Overview

URL streamlivenow.me/lala/index.php?stream=124459607?sid=1499014
IP104.21.67.43
ASNCLOUDFLARENET
Location
Report completed2022-09-27 19:17:07 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-27 2 ardslediana.com Sinkholed
2022-09-27 2 fleraprt.com Sinkholed
2022-09-27 2 ardslediana.com Sinkholed
2022-09-27 2 oaphoace.net Sinkholed
2022-09-27 2 oaphoace.net Sinkholed
2022-09-27 2 oaphoace.net Sinkholed


Files

No files detected



Passive DNS (45)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 143.204.55.110
mnemonic passive DNS s7.addthis.com (4) 1504 2012-05-21 03:34:04 UTC 2022-09-27 05:13:44 UTC 23.38.200.123
mnemonic passive DNS vjs.zencdn.net (2) 4968 2012-05-21 08:26:59 UTC 2022-09-27 06:04:43 UTC 151.101.86.217
mnemonic passive DNS ocsp.sectigo.com (5) 487 2018-12-17 11:31:55 UTC 2022-09-27 17:16:59 UTC 104.18.32.68
mnemonic passive DNS e1.o.lencr.org (4) 6159 2021-08-20 07:36:30 UTC 2022-09-27 05:36:01 UTC 23.36.76.225
mnemonic passive DNS whos.amung.us (2) 12687 2014-04-02 14:27:13 UTC 2022-09-27 10:43:18 UTC 104.22.74.171
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-27 11:57:58 UTC 142.250.74.164
mnemonic passive DNS sb.scorecardresearch.com (1) 134 2021-05-09 05:03:40 UTC 2022-09-27 11:42:45 UTC 143.204.55.8
mnemonic passive DNS my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-09-27 14:07:47 UTC 139.45.195.8
mnemonic passive DNS fleraprt.com (1) 0 2022-01-14 22:55:14 UTC 2022-09-27 15:22:08 UTC 139.45.195.254 Unknown ranking
mnemonic passive DNS v3.sportsonline.to (1) 0 2022-04-04 19:18:12 UTC 2022-09-24 19:59:23 UTC 104.21.8.62 Domain (sportsonline.to) ranked at: 263863
mnemonic passive DNS velocitycdn.com (1) 348860 2015-05-27 11:30:15 UTC 2022-09-27 10:34:33 UTC 172.64.203.33
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-27 04:53:14 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-27 05:08:12 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 13:22:33 UTC 34.120.237.76
mnemonic passive DNS gem.gbc.criteo.com (1) 6039 2019-02-06 06:21:41 UTC 2022-09-27 17:33:37 UTC 178.250.6.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 14:55:40 UTC 143.204.55.115
mnemonic passive DNS code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2022-09-27 04:52:54 UTC 69.16.175.10
mnemonic passive DNS youradexchange.com (2) 273384 2013-02-04 16:25:46 UTC 2022-09-27 16:39:26 UTC 35.190.41.116
mnemonic passive DNS v1.addthisedge.com (1) 1721 2019-05-22 18:56:22 UTC 2022-09-27 05:13:45 UTC 23.38.200.123
mnemonic passive DNS z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2022-09-27 05:24:49 UTC 23.38.201.146
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 35.163.196.193
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-27 05:00:30 UTC 104.18.20.226
mnemonic passive DNS swarm.video (1) 126884 2017-10-22 19:55:23 UTC 2022-09-24 19:14:27 UTC 172.64.204.36
mnemonic passive DNS dnacdn.net (2) 3760 2019-09-02 15:07:45 UTC 2022-09-27 05:25:35 UTC 178.250.0.157
mnemonic passive DNS streamlivenow.me (5) 0 2022-09-12 15:59:01 UTC 2022-09-24 22:21:20 UTC 104.21.67.43 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:52:25 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (9) 86 2012-05-21 07:02:23 UTC 2022-09-27 12:08:14 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.3
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-27 04:53:25 UTC 151.101.85.229
mnemonic passive DNS cdn.taboola.com (2) 1040 2013-07-19 23:48:03 UTC 2022-09-27 05:42:48 UTC 151.101.85.44
mnemonic passive DNS ust.chatango.com (1) 43894 2012-12-10 16:31:50 UTC 2022-09-27 16:35:30 UTC 208.93.230.22
mnemonic passive DNS ag.gbc.criteo.com (1) 5925 2018-12-17 13:17:41 UTC 2022-09-27 17:33:37 UTC 178.250.6.228
mnemonic passive DNS ardslediana.com (2) 0 2022-08-02 20:38:47 UTC 2022-09-27 16:25:21 UTC 139.45.197.236 Unknown ranking
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-27 04:52:54 UTC 142.250.74.72
mnemonic passive DNS awstats.cloud (1) 0 2022-07-07 07:16:14 UTC 2022-09-24 19:59:31 UTC 104.21.46.63 Unknown ranking
mnemonic passive DNS trc-events.taboola.com (1) 1779 2020-06-09 13:52:57 UTC 2022-09-27 05:10:48 UTC 141.226.228.48
mnemonic passive DNS gum.criteo.com (4) 381 2015-01-22 10:58:57 UTC 2022-09-27 14:18:59 UTC 178.250.0.157
mnemonic passive DNS tzegilo.com (1) 0 2022-01-14 15:27:15 UTC 2022-09-27 17:50:47 UTC 172.64.132.2 Unknown ranking
mnemonic passive DNS st.chatango.com (3) 37357 2012-06-04 02:57:52 UTC 2022-09-27 13:05:22 UTC 208.93.230.26
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-27 15:18:37 UTC 142.250.74.174
mnemonic passive DNS 62jl0my6fy2244.smokelearned.net (3) 0 No data No data 172.67.213.86 Unknown ranking
mnemonic passive DNS oaphoace.net (3) 0 2022-05-04 17:35:14 UTC 2022-09-27 16:24:08 UTC 139.45.197.239 Unknown ranking
mnemonic passive DNS csm.fr.eu.criteo.net (1) 6845 2017-01-30 05:18:06 UTC 2022-09-27 05:32:16 UTC 178.250.0.162


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.21.67.43

Date UQ / IDS / BL URL IP
2022-12-02 05:32:20 +0000
0 - 0 - 1 space.leafforth.bar/imgcdn.php?pic=aHR0cHM6Ly (...) 104.21.67.43
2022-09-27 19:17:07 +0000
0 - 0 - 6 streamlivenow.me/lala/index.php?stream=124459 (...) 104.21.67.43
2022-09-18 16:18:44 +0000
0 - 0 - 7 streamlivenow.me/lala/index.php?stream=125164 (...) 104.21.67.43
2022-09-15 22:29:17 +0000
0 - 0 - 1 reg.tax.s17f.live/ 104.21.67.43
2022-09-14 19:42:42 +0000
0 - 0 - 17 streamlivenow.me/lala/index.php?stream=125617 (...) 104.21.67.43

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-10 04:40:59 +0000
0 - 0 - 16 tonightfindthe.one/security.php?u=aHR0cHM6Ly9 (...) 104.21.66.213
2022-12-10 04:39:58 +0000
0 - 0 - 1 meu-acesso-online-dezembro.com/luiza/home.php (...) 172.67.172.205
2022-12-10 04:38:54 +0000
0 - 0 - 24 justicepropertiesllc.com/ 66.235.200.147
2022-12-10 04:38:20 +0000
0 - 0 - 1 f9ux5s.cyou/ 188.114.96.1
2022-12-10 04:38:19 +0000
0 - 0 - 4 makeyourwet.com/yrbPvQjh?s1=uq6viv7b95k3&tag= (...) 172.67.175.125

Last 4 reports on domain: streamlivenow.me

Date UQ / IDS / BL URL IP
2022-11-28 16:46:59 +0000
0 - 0 - 11 streamlivenow.me/lala/index.php?stream=125930 (...) 45.141.157.2
2022-09-27 19:17:07 +0000
0 - 0 - 6 streamlivenow.me/lala/index.php?stream=124459 (...) 104.21.67.43
2022-09-18 16:18:44 +0000
0 - 0 - 7 streamlivenow.me/lala/index.php?stream=125164 (...) 104.21.67.43
2022-09-14 19:42:42 +0000
0 - 0 - 17 streamlivenow.me/lala/index.php?stream=125617 (...) 104.21.67.43

No other reports with similar screenshot



JavaScript

Executed Scripts (50)


Executed Evals (6)

#1 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

                                        _ate.cbs
                                    

#2 JavaScript::Eval (size: 4266, repeated: 1) - SHA256: bcb863f64d380e78085671fc5a5a3aff8dde46920ca1b24c92078810120a405b

                                        setTimeout(function() {
    $("body").append("<iframe width=\"1366\" height=\"768\" src=\"https://routerhydrula.com/iAZoqS9qIg28n/28749\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://moekyepkd.com/redirect?tid=756113&file=Watch_Live\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=uFkWgZKDzl\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=sGwNIyGLG5\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=s5e83yzhMM\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=CMAs8uhhKm\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=fXHggLmTuE\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=WYbHISCtLV\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=MrwGr89ffS\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=N2JBJxP2ji\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=CX0BW0NjsB\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=HsP3nKe6J5\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=PReDvl944m\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=PReDvl944m\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=XgOPsot9Xe\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=GQg8mmsLEC\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe><iframe width=\"1366\" height=\"768\" src=\"https://serve.contentango.com/gen.php?id=tDdYeo7o7\" style=\"visibility:hidden;position:absolute;top:-5000px;left:-5000px;\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe>")
}, 50000);
                                    

#3 JavaScript::Eval (size: 11, repeated: 1) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

                                        addthis.cbs
                                    

#4 JavaScript::Eval (size: 1659, repeated: 1) - SHA256: 2113ee16441d692e6fb2fbb77874f78fc9850cbfebe79c9ae7a9bdd851e5c2e7

                                        var player;
var hlsjsConfig = {
    liveSyncDuration: 60,
    maxBufferLength: 60,
    liveMaxLatencyDuration: Infinity,
};
var p2p = false;
var src = "https://ncwhumyaxfv.cdnexpress42.net:8443/hls/6ua5mxm6.m3u8?s=QwFi3TQ5lDqcIyXbfyEs0w&e=1664327817";
if (typeof engine != "undefined" && typeof p2pml != "undefined") {
    if (p2pml.hlsjs.Engine.isSupported()) {
        p2p = true;
        hlsjsConfig["loader"] = engine.createLoaderClass()
    } else {
        src = "https://6q73crmk54a2uk74.cdnexpress37.net:8443/hls/6ua5mxm6.m3u8?s=QwFi3TQ5lDqcIyXbfyEs0w&e=1664327817"
    }
}
$(document).ready(function() {
    player = new Clappr.Player({
        source: src,
        parentId: "#player",
        width: "100%",
        height: "100%",
        playback: {
            hlsjsConfig: hlsjsConfig,
        },
        autoPlay: false,
        mute: startMuted,
        stretching: "bestfit",
        watermark: "",
        position: "1",
        watermarkLink: "",
        events: {
            onError: function(e) {
                errorPlaying()
            },
            onPlay: function(e) {
                setTimeout(function() {
                    $(".stream-logo").fadeOut()
                }, 1000);
                if (!videoStarted) {
                    videoStarted = true;
                    setTimeout(function() {
                        var h = document.getElementsByTagName("head")[0],
                            s = document.createElement("script");
                        s.type = "text/javascript";
                        s.async = true;
                        s.src = "//silverundergofold.com/82/05/4d/82054d468d1245b12f8e814444d99462.js";
                        h.appendChild(s)
                    }, 20000);
                    if (startMuted) $("#btn-unmute").fadeIn()
                }
            },
            onPause: function(e) {
                $(".stream-logo").fadeIn()
            },
            onVolumeUpdate: function(e) {
                $("#btn-unmute").fadeOut()
            },
            onReady: function() {}
        }
    });
    if (p2p) {
        p2pml.hlsjs.initClapprPlayer(player)
    }
    setTimeout(function() {
        player.play()
    }, 1)
});

function WSreloadStream() {
    $(".stream-offline").css("display", "none");
    var newplayer = player.configure(player);
    newplayer = new Clappr.Player(newplayer.options);
    player.destroy();
    player = newplayer;
    player.mute();
    player.play();
    player.unmute()
}

function WSUnmute() {
    player.unmute()
}
                                    

#5 JavaScript::Eval (size: 19, repeated: 1) - SHA256: 56e50d855741d508ab6465d3860ef0ad117ab967993b9111caeaec90f64e912b

                                        document.namespaces
                                    

#6 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 0f3342bc14063d9ed7a669eb067b50ea17b2cb7dcb51968939b72fa9ac862d91

                                        var foo = (x) => x + 1
                                    

Executed Writes (0)



HTTP Transactions (102)


Request Response
                                        
                                            GET /lala/index.php?stream=124459607?sid=1499014 HTTP/1.1 
Host: streamlivenow.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.21.67.43
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 27 Sep 2022 19:16:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 27 Sep 2022 20:14:37 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Age: 139
Last-Modified: Tue, 27 Sep 2022 19:14:37 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0A1mt2rHx2IrC0hppsE1w8xnad7VeFRdsQu9QJlal9ca0derVZ7KavYkozKq5wrL8wafht82i6lFcQVL4lkhfp1ZBIZDtebOY5OQCu4H6zSM6XLOpL8TyXBVD98P9ubdS3Gj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7516939b48bdb529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (581)
Size:   1583
Md5:    a49c07d119c839518b79ef45d4bd2cc6
Sha1:   02cc04f0ecc4dbcb127cc53e3437a227148bc4ec
Sha256: 33142281f026b15f3eec5070a03107fe569bae23bcf7b30b39fc1ece7e5460c3
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 19:05:14 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WZ90QPRcBoOTRIE3V8ynuOnBR0JGvRVDZYJ-3bilxxVvOcU2ikIoXA==
Age: 702


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3447
Expires: Tue, 27 Sep 2022 20:14:23 GMT
Date: Tue, 27 Sep 2022 19:16:56 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oxpHivcAnI8henbK86NYPinR8YSkzobLIf65o0IK9o0yahk5ZmoqBQ==
age: 35563
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /streams/124459607/1499014 HTTP/1.1 
Host: streamlivenow.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/lala/index.php?stream=124459607?sid=1499014
Upgrade-Insecure-Requests: 1

                                         
                                         104.21.67.43
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 27 Sep 2022 19:16:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=3600
Expires: Tue, 27 Sep 2022 20:14:38 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Age: 138
Last-Modified: Tue, 27 Sep 2022 19:14:38 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPNou7%2FhjcWfZIZBF%2FiFZ8niDly%2FarGIU%2FJGWrpttzV8GZwthKLp95DaYLtU3shUHWG%2BAVvF7Zu70Cjj7c0asOFSEm6bJEzIV%2BbTKpwwZuFt9EuiaVrhXLChV6cGSnDKjmCN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7516939cfb8eb529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   948
Md5:    5a9dfbd67f5b8bf141255e147753e4d3
Sha1:   56f8cb04b020f49c6775608dbe6a18a40077f014
Sha256: 18b3fb272a6466c68446ce5ea812bb1657743ce96887beda3d51c5df058e7f8a
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/

                                         
                                         23.38.200.123
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html
                                        
Server: nginx/1.15.8
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Tue, 27 Sep 2022 19:16:56 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   171
Md5:    3c417e9efbcaeb3bf7e7df75cf3b22fd
Sha1:   00465aec6b8ec302eae8abb99678fc5c09c3f343
Sha256: 21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 19:16:56 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /js/player.js HTTP/1.1 
Host: streamlivenow.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/streams/124459607/1499014

                                         
                                         104.21.67.43
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Tue, 27 Sep 2022 19:16:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=1016000
Cf-Bgj: minify
Cf-Polished: origSize=4696
Expires: Thu, 27 Oct 2022 19:07:33 GMT
Last-Modified: Wed, 01 Aug 2018 00:21:56 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Age: 563
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JM1Ap2hnDv2%2FOAQrVn%2FrYYmUVufaqO2R0yPlCpGFPD%2FxjMOEk%2B%2FPmjc4p4ZaJM5Mc7pO%2BYC69CHu1xCCM4q6yFIJKIcZIyoAZ1ugQsaszCc2cV0y23Nhoi2wlicUj08Yhvs2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7516939dac78b529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (800)
Size:   1480
Md5:    613828468ff55ec849d6161e2db9793b
Sha1:   d296c17d27bea91e4afefdd3309af8d441cde8d7
Sha256: 57a56b319876bfe37040eac9b7013e6ecdc35561c04a931dca8d2d8ea2c79dcd
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6576F39E4A0AE257588BED848F8F3410058D62DF6FFE2E456A3CD3F764313073"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7661
Expires: Tue, 27 Sep 2022 21:24:37 GMT
Date: Tue, 27 Sep 2022 19:16:56 GMT
Connection: keep-alive

                                        
                                            GET /css/stream.code.css?v=1.1b HTTP/1.1 
Host: streamlivenow.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/streams/124459607/1499014

                                         
                                         104.21.67.43
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 27 Sep 2022 19:16:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=604800
Cf-Bgj: minify
Cf-Polished: origSize=2786
Expires: Thu, 27 Oct 2022 19:07:33 GMT
Last-Modified: Wed, 01 Aug 2018 00:20:08 GMT
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: HIT
Age: 563
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=couGMXUW0ZV1VwfEUA8PQMlKY1QjpKOT%2BIxxcFUPD6S6co7ny8muXspPXuqk%2FDRvE4CuvsnIi6LP%2BwNIoCCdII7MLdXUmQAIlIT99p0cO7qG%2Fj6oaVZkSox4WzyCHkvJt1nR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7516939dae951c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (2461), with no line terminators
Size:   936
Md5:    877c92d334524b57546b4c8d1df7bb1d
Sha1:   4fbbe48ce8abf75e626a1dede7794f92d6a67293
Sha256: e4eccd0c0de92f8f74294e68f95bcfb5643b0a8b80c4e188f7813b3a617ab350
                                        
                                            GET /5/5319948 HTTP/1.1 
Host: ardslediana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/

                                         
                                         139.45.197.236
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 27 Sep 2022 19:16:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 7a529138290658185a1d8af4bd97fbce
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=915db06e68474bc58ed673b545652b90; expires=Wed, 27 Sep 2023 19:16:56 GMT; path=/ oaidts=1664306216; expires=Wed, 27 Sep 2023 19:16:56 GMT; path=/ syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (62281), with no line terminators
Size:   23187
Md5:    1455a4b5d5cb3a329165495df1006a79
Sha1:   35a279dd55994c87f1b6debff19a48ed9957fe0c
Sha256: e97761dc066a2af51a68e7bfedcd3da8e898ff7f1af7900bf2270ed676fc5501

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://streamlivenow.me/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116360
date: Tue, 27 Sep 2022 19:16:56 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54602)
Size:   116360
Md5:    b87cd33d44e99d7bb4fa59f97915a154
Sha1:   429b6461bab5189d6987d39713c3405223c461b8
Sha256: 9ad12a8b1ed82ccdfc74eebce578bd8f146b04ba08476f8a9a237e346f1772b2
                                        
                                            GET /jquery-3.3.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:56 GMT
content-encoding: gzip
content-length: 30288
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664306216.dop068.sk1.t,1664306216.cds227.sk1.hn,1664306216.cds072.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30288
Md5:    d549b312f7a7d228b4ec229a6547dfdc
Sha1:   0766794582ad530ec0f8c2595f741086afffa312
Sha256: f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
                                        
                                            GET /ie8/1.1.2/videojs-ie8.min.js HTTP/1.1 
Host: vjs.zencdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 10 Feb 2016 20:27:09 GMT
etag: "2ff9bb22f0b1789ac170247b0825488f"
cache-control: public, max-age=31536000
content-encoding: gzip
date: Tue, 27 Sep 2022 19:16:56 GMT
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 11083
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 8924
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Size:   8924
Md5:    c1f1df0d15c6c2385354cd6f1d55ac90
Sha1:   29d75b7acb3856360eaf22df07d5d8fe8e9917db
Sha256: 8fb2e6f24918cbce5dc1984062388d8d2a2191bf107606bedbae6e2f4451b151
                                        
                                            GET /6.6.3/video-js.css HTTP/1.1 
Host: vjs.zencdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.217
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
last-modified: Tue, 30 Jan 2018 19:07:51 GMT
etag: "48169240598eb5b1a1754806f81f7e50"
cache-control: public, max-age=31536000
content-encoding: gzip
date: Tue, 27 Sep 2022 19:16:56 GMT
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 74
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 15764
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14763)
Size:   15764
Md5:    b1d08545bcf6e62a5254b3b4619691a6
Sha1:   8ccb2099d43a5bd1794543177da37c7dd18c9519
Sha256: d86da170b8e7ae35b6f2df3da4136c6bc241a6ced591f680ac43605c6f6fb74d
                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 27 Sep 2022 19:16:56 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:56 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 06:25:19 GMT
Expires: Mon, 03 Oct 2022 06:25:18 GMT
Etag: "f2ec69fdaca2a0327cd3599ac05d0051df3dee41"
Cache-Control: max-age=471501,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7516939ecb36b518-OSL

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 19:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 19:51:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tARltPvmNVqG16M2A7OsHr3G4tI7sG6-jSMRra95QSWj4GRxj6twmQ==
Age: 371


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /gid.js?userId=915db06e68474bc58ed673b545652b90 HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Tue, 27 Sep 2022 19:16:57 GMT
content-length: 65
access-control-allow-origin: http://streamlivenow.me
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=915db06e68474bc58ed673b545652b90; expires=Wed, 27 Sep 2023 19:16:57 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   65
Md5:    0c30e04321a0f3eeca45090b349633de
Sha1:   acf7a8ab49334440a2bcaf3080e4b156a6199fba
Sha256: 4e4678e50b2ab2330a46392126f2540006911ee1c2fef2dc6e248b575ac0c323
                                        
                                            POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1 
Host: fleraprt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streamlivenow.me/
Content-Type: text/plain;charset=UTF-8
Origin: http://streamlivenow.me
Content-Length: 1543
Connection: keep-alive

                                         
                                         139.45.195.254
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: nginx/1.19.10
Date: Tue, 27 Sep 2022 19:17:15 GMT
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://streamlivenow.me
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    adb4650bfc9d2a73d4dd69583b0ceb14
Sha1:   1ce399d6e936232aaf2192cd7903a279c5015f22
Sha256: 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /js/gz/emb.js HTTP/1.1 
Host: st.chatango.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/

                                         
                                         208.93.230.26
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Tue, 27 Sep 2022 19:16:56 GMT
Content-Length: 23804
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Expires: Tue, 27 Sep 2022 19:16:56 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (1651)
Size:   23804
Md5:    43a6e3a24c5f6d710f01cd9ea166bedf
Sha1:   2b172372c84de07111687133d38ecaee8a15c99e
Sha256: 65878e1003da0b2d589980ebda0a59206831ff7e8be7747532c4080e35c600d7
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: streamlivenow.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/lala/index.php?stream=124459607?sid=1499014
Cookie: __atuvc=1%7C39; __atuvs=63334c26afeae66d000

                                         
                                         104.21.67.43
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Content-Length: 769
Connection: keep-alive
Last-Modified: Wed, 01 Aug 2018 00:20:10 GMT
Cache-Control: public, max-age=2592000
Expires: Wed, 27 Sep 2023 19:07:36 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 561
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i7woKrKFyl1WAXC0rhu%2Bs07IK24KeDl43JTYQkofThN1Mf069toRNWS1%2BHHfsDF%2BRWPN3pQ2Fdo%2B%2FaERpws%2FJfqXI7ANa%2B%2BfCG2%2FI2flz189oeVqZf28JncW6muyskw0crBR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 751693a17bbc1c0e-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   769
Md5:    57d77f65fe10d39e7ee847265d28314e
Sha1:   98115b6a56974fc7460c773d0a25cb2d5f0def63
Sha256: 4450696a78e6a2281c07c61b3b7c9f7052981364351ff3908e339b132973b4a6
                                        
                                            GET /live/boost/ra-5dc9840997af99ce/_ate.track.config_resp HTTP/1.1 
Host: v1.addthisedge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 555
etag: -1674473246--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=23, s-maxage=86400
date: Tue, 27 Sep 2022 19:16:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1608), with no line terminators
Size:   555
Md5:    000d89274fec89b7611c06c6861317a0
Sha1:   b046b2572ee96ed46651a015798e2a122c930ad6
Sha256: e4279e05b947680453f847dc7593f06f2f29583a947ed2fe02fc44502690f55c
                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 
Host: z.moatads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=36370
date: Tue, 27 Sep 2022 19:16:57 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (523)
Size:   948
Md5:    f14b4e1f799b14f798a195f43cf58376
Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streamlivenow.me/

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 19826
Date: Tue, 27 Sep 2022 18:20:54 GMT
Expires: Tue, 27 Sep 2022 20:20:54 GMT
Cache-Control: public, max-age=7200
Age: 3363
Last-Modified: Sun, 11 Sep 2022 13:50:09 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5310
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:57 GMT
Last-Modified: Tue, 27 Sep 2022 17:48:27 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Tue, 27 Sep 2022 19:16:57 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   77672
Md5:    9a77dff666eebb6cf4bbc4c67c7b563b
Sha1:   9e98d7824a7b4e34665c2690d6f52caddad1fe4b
Sha256: 6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?v=1&_v=j97&aip=1&a=686557189&t=pageview&_s=1&dl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D124459607%3Fsid%3D1499014&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=31727668&gjid=1525704960&cid=1824028721.1664306215&tid=UA-60210697-8&_gid=1980322156.1664306215&_r=1&_slc=1&z=1513505883 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://streamlivenow.me
date: Tue, 27 Sep 2022 19:16:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    9e92e190700c1af4539b40c2171320a9
Sha1:   209bcdb79e6067b51091ce8586d4b977f25b67d8
Sha256: aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-202511892-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 19:16:57 GMT
expires: Tue, 27 Sep 2022 19:16:57 GMT
cache-control: private, max-age=900
last-modified: Tue, 27 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42335
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2039)
Size:   42335
Md5:    11fe6c8587ad74564b5e274bd383e1e0
Sha1:   9baf983444f081effb611b392eb2e164f57aabaf
Sha256: 226c6270445ccd7408603425401fbed6e8e2979c38dbc8389e9a165368d91a6b
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.225
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "2E0CCE21DE37581C5A1671CC2899C68CDF3BA196ECF2ED9F6510B3ED00FB5007"
Last-Modified: Mon, 26 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16225
Expires: Tue, 27 Sep 2022 23:47:22 GMT
Date: Tue, 27 Sep 2022 19:16:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.225
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "E2F1F6A17757B007466DC1545D4CA824853BD06F84E9D8622683EB3E011145C7"
Last-Modified: Tue, 27 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11582
Expires: Tue, 27 Sep 2022 22:29:59 GMT
Date: Tue, 27 Sep 2022 19:16:57 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gPN062XNG7bCKWWz9/2kBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.163.196.193
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WQ01UN1qBP2F8O5CxQAsbjGR6nk=

                                        
                                            GET /?rb=x4MT_soJfviUj7eOslnFrua0SJKBRlsLktb4JhQ04ut6TbRj-EcwSNKD9eO5qaQ3c4kXpDR9wak1L9_tgeAJ9YZfFSeEy7WdE_LqA1IlwX6ojAzSkBcNbTbREmj8xmMceMO2-5jUMjueaCDTiejfwSo51D3C1lm2JTN_qN_3fSGV25nuo5N8uTEl8knNfkeQ4cN58ClRnt1PBwHUGw467po9dko%3D&request_ab2=0&zoneid=5319948&js_build=iclick-v1.430.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D124459607%3Fsid%3D1499014&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.430.0&bs=802c351d-cd04-4f02-a13b-b782f49911a0&userId=915db06e68474bc58ed673b545652b90&m=link HTTP/1.1 
Host: ardslediana.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streamlivenow.me/
Origin: http://streamlivenow.me
Connection: keep-alive

                                         
                                         139.45.197.236
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Tue, 27 Sep 2022 19:16:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 4d3a7f5cd69b2264c282f9c74cb6a285
Access-Control-Allow-Origin: http://streamlivenow.me
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=915db06e68474bc58ed673b545652b90; expires=Wed, 27 Sep 2023 19:16:57 GMT; path=/ oaidts=1664306217; expires=Wed, 27 Sep 2023 19:16:57 GMT; path=/ syncedCookie=true; expires=Tue, 04 Oct 2022 19:16:57 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2246), with no line terminators
Size:   1735
Md5:    ef468a7de44e4bf4a37febf3b17afd51
Sha1:   496e11c5c64928931f5bbcb88cbd72dd518e80b1
Sha256: ad6b7ffe5a6405c23cfa07b386c471423384f93e488d468611b7ddbb61bca508

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.225
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "2E0CCE21DE37581C5A1671CC2899C68CDF3BA196ECF2ED9F6510B3ED00FB5007"
Last-Modified: Mon, 26 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16225
Expires: Tue, 27 Sep 2022 23:47:22 GMT
Date: Tue, 27 Sep 2022 19:16:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.225
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "E2F1F6A17757B007466DC1545D4CA824853BD06F84E9D8622683EB3E011145C7"
Last-Modified: Tue, 27 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11582
Expires: Tue, 27 Sep 2022 22:29:59 GMT
Date: Tue, 27 Sep 2022 19:16:57 GMT
Connection: keep-alive

                                        
                                            GET /css/embed.min.css?v=0.4 HTTP/1.1 
Host: 62jl0my6fy2244.smokelearned.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://62jl0my6fy2244.smokelearned.net/embed/6ua5mxm6
Cookie: hf1=1; hf2=1; hf4=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.213.86
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
last-modified: Thu, 09 Jun 2022 09:49:16 GMT
etag: W/"62a1c21c-4f0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2686
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FVzwD0kAF25qpY4h8j%2BwpAzVWlenEfOLglWuTRIMjytLpN8F02N9P3xSEVomLtY16hQeQP3Bumbg%2FlcQ0kIHpWdxppsByBBMeaphbessbskpfx6%2FEOCcwB4uGjF0Py%2B2A6X%2F%2FlfAEoQ%2BeZt1PIwhdFzA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751693a448561c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1263)
Size:   790
Md5:    75b0c72ea0b098dbcc1b3b88de9cf291
Sha1:   7156d9d9b1c637faf1df82b575bcfb2dd449833e
Sha256: ae322f0d075c49bddd2df3bf1de408f61825c43f7904dfb311d16ae5f4371121
                                        
                                            OPTIONS /500/5345130?excludes=&oaid=915db06e68474bc58ed673b545652b90&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D124459607%3Fsid%3D1499014&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1 
Host: oaphoace.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://streamlivenow.me/
Origin: http://streamlivenow.me
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.239
HTTP/2 200 OK
                                        
server: nginx
date: Tue, 27 Sep 2022 19:16:57 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: http://streamlivenow.me
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5765
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:57 GMT
Last-Modified: Tue, 27 Sep 2022 17:40:52 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://62jl0my6fy2244.smokelearned.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 19:16:57 GMT
age: 24177
x-served-by: cache-fra19151-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 141142
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   141142
Md5:    7e7fdfacdb1943ea810449001d165a53
Sha1:   fc230e8b4a933497a2da4a783574a5b07b889a7e
Sha256: d530a67ca2ed5e6d11c2f4ef080c8b8c1cc55a587af2ef45da9a9415ebd788cf
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 18:12:21 GMT
Expires: Tue, 04 Oct 2022 18:12:20 GMT
Etag: "f17d09729d50acfaa87c4354c4a92c7bfd9c6774"
Cache-Control: max-age=600322,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751693a4d920b4eb-OSL

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "3B5F805DFF2B49CF42EABF94A6DF9500366E4FFB"
Expires: Wed, 28 Sep 2022 06:00:00 GMT
Last-Modified: Tue, 27 Sep 2022 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1060
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751693a51b9a0b55-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    aaa26c7aee572ec6a9ef9fcc6961dde2
Sha1:   0fe3308726092a070b9701e6ebadedde97405018
Sha256: 48e22ed8b5e86df96451e184b471eb44ac3864baa33ba5ecd08fb680601882af
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4807
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:57 GMT
Last-Modified: Tue, 27 Sep 2022 17:56:50 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5765
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:57 GMT
Last-Modified: Tue, 27 Sep 2022 17:40:52 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 17:22:27 GMT
Expires: Sat, 01 Oct 2022 17:22:26 GMT
Etag: "5b0e6c7471a62bf7060521e3eff7a32252e31a5c"
Cache-Control: max-age=338128,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751693a46c1cb518-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://62jl0my6fy2244.smokelearned.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 7596
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 18:12:21 GMT
Expires: Tue, 04 Oct 2022 18:12:20 GMT
Etag: "f17d09729d50acfaa87c4354c4a92c7bfd9c6774"
Cache-Control: max-age=600322,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751693a4dfa4b529-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /cwidget/sportsonline/000000ffffff.png HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.74.171
HTTP/2 307 Temporary Redirect
content-type: text/html; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
location: https://widgets.amung.us/draw/?w=colored&n=42500&c=000000ffffff&p=left
cache-control: max-age=295
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 751693a5999a992d-ARN
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 81 x 29, 8-bit colormap, non-interlaced\012- data
Size:   2024
Md5:    ba5e510d3a6fd0d910fd7cdd0a0b9e00
Sha1:   68aaea21a7330ae32b95770e014fc273487a4169
Sha256: 793ea4aa2dd7c8718f96d63ef9af5861eac5d17c74eb5a14a1a760dff9b415bc
                                        
                                            GET /nsns.js HTTP/1.1 
Host: swarm.video
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://62jl0my6fy2244.smokelearned.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.204.36
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=519718
etag: W/"7ee26-18149561c4b"
last-modified: Thu, 09 Jun 2022 16:39:49 GMT
x-powered-by: Express
cf-cache-status: HIT
age: 613999
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kU5R7SXqUOPTsE2FtntKkZUMHNA9eY%2BvoS5zv%2B2JsyECsrjISR15sRhOe3GsD3wTGYZ1J6FNyaxpH8auhTXAdXadLNE5%2Fy2PE7KMhuVtRG9CyEqEV3xh9rBB7EM8LA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751693a4ea39d17c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   130046
Md5:    34b5aa9f8cc33e076c48938e6c309de2
Sha1:   c0c4831c1d8df9b1da6c9e689796c132c0a16351
Sha256: 2c7fb0ee8e02d56db29985575da9e5ece68739430431c472fa363f96e81dc86a
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: 62jl0my6fy2244.smokelearned.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://62jl0my6fy2244.smokelearned.net/embed/6ua5mxm6
Cookie: hf1=1; hf2=1; hf4=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.213.86
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
last-modified: Mon, 09 Nov 2020 18:05:02 GMT
etag: W/"5fa984ce-15283"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2686
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cd89z7boSGbUQXS50XxgOgAcjslk%2B8PJoeXvBTFqt67%2F8nhtu6oHQNKEY8650NJc4rkdIDJeyioHQEta4NQFea%2FyaD5F9UVtFFuQclVvVm%2ForFnMfTRJj%2FaV5ujUAkaFb%2FXF7VQagWp9%2BqkVzVopjoqd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751693a4585c1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   31627
Md5:    c4f8f61f1f5fb9febf0a115f8f713012
Sha1:   0f3d2ec84ed48129adce80264e46a95b3e37e21e
Sha256: 0560d73c55e2855f37296b944584972e0fd3d00f1847c3fd0f33b8f2805b36b3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /cfg/nc/r.json?f49730020000317151332914 HTTP/1.1 
Host: st.chatango.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         208.93.230.26
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Tue, 27 Sep 2022 19:16:58 GMT
Content-Length: 20
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   20
Md5:    67a235cdf67d15044e66db2b3b799581
Sha1:   c6ddd33c979392cd5ba3a70d7c90360641e60c29
Sha256: 6eea499926669878dc267d25feeebbfd7826db0e55b82ce10db9e0004a3172b7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:58 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 17:22:27 GMT
Expires: Sat, 01 Oct 2022 17:22:26 GMT
Etag: "5b0e6c7471a62bf7060521e3eff7a32252e31a5c"
Cache-Control: max-age=338127,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751693a71c0bb4eb-OSL

                                        
                                            GET /js/plausible.js HTTP/1.1 
Host: awstats.cloud
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://62jl0my6fy2244.smokelearned.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.46.63
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yrIaCqykNFlYhOhLY6ntQSn6OqZwMf05hblK2eAWlArxYGl3EKCkAdxBfuBYFAzyRx3o4svzGzoXzuum008l5FZ0f4pDnLcaRj2YaMgzEibA6lm4GOInwMk0lju0a3RN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751693a4ce75b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1332), with no line terminators
Size:   19632
Md5:    71d72b1d1455a13ed8856a71fd827f6e
Sha1:   3c8f69bdb276a8a38355a2eb53215b1af8f8f4d4
Sha256: c2aeb950b21186327a4d9f62e2f47d0d9a141083388b11c8fbd990262fbd3faa
                                        
                                            GET /script/suurl4.php?r=4827899&cbur=0.11691186716958868&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=http%3A%2F%2Fstreamlivenow.me%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0 HTTP/1.1 
Host: youradexchange.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://v3.sportsonline.to/
Origin: https://v3.sportsonline.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.41.116
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: openresty
date: Tue, 27 Sep 2022 19:16:57 GMT
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1162
Md5:    e1f7f8889bc963d8776b4e766a849dc8
Sha1:   714c84d4824212c1ae20b2c74b66038631bb9540
Sha256: 1caa9158293cc9ca52e86d3a2f0ad8be757dcdb2b6ea8320a036c78e91dbe5b9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-60210697-8&cid=1824028721.1664306215&jid=31727668&_u=YEBAAEAAAAAAAC~&z=872510883 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 19:16:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-60210697-8&cid=1824028721.1664306215&jid=31727668&_u=YEBAAEAAAAAAAC~&z=872510883 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 19:16:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 19:16:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10358
Expires: Tue, 27 Sep 2022 22:09:36 GMT
Date: Tue, 27 Sep 2022 19:16:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10358
Expires: Tue, 27 Sep 2022 22:09:36 GMT
Date: Tue, 27 Sep 2022 19:16:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10358
Expires: Tue, 27 Sep 2022 22:09:36 GMT
Date: Tue, 27 Sep 2022 19:16:58 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 77871
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5319
x-amzn-requestid: 74191b02-ebea-48bd-8522-f05bf8080f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlOKFtsIAMFyGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bf4-1f2daa9d7906bf9812e10953;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y0gjPs-l9_JD9F-LSH_i1uL2Nz0UcWCG-9PmDmRH8cN_cNAeSchJTA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:00 GMT
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
age: 77878
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5319
Md5:    46e31aa06b8e86a9a5f9ba1cc3feca08
Sha1:   75df3341e30281fcbf78c7074980356fdf0be8e2
Sha256: d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 63548
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6390
Md5:    14218a43c5e5bbce546735a780c8ccce
Sha1:   61676358cdbb2373bc644e66f8a84fbc8cc5daf6
Sha256: 905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 76835
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10211
Md5:    347dca206e13a3b13953f0ab398310b4
Sha1:   be60bbc96c832ae385cc9ae5828bd32703011b21
Sha256: f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 19:30:21 GMT
age: 85597
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10318
Md5:    a90590f26bae9ad9e95ffdfbfb7dd21d
Sha1:   cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
Sha256: 33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IWzfDNFlgYdqYnbQ9uWfOvqb5zl3I3mgTZrT5pU5P3EvetMRDN5P7w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:06:47 GMT
age: 65411
etag: "1a26007f761e439db575fb80fb403031260aecf4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    5274e770cb5a704916c8965659709f4a
Sha1:   1a26007f761e439db575fb80fb403031260aecf4
Sha256: e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
                                        
                                            GET /h5/gz/r0817221641/id.html HTTP/1.1 
Host: st.chatango.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         208.93.230.26
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 27 Sep 2022 19:16:57 GMT
Content-Length: 224127
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Expires: Wed, 27 Sep 2023 19:16:57 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size:   224127
Md5:    fc3ae4d65fdfcf6587ee0fd2e6341ca1
Sha1:   29b97c7cfc4081d173d28c84c774bc3ce891724d
Sha256: b0a40dcfdea8674321e505dac154350a1bb1ef6067670208b02b6e4bd874f3a9
                                        
                                            GET /libtrc/chatango-network/loader.js HTTP/1.1 
Host: cdn.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.44
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
x-amz-id-2: 1/3lD3UerndSB38vN8EidQUtxj5w6cqN6QGhblZz7nTyzs2qYA0sdXQqSqkM+8xDa9BJxgLHgB0=
x-amz-request-id: RHV5TCPQY9EG6E1T
last-modified: Thu, 22 Sep 2022 14:52:53 GMT
etag: "2ba104b31417da020aaa67df2048c7d6"
x-amz-version-id: oDRplBxYlBs.wDqlokCrBlLN1qaj3tI7
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 19:16:58 GMT
via: 1.1 varnish
age: 99
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664306219.842637,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 48
content-length: 21215
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65508)
Size:   21215
Md5:    8b959660a4a7fef2aa50d8264288a7d9
Sha1:   b7f96bb08fbbdae578686e3b01bd4d629ae386ea
Sha256: e84fbcd1e56cd4ccf6766a78ccac62530abefaa7079d9cec40775bee09723820
                                        
                                            GET /libtrc/impl.20220922-16-RELEASE.js HTTP/1.1 
Host: cdn.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.44
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: COg8lMA673OEz5PM+KFXiDXiosSVySM+TdixW+84HZwxLH8GtDt35DYHxlOgtiehZ9ZB4jLgaQI=
x-amz-request-id: W1R6REBMZ25HV30N
last-modified: Thu, 22 Sep 2022 14:15:17 GMT
etag: "b6247ec22fba797cf6f51ae4c86a6509"
content-encoding: br
x-amz-version-id: wNWqo8c3RDyWSxV8p_CKOzvKdfoSb_oq
accept-ranges: bytes
date: Tue, 27 Sep 2022 19:16:58 GMT
via: 1.1 varnish
age: 18099
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 10827
x-timer: S1664306219.875961,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 91
server: AmazonS3-br
content-length: 145469
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65508)
Size:   145469
Md5:    b6247ec22fba797cf6f51ae4c86a6509
Sha1:   1807f86f8b7146c10c986fd203d31de61ee67d8a
Sha256: 742c16a6b9e92d702d4e514560b0826268e676278e169e990c548d0bb6dd8a2f
                                        
                                            GET /beacon.js HTTP/1.1 
Host: sb.scorecardresearch.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.8
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 27 Sep 2022 05:30:25 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EYbgH4pIjUxTwpL0qNvsXJrnAM3Zsev2fR0ACzvw4h7eKC9hk5ygzg==
age: 49593
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3936)
Size:   1857
Md5:    ccbe1595614949962ea0f4c9ec84e783
Sha1:   65525e8918223db782724d28fce74efb513a0fb0
Sha256: f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4738
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:59 GMT
Last-Modified: Tue, 27 Sep 2022 17:58:02 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /chatango-chatango1/log/2/debug?tim=19%3A16%3A56.876&type=usage&msg=rtus&llvl=2&id=6437&cv=20220922-16-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1 
Host: trc-events.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         141.226.228.48
HTTP/2 204 No Content
                                        
server: nginx
date: Tue, 27 Sep 2022 19:16:59 GMT
x-fastly-to-nlb-rtt: 21179
access-control-allow-credentials: true
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3968
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:59 GMT
Last-Modified: Tue, 27 Sep 2022 18:10:51 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /dna HTTP/1.1 
Host: dnacdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.0.157
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=UErlk180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRkJaTlR4VVlIWFNObW5NZnlqU1hUbEVMWjhidlBjQzF3RUdvYWxOTkpqZQ; expires=Sun, 22 Oct 2023 19:16:59 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 189266
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5920
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:59 GMT
Last-Modified: Tue, 27 Sep 2022 17:38:19 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2786
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:59 GMT
Last-Modified: Tue, 27 Sep 2022 18:30:33 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 312

                                        
                                            GET /sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=streamlivenow.me&info=Ajet0V80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRkJaTlR4VVlIWFNObW5NZnlqU1hUbjJYJTJGJTJGZnlrbTlyJTJGeERLajhXVEdNdw&idsd=1395671199,-1892638957&rtusCallerId=72&lsw=1 HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=streamlivenow.me
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         178.250.0.157
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1173633
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (390), with no line terminators
Size:   322
Md5:    c51fb7ff873a830de403ac97c645a4fc
Sha1:   57ff81d6b1aac36bcbfeb1343231a29239ebfe1f
Sha256: ca225f3f389ef8d31f4411264f7f187c068f19f0a2d78602708d8a66b4108612
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5966
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:16:59 GMT
Last-Modified: Tue, 27 Sep 2022 17:37:34 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1 
Host: csm.fr.eu.criteo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.0.162
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
pragma: no-cache
server: Finatra
expires: 0
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /groupinfo/s/o/socc2/gprofile.xml HTTP/1.1 
Host: ust.chatango.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.chatango.com
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         208.93.230.22
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: nginx
Date: Tue, 27 Sep 2022 19:17:00 GMT
Content-Length: 101
Last-Modified: Thu, 28 Jul 2022 09:58:11 GMT
Connection: keep-alive
Expires: Tue, 27 Sep 2022 19:17:00 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with no line terminators
Size:   101
Md5:    9b25bf43575c1f61a7bb18321be37b41
Sha1:   db3cba7e9581876cdae914f84bf5acfe7449e495
Sha256: 9e68e717000f7b05813680400d65316e77216b435afc9d0a37cc771668d73413
                                        
                                            GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://st.chatango.com/
x-crto-bundle: fbzqmV82YjUwaXFyNjF0dU41ZWo3UFBObUclMkZwMkVlQ09YZ0xhemF1b2NWTU54UjdjYkt6Yk1Xc0txZE9KbHg1WXhiU1FMamZEVFVKQlFnQUxZZDkyWHNGZSUyQm9FaCUyQmVVdjNLVExnblJJMWNvbEolMkJLaWk0RjlpZ3B5S3pBNTdWNmg3NkNhNyUyRjBtZU1nUFZsRzlJR25XQnRKRW9RJTNEJTNE
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         178.250.0.157
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 6355724
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8851
Md5:    a7917165f92984fcb1125ba9a4133f8a
Sha1:   1a15cafc98af7ab7472dadf63d193fb763845abb
Sha256: 64fe514fcb90132d7abbe29a5353c3dcbb61943a5161c572b78cca60075ea736
                                        
                                            GET /dna HTTP/1.1 
Host: dnacdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=UErlk180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRkJaTlR4VVlIWFNObW5NZnlqU1hUbEVMWjhidlBjQzF3RUdvYWxOTkpqZQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         178.250.0.157
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Ajet0V80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRkJaTlR4VVlIWFNObW5NZnlqU1hUbjJYJTJGJTJGZnlrbTlyJTJGeERLajhXVEdNdw; expires=Sun, 22 Oct 2023 19:16:59 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 321692
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   15990
Md5:    c444fd0b271ea1bf47e18945a985ee63
Sha1:   91065885d0f3511e62b989dd1e554fdcc3fa9726
Sha256: db194d52fc8d82722c5d4fa714defe520925d826ad644e91db4bcef5a1bb1d2a
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 517373
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /stattag.js HTTP/1.1 
Host: tzegilo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.132.2
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 19:16:56 GMT
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1514
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PWkSf479qthvKeY%2BwTfbPjofRPlSLnAlqlcIrZvh4u%2F5fV3XTxLIl%2FY%2BHkmsbEikLlompffTRcJJxI3vecdNlKttojcFSijKmZu6lCEMc9pUplIAhQr1est4Ez2QpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7516939f6bf2772c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /channels/pt/sporttv4.php HTTP/1.1 
Host: v3.sportsonline.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.21.8.62
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
x-powered-by: PHP/5.4.16
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ssLesaUA5L7fdbvI1%2F8IzknJxi1k3329USN%2BhoJ6ZvCYwnm14H%2FOoeb0nPBonV6r7lq6HJBbtYBqTSax1AyCMI8twUzzxsFFNTz%2Bww16nkzGGpzh%2F7bps6eqD9ZPx2LZNlqp4%2FM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751693a0b8240b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /script/bootstrap.js HTTP/1.1 
Host: velocitycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.203.33
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
x-guploader-uploadid: ADPycdvD2aV0vhAfm60SW0Z3KK4sh4pPps0G-9mhbxVaxUs84UEQMhHFmvZkfDWNnm8gCTW04hmXAsP8_nRKiXjgYv8rNQ
x-goog-generation: 1662626315119008
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100523
x-goog-hash: crc32c=PsCFGQ==, md5=kKQG58EUy5y9vRcdgoLiJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Tue, 27 Sep 2022 19:25:12 GMT
cache-control: public, max-age=14400
last-modified: Thu, 08 Sep 2022 08:38:35 GMT
etag: W/"90a406e7c114cb9cbdbd171d8282e224"
age: 2592
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=frTf9coZ3J9ESl%2FH6PMdjFF5hJPuXIRJe5ghXijIXEgDFDqupUNZwDLFjgtx9%2FCzBg0GoGzK7YbGgKMe6N9devR78URbS5WChkgIrncUHFva5jgo783vklZqkp57Lk9K700%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751693a3bfb906b2-LHR
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /500/5345130?excludes=&oaid=915db06e68474bc58ed673b545652b90&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&pl=http%3A%2F%2Fstreamlivenow.me%2Flala%2Findex.php%3Fstream%3D124459607%3Fsid%3D1499014&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1 
Host: oaphoace.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://streamlivenow.me
Connection: keep-alive
Referer: http://streamlivenow.me/
Cookie: OAID=090c0010b54d4848bb60556b2887d680
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.239
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 27 Sep 2022 19:16:57 GMT
x-trace-id: 652f2d062647cc369d6658ef31324b8d
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://streamlivenow.me
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=915db06e68474bc58ed673b545652b90; expires=Wed, 27 Sep 2023 19:16:57 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /syncframe?origin=rtus&topUrl=streamlivenow.me HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         178.250.0.157
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:58 GMT
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=a9b9e9ef-42d0-42e7-a294-b4a813307926; expires=Sun, 22 Oct 2023 19:16:59 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 550382
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /newidsd HTTP/1.1 
Host: ag.gbc.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         178.250.6.228
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 89179
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /401/5345130 HTTP/1.1 
Host: oaphoace.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streamlivenow.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.239
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 27 Sep 2022 19:16:56 GMT
x-trace-id: 907d01d94c3882b47e40158406bb0745
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=090c0010b54d4848bb60556b2887d680; expires=Wed, 27 Sep 2023 19:16:56 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /embed/6ua5mxm6 HTTP/1.1 
Host: 62jl0my6fy2244.smokelearned.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3.sportsonline.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         172.67.213.86
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 19:16:57 GMT
set-cookie: hf1=1; expires=Wed, 28-Sep-2022 07:16:57 GMT; Max-Age=43200; path=/; secure; HttpOnly; SameSite=None hf2=1; expires=Wed, 28-Sep-2022 07:16:57 GMT; Max-Age=43200; path=/; secure; HttpOnly; SameSite=None hf4=1; expires=Wed, 28-Sep-2022 19:16:57 GMT; Max-Age=86400; path=/; secure; HttpOnly; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yl7SGxmMGkicxpqZU41cfKksGks6kFZJ6FKT%2F26FFO4zJu4O%2FZ2n%2BFO6hTTwnBEhoz37ykHPaPL%2BlEoBIZ1WdSW9I7iBVOV7azRXuwCj%2BrDkMO1KQ72uj4dn7eUJcFrQPJue9cVxSHypuAC36Ct2AVgj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751693a3afb31c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /newidsd HTTP/1.1 
Host: gem.gbc.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         178.250.6.32
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:59 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 80456
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /script/suurl4.php?r=5954546&cbur=0.10879714121963424&cbiframe=1&cbWidth=700&cbHeight=470&cbtitle=&cbpage=https%3A%2F%2Fv3.sportsonline.to%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0 HTTP/1.1 
Host: youradexchange.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62jl0my6fy2244.smokelearned.net/
Origin: https://62jl0my6fy2244.smokelearned.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.190.41.116
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: openresty
date: Tue, 27 Sep 2022 19:16:58 GMT
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.0.157
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 19:16:58 GMT
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 702001
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cwidget/h6qfsjssi5/000000ffffff.png HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://62jl0my6fy2244.smokelearned.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.22.74.171
HTTP/2 307 Temporary Redirect
content-type: text/html; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 19:16:58 GMT
location: https://widgets.amung.us/draw/?w=colored&n=148000&c=000000ffffff&p=left
cache-control: max-age=295
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 751693a7ad53992d-ARN
X-Firefox-Spdy: h2


--- Additional Info ---