GET cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
200 OK 11 kB URL GET HTTP/2 cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type HTML document, ASCII text, with very long lines (30387)
Hash 1b142ebaf5f868c4c11a73ffe9175afb
aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9
df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702
GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Sun, 26 Nov 2023 14:20:59 GMT
age: 1478
x-served-by: cache-fra-eddf8230055-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10804
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js
200 OK 169 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 169 kB (169275 bytes)
Hash 3dbf1ad3535560c4e487d88012784f29
6fd8110083e0c387d8fb49a4d6a5264b28c755f8
0445a4b98a570af2253cd291c241a2e716e4105ffeec79628e058a8fe77aaedd
GET /npm/@clappr/player@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.5.0
x-jsd-version-type: version
etag: W/"9749e-b9gRAIPgw4fY+0mk1qUmSyjHVfg"
content-encoding: br
accept-ranges: bytes
date: Sun, 26 Nov 2023 14:20:59 GMT
age: 25896
x-served-by: cache-fra-eddf8230062-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 169275
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF
200 OK 93 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 29195f16f3b8218a8d6ac47540e56009
a2a951e8ada2e47a7b0e54672a07669f02bf2288
bf9839df32416ae7e01c20a0862c2cd331dda101b68a33798adfd019ebe46b52
GET /gtag/js?id=G-PQ1PJ56MMF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 26 Nov 2023 14:20:59 GMT
expires: Sun, 26 Nov 2023 14:20:59 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET boilingloathe.com/02/04/fc/0204fc8fde3b32723ae3602a79727408.js
200 OK 25 kB URL GET HTTP/1.1 boilingloathe.com/02/04/fc/0204fc8fde3b32723ae3602a79727408.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectboilingloathe.com
Fingerprint3C:44:55:2A:C8:DE:3C:20:64:B8:62:87:F3:F9:49:E8:27:0A:67:73
ValidityFri, 10 Nov 2023 09:11:40 GMT - Thu, 08 Feb 2024 09:11:39 GMT
File type ASCII text, with very long lines (62217), with no line terminators
Hash cfa0ed21efac068242c9858d11757d41
3cb3b126d2dfa8a2855169869ec953e8afeb761d
a39a74bbb0b2d2d58c102876cb5279244ada1e587d032b5002791b87a2fd6ae7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /02/04/fc/0204fc8fde3b32723ae3602a79727408.js HTTP/1.1
Host: boilingloathe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:21:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f71a8df1bbac77c5827ea80761bd235c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
HEAD streambtw.com/iframe/ch1.php
200 OK 0 B URL HEAD HTTP/3 streambtw.com/iframe/ch1.php
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subjectstreambtw.com
Fingerprint2D:81:70:63:02:CC:B7:4C:35:5F:BE:53:92:8D:3A:01:81:59:47:1C
ValidityFri, 06 Oct 2023 17:37:18 GMT - Thu, 04 Jan 2024 17:37:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /iframe/ch1.php HTTP/1.1
Host: streambtw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/iframe/ch1.php
Cookie: pp_show_on_0204fc8fde3b32723ae3602a79727408=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=las1zwjWFjwX8gTrlcv2AtgJjRRB8bl68w8fRgjHvxHc25Z4KnZIyR9FVyyeHLOp987%2F9nEKuXH3nnOwEyUombyxa6RG2Opkjoa696%2BsNFilMKLddP55H%2F1fYk4tGTjo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c67fcad1b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 202e8c2fbcaca36c4320ef15b80456f4
e4d2370c6fc247f93ca68e5718618ddcf0a0ddb9
0638ce23f7fa1305977a402e0e8d8f612d002194da3efaa47c9d4e1a984144cb
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 26 Nov 2023 14:21:00 GMT
Last-Modified: Sun, 26 Nov 2023 13:49:09 GMT
Server: ECAcc (ska/F6CC)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vRGMwYCrcs8dsTGxzP8cfMxjfz3v0ku59bP-GS4ntnrL7cgV9I2hTg==
Age: 1911
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 29c298c48c250dfc70c4b0e37375b158
fa62e3f58f5e0232daf3932988c11fadba733a06
73d093424944aba46dd767c620dcc5d8b7e099c17c9a59a90dfad568e9008a71
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://streambtw.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=f6b13ace-20e3-41b5-89b7-e29870de99fc:2:1; expires=Wed, 23 Nov 2033 14:21:00 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET doruffleton.com/tag.min.js
200 OK 26 kB URL GET HTTP/2 doruffleton.com/tag.min.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectdoruffleton.com
Fingerprint8D:99:65:BD:FF:22:4C:6B:41:72:27:BC:29:02:01:7C:6F:06:33:89
ValiditySat, 07 Oct 2023 07:17:50 GMT - Fri, 05 Jan 2024 07:17:49 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash f98d2b56f0a3cb5931f906af99482894
24be5bb9d3277835a954809df6e7a894f4d0468b
e7a07587ad65e34dd4ffd2a7f01167813688c3088860f5d4d89cbb4551f4f326
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: doruffleton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 25606
content-encoding: br
x-trace-id: 66ddfbf1fe957f736aeabca180d556a6
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 24 Nov 2023 13:03:58 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
GET practicalframingfiddle.com/pixel/purst?dl=0&th=0&sc=0&rs=1270&rd=1270&fd=883&bv=23.11.v.3&tmpl=70
200 OK 0 B URL GET HTTP/1.1 practicalframingfiddle.com/pixel/purst?dl=0&th=0&sc=0&rs=1270&rd=1270&fd=883&bv=23.11.v.3&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectpracticalframingfiddle.com
Fingerprint27:D6:2E:0C:05:4C:F2:6D:9A:7D:9B:61:69:3A:FF:61:28:3B:8F:87
ValidityMon, 09 Oct 2023 12:38:45 GMT - Sun, 07 Jan 2024 12:38:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1270&rd=1270&fd=883&bv=23.11.v.3&tmpl=70 HTTP/1.1
Host: practicalframingfiddle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 26 Nov 2023 14:21:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET hls.streambtw.com/live/stream_1.m3u8
200 OK 5.1 MB URL GET HTTP/2 hls.streambtw.com/live/stream_1.m3u8
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subjectstreambtw.com
Fingerprint2D:81:70:63:02:CC:B7:4C:35:5F:BE:53:92:8D:3A:01:81:59:47:1C
ValidityFri, 06 Oct 2023 17:37:18 GMT - Thu, 04 Jan 2024 17:37:17 GMT
Size 5.1 MB (5111691 bytes)
Hash 90ce9756890bbdaf13c0278eb3704c68
5ac7e088694e2dd942028af5254f2fcc40f68d79
d5072b98c0c7d453cf5f94421848d15ff8959cb30e7d1765285e052574067e3a
GET /live/stream_1.m3u8 HTTP/1.1
Host: hls.streambtw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Sun, 26 Nov 2023 14:21:00 GMT
etag: W/"6563544c-34e"
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dXawttP9ekZaC9IzfB%2BAY7GRcdfdg8Y0gl3tfiMqlAb4WHLXZTzfOD%2BhcNb0sgnVXbFtL4Zdz%2FNAUvKlnIESxlEfX5NgPX3wED81XOLqbZuydoSrla0OaRbPQyISP0GZB%2B12CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c6822d7f56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST youradexchange.com/ut/hb.php?cb=0.7049615376118161&v=1
204 No Content 0 B URL POST HTTP/2 youradexchange.com/ut/hb.php?cb=0.7049615376118161&v=1
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subjectyouradexchange.com
FingerprintFD:52:FD:E8:62:0A:DE:66:86:28:19:39:64:21:57:5C:CB:8A:59:D9
ValidityTue, 17 Oct 2023 07:21:58 GMT - Mon, 15 Jan 2024 07:21:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.7049615376118161&v=1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 738
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 26 Nov 2023 14:21:01 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nYt3%2FqIcnhWNMZz7UVEmbCuRystMeNGH1lIByKknTTuXTZt1TVoeupJ1qjzeBPBrJClaCQSGjVFx6P%2B7L9KhgjOGSA316LoFxoTdG%2FRc6BZWkKZDzYeOIztVXrs2sLn%2BgGNy%2Bns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c684be0163ba-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 3fa85a30b7e9fda4c7fc7d16a02c9378
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 26 Nov 2023 14:21:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JcQgFwH624J%2BxdkssVzfQ4x%2BizNCymUsKMxTA8p6BsCxuU%2Fan42MTn5XowVXbIbMOtho%2BT8r0P6IRmf8S47sdCncNH9EZJbC4zXde7S1Smbl4MCVxSQle%2FtfrU75pUna2EQV4Fjs2ZLOdjA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c6848d84568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET velocitycdn.com/script/ut.js?cb=1701008464559
200 OK 82 kB URL GET HTTP/3 velocitycdn.com/script/ut.js?cb=1701008464559
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectvelocitycdn.com
FingerprintB2:86:11:E9:51:C0:CA:58:5A:2A:DB:15:B2:E9:FA:BE:B0:8F:29:29
ValidityFri, 27 Oct 2023 15:57:57 GMT - Thu, 25 Jan 2024 15:57:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1701008464559 HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq6jiRYW__krik0aeW02JdN7D2ClcTuaHVV97KG93ulAw9q5ZIgTSQtVKkPWu8AIhihoRiP9HfqXwCwAd-Xuaevrw
x-goog-generation: 1700559366468515
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 82131
x-goog-hash: crc32c=4mnTgA==, md5=k/QYR8z4Gc28Jtux6jnKBA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 26 Nov 2023 14:35:37 GMT
cache-control: public, max-age=3600
last-modified: Tue, 21 Nov 2023 09:36:06 GMT
etag: W/"93f41847ccf819cdbc26dbb1ea39ca04"
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LOE5IkFiVET4xIPCX%2F61%2FnTJHGiq4BANgWsf8Ma8gDSbyiKft58aEyZ3rrQP5XcSLKlGz9nHtKUu9cQREf16nAt%2FkgIeV%2BT1MVflntaeV7L1ewzHYT5hoMeB3btfSvkspWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c6826b0eb518-OSL
content-encoding: br
GET irondai.com/script/resource-v31.js
200 OK 203 kB URL GET HTTP/2 irondai.com/script/resource-v31.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectirondai.com
Fingerprint5C:7D:02:B7:7C:CE:5F:9C:FC:65:41:9A:40:6A:EB:20:A5:D4:B1:70
ValidityFri, 29 Sep 2023 00:35:38 GMT - Thu, 28 Dec 2023 00:35:37 GMT
Size 203 kB (202859 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/resource-v31.js HTTP/1.1
Host: irondai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPp49_xoYh7r8Cr5HrYqQG0fV1JzgC2x06Pdw7ZraTMScyPlN2fLcXQGnSwEDp22Pl4RwEOYJ6w9EXaTJXiWBG9sdtV-5WJY
x-goog-generation: 1700559236995904
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 202859
x-goog-hash: crc32c=rCiXbQ==, md5=/Z4uhobFqaAC41d8YvdM/g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 26 Nov 2023 14:41:34 GMT
cache-control: public, max-age=14400
last-modified: Tue, 21 Nov 2023 09:33:57 GMT
etag: W/"fd9e2e8686c5a9a002e3577c62f74cfe"
age: 1142
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QvxHu41cwSilrsFA49FJfWnNHEriE0CwvqgnXkyXLgxRgKQun%2BlTEuhyOhUy%2BODQhiEhV061JUk7GQwMCZ8%2BRIZ8rQ4GrZfSo34WxFQHWB95H8BwFyx%2BdU8W8K1jAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c6836a2556c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET streambtw.com/favicon.ico
200 OK 4.2 kB URL GET HTTP/3 streambtw.com/favicon.ico
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subjectstreambtw.com
Fingerprint2D:81:70:63:02:CC:B7:4C:35:5F:BE:53:92:8D:3A:01:81:59:47:1C
ValidityFri, 06 Oct 2023 17:37:18 GMT - Thu, 04 Jan 2024 17:37:17 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4418), with no line terminators
Hash 50251022c0ad42f54cee4e5102c60c1b
e0973fcfb7f95f2460086efc47473402f42495c9
001f64a3647a027b91bb56f041aaf25213e160297622f0f661166ce9e9676b79
GET /favicon.ico HTTP/1.1
Host: streambtw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/iframe/ch1.php
Cookie: pp_show_on_0204fc8fde3b32723ae3602a79727408=1; _ga_PQ1PJ56MMF=GS1.1.1701008464.1.0.1701008464.0.0.0; _ga=GA1.1.404246162.1701008465; pp_main_0204fc8fde3b32723ae3602a79727408=1; pp_exp_0204fc8fde3b32723ae3602a79727408=1701015664743; dom3ic8zudi28v8lr6fgphwffqoz0j6c=f6b13ace-20e3-41b5-89b7-e29870de99fc%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
last-modified: Sun, 26 Nov 2023 12:56:45 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1933
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IxL8LjF5ppqwRFALhLYiD18pB%2FbPsf8MwZcroC%2BVCna7K6h4nIEYh3tWLOXeq7sFRLTCjpQDHI867REO%2Bf6g2DzHtR6PpGF2hr1cIGUAAoAv7mKZ%2BgNp1OLcLDZtksE7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c685a8ecb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET velocitycdn.com/script/resource-v31.js
200 OK 203 kB URL GET HTTP/2 velocitycdn.com/script/resource-v31.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectvelocitycdn.com
FingerprintB2:86:11:E9:51:C0:CA:58:5A:2A:DB:15:B2:E9:FA:BE:B0:8F:29:29
ValidityFri, 27 Oct 2023 15:57:57 GMT - Thu, 25 Jan 2024 15:57:56 GMT
Size 203 kB (202859 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/resource-v31.js HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPoBATB9EOnfoGagiyvb5U9q7jLzTUtIAEo1CpAdxtFE8fk_3Q-ZT-yWljxOQSOaIf1SrQUOPphQC5KAPzb1mLy_9w
x-goog-generation: 1700559236995904
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 202859
x-goog-hash: crc32c=rCiXbQ==, md5=/Z4uhobFqaAC41d8YvdM/g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 26 Nov 2023 14:41:34 GMT
cache-control: public, max-age=3600
last-modified: Tue, 21 Nov 2023 09:33:57 GMT
etag: W/"fd9e2e8686c5a9a002e3577c62f74cfe"
age: 1148
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bqo8K1PNNVERK5gBFLoZMrgmCFMDPaQLNLbmD5ksTcCWvF0D3f%2BwgqHcF9DqXXyvW1phqcHpQkoamx1d4dWd0IHrbAXntK2mtdWFbe7v9K1q%2FrvxaB7NHzXIhGqx5SMch6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c67fdae5b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET doruffleton.com/5/6210454/?oo=1&aab=1
200 OK 2.8 kB URL GET HTTP/2 doruffleton.com/5/6210454/?oo=1&aab=1
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectdoruffleton.com
Fingerprint8D:99:65:BD:FF:22:4C:6B:41:72:27:BC:29:02:01:7C:6F:06:33:89
ValiditySat, 07 Oct 2023 07:17:50 GMT - Fri, 05 Jan 2024 07:17:49 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3064), with no line terminators
Hash e5772bea24b55b15aad87ac6f52fe1d9
6bea2dcaf6675553f9f4a184c02a7f28cf44a05e
d7316ef371838195fc57965492cbec499997a7714b9550c6ee497c9b96cb1214
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/6210454/?oo=1&aab=1 HTTP/1.1
Host: doruffleton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: application/json
x-trace-id: 268ec4dbd3768e6afce4683159599765
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://e2ertt.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://streambtw.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=b817f4ae37e043e29e6d95a81ee86b8e; expires=Mon, 25 Nov 2024 14:21:00 GMT; path=/; secure; SameSite=None
oaidts=1701008460; expires=Mon, 25 Nov 2024 14:21:00 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
GET youradexchange.com/script/suurl4.php?r=7102142&abtg=1&cbur=0.3487142801023786&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=StreamBTW%20%7C%201&cbpage=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fch1.php&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0&ts=1701008464566&atv=38.2-suv4&srs=beb12c60a3aab6462d58685a60800947
200 OK 980 B URL GET HTTP/2 youradexchange.com/script/suurl4.php?r=7102142&abtg=1&cbur=0.3487142801023786&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=StreamBTW%20%7C%201&cbpage=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fch1.php&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0&ts=1701008464566&atv=38.2-suv4&srs=beb12c60a3aab6462d58685a60800947
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerGoogle Trust Services LLC
Subjectyouradexchange.com
FingerprintFD:52:FD:E8:62:0A:DE:66:86:28:19:39:64:21:57:5C:CB:8A:59:D9
ValidityTue, 17 Oct 2023 07:21:58 GMT - Mon, 15 Jan 2024 07:21:57 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1018), with no line terminators
Hash 80138a94ddfb4f73f0f970c56c115279
fd4176742860f52f2efd5d09611edc734dc8fdaa
d0578781adacfcf184a4fb128f733c6fed3b8f07a202cd5add42dcc5dd3f64a0
GET /script/suurl4.php?r=7102142&abtg=1&cbur=0.3487142801023786&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=StreamBTW%20%7C%201&cbpage=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fch1.php&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0&ts=1701008464566&atv=38.2-suv4&srs=beb12c60a3aab6462d58685a60800947 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streambtw.com/
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYPtcfss65OiaCw576BXyu8IF7WAI%2B%2FwbQMOWu4WojVuwoUe2HkWGk0O9YdgyEPn9B1VYtrucDjqjM2H55G1DnixTJSnUo0pApVFS1qOw3q1QtrZXIeSr1oAzXxqoc0gKmGTDpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c6836a844170-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: fd407bf7d434f119e09002b6ee11ff16
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 26 Nov 2023 14:21:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tyyMX7xBwtFyGiz8YYjl6G9NkwisvZHz0VYiLdRWQg0pTVxF6HOC%2BVjj7v6dDVXgKs4qkJsPLDDxqujxxb%2BUTfT23kUtCg1dijf0nMrtd2k7HGf%2BQlJ4P3EGOAk5ioDd98%2BfEMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c67fff930b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET six.gettvfree.online/static/stream_1_5544_2767.png
200 OK 5.1 MB URL GET HTTP/2 six.gettvfree.online/static/stream_1_5544_2767.png
IP
Requested by https://streambtw.com/iframe/ch1.php
Certificate IssuerLet's Encrypt
Subjectgettvfree.online
Fingerprint93:2B:B3:82:4E:D0:FB:B2:C2:02:AC:00:A8:77:C8:8A:A6:61:B4:95
ValidityMon, 23 Oct 2023 20:01:03 GMT - Sun, 21 Jan 2024 20:01:02 GMT
Size 5.1 MB (5111532 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/stream_1_5544_2767.png HTTP/1.1
Host: six.gettvfree.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: image/png
content-length: 5111532
last-modified: Sun, 26 Nov 2023 14:20:44 GMT
etag: "6563543c-4dfeec"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uIOVhvMAVgyz8EgOT5DaWq4uxeMnoyECH8BjwgLu1g5%2FrpvPPgFMMfoq1L2EP%2FSHIZ5jmzYtXIp2XcxRnDC59pq1J8bhOts0JKdVoN6%2FsDJyvBnV1%2F87hSYCTiZcAul2V8tQMg%2Ba0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c682edb9b4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
188.114.96.1
173.233.137.44
18.157.203.0
104.21.234.33
139.45.197.244
0.0.0.0