| tuskhautein.com/r7838fFXOj9CwcDJw/77025 | 23.109.170.24 | 200 OK | 20 B |
URL GET HTTP/1.1tuskhautein.com/r7838fFXOj9CwcDJw/77025 IP23.109.170.24:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjecttuskhautein.com Fingerprint0D:92:16:F8:B2:BE:61:B3:09:F5:FF:95:2A:94:87:7B:30:65:5F:E5 ValiditySat, 17 Feb 2024 11:46:36 GMT - Fri, 17 May 2024 11:46:35 GMT
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /r7838fFXOj9CwcDJw/77025 HTTP/1.1
Host: tuskhautein.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 02:40:10 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cdn.xsportbox.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 02:40:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 02:40:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 | 188.114.97.1 | 200 OK | 0 B |
URL User Request GET HTTP/2cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectxsportbox.com Fingerprint26:37:30:3E:D3:36:0C:80:9E:E5:AC:9B:48:2B:AD:61:B7:03:5A:46 ValidityThu, 28 Mar 2024 08:02:25 GMT - Wed, 26 Jun 2024 08:02:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 HTTP/1.1
Host: cdn.xsportbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 02:40:10 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m1i5pSkOp8q5cBA5yXSMkdPyJeUfelN6pLK1lPCYvwS6xbCi8oPwpMVqcXnMIbghactzKOEi4xBWUmMH9Ih%2BDvc%2Bh%2BLIoR8zXHt1Y0If26xrPH6BKS9gTFV1xFD8KQ4x9UlAqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a334e42bb7b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| chulhawakened.com/rmxWWDcqKHA/71505 | 188.42.247.196 | 200 OK | 20 B |
URL GET HTTP/1.1chulhawakened.com/rmxWWDcqKHA/71505 IP188.42.247.196:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjectchulhawakened.com Fingerprint89:5A:CB:99:4E:7A:3B:18:51:2E:3D:3D:31:FE:A2:66:B5:0B:3D:23 ValiditySun, 21 Apr 2024 23:19:52 GMT - Sat, 20 Jul 2024 23:19:51 GMT
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rmxWWDcqKHA/71505 HTTP/1.1
Host: chulhawakened.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 02:40:11 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cdn.xsportbox.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 02:40:11 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 02:40:11 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| ptaixout.net/tag.min.js | 139.45.197.244 | 200 OK | 28 kB |
IP139.45.197.244:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjectptaixout.net Fingerprint68:9C:78:69:60:28:90:FB:1C:BD:D0:98:14:FB:F6:C2:C7:45:CD:5C ValidityMon, 18 Mar 2024 05:39:00 GMT - Sun, 16 Jun 2024 05:38:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash0c4aa9ddc8e78306f6c57019adc4d64c b3254e75244fb4293cb3a61cd9075656cdeca8f1 6fb4e43813700e4d163367d7462653e55b062b673c439baee22a4073e8ea387b
GET /tag.min.js HTTP/1.1
Host: ptaixout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/javascript; charset=utf-8
content-length: 28087
content-encoding: br
x-trace-id: e4a4a4ceef126dc1373aa59a4136763f
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 25 Apr 2024 13:46:27 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| streambtw.com/iframe/nba2.php | 188.114.96.1 | 200 OK | 0 B |
URL HEAD HTTP/3streambtw.com/iframe/nba2.php IP188.114.96.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerGoogle Trust Services LLC Subjectstreambtw.com FingerprintD8:97:8E:55:E7:91:FA:80:DF:3A:35:36:D3:6C:CC:D6:6B:27:D9:3E ValiditySun, 31 Mar 2024 23:25:29 GMT - Sat, 29 Jun 2024 23:25:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /iframe/nba2.php HTTP/1.1
Host: streambtw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/iframe/nba2.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WJjDLGt2RLZdJ4g0xlhQKJybgL1%2BEJ8NNMxzo%2FYjiCMRnF8iMkyPYvDm7mFdM3DzpHHmMWZGtgJH9u%2BoB5Kqn8lgtS1%2BuOPRViRWQoCZKqmv34lPgJrwH3ahk84PyNJJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a334e59f5056be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF | 142.250.74.168 | 200 OK | 101 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF IP142.250.74.168:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size101 kB (100573 bytes) Hashc8f2e0593f6560801bd2986553b2c358 a932edd12fd2b1f24ce4158d83f223bb441834c0 8bd941caa7a51819794917cbe97f0f99f4ea60dfe19f89794838eaedf379d37b
GET /gtag/js?id=G-PQ1PJ56MMF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 02:40:11 GMT
expires: Fri, 26 Apr 2024 02:40:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100573
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ptaixout.net/5/6320745/?oo=1&aab=1 | 139.45.197.244 | 200 OK | 24 kB |
URL GET HTTP/2ptaixout.net/5/6320745/?oo=1&aab=1 IP139.45.197.244:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjectptaixout.net Fingerprint68:9C:78:69:60:28:90:FB:1C:BD:D0:98:14:FB:F6:C2:C7:45:CD:5C ValidityMon, 18 Mar 2024 05:39:00 GMT - Sun, 16 Jun 2024 05:38:59 GMT
File typegzip compressed data, max speed, from Unix Hash30783015599f522f7869e68d49514b2f 84ec5ad81bc15ae281e84e93e182124289938f86 1574ee93b35bfdf7f0c7cec7549bdee6aabf94206c297a4359ea5b2ee004d045
GET /5/6320745/?oo=1&aab=1 HTTP/1.1
Host: ptaixout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.xsportbox.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/json
x-trace-id: 74e2bd1553c3c96f42b07f170cf4e25e
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://cdn.xsportbox.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00804ac5eb7b43fdfaa3e4dd6ac32659; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
oaidts=1714099211; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| streambtw.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js | 188.114.96.1 | 200 OK | 15 kB |
URL GET HTTP/3streambtw.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP188.114.96.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerGoogle Trust Services LLC Subjectstreambtw.com FingerprintD8:97:8E:55:E7:91:FA:80:DF:3A:35:36:D3:6C:CC:D6:6B:27:D9:3E ValiditySun, 31 Mar 2024 23:25:29 GMT - Sat, 29 Jun 2024 23:25:28 GMT
File typegzip compressed data, from Unix Hashf829831819e3f15a6c88681748ee1d06 f58f174f0ac7668dc9624431ec171077cd71ed65 cbad25a7195488450ed3c8676951f58981d1b503e386a6c69fa2ac4c6129c0c5
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: streambtw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/iframe/nba2.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fULnxhYFMbMYFNq6RRTc0ZxYAVqcN6m72MCXPRwNzMTsYgMJYpBcY%2FlWlKXFQhs%2BESAd0i4l%2FoRxj4Vcj2BGXESzFdRSbjzHzWO3GV8m5DQwOtoVSdezF6kCnUqgd1Mi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a334e55f3656be-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 28 Apr 2024 02:40:11 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js | 151.101.129.229 | 200 OK | 169 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js IP151.101.129.229:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size169 kB (169275 bytes) Hash3dbf1ad3535560c4e487d88012784f29 6fd8110083e0c387d8fb49a4d6a5264b28c755f8 0445a4b98a570af2253cd291c241a2e716e4105ffeec79628e058a8fe77aaedd
GET /npm/@clappr/player@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.5.0
x-jsd-version-type: version
etag: W/"9749e-b9gRAIPgw4fY+0mk1qUmSyjHVfg"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 02:40:11 GMT
age: 23282
x-served-by: cache-fra-eddf8230062-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 169275
X-Firefox-Spdy: h2
|
|
| cdn.xsportbox.com/favicon.ico | 188.114.97.1 | 404 Not Found | 167 B |
URL GET HTTP/3cdn.xsportbox.com/favicon.ico IP188.114.97.1:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjectxsportbox.com Fingerprint26:37:30:3E:D3:36:0C:80:9E:E5:AC:9B:48:2B:AD:61:B7:03:5A:46 ValidityThu, 28 Mar 2024 08:02:25 GMT - Wed, 26 Jun 2024 08:02:24 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash706a98254456810d3e849c3957af9d01 e461d072a6ba8f0082d6f187eba7f053343529c6 8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
GET /favicon.ico HTTP/1.1
Host: cdn.xsportbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 115
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YDlifu%2Bg0Ewc%2BSNw%2Boeevc8qmomD2jvxplnNRyoXuztFsMDv5DfVOVXSnRIwmfl%2FSt%2FH%2BZOYSK%2Fz5LtE35tN0JSZ0j%2FeRoD698p2tvM38J9%2BlIpaJxwRS1W2A1JRsE%2F1aYJMbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a334e5ecc4b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| phomoach.net/tag.min.js | 139.45.197.245 | 200 OK | 28 kB |
IP139.45.197.245:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectphomoach.net Fingerprint4D:5D:41:54:2C:98:6F:5D:8D:BC:45:87:4B:76:9B:E0:30:B6:88:BF ValidityFri, 15 Mar 2024 06:26:26 GMT - Thu, 13 Jun 2024 06:26:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash0c4aa9ddc8e78306f6c57019adc4d64c b3254e75244fb4293cb3a61cd9075656cdeca8f1 6fb4e43813700e4d163367d7462653e55b062b673c439baee22a4073e8ea387b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: phomoach.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/javascript; charset=utf-8
content-length: 28087
content-encoding: br
x-trace-id: 319856f2a97daca99944be0a50af008f
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 25 Apr 2024 13:53:17 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| phomoach.net/5/6869446/?oo=1&aab=1 | 139.45.197.245 | 200 OK | 1.5 kB |
URL GET HTTP/2phomoach.net/5/6869446/?oo=1&aab=1 IP139.45.197.245:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectphomoach.net Fingerprint4D:5D:41:54:2C:98:6F:5D:8D:BC:45:87:4B:76:9B:E0:30:B6:88:BF ValidityFri, 15 Mar 2024 06:26:26 GMT - Thu, 13 Jun 2024 06:26:25 GMT
File typegzip compressed data, max speed, from Unix Hash38725c391d2caad03d749c99fdfa97d7 957962c8681961895de90114e3f1cdefe3fdd982 5fdb54cc03b029d431d1c9e72175e662e24f496f4923635febc4cec3bcb56a66
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /5/6869446/?oo=1&aab=1 HTTP/1.1
Host: phomoach.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/json
x-trace-id: cec45440179e1f89f5b8d8df155d239e
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://streambtw.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00804a769f0c446febfe62296f3adc64; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
oaidts=1714099211; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| six.lpclpc.online/static/stream_nba2_6799_779.png | 172.67.221.199 | 200 OK | 4.3 MB |
URL GET HTTP/2six.lpclpc.online/static/stream_nba2_6799_779.png IP172.67.221.199:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectlpclpc.online Fingerprint69:75:37:ED:BB:84:88:D3:9C:F0:37:33:DB:7D:64:E3:01:C0:0E:8F ValiditySat, 20 Apr 2024 19:57:46 GMT - Fri, 19 Jul 2024 19:57:45 GMT
Size4.3 MB (4337724 bytes) Hasha86c9bcd73646088f7a5ea04eb85b54b 5a5a0a44d580d024361489910ec8fe3f0cb711a0 b394eeeca41665ce7f10e4a7cc698c7b94fb8420a305ad19372cfdbaaadfbfa7
GET /static/stream_nba2_6799_779.png HTTP/1.1
Host: six.lpclpc.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: image/png
content-length: 4337724
last-modified: Fri, 26 Apr 2024 02:39:58 GMT
etag: "662b13fe-42303c"
access-control-allow-origin: *
cache-control: max-age=300
cf-cache-status: HIT
age: 12
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hDBz4sssc9B0IMQGcIEz4CDX9QrvH6ybJ8k9tNfEYkjHKq%2FKpIESJqX8WlW1VOs0bG%2BtGI%2FL0kWzGQHNSngFzSRlucsrlCp2%2BpSTXberBRZq9Dixr8RkDYA5HIKI5Qie8hf1FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a334eacbd6712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| sportsleading.online/live/stream_nba2.m3u8 | 188.114.96.1 | 200 OK | 9.2 kB |
URL GET HTTP/2sportsleading.online/live/stream_nba2.m3u8 IP188.114.96.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectsportsleading.online Fingerprint61:D8:D9:11:C4:3A:9D:80:A2:3A:A8:E9:EB:75:4A:83:4C:9B:D6:36 ValiditySun, 17 Mar 2024 10:39:55 GMT - Sat, 15 Jun 2024 10:39:54 GMT
Hash01501512f290e3677fe9e51138c83f8f f8cc642341748c5997c5853e9d66edf78481fc0f 032f72fa7a073cd88094bf2387085171c94ea7229d3f084603fe7bd0d5c8ad7b
GET /live/stream_nba2.m3u8 HTTP/1.1
Host: sportsleading.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Fri, 26 Apr 2024 02:40:11 GMT
etag: W/"662b140b-343"
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LUNQjC6nyy99AJ0pIZpxT6DouH%2B27kBbmdQNBNSz3UN4%2Bab7lFYqD6rg4KDC%2Flq1HPE%2BCLnWILMuV1Aq7jSn7QH7OKSi2yk7Gj%2FyHMewCTQVBiffsMtHYAnd6JMMDlcB%2Bs21BFlXOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a334ea2e8f56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| irondai.com/script/resource-v31.js | 188.114.97.1 | 200 OK | 130 kB |
URL GET HTTP/2irondai.com/script/resource-v31.js IP188.114.97.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectirondai.com FingerprintE4:7A:85:20:19:DB:C7:D6:50:62:D5:B9:D7:E6:7D:2B:72:7B:F3:90 ValiditySun, 24 Mar 2024 04:40:01 GMT - Sat, 22 Jun 2024 04:40:00 GMT
Size130 kB (129748 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/resource-v31.js HTTP/1.1
Host: irondai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPpRLcoLC8Od6Ae4gi332s4NPqdSf-tU_X8Aiz1xfIta3KxX_v1KhrxkwTa88RpsWhP1Ux8
x-goog-generation: 1714053212857685
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 129748
x-goog-hash: crc32c=0le3LA==, md5=4kTM0gHbevdBnltgQEQeGQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Fri, 26 Apr 2024 02:53:39 GMT
cache-control: public, max-age=14400
last-modified: Thu, 25 Apr 2024 13:53:32 GMT
etag: W/"e244ccd201db7af7419e5b6040441e19"
age: 2792
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gd%2BVuLU%2FXutz2iHAoq28GyE8aBBe6z4%2F2jL%2FAUYBjjW8t9pidWnKiCC9S%2FpXrXPNQdsEBGb%2BA%2F4tNp6ho3%2ByT7idjGcqypTQvALFmBhCnMOU9PmH%2FDWk%2F26SnsFO0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a334e72d5a56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ptaixout.net/?rb=QS7uQeru5tdizygvlkxcnxcS3VSywP1u_t-lGl1A9G7hgKSj7yApvnQiDVwPjzo2HOL4e5bSIHQ_Iik-QtbAi0De2KtHQnvwVs7pQeEJrqLAqRjXdLlE-tGSl1sa-RySeiS1_9XN_Esnvm-Myk_x80qrSLNclA4S14WOC-3qrA35mOh9dq4kimIGlmyI5B7AjZeL5bX27C0QulJd7X7ETy5I5DufCSV-FD2t9LbfnORjtUh2z9sr5o9AsjYbaeXu4iD6C0rl6h7zj3ne&request_ab2=0&zoneid=6320745&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=2&pl=https%3A%2F%2Fcdn.xsportbox.com%2Fembed77%2F%3Fevent%3Dstack.html%26link%3D1%26domain%3D%26force%3Dhttps%3A%2F%2Fstreambtw.com%2Fiframe%2Fnba2.php%26ask%3D1714100400%26lgt%3D4%26noplayer%3D0&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&bs=067906e0-cdd2-4117-bd14-0ac9068a68a8&wasm=1&userId=00804ac5eb7b43fdfaa3e4dd6ac32659&m=link | 139.45.197.244 | 200 OK | 2.4 kB |
URL GET HTTP/2ptaixout.net/?rb=QS7uQeru5tdizygvlkxcnxcS3VSywP1u_t-lGl1A9G7hgKSj7yApvnQiDVwPjzo2HOL4e5bSIHQ_Iik-QtbAi0De2KtHQnvwVs7pQeEJrqLAqRjXdLlE-tGSl1sa-RySeiS1_9XN_Esnvm-Myk_x80qrSLNclA4S14WOC-3qrA35mOh9dq4kimIGlmyI5B7AjZeL5bX27C0QulJd7X7ETy5I5DufCSV-FD2t9LbfnORjtUh2z9sr5o9AsjYbaeXu4iD6C0rl6h7zj3ne&request_ab2=0&zoneid=6320745&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=2&pl=https%3A%2F%2Fcdn.xsportbox.com%2Fembed77%2F%3Fevent%3Dstack.html%26link%3D1%26domain%3D%26force%3Dhttps%3A%2F%2Fstreambtw.com%2Fiframe%2Fnba2.php%26ask%3D1714100400%26lgt%3D4%26noplayer%3D0&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&bs=067906e0-cdd2-4117-bd14-0ac9068a68a8&wasm=1&userId=00804ac5eb7b43fdfaa3e4dd6ac32659&m=link IP139.45.197.244:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjectptaixout.net Fingerprint68:9C:78:69:60:28:90:FB:1C:BD:D0:98:14:FB:F6:C2:C7:45:CD:5C ValidityMon, 18 Mar 2024 05:39:00 GMT - Sun, 16 Jun 2024 05:38:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2472), with no line terminators Hashbbe88eee17ced60b493ba05002551dc6 954c8afc5a83fba267dc4759657ae19806cf2205 45b40e0c68042038572b47641fd1591c492ab0bf97e1e5ccd55f841dd4ddd81a
GET /?rb=QS7uQeru5tdizygvlkxcnxcS3VSywP1u_t-lGl1A9G7hgKSj7yApvnQiDVwPjzo2HOL4e5bSIHQ_Iik-QtbAi0De2KtHQnvwVs7pQeEJrqLAqRjXdLlE-tGSl1sa-RySeiS1_9XN_Esnvm-Myk_x80qrSLNclA4S14WOC-3qrA35mOh9dq4kimIGlmyI5B7AjZeL5bX27C0QulJd7X7ETy5I5DufCSV-FD2t9LbfnORjtUh2z9sr5o9AsjYbaeXu4iD6C0rl6h7zj3ne&request_ab2=0&zoneid=6320745&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=2&pl=https%3A%2F%2Fcdn.xsportbox.com%2Fembed77%2F%3Fevent%3Dstack.html%26link%3D1%26domain%3D%26force%3Dhttps%3A%2F%2Fstreambtw.com%2Fiframe%2Fnba2.php%26ask%3D1714100400%26lgt%3D4%26noplayer%3D0&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&bs=067906e0-cdd2-4117-bd14-0ac9068a68a8&wasm=1&userId=00804ac5eb7b43fdfaa3e4dd6ac32659&m=link HTTP/1.1
Host: ptaixout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.xsportbox.com/
Origin: https://cdn.xsportbox.com
DNT: 1
Connection: keep-alive
Cookie: OAID=00804ac5eb7b43fdfaa3e4dd6ac32659; oaidts=1714099211
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/json
x-trace-id: d2b44c47b3e9ef189c32d8f7f8179300
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://cdn.xsportbox.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804ac5eb7b43fdfaa3e4dd6ac32659; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
oaidts=1714099211; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 02:40:11 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/gid.js?userId=00804a769f0c446febfe62296f3adc64 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=00804a769f0c446febfe62296f3adc64 IP139.45.195.8:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashb1b393fb02bd82cb12a33857000b39ef 74ff520163c3bbb3f84163641d0ed6068f1d3b1e 31d9afa0f9d2be3e8b9bf7842a6737ea2083d758df4044192f8b1a5d0f3fb104
GET /gid.js?userId=00804a769f0c446febfe62296f3adc64 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Cookie: ID=00804ac5eb7b43fdfaa3e4dd6ac32659
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://streambtw.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804ac5eb7b43fdfaa3e4dd6ac32659; expires=Sat, 26 Apr 2025 02:40:11 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| velocitycdn.com/script/resource-v31.js | 188.114.97.1 | 200 OK | 130 kB |
URL GET HTTP/2velocitycdn.com/script/resource-v31.js IP188.114.97.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectvelocitycdn.com Fingerprint74:75:26:C5:76:25:60:63:67:68:35:BB:99:9C:76:A4:7A:4E:EB:35 ValiditySun, 21 Apr 2024 20:47:01 GMT - Sat, 20 Jul 2024 20:47:00 GMT
Size130 kB (129748 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/resource-v31.js HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPpRLcoLC8Od6Ae4gi332s4NPqdSf-tU_X8Aiz1xfIta3KxX_v1KhrxkwTa88RpsWhP1Ux8
x-goog-generation: 1714053212857685
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 129748
x-goog-hash: crc32c=0le3LA==, md5=4kTM0gHbevdBnltgQEQeGQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Fri, 26 Apr 2024 03:15:14 GMT
cache-control: public, max-age=3600
last-modified: Thu, 25 Apr 2024 13:53:32 GMT
etag: W/"e244ccd201db7af7419e5b6040441e19"
age: 846
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2FaboEZIQDj2bZFnAa2a%2BglZ0sApPeojQRaKjaQIqyH1enNbQCGsh5vBOAWPWJvTKjqSkQzhpf54DFd0z1f2g3WEsIBDp%2F67W2xkXF17Zyz%2Bd7LtzAGrpOgE9k86d1qVeiA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a334e60fc5b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| phomoach.net/?rb=1RCx9L8LKd4qj86pqsx-tzqr39hXJK-ABAi5_qFutkzPY4oudmBXPldBrYz11bdjiJ9s21USgvbwBuW563vnqFovGB63CkFxTQjIbhjxKW_Mfwsu29c8hqm-ZQXLUfee8PJe1X8q6Dh0-IKIqbXqCG1FG4gYNmBH-oMDiQjEV0lqpaFgT_0C3ajHF_eIPBLCj339VoEweAQQP6PvHiJl-BpDtuAwh2r0iAAu8RLAhtxtUVJpowalkDJqa-E6tu2uMwlDhJJOJls%3D&request_ab2=0&zoneid=6869446&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=619&wiw=1100&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1100&wfc=2&pl=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fnba2.php&drf=https%3A%2F%2Fcdn.xsportbox.com%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=d0e29fd5-eac5-40bc-90e1-a59ec5eafa61&userId=00804ac5eb7b43fdfaa3e4dd6ac32659&m=link | 139.45.197.245 | 200 OK | 2.4 kB |
URL GET HTTP/2phomoach.net/?rb=1RCx9L8LKd4qj86pqsx-tzqr39hXJK-ABAi5_qFutkzPY4oudmBXPldBrYz11bdjiJ9s21USgvbwBuW563vnqFovGB63CkFxTQjIbhjxKW_Mfwsu29c8hqm-ZQXLUfee8PJe1X8q6Dh0-IKIqbXqCG1FG4gYNmBH-oMDiQjEV0lqpaFgT_0C3ajHF_eIPBLCj339VoEweAQQP6PvHiJl-BpDtuAwh2r0iAAu8RLAhtxtUVJpowalkDJqa-E6tu2uMwlDhJJOJls%3D&request_ab2=0&zoneid=6869446&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=619&wiw=1100&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1100&wfc=2&pl=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fnba2.php&drf=https%3A%2F%2Fcdn.xsportbox.com%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=d0e29fd5-eac5-40bc-90e1-a59ec5eafa61&userId=00804ac5eb7b43fdfaa3e4dd6ac32659&m=link IP139.45.197.245:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectphomoach.net Fingerprint4D:5D:41:54:2C:98:6F:5D:8D:BC:45:87:4B:76:9B:E0:30:B6:88:BF ValidityFri, 15 Mar 2024 06:26:26 GMT - Thu, 13 Jun 2024 06:26:25 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2392), with no line terminators Hashf2306260ac900f6aabd70f5105dd427c f845b6491e234af4d40572ba241e3010213fd4ae 091515d6d24c599bda7e7af6b5d20e34a01a41ce74c247ff4d54100df0d2f2bb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?rb=1RCx9L8LKd4qj86pqsx-tzqr39hXJK-ABAi5_qFutkzPY4oudmBXPldBrYz11bdjiJ9s21USgvbwBuW563vnqFovGB63CkFxTQjIbhjxKW_Mfwsu29c8hqm-ZQXLUfee8PJe1X8q6Dh0-IKIqbXqCG1FG4gYNmBH-oMDiQjEV0lqpaFgT_0C3ajHF_eIPBLCj339VoEweAQQP6PvHiJl-BpDtuAwh2r0iAAu8RLAhtxtUVJpowalkDJqa-E6tu2uMwlDhJJOJls%3D&request_ab2=0&zoneid=6869446&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=619&wiw=1100&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1100&wfc=2&pl=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fnba2.php&drf=https%3A%2F%2Fcdn.xsportbox.com%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=d0e29fd5-eac5-40bc-90e1-a59ec5eafa61&userId=00804ac5eb7b43fdfaa3e4dd6ac32659&m=link HTTP/1.1
Host: phomoach.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streambtw.com/
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Cookie: OAID=00804a769f0c446febfe62296f3adc64; oaidts=1714099211
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:12 GMT
content-type: application/json
x-trace-id: b9efe8d8ba3ac4ac68245b384b95fc75
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://streambtw.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804ac5eb7b43fdfaa3e4dd6ac32659; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
oaidts=1714099211; expires=Sat, 26 Apr 2025 02:40:11 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 02:40:11 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js | 151.101.129.229 | 200 OK | 30 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js IP151.101.129.229:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (30387) Hash1b142ebaf5f868c4c11a73ffe9175afb aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9 df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702
GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 02:40:11 GMT
age: 33303
x-served-by: cache-fra-eddf8230055-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10804
X-Firefox-Spdy: h2
|
|
| youradexchange.com/script/suurl5.php?r=7102142&cbur=0.2960431197807164&cbiframe=1&cbWidth=1100&cbHeight=619&cbtitle=&cbpage=https%3A%2F%2Fcdn.xsportbox.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714099211346&srs=33371b9d2fa17a4d827815bdbdc9ac6f&atv=48.0-sw-suv5 | 104.21.91.188 | 200 OK | 1.0 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=7102142&cbur=0.2960431197807164&cbiframe=1&cbWidth=1100&cbHeight=619&cbtitle=&cbpage=https%3A%2F%2Fcdn.xsportbox.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714099211346&srs=33371b9d2fa17a4d827815bdbdc9ac6f&atv=48.0-sw-suv5 IP104.21.91.188:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1043), with no line terminators Hash5cabdb15eb5c0703dd601f9517c33049 1f13dc87d906e1891727e3a7c41f3dd13c679d6f 28e4d2382ea17a3abd75c425a99c35b89b4278cb6234c8679c51b51297afd758
GET /script/suurl5.php?r=7102142&cbur=0.2960431197807164&cbiframe=1&cbWidth=1100&cbHeight=619&cbtitle=&cbpage=https%3A%2F%2Fcdn.xsportbox.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714099211346&srs=33371b9d2fa17a4d827815bdbdc9ac6f&atv=48.0-sw-suv5 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streambtw.com/
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hDzNpU91cFPk1J1WL378mnrO2YAcDUy3UKghVTaZL0EhpyIVLuY%2BikQJ8S1fBPrc%2FTXO0HgrPG6qw6Njb6EMl3q0mkvmckaRO4o1BJiSNTEZcbUE%2FnLmEPCvr4DQlCx7CLFlVIM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a334e76854712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/gid.js?userId=00804ac5eb7b43fdfaa3e4dd6ac32659 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=00804ac5eb7b43fdfaa3e4dd6ac32659 IP139.45.195.8:443
Requested byhttps://cdn.xsportbox.com/embed77/?event=stack.html&link=1&domain=&force=https://streambtw.com/iframe/nba2.php&ask=1714100400&lgt=4&noplayer=0 CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashb1b393fb02bd82cb12a33857000b39ef 74ff520163c3bbb3f84163641d0ed6068f1d3b1e 31d9afa0f9d2be3e8b9bf7842a6737ea2083d758df4044192f8b1a5d0f3fb104
GET /gid.js?userId=00804ac5eb7b43fdfaa3e4dd6ac32659 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.xsportbox.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.xsportbox.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://cdn.xsportbox.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804ac5eb7b43fdfaa3e4dd6ac32659; expires=Sat, 26 Apr 2025 02:40:11 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| velocitycdn.com/script/ut.js?cb=1714099211279 | 188.114.97.1 | 200 OK | 63 kB |
URL GET HTTP/3velocitycdn.com/script/ut.js?cb=1714099211279 IP188.114.97.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectvelocitycdn.com Fingerprint74:75:26:C5:76:25:60:63:67:68:35:BB:99:9C:76:A4:7A:4E:EB:35 ValiditySun, 21 Apr 2024 20:47:01 GMT - Sat, 20 Jul 2024 20:47:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1714099211279 HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq8Qnia__CCv-4JMXGv6SAC-poJFhLaACQpxFU4rMWCXgPENysYUH4V0asRipuCCNNOhc8
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Fri, 26 Apr 2024 02:45:11 GMT
cache-control: public, max-age=3600
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I9XqFbqlLxpWvkZTdln%2BDobSLEUfc%2FqCm6NHMz20vh7GafVXl1x8R5VNkspfJLUdGmDxNB%2BDYSmTZZ9KtRJPe8qD%2FFOh7fe1m172XfwWp%2F5UAEHpnWcA1UXBbmFizHd4ueU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a334e6adf2b523-OSL
content-encoding: br
|
|
| velocitycdn.com/script/suv5.js | 188.114.97.1 | 200 OK | 74 kB |
URL GET HTTP/3velocitycdn.com/script/suv5.js IP188.114.97.1:443
Requested byhttps://streambtw.com/iframe/nba2.php CertificateIssuerLet's Encrypt Subjectvelocitycdn.com Fingerprint74:75:26:C5:76:25:60:63:67:68:35:BB:99:9C:76:A4:7A:4E:EB:35 ValiditySun, 21 Apr 2024 20:47:01 GMT - Sat, 20 Jul 2024 20:47:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/suv5.js HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 02:40:11 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq5jRYrh8vivN42gsz6Fg5X0TvvOrLQsal539IQGNc4ZJa0Ge75UcbOJxsjja9Qw4yXFz0FTeHHOQ
expires: Fri, 26 Apr 2024 02:38:55 GMT
cache-control: public, max-age=3600
last-modified: Thu, 25 Apr 2024 13:54:16 GMT
etag: W/"53ba90f485782e771086791c3c8105f5"
x-goog-generation: 1714053256821370
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 74190
x-goog-hash: crc32c=zXltzg==, md5=U7qQ9IV4LncQhnkcPIEF9Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 502
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E2pIvPrLgdoQLfEb2b3vpSbfOrcMhX9bomtfbeJhC7cYocL%2B%2FBG3fRa7V2ozzv70SsgeYPDokUuOJAUpC50EwUdtOlIt%2BysPffb9iqyHH7FkFsEmiIfpU0wH2nT%2Flq4Qh68%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a334e6adf4b523-OSL
content-encoding: br
|
|