/2

contile.services.mozilla.com/v1/tiles
IP

34.117.237.239:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with no line terminators

Size

12
Hash

23e88fb7b99543fb33315b29b1fad9d6

a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

                                        GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 21:49:36 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

345

URL HTTP/1.1

e1.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

345
Hash

31da9b772bd767cfb59e69be19a5653e

8dea73edd90982f387d6159a65e50c42657e8a95

ee6449c1cfa3df192bde69903f2e7378ff420883a8ba11ae8398cbf911dc7166

HTTP Headers

                                        POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "EE6449C1CFA3DF192BDE69903F2E7378FF420883A8BA11AE8398CBF911DC7166"
Last-Modified: Thu, 12 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11372
Expires: Sun, 15 Jan 2023 00:59:08 GMT
Date: Sat, 14 Jan 2023 21:49:36 GMT
Connection: keep-alive

i.imgur.com/NL3BScm.jpg

151.101.84.193

200 OK

9542

URL HTTP/2

i.imgur.com/NL3BScm.jpg
IP

151.101.84.193:0
ASN

#54113 FASTLY

Magic

JPEG image data, progressive, precision 8, 442x114, components 3\012- data

Size

9542
Hash

ec43e2e5cda2c56fc34289ddd3a5cb26

22fb5c79b2f82ce661e20b3362f44ecefd4ca79d

6cdde1b80c7d2e072eaf2affe8810fc2a1e6524ee7156beff729dafcab72eb21

HTTP Headers

                                        GET /NL3BScm.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ww.hitstreams.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 00:37:57 GMT
etag: "ec43e2e5cda2c56fc34289ddd3a5cb26"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 1345223
x-served-by: cache-iad-kcgs7200086-IAD, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 13771, 75
x-timer: S1673732976.373511,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 9542
X-Firefox-Spdy: h2

i.imgur.com/ouOv3ic.jpeg

151.101.84.193

200 OK

16408

URL HTTP/2

i.imgur.com/ouOv3ic.jpeg
IP

151.101.84.193:0
ASN

#54113 FASTLY

Magic

JPEG image data, baseline, precision 8, 500x200, components 3\012- data

Size

16408
Hash

ff7b2570d756dd59ddcaaf70797dadb6

f5eaf438ab4b55c1a3fde26a4922bc7e07cc3c9a

e9813388ecd6650c81ddf9b59ebe1a48a02dad82c20667d43e1fa7383030a293

HTTP Headers

                                        GET /ouOv3ic.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ww.hitstreams.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 12:02:44 GMT
etag: "ff7b2570d756dd59ddcaaf70797dadb6"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 5132812
x-served-by: cache-iad-kiad7000158-IAD, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 9
x-timer: S1673732976.375862,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 16408
X-Firefox-Spdy: h2

i.imgur.com/DHYXOPq.png

151.101.84.193

200 OK

22902

URL HTTP/2

i.imgur.com/DHYXOPq.png
IP

151.101.84.193:0
ASN

#54113 FASTLY

Magic

PNG image data, 992 x 94, 8-bit/color RGBA, non-interlaced\012- data

Size

22902
Hash

af7b20a1f16f44ef50c2b19d2d434842

1cfbe067f01885409e4ff3dfa550a8afb45f52bb

cf0b57000af272d66c7571a312f710e5c0d4a901f4a2d36695c317f58960fe87

HTTP Headers

                                        GET /DHYXOPq.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ww.hitstreams.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
last-modified: Sat, 16 Apr 2022 14:16:56 GMT
etag: "af7b20a1f16f44ef50c2b19d2d434842"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 1338662
x-served-by: cache-iad-kiad7000101-IAD, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 4341, 129
x-timer: S1673732976.381686,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 22902
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/LMujaZzNWTM

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/s/gts1p5/LMujaZzNWTM
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

a2df8bde5a2d7351353e5a2ddd3978a4

f5e1b83fcb5f01a6e901bf15730eb60cc62384c2

bd4ef5684871315c328b7a11636f80bcc847508759d3c1d27d4f2cd51c9337f2

HTTP Headers

                                        POST /s/gts1p5/LMujaZzNWTM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

6fc52c452b4176dabdd1a319c5e3fa51

e00b78bd1c6b5d71f2987fd9cdc8975804b668ae

224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/sourcesanspro/v12/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

142.250.74.35

200 OK

16112

URL HTTP/2

fonts.gstatic.com/s/sourcesanspro/v12/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP

142.250.74.35:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 16112, version 1.0\012- data

Size

16112
Hash

899c8f78ce650d4009d42443897aa723

d2e2faa9780b7fca5a5cb20a853dd7df55b3101e

a9950fa5ca9cf47072770900d259bcf6778aa1119652d2e706d5eb92df254199

HTTP Headers

                                        GET /s/sourcesanspro/v12/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww.hitstreams.live
Connection: keep-alive
Referer: https://ww.hitstreams.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Jan 2023 18:09:59 GMT
expires: Sun, 14 Jan 2024 18:09:59 GMT
cache-control: public, max-age=31536000
age: 13177
last-modified: Mon, 25 Mar 2019 20:10:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

6fc52c452b4176dabdd1a319c5e3fa51

e00b78bd1c6b5d71f2987fd9cdc8975804b668ae

224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjs.cloudflare.com/ajax/libs/alpinejs/3.10.2/cdn.js

104.17.24.14

200 OK

18897

URL HTTP/2

cdnjs.cloudflare.com/ajax/libs/alpinejs/3.10.2/cdn.js
IP

104.17.24.14:0
ASN

#13335 CLOUDFLARENET

Magic

HTML document text\012- HTML document, ASCII text

Size

18897
Hash

c848f68903228feec9050ffbe92769a9

e9ae597ddd3daad51f9ef02045c0eccf1854e228

6cb264e0de2033049544813c228420842bfc5bd07e189c318d796eab37f08a68

HTTP Headers

                                        GET /ajax/libs/alpinejs/3.10.2/cdn.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ww.hitstreams.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
date: Sat, 14 Jan 2023 21:49:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 18473
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "626098ad-4829"
last-modified: Wed, 20 Apr 2022 23:35:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5486286
expires: Thu, 04 Jan 2024 21:49:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0ah%2F9b2M4K5ejzvAMOHHMJ8mHP0F05CQX%2FonuoAf0rTO9Hje4Gj3SzUF3zsOpBC%2FrRGvGmq6CO8qOz2TEkqmRFBYBGRFO0mXlrF2piwpaMJZepyFS8hWePZeczOklAPjF1pSYMx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7899951f6dadb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

e804586be26c88b95d554afe0ef24d5c

6f99b1fe2330c4661608f17819a4490a92ca296c

38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/LMujaZzNWTM

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/s/gts1p5/LMujaZzNWTM
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

a2df8bde5a2d7351353e5a2ddd3978a4

f5e1b83fcb5f01a6e901bf15730eb60cc62384c2

bd4ef5684871315c328b7a11636f80bcc847508759d3c1d27d4f2cd51c9337f2

HTTP Headers

                                        POST /s/gts1p5/LMujaZzNWTM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-146658170-1

142.250.74.168

200 OK

44172

URL HTTP/2

www.googletagmanager.com/gtag/js?id=UA-146658170-1
IP

142.250.74.168:0
ASN

#15169 GOOGLE

Magic

ASCII text, with very long lines (1921)

Size

44172
Hash

cad6bf375a13761a363c83bb7d48da92

6de74d45822bd30e47570126e234b188f263e1c0

4ee678c754ba17ace579c85763ada9a043cd2b9bdbcfbf065e83de2c16e0afe8

HTTP Headers

                                        GET /gtag/js?id=UA-146658170-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ww.hitstreams.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 21:49:36 GMT
expires: Sat, 14 Jan 2023 21:49:36 GMT
cache-control: private, max-age=900
last-modified: Sat, 14 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44172
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-145079013-1

142.250.74.168

200 OK

44171

URL HTTP/2

www.googletagmanager.com/gtag/js?id=UA-145079013-1
IP

142.250.74.168:0
ASN

#15169 GOOGLE

Magic

ASCII text, with very long lines (1921)

Size

44171
Hash

78c628db9647da6db2b1aa1b5b2c7e2a

b91482f4da56895896c9c79429e133c0111b5cc5

834c8b8a31ac9c12f19d69010bf2c5d6d9416a1783408af056992278db4426b9

HTTP Headers

                                        GET /gtag/js?id=UA-145079013-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstream.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 21:49:36 GMT
expires: Sat, 14 Jan 2023 21:49:36 GMT
cache-control: private, max-age=900
last-modified: Sat, 14 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44171
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/cdnbye@latest/dist/clappr-plugin.min.js

151.101.129.229

200 OK

1148

URL HTTP/2

cdn.jsdelivr.net/npm/cdnbye@latest/dist/clappr-plugin.min.js
IP

151.101.129.229:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (3010), with no line terminators

Size

1148
Hash

a11054242cca130db5848f4b9d3ffaed

e507f254838103754b661b0ce51b6db68b884fe3

38e2fd24956be6f20f42772000e2d5ee1d5c305b0815a86795f56eee9dd8e8b9

HTTP Headers

                                        GET /npm/cdnbye@latest/dist/clappr-plugin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstream.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.20.10
x-jsd-version-type: version
etag: W/"bc2-Zh9Ejh+gezJ0K1G3K4HjkkcIvTg"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 31366
x-served-by: cache-fra-eddf8230109-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1148
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js

151.101.129.229

200 OK

10250

URL HTTP/2

cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
IP

151.101.129.229:0
ASN

#54113 FASTLY

Magic

HTML document, ASCII text, with very long lines (30387)

Size

10250
Hash

5245fb2ca8b98e72f9b7ae0323d76020

eb6493f5f66936432464d98c47f2f0b200309b5b

75d36b8e1e822c4f74c51fa0a97f24ef4c45afc6059d3df9b0f4cc37acd1f231

HTTP Headers

                                        GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstream.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 9863
x-served-by: cache-fra-eddf8230096-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10250
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

e804586be26c88b95d554afe0ef24d5c

6f99b1fe2330c4661608f17819a4490a92ca296c

38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.jsdelivr.net/npm/cdnbye@latest/dist/hlsjs-p2p-engine.min.js

151.101.129.229

200 OK

78397

URL HTTP/2

cdn.jsdelivr.net/npm/cdnbye@latest/dist/hlsjs-p2p-engine.min.js
IP

151.101.129.229:0
ASN

#54113 FASTLY

Magic

data

Size

78397
Hash

139d46aaa5786b850267769bcc625868

e3df262f02d18b6eb5d6b36bd92c60efc9b7d8d2

d62a004f1e4640b9a7245e12a7ac96a5664b6487750e378ceb3cb9b8cbc8b4da

HTTP Headers

                                        GET /npm/cdnbye@latest/dist/hlsjs-p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstream.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.20.10
x-jsd-version-type: version
etag: W/"2c0fb-ruOSsSubyzmt5zoQXaHqxXBy6Wo"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 14454
x-served-by: cache-fra19146-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 47856
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@clappr/player@0.4.0/dist/clappr.min.js

151.101.129.229

200 OK

126915

URL HTTP/2

cdn.jsdelivr.net/npm/@clappr/player@0.4.0/dist/clappr.min.js
IP

151.101.129.229:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (65536), with no line terminators

Size

126915
Hash

4b7a815faadc405c5065e3841dbd57ee

bf8b3aee64ccf6b9055fd0010eea198b1fd1802e

9596eb8c7f96d0b41a7bb291bb51f8105244809e571a56ae36d64d49b42d82f5

HTTP Headers

                                        GET /npm/@clappr/player@0.4.0/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstream.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.4.0
x-jsd-version-type: version
etag: W/"72005-xDPIgqHJfOeFuHY26QsUErnjK9w"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 21:49:36 GMT
age: 7077883
x-served-by: cache-fra-eddf8230110-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 126915
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329

URL HTTP/2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (329), with no line terminators

Size

329
Hash

0333b0655111aa68de771adfcc4db243

63f295a144ac87a7c8e23417626724eeca68a7eb

60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

                                        GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 21:17:25 GMT
age: 1931
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.20.226

200 OK

1462

URL HTTP/1.1

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP

104.18.20.226:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

1462
Hash

daa5212204026dafe436da50c6fa0918

2bcc8dbc6f4d2e5414730557000b5c7d5996a401

e4ba8372792338995aef65a5e02904a8ea475857ea8038147d62508fe1e872a9

HTTP Headers

                                        POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 21:49:36 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EA123E3975608A7799C6795B8BD923688747699D"
Expires: Sun, 15 Jan 2023 08:00:00 GMT
Last-Modified: Sat, 14 Jan 2023 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3523
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78999520fc0e1c12-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471

URL HTTP/1.1

ocsp.digicert.com/
IP

93.184.220.29:0
ASN

#15133 EDGECAST

Magic

data

Size

471
Hash

c01ec61f7ca77158f474b3ab519c12fa

fc82ae0fcd73a83a980b75709a08e65239894e4a

f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3916
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 21:49:36 GMT
Last-Modified: Sat, 14 Jan 2023 20:44:20 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

104.18.32.68

200 OK

471

URL HTTP/1.1

ocsp.sectigo.com/
IP

104.18.32.68:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

471
Hash

705212eede3c5bebd8cedb31e7f22f25

19d9fa716aa330fdc11d9a579f8ab1e7d1d0d634

2f507c2c665e944a80363a5f71a36db5877a7099e6e2244e51b9fee1103029f7

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 21:49:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 17:22:25 GMT
Expires: Sat, 21 Jan 2023 17:22:24 GMT
Etag: "19d9fa716aa330fdc11d9a579f8ab1e7d1d0d634"
Cache-Control: max-age=588166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78999522b81cb50c-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471

URL HTTP/1.1

ocsp.sectigo.com/
IP

104.18.32.68:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

471
Hash

2c0494213038dfccf2a0d07eac511013

42fb6046746008b09dc11da8a5ae8caff469daf8

7711f1bfba3700fe87e8c3ba79de1015f16cbe2a75b260268823b75bd3a5400f

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 21:49:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 06:12:19 GMT
Expires: Sat, 21 Jan 2023 06:12:18 GMT
Etag: "42fb6046746008b09dc11da8a5ae8caff469daf8"
Cache-Control: max-age=547960,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7899952198c31bfe-OSL

www.google-analytics.com/analytics.js

216.239.34.178

200 OK

20085

URL HTTP/2

www.google-analytics.com/analytics.js
IP

216.239.34.178:0
ASN

#15169 GOOGLE

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (73)

#1 JS:Script (size: 30434)

#2 JS:Script (size: 418)

#3 JS:Script (size: 322)

#4 JS:Script (size: 0)

#5 JS:Script (size: 40599)

#6 JS:Script (size: 320)

#7 JS:Script (size: 3937)

#8 JS:Script (size: 548512)

#9 JS:Script (size: 83)

#10 JS:Script (size: 446)

#11 JS:Script (size: 13472)

#12 JS:Script (size: 551475)

#13 JS:Script (size: 64309)

#14 JS:Script (size: 12332)

#15 JS:Script (size: 1614)

#16 JS:Script (size: 86530)

#17 JS:Script (size: 11440)

#18 JS:Script (size: 378080)

#19 JS:Script (size: 470697)

#20 JS:Script (size: 83)

#21 JS:Script (size: 83)

#22 JS:Script (size: 253)

#23 JS:Script (size: 91)

#24 JS:Script (size: 564)

#25 JS:Script (size: 83)

#26 JS:Script (size: 3010)

#27 JS:Script (size: 824)

#28 JS:Script (size: 81260)

#29 JS:Script (size: 52)

#30 JS:Script (size: 84261)

#31 JS:Script (size: 25)

#32 JS:Script (size: 155)

#33 JS:Script (size: 180475)

#34 JS:Script (size: 81708)

#35 JS:Script (size: 83)

#36 JS:Script (size: 81708)

#37 JS:Script (size: 112980)

#38 JS:Script (size: 567)

#39 JS:Script (size: 81981)

#40 JS:Script (size: 29468)

#41 JS:Script (size: 95)

#42 JS:Script (size: 74745)

#43 JS:Script (size: 83)

#44 JS:Script (size: 393115)

#45 JS:Script (size: 71395)

#46 JS:Script (size: 2817)

#47 JS:Script (size: 94610)

#48 JS:Script (size: 451)

#49 JS:Script (size: 69564)

#50 JS:Script (size: 167)

#51 JS:Script (size: 112980)

#52 JS:Script (size: 514)

#53 JS:Script (size: 38918)

#54 JS:Script (size: 424)

#55 JS:Script (size: 322)

#56 JS:Script (size: 322)