cdnjs.cloudflare.com/ajax/libs/angular.js/1.8.3/angular.min.js
200 OK 54 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/angular.js/1.8.3/angular.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (647)
Hash 967a32633fa8f38f4ac3376c1a37b992
b53b74d8e0b732dcdb98fbe521146b88299ea2f1
396dc1a03d6cc02e9c51a80246e0db53c5c8df9bd07287e3b51bce4a29dab355
GET /ajax/libs/angular.js/1.8.3/angular.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 54206
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942634-d3be"
last-modified: Thu, 22 Jun 2023 10:45:08 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2134584
expires: Sat, 14 Sep 2024 05:32:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lGCrv8aPL%2BmgaYOVfdwfz5mvMOFa8aaq1DlHHULmfiloilRg%2BA%2FpZqngmztkelYEj%2BVOfRTP6Op9zHNrNqrR13u3OihPLLGrapEQdrSr5rkAr%2B7l4cXd8Q4uZKXDssh4aGy4sJTA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80c0e3011ceb56b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/angular-route/1.8.3/angular-route.min.js
200 OK 2.3 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/angular-route/1.8.3/angular-route.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (577)
Hash 701a6048b910dca758f13d88595006d3
90d7818b58d9fe6c8fd74c847e1af11765d1db85
f9ddeeb70c563c9f0c282899c8268a943f75e041b34e6dd962e646295247aabb
GET /ajax/libs/angular-route/1.8.3/angular-route.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 2297
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6494262e-8f9"
last-modified: Thu, 22 Jun 2023 10:45:02 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2148600
expires: Sat, 14 Sep 2024 05:32:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nSAFykR3FC3%2FeoyYlMqB4y9y%2B4nJI5j3ZgXbWjhT3Zcd0fl9JI%2B%2F3fH6UTIMiYb2t%2BAncSd7%2BLZBE4MugLHHVeEMEluBDLCPNR22JpAsgYsx9mz%2FJJH76XNui6VPIkmt9mt1cbzP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80c0e3014d0256b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
streamdav.com/images/global/logo.png
200 OK 48 kB URL GET HTTP/3 streamdav.com/images/global/logo.png
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type PNG image data, 1456 x 397, 8-bit/color RGBA, non-interlaced\012- data
Hash dad2ead25f8142a48ed9ddfaf47da7ca
2e5f3178d58aecfbce6e63373ec189cec64201fe
e5e7cf09343fc0c46c86b23d46feea88f9d68ab36444b8a9e488780e820fba20
GET /images/global/logo.png HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: image/png
content-length: 48345
cache-control: public, max-age=14400
last-modified: Wed, 26 Jul 2023 19:09:22 GMT
etag: W/"bcd9-189939b175b"
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J5kf6rwevJOOdi1gpvrvbOTbcgkBwDEwN8zJRDGJTGwRH6jGBNfgHIjmWMDR1NPHuH6X3PrIN%2FlC9meVkIB%2F86WpJVnxf%2Fb511UiKRP4AfqhXGiFJOoddasUaeRzZLZd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30039f556a4-OSL
alt-svc: h3=":443"; ma=86400
code.jquery.com/jquery-3.6.4.min.js
200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.6.4.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 641dd14370106e992d352166f5a07e99
eda46747c71d38a880bee44f9a439c3858bb8f99
a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af
GET /jquery-3.6.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15ec3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 25 Sep 2023 05:32:27 GMT
age: 817747
x-served-by: cache-lga21953-LGA, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 19993
x-timer: S1695619948.740227,VS0,VE0
vary: Accept-Encoding
content-length: 31011
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/angular-ui-bootstrap/2.5.0/ui-bootstrap-tpls.min.js
200 OK 29 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/angular-ui-bootstrap/2.5.0/ui-bootstrap-tpls.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (32051)
Hash c572f42d057f681abb138e2c2c966157
f692082f69c296cc7635b01e1fef8173c27dac54
b727d65b62ed250348fa5dc5d21eb10d5fe28fa31f9fc97048a1d63ac9848173
GET /ajax/libs/angular-ui-bootstrap/2.5.0/ui-bootstrap-tpls.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 28692
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6494262f-7014"
last-modified: Thu, 22 Jun 2023 10:45:03 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2135042
expires: Sat, 14 Sep 2024 05:32:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tq94TSXpJF6%2FRpdI3ntfhM7L%2FKeK6XgjDT%2FvVqtHv0V7Wr9CjXqn4zsZV%2B0IyNpe8nZ93pxbdHU%2BK5bfo6IuOlKf8g9z2m8GO9aLTvKX%2BwYDSb2aiiM9zanF37C41bVDRbRIA7r9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80c0e301ae50069b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash c5ff8d7acc8e7364e55f0f702753cdf3
8070b53f5904114284c148c6a9e31bd0a812fb88
60894dff5403072fe1a10fedc55fd9c34f223afc4073351c32ac819abe8d63fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
streamdav.com/f/zaj473Gr33Of
200 OK 28 kB URL User Request GET HTTP/2 streamdav.com/f/zaj473Gr33Of
IP
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 7357c1796e3d9d4fc9adadc8c2b6f05c
8d5d09a0f272ddb374d72d76302ec50c66b39ac9
b7188a638a7c842db1f84b1d5037525b2bcf7df23ce7484435e3b5b32c12dc05
GET /f/zaj473Gr33Of HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:26 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=100
set-cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; Max-Age=7200; Path=/; HttpOnly
clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; Max-Age=7200; Path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bILz41PZDOltmYklqp6JMLFzntiffKOyqCWzhOnLlg0Bk33%2FOMVefgNw1t6bd0PriIAVMHmovlr3QIwYVTgGYHGULzO%2FxeK3RVQjQ8X9pPXwqxvuoIufGM7wA9TQf6xD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e2fbaab6b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
d1f9tkqiyb5a97.cloudfront.net/?qktfd=994998
200 OK 55 kB URL GET HTTP/2 d1f9tkqiyb5a97.cloudfront.net/?qktfd=994998
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (15948)
Hash 6a12118964c4628a8f142e2dc7a4481c
7422972d0efa6cf208d9c15d0f44f02b59f0fd29
381c49428e7e8a8b01122bb083c93bf2609013ff9c27b9d6e2f5dd506823db3a
GET /?qktfd=994998 HTTP/1.1
Host: d1f9tkqiyb5a97.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 54714
date: Mon, 25 Sep 2023 05:32:27 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SqHjWkcVZ6EaCuvkWW4Iayk98P_AAt_eu8LptSH2ta1lz-AvTMeieQ==
X-Firefox-Spdy: h2
ocsp.buypass.com/
1.7 kB IP
ASN #20940 Akamai International B.V.
Hash 7d5c497ba7e2612eed27e451614758dd
d051ee3c8f9f062309c31fd55963b01cbaaf8ed4
f653001831df156e53d2afbcc8e635b5ccdfbb12edb98677822edd1d222f542f
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: a7edb0f2-d342-499d-a60b-9aa62f87c51e
Content-Length: 1701
Date: Mon, 25 Sep 2023 05:32:28 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
471 B IP
Hash c5ff8d7acc8e7364e55f0f702753cdf3
8070b53f5904114284c148c6a9e31bd0a812fb88
60894dff5403072fe1a10fedc55fd9c34f223afc4073351c32ac819abe8d63fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pl20396238.highcpmrevenuegate.com/ca/3a/99/ca3a9904827f0041232be6ab023a4d4f.js
200 OK 17 kB URL GET HTTP/1.1 pl20396238.highcpmrevenuegate.com/ca/3a/99/ca3a9904827f0041232be6ab023a4d4f.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecthighcpmrevenuegate.com
Fingerprint02:C4:02:1C:F0:C4:8F:87:86:7C:72:18:6B:CC:25:87:D3:E0:F2:D6
ValidityMon, 31 Jul 2023 07:46:48 GMT - Sun, 29 Oct 2023 07:46:47 GMT
File type ASCII text, with very long lines (42688), with no line terminators
Hash abc48667767ce7a085db7938f6eb7c4d
f4189017d5655ac896683ef370e02cb5973cdd87
7d9717b750826e9d3ca45d2c015252d34d61b6269bf5346f3f76d720b5985271
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ca/3a/99/ca3a9904827f0041232be6ab023a4d4f.js HTTP/1.1
Host: pl20396238.highcpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 25 Sep 2023 05:32:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5a13f6995087c3910953bc851665b5c0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
gmxvmvptfm.com/solid.gif?z=1995559&abvar=0&febuild=1.0.155&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 43 B URL POST HTTP/2 gmxvmvptfm.com/solid.gif?z=1995559&abvar=0&febuild=1.0.155&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint36:76:FA:87:79:13:81:95:B3:AB:E9:8D:E6:AB:B8:22:69:B0:34:21
ValidityWed, 31 May 2023 13:05:08 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1995559&abvar=0&febuild=1.0.155&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: gmxvmvptfm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
UID=2309250032a4cc0aaba2874dc7be1deb1889; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash be7f5749f48da1b63032be050e1fb56d
185526d0e7f5226664a9ca7ab4373b019085a6ed
40a03d2e671f58ee9ff864e59774047a6a284b65039d6ad4780ec024316db8e9
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 25 Sep 2023 05:32:29 GMT
Last-Modified: Mon, 25 Sep 2023 03:44:30 GMT
Server: ECAcc (ska/F6A3)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: m6fX12rGUVipok1qn-o6fyTGBaaAaEdSRi08ZD9QHenE5W7IntJxCg==
Age: 6479
professionalswebcheck.com/stats
200 OK 40 B URL GET HTTP/2 professionalswebcheck.com/stats
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 627752a0e9340585f547524f2dcd9f35
55fb0e5d19d8bc31e073a76ddf75c4ca37a63d9a
990686b289f5c18c269bc92b7130b826a9bcbfd0a750e3ef17251414b6be5aa8
GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://streamdav.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=25f705e8-14ad-48f0-a57b-8adb8bf06665:1:1; expires=Thu, 22 Sep 2033 05:32:29 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
gourgoldpieceso.com/YW83NGtOUFRHVi4ncVsyGy57ZgcZDnZTHyQ4YWUhJTp1Zj0gPhFAAgVSDg1fWFYPEhsICwoFTRIbVkAeElIGEgIPCVgJTRdSBhpYVUEEAEVRSUIJWkcbR1UMXF4RRB8VAwoFXVhaAQVSWFsOAlhY
204 No Content 0 B URL GET HTTP/2 gourgoldpieceso.com/YW83NGtOUFRHVi4ncVsyGy57ZgcZDnZTHyQ4YWUhJTp1Zj0gPhFAAgVSDg1fWFYPEhsICwoFTRIbVkAeElIGEgIPCVgJTRdSBhpYVUEEAEVRSUIJWkcbR1UMXF4RRB8VAwoFXVhaAQVSWFsOAlhY
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectgourgoldpieceso.com
Fingerprint2F:6C:A4:39:D1:55:B5:C3:E1:69:AB:2B:9A:94:A6:6C:EA:FB:0A:F9
ValidityWed, 13 Sep 2023 06:21:57 GMT - Tue, 12 Dec 2023 06:21:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /YW83NGtOUFRHVi4ncVsyGy57ZgcZDnZTHyQ4YWUhJTp1Zj0gPhFAAgVSDg1fWFYPEhsICwoFTRIbVkAeElIGEgIPCVgJTRdSBhpYVUEEAEVRSUIJWkcbR1UMXF4RRB8VAwoFXVhaAQVSWFsOAlhY HTTP/1.1
Host: gourgoldpieceso.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Mon, 25 Sep 2023 05:32:29 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=etgU8Hr25lDpWwtl5P9L3g16mlNBxCrpMq52IOAmdxMbdYMXF7Q3dHNB1pbJaYKIzzcmGqwoo6drhn4nShicRM9p6tfK%2BBzUEj8fM0dkPU%2Bl2572xFMogCyzN5OvPXF%2B0%2BN0nPqV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e30bd9eab4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
idohethisisathllea.com/ZHlwMnEFGxNfTgVEEhQEFhVNF0MiXEJ0FVUfSUYaFRAJUEQFQEccEggWBVYXFhYeRl8KHAQXQyIXKkg7NR04fzQ8LURhJSY3Enw0CDIoVSsULSVGMzM6PVA5NhogfSJQGjMABQwzJAMUPCg9QTg1HiV4MFAhJ1U7Vj4yezsyLkFhNwMVIlAkMi8yXigdKiVWMzYQMVA2IgkSezAxODhZFgk7B3MiIjolZCUDCRR5GVQfMwM/VSsaZCIsPjJgIDIaEXk0MjohVTQ3LCV0KTwTG1MzDEEoaxo1NShFIDQoG1YyJSs6YCAyHTF4HSI4OlU/Ay0mAykjSl1kNjUOMmo8HEETYxYlLiJZPzM4HXA3NUgpaigPKCZ2GiVINVoGAj9Cewg1FSl2Fw8rJncWXRFWWAILFwAPGD4WHGtANTdJXSI8Kx8
200 OK 1.2 kB URL GET HTTP/2 idohethisisathllea.com/ZHlwMnEFGxNfTgVEEhQEFhVNF0MiXEJ0FVUfSUYaFRAJUEQFQEccEggWBVYXFhYeRl8KHAQXQyIXKkg7NR04fzQ8LURhJSY3Enw0CDIoVSsULSVGMzM6PVA5NhogfSJQGjMABQwzJAMUPCg9QTg1HiV4MFAhJ1U7Vj4yezsyLkFhNwMVIlAkMi8yXigdKiVWMzYQMVA2IgkSezAxODhZFgk7B3MiIjolZCUDCRR5GVQfMwM/VSsaZCIsPjJgIDIaEXk0MjohVTQ3LCV0KTwTG1MzDEEoaxo1NShFIDQoG1YyJSs6YCAyHTF4HSI4OlU/Ay0mAykjSl1kNjUOMmo8HEETYxYlLiJZPzM4HXA3NUgpaigPKCZ2GiVINVoGAj9Cewg1FSl2Fw8rJncWXRFWWAILFwAPGD4WHGtANTdJXSI8Kx8
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerAmazon
Subjectidohethisisathllea.com
Fingerprint85:DD:DD:23:88:CB:8B:EE:0A:E8:28:AD:8D:6A:15:CA:6B:85:DA:DF
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3025), with no line terminators
Hash 87c0eec19c457af7e4e4256b9967fdea
6d461950327874226d5f0ea6f7bf5a2b86bd619a
363f7b6ddcbe47fe489b36b0bcfce872ea9b7f072090f0ebb7ef90370eba94f8
GET /ZHlwMnEFGxNfTgVEEhQEFhVNF0MiXEJ0FVUfSUYaFRAJUEQFQEccEggWBVYXFhYeRl8KHAQXQyIXKkg7NR04fzQ8LURhJSY3Enw0CDIoVSsULSVGMzM6PVA5NhogfSJQGjMABQwzJAMUPCg9QTg1HiV4MFAhJ1U7Vj4yezsyLkFhNwMVIlAkMi8yXigdKiVWMzYQMVA2IgkSezAxODhZFgk7B3MiIjolZCUDCRR5GVQfMwM/VSsaZCIsPjJgIDIaEXk0MjohVTQ3LCV0KTwTG1MzDEEoaxo1NShFIDQoG1YyJSs6YCAyHTF4HSI4OlU/Ay0mAykjSl1kNjUOMmo8HEETYxYlLiJZPzM4HXA3NUgpaigPKCZ2GiVINVoGAj9Cewg1FSl2Fw8rJncWXRFWWAILFwAPGD4WHGtANTdJXSI8Kx8 HTTP/1.1
Host: idohethisisathllea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1178
date: Mon, 25 Sep 2023 05:32:29 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 9ee3245d13c492e7e4abb0f2de012802.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: nPwrfnRwJRRq0pKp-iPy9MldkqvuGPIkE1MU3jL8W0mPvrqV6cY9eQ==
X-Firefox-Spdy: h2
ocsp.buypass.com/
1.7 kB IP
ASN #20940 Akamai International B.V.
Hash a4c30bf4dcc764f552af5d8feef6980d
6cb346d198aa49faf8d45695dfaeb22bd16b2826
d7c49188e64cab098027cd13d075154cdc22055e8768bd7e565cdc1814259532
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: ecc52fac-10e9-4a7b-94de-b944919a9b46
Content-Length: 1701
Date: Mon, 25 Sep 2023 05:32:29 GMT
Connection: keep-alive
limurol.com/ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=230925003232897b9cbf214af7a75c45c8dd; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
CHCK=1; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
limurol.com/ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
UID=23092500321d24dbc9524b4dfd8d96316ea4; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
limurol.com/ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1995559/?pb=7723bca86f2f8a3ae37153ad39e67c8c1695627149&psp=MV4wbKIzyohF7r-VifT0C_JkS2rqp8JU2tUdymE8hCeob9pgkvXdJtzNM6ylppyB9zrEBVwERujTYIwVFJCUe0K6XI41L0Q9dPhs7bWQY5gaP4pP7fxIkknGMmiTLM97nQ_fY0Pdyb198oeCr0-SvYQsWseTKPNFm0IDUkIUfvnMA58AHju_VjOduNA4sNZrJZKncie7ayi29lOJmjP89twxPA9RtPbVewWePqFr2-ZAZIndjw73mWi0t0v0rVq9TvqfmkGjz-XcuKjLkRCy_AnieCIITYZfJXBf9qyIK9zka5D0U14c8cDDHdjAtjM6tr5_mliDXInwu9NpIQnazKYbF_lbJyZgABzh_9FdCOxu-Z0og9YW8a1qlVTE4Kow2c5NY9qCzBr63RijH9iToPaev2-8GR9hkgMBjgnipl2iYBEw3py0I_OliPUYKnd47nsQ0ixLqAuF77LJA7zseWjlh2psSBSbg8N8YgpeE449j1bQBWblZe7A3-pAWT67FwYHpfcdPAN-hh-59x0sgR2TVtVGuXQjdFMSA5Xa6WNXcVM1gFYwApI1Pp0tna2VAc8AjYacc-0TyNiqtUZdmRjZzbYogkfeVH4HY9-X83Ztz3fke5m_zXyl4gxH_A8z3sUy-sIt4eJYgmIYRKPtg2tES1sm84764SPOeLeARQtA3bLCaFXtyosxMbst6eWWLMC0LmGIXUfPr2eYjp3-oogviWQWcSRSto0aOPUDZUHTU-4v3MDoPGELgHVHhIQPWSWM23O7qqcP5i18ZWPeKajUw81J2dwZNE986MDqXPSs4Gsi-aVn3y8lyX4TwxB36Ct9yhIQqr0nBBsarndl_8wQwDajvqkgSZYnIfQbw3xkNG2qzOxE580RWYKkYYSJVqyHFUCJwCyt_GzTZXDDhvcf3rf1Ch2vCZH7TDa4iB_maljdzbirgcAYt0vbM5LbrX_w_Lu2uaur6ugNYXXYGYkxAPYaiPrkgR5PKReEFcHkZ18=&im=1&cb=_clemsh3vqumha2e8k09fog&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
UID=23092500322c9bf8a740be45038ff22eb502; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint77:2B:76:51:D0:51:70:02:2E:BF:B7:9B:02:8B:5A:A4:91:FA:0B:9E
ValidityMon, 11 Sep 2023 08:34:11 GMT - Sun, 10 Dec 2023 08:34:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 0fdd8b186f0719a0403ec74389f5229d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 25 Sep 2023 05:32:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XFhhAGT3rR%2Bp%2Frvd%2BbMv8UKZQVGizdZnAjMOWYPHmxYSobmm%2FzS8syx34Srdb%2FtQ5FVtbyftzPwsrnMPH9zeyBZPcFDADXh0oJq5A8PyO83si8eVcsBrJ8Mv7wbgkzUGeGuDoPWflu3Zy10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30e7afb569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
d1f9tkqiyb5a97.cloudfront.net/nZzJQdHMEXT4STBNbNElKXgZpTUtBWCMbHRcPOS4cC2thJT1eXQMsIQgUJA4XWgJ2GBIJVW1SFglRbUVVBlYySUdBRiAbGFpbIAUAHkgmBwASFCUVTgpdKh0fC1N1RjVSHGBRQVcaKEVCQgESUUFXXjkaBh8XYkQLXwQPQkdCARJRQVdAJlFAJgNgTV1XG3-VGQwBXMx8cQgAWRkNWAmBFQ1YXYkQVDkA1EhwfF2IyQlYDfkRVEg9h
532 B URL d1f9tkqiyb5a97.cloudfront.net/nZzJQdHMEXT4STBNbNElKXgZpTUtBWCMbHRcPOS4cC2thJT1eXQMsIQgUJA4XWgJ2GBIJVW1SFglRbUVVBlYySUdBRiAbGFpbIAUAHkgmBwASFCUVTgpdKh0fC1N1RjVSHGBRQVcaKEVCQgESUUFXXjkaBh8XYkQLXwQPQkdCARJRQVdAJlFAJgNgTV1XG3-VGQwBXMx8cQgAWRkNWAmBFQ1YXYkQVDkA1EhwfF2IyQlYDfkRVEg9h
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (742), with no line terminators
Hash 40a5fc3ec62b7cc94e118948ecda3ec2
b78f113bc2f7abb64185d516e53a30ceb7e9657c
d92d6933904fbe03ba1f38e8f7b254caec15ffe2923ccf1d7a2a6eb4772c997e
GET /nZzJQdHMEXT4STBNbNElKXgZpTUtBWCMbHRcPOS4cC2thJT1eXQMsIQgUJA4XWgJ2GBIJVW1SFglRbUVVBlYySUdBRiAbGFpbIAUAHkgmBwASFCUVTgpdKh0fC1N1RjVSHGBRQVcaKEVCQgESUUFXXjkaBh8XYkQLXwQPQkdCARJRQVdAJlFAJgNgTV1XG3-VGQwBXMx8cQgAWRkNWAmBFQ1YXYkQVDkA1EhwfF2IyQlYDfkRVEg9h HTTP/1.1
Host: d1f9tkqiyb5a97.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idohethisisathllea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 532
date: Mon, 25 Sep 2023 05:32:30 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nGFhOj_DEAlcEhOIV7eCaFKaWpJ13Njy6ssX8m_h11PgvWOu1brkvA==
X-Firefox-Spdy: h2
twigdose.com/pixel/purst?dl=0&th=0&sc=0&rs=2517&rd=2517&fd=1816&bv=23.9.v.3&tmpl=70
200 OK 0 B URL GET HTTP/1.1 twigdose.com/pixel/purst?dl=0&th=0&sc=0&rs=2517&rd=2517&fd=1816&bv=23.9.v.3&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecttwigdose.com
FingerprintC6:A5:B0:AB:80:FC:B9:82:45:F2:A6:ED:8A:A7:CB:2B:15:57:F4:B2
ValiditySat, 16 Sep 2023 03:10:14 GMT - Fri, 15 Dec 2023 03:10:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=2517&rd=2517&fd=1816&bv=23.9.v.3&tmpl=70 HTTP/1.1
Host: twigdose.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 25 Sep 2023 05:32:30 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
twigdose.com/76/22/f2/7622f20a76c793f0c2bacc82a57fc0f0.js
200 OK 13 kB URL GET HTTP/1.1 twigdose.com/76/22/f2/7622f20a76c793f0c2bacc82a57fc0f0.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecttwigdose.com
FingerprintC6:A5:B0:AB:80:FC:B9:82:45:F2:A6:ED:8A:A7:CB:2B:15:57:F4:B2
ValiditySat, 16 Sep 2023 03:10:14 GMT - Fri, 15 Dec 2023 03:10:13 GMT
File type ASCII text, with very long lines (37150), with no line terminators
Hash 451875c551ba9b047eb9ad449f9e7af9
7ef863ac682d943b95db516d8febbb5a8a308565
e3fb78471f7cc0f712d64f927501d29c532ca30aaf02f417598f993b7c8df132
GET /76/22/f2/7622f20a76c793f0c2bacc82a57fc0f0.js HTTP/1.1
Host: twigdose.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 25 Sep 2023 05:32:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 54200999b75105e2411bce538c1be46c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
streamdav.com/modules/desktopPlayer/miniModules/video.js
200 OK 1.1 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/video.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
Hash ed8c3fe1cf2b7d42e591fc173e0fbc3e
ca5ba501a59b9ca15b8274448bd0de175585abae
ea14e928d854a14fedfb3f75e9338685e1f90a2d837ba9bfe5fc4ab4a36fac11
GET /modules/desktopPlayer/miniModules/video.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"799-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0EC%2BQNN8TwxbzStBSN%2BQ2RBylGEas3dpZSlGdbaE9Qpni96OpC0H5E%2F98hfqlCXXVEhjKHfSEg6nvKjcCW%2B14bxGCpEktcr03IE26%2F7nElfwy5eJzIVTQwsP3M%2Fmiwn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30eb88d56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
my.rtmark.net/gid.js?userId=f5lt318253dt377310293l1d6nadz774
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=f5lt318253dt377310293l1d6nadz774
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT
File type JSON data\012- , ASCII text
Hash 43cc88cb5600414f7e10fa7e4a490a95
b2c83f1a4a584954a8f5e61f2bdf73e5de632d00
00b8266db6e68ba294e80c1f3f8d1825b932f391c01808ea0b72ebf962e6e93b
GET /gid.js?userId=f5lt318253dt377310293l1d6nadz774 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f5lt318253dt377310293l1d6nadz774; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/index.js
200 OK 799 B URL GET HTTP/3 streamdav.com/modules/desktopPlayer/index.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
Hash 8b45fb2d2cd89d56dfeaa7c394e52657
88ea919fc479f0c072c6e22997c3caef2a4487e2
4cc28dbccd9b54053d2ff5888538ccaa231bf631fcb8b6053ba1f57961273321
GET /modules/desktopPlayer/index.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"44a-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rCWBn6hQDL5yEPMjtnFG3mlp5Uzl9dyLW4o5GBoi04QsRByPkwafhSYHtlxEMtWtiWOMUL%2BPKyQ%2FFw%2FoEYMHeEGvixqGeNhMTRJ6R9AQ%2B5ymoUtppqb6cjpd72f53xsG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30dbf9656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
my.rtmark.net/gid.js?userId=377a48a8ee824ff2b6e5bc592facd818
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=377a48a8ee824ff2b6e5bc592facd818
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT
File type JSON data\012- , ASCII text
Hash 918dde1d0ee2af0ef1c4cf92cdb3fdd8
757c5f59791d040dec4805dac8cee9507b6e716f
aaa031ab258a1b0a0892f4770bd33c78579f037d4d3e101308f19fc26ddd9e90
GET /gid.js?userId=377a48a8ee824ff2b6e5bc592facd818 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=377a48a8ee824ff2b6e5bc592facd818; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ibrapush.com/pfe/current/tag.min.js?z=6311483
200 OK 6.7 kB URL GET HTTP/2 ibrapush.com/pfe/current/tag.min.js?z=6311483
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 4dc51d7bd02147c3ebf59fbd8512c593
1fc147a5e1ba83c9905349810ed6bfedbd0ec45d
86766f354b179ff75f4270bc8ec4a70089d5e2bc42bbb9a5b800f32b1d038268
GET /pfe/current/tag.min.js?z=6311483 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-33d2"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
link: <https://my.rtmark.net>; rel=dns-prefetch;, <https://my.rtmark.net>; rel=preconnect
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 3b7403306365b481a905b872a4a8fe8d
848d8b54a1b0fa0f473fe13bbabcb7872c0a6067
f7ffcd2b2deb0aafb5ab3eca136e1bfa6560686bf31f6982afeb0535dfd70bd7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 3b7403306365b481a905b872a4a8fe8d
848d8b54a1b0fa0f473fe13bbabcb7872c0a6067
f7ffcd2b2deb0aafb5ab3eca136e1bfa6560686bf31f6982afeb0535dfd70bd7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ossmightyenar.net/401/6311482
200 OK 35 kB URL GET HTTP/2 ossmightyenar.net/401/6311482
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint75:BB:EE:5D:84:C1:37:EF:9F:A0:FC:E1:55:C0:DF:C2:CD:DB:73:24
ValiditySun, 10 Sep 2023 05:22:07 GMT - Sat, 09 Dec 2023 05:22:06 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash fc89a142e9dbddbcbbef5b774e484a91
db3f064e7150127707f5ce10e69994e97e6fa1cf
9dd621566cfac14ad59d916e6927198b7bdcaff9d964246315e04a5c4bb05fb8
GET /401/6311482 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
x-trace-id: 34b6289d27e21dfef659b934fb0c7c6c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=d4667721c78f4c69ba564350a0ecd3ca; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint2F:C1:71:0A:05:D9:0F:38:EF:D1:16:F7:50:AF:41:48:6B:F9:BA:B5
ValidityMon, 04 Sep 2023 08:23:30 GMT - Mon, 27 Nov 2023 08:23:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:zoYixxphQNkkIcQ22gr8U5sy4fY6SA:K78E_6vPBav2OO5s; Expires=Wed, 24-Sep-2025 05:32:31 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 25 Sep 2023 05:32:31 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdCe6D9W_sHqYZevAiv8j1Ylmg9eLsAUXJBLgJ_UL0L34O_kRMk-24QvDiYDgtoQmcdUIk2ag
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-acjTqQodZrVF6yNVCnYBuA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eedsaung.net/1?z=6311481
200 OK 49 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecteedsaung.net
Fingerprint39:1A:51:39:17:5B:6C:AA:21:3B:A2:96:D4:95:44:AB:8E:75:75:65
ValiditySun, 13 Aug 2023 02:55:57 GMT - Sat, 11 Nov 2023 02:55:56 GMT
File type ASCII text, with very long lines (41880)
Hash 676f903073526502838b4c463f460dab
f595c402876eb37661656aca72ee1361f6403293
665abbf44bef21d3f27c5e05446d447f08fe640ea0d8504b946ac0aebe67d3ef
GET /1?z=6311481 HTTP/1.1
Host: eedsaung.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 0a835971925e4252992aac2fdb10d200
access-control-expose-headers: X-Sc
x-sc: wz4fD8xRiQfjMVfjszjUYXO5c9jR459-6nWgnNOF_paHiNdGL81Lvv9gOWHjmMompeKhObKsd7TMrrD02ZzwYKrGn9A=
set-cookie: scm=1; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
OAID=7688d390e6104ea09b5d03e4ea5e8be6; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
oaidts=1695619951; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8b73efbd091b4679b9c7e8827650a8a1
050808743dbb64f3ceb2c6449a3a6b30d5a9a4e0
f0650f0c5b63e420109a8fca37be24b55a36f9708d66b3d3cb0b8d07621d63d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
eedsaung.net/9?z=6311481&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=f5lt318253dt377310293l1d6nadz774
200 OK 0 B URL POST HTTP/2 eedsaung.net/9?z=6311481&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=f5lt318253dt377310293l1d6nadz774
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecteedsaung.net
Fingerprint39:1A:51:39:17:5B:6C:AA:21:3B:A2:96:D4:95:44:AB:8E:75:75:65
ValiditySun, 13 Aug 2023 02:55:57 GMT - Sat, 11 Nov 2023 02:55:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=6311481&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=f5lt318253dt377310293l1d6nadz774 HTTP/1.1
Host: eedsaung.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
471 B IP
Hash 412b95fd43f6d5ba279c30e9fa826196
a6943ea5dbf097920c466c78ae52a04740e349e3
bacbf67871c926f808fea7d53e909fb4b98df5271e55b40e5dcf0a8180221c7b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 25 Sep 2023 05:32:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 24 Sep 2023 04:15:39 GMT
Expires: Sun, 01 Oct 2023 04:15:38 GMT
Etag: "a6943ea5dbf097920c466c78ae52a04740e349e3"
Cache-Control: max-age=513508,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80c0e319da4a5691-OSL
soumehoo.net/400/6311480
200 OK 165 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectsoumehoo.net
FingerprintF5:39:03:CC:85:44:8A:CC:6A:B3:0D:B7:57:C8:AB:4E:A3:FE:EB:66
ValidityWed, 13 Sep 2023 09:58:44 GMT - Tue, 12 Dec 2023 09:58:43 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 165 kB (164855 bytes)
Hash 7c831f9a9a15d6cd716355eb60cc10ff
99a1f6d868c675eb6056f380c657a9b2539ff940
a58c466b1187952f478bae850e8c9a94c00a5586167415514a9b8be515fa6fc2
GET /400/6311480 HTTP/1.1
Host: soumehoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
x-trace-id: 0ef764fdac310cdea1d783ae333830ac
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=56cf6dc75f3d430596f86d2861d6c392; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ibrapush.com/custom
200 OK 0 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
ibrapush.com/custom
200 OK 39 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Content-Type: application/json
Content-Length: 377
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 24bd24cb989a418dd037a8d3698c4e3d
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
soumehoo.net/500/6311480?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 0 B URL GET HTTP/2 soumehoo.net/500/6311480?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectsoumehoo.net
FingerprintF5:39:03:CC:85:44:8A:CC:6A:B3:0D:B7:57:C8:AB:4E:A3:FE:EB:66
ValidityWed, 13 Sep 2023 09:58:44 GMT - Tue, 12 Dec 2023 09:58:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/6311480?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: soumehoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
eedsaung.net/11?rnd=1254619714&z=6311481&b=18598989&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=vtw3ldjIceSNz8SdiNASqi6hWCiNa3bR3CBd4NlCczSRSEtw7W9gMqiC6Z8y_fItiATjvvRq1vkTg-e_6lmLmAPKB7mXdE6ufkn-OjH4TwFsL2jVY73RNXz3ppJgJ6yG4ztGgROJmg2Iq6b-1ThX7FrVf0Il-Zme_evGIHZCK2_T7frVb0SdtR7JVkAjGLLpF6gvqG7DsGWtUFzIwwDAqukPm_QtG7d_EVEb4Xo3qCLVggRrCM89nBYwed5-w2rYozVfdFQnEcZGmMhgHbZYN_HptWttmhQcJ1ihE7hnUL6VbJdAuwDUhUwEqV4I4TLToSy4yvOS16iAFRQSVBl3sgYu-u4Bmi5LMCHY3RUCqJmJCIRqNKafJc2MzPcvo30Dudo0R8MDtIXafvxqTIaupc59teQCG8-ApSz857s0CI8GLhsQwoDGDL4z3WuPrWiQin0CqsoYgOhqfAhEgzSrboUwug0BVDeLM3Lkd0qkUK3uor01sZx1p6GQIiwp8rvVwHtdPK05VGdSQEoNZYvzySPLWaNsGyhcNeQ8fkOHIE7TAxTqJrX6rvahXq-lWeghquEqQn15sftTA0TatSArZ6Xj7_l_KyOBydE9W1ZeeMlq9KZ_WZsCHddyks34zBfxFe8DbDh6IxZNOD5U3FI8-CCkbbWohVXCyqUEcQ==&ruid=9f14b163-e3f8-4911-b68a-83a8c903f64b&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ot=137
200 OK 0 B URL GET HTTP/2 eedsaung.net/11?rnd=1254619714&z=6311481&b=18598989&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=vtw3ldjIceSNz8SdiNASqi6hWCiNa3bR3CBd4NlCczSRSEtw7W9gMqiC6Z8y_fItiATjvvRq1vkTg-e_6lmLmAPKB7mXdE6ufkn-OjH4TwFsL2jVY73RNXz3ppJgJ6yG4ztGgROJmg2Iq6b-1ThX7FrVf0Il-Zme_evGIHZCK2_T7frVb0SdtR7JVkAjGLLpF6gvqG7DsGWtUFzIwwDAqukPm_QtG7d_EVEb4Xo3qCLVggRrCM89nBYwed5-w2rYozVfdFQnEcZGmMhgHbZYN_HptWttmhQcJ1ihE7hnUL6VbJdAuwDUhUwEqV4I4TLToSy4yvOS16iAFRQSVBl3sgYu-u4Bmi5LMCHY3RUCqJmJCIRqNKafJc2MzPcvo30Dudo0R8MDtIXafvxqTIaupc59teQCG8-ApSz857s0CI8GLhsQwoDGDL4z3WuPrWiQin0CqsoYgOhqfAhEgzSrboUwug0BVDeLM3Lkd0qkUK3uor01sZx1p6GQIiwp8rvVwHtdPK05VGdSQEoNZYvzySPLWaNsGyhcNeQ8fkOHIE7TAxTqJrX6rvahXq-lWeghquEqQn15sftTA0TatSArZ6Xj7_l_KyOBydE9W1ZeeMlq9KZ_WZsCHddyks34zBfxFe8DbDh6IxZNOD5U3FI8-CCkbbWohVXCyqUEcQ==&ruid=9f14b163-e3f8-4911-b68a-83a8c903f64b&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ot=137
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecteedsaung.net
Fingerprint39:1A:51:39:17:5B:6C:AA:21:3B:A2:96:D4:95:44:AB:8E:75:75:65
ValiditySun, 13 Aug 2023 02:55:57 GMT - Sat, 11 Nov 2023 02:55:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=1254619714&z=6311481&b=18598989&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=vtw3ldjIceSNz8SdiNASqi6hWCiNa3bR3CBd4NlCczSRSEtw7W9gMqiC6Z8y_fItiATjvvRq1vkTg-e_6lmLmAPKB7mXdE6ufkn-OjH4TwFsL2jVY73RNXz3ppJgJ6yG4ztGgROJmg2Iq6b-1ThX7FrVf0Il-Zme_evGIHZCK2_T7frVb0SdtR7JVkAjGLLpF6gvqG7DsGWtUFzIwwDAqukPm_QtG7d_EVEb4Xo3qCLVggRrCM89nBYwed5-w2rYozVfdFQnEcZGmMhgHbZYN_HptWttmhQcJ1ihE7hnUL6VbJdAuwDUhUwEqV4I4TLToSy4yvOS16iAFRQSVBl3sgYu-u4Bmi5LMCHY3RUCqJmJCIRqNKafJc2MzPcvo30Dudo0R8MDtIXafvxqTIaupc59teQCG8-ApSz857s0CI8GLhsQwoDGDL4z3WuPrWiQin0CqsoYgOhqfAhEgzSrboUwug0BVDeLM3Lkd0qkUK3uor01sZx1p6GQIiwp8rvVwHtdPK05VGdSQEoNZYvzySPLWaNsGyhcNeQ8fkOHIE7TAxTqJrX6rvahXq-lWeghquEqQn15sftTA0TatSArZ6Xj7_l_KyOBydE9W1ZeeMlq9KZ_WZsCHddyks34zBfxFe8DbDh6IxZNOD5U3FI8-CCkbbWohVXCyqUEcQ==&ruid=9f14b163-e3f8-4911-b68a-83a8c903f64b&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ot=137 HTTP/1.1
Host: eedsaung.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: scm=1; OAID=f5lt318253dt377310293l1d6nadz774; oaidts=1695619951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 6711d64e85d58268bae920a135d29495
access-control-expose-headers: X-Sc
set-cookie: OAID=f5lt318253dt377310293l1d6nadz774; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
oaidts=1695619951; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ossmightyenar.net/500/6311482?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 0 B URL GET HTTP/2 ossmightyenar.net/500/6311482?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint75:BB:EE:5D:84:C1:37:EF:9F:A0:FC:E1:55:C0:DF:C2:CD:DB:73:24
ValiditySun, 10 Sep 2023 05:22:07 GMT - Sat, 09 Dec 2023 05:22:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/6311482?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
d3x2.myfastcdn.com/www/images/311072075b022b0ea412943d7ac0e146.png?width=984
200 OK 20 kB URL GET HTTP/2 d3x2.myfastcdn.com/www/images/311072075b022b0ea412943d7ac0e146.png?width=984
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint9B:E0:88:3B:1B:31:56:B9:D9:94:4F:4F:54:13:FB:0B:2F:17:37:7F
ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5bbfc8fe182f986435e32baba86ca388
6a1b169c89e509206a109d72d41fcfdf05b42832
b3cf8e957c2767610ff2ab4e173bdec220ead95ba8731c684d6942a86c1a2609
GET /www/images/311072075b022b0ea412943d7ac0e146.png?width=984 HTTP/1.1
Host: d3x2.myfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: image/webp
content-length: 19960
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
edge-cache-tag: 421737980665494638480926429812291330760,293268836313657461801723386032005474223,29ecf9b93bbf306179626feeda1fab70
etag: "a8bcd5a024bbccadb1117a313e8ae607"
last-modified: Tue, 12 Sep 2023 09:15:50 GMT
req-referer: https://abysscdn.com/
status: 200 OK
surrogate-reporting: width=984,height=656,owidth=492,oheight=328,obytes=271702
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 2986
x-backend-name: LA_nlb203
cache-control: max-age=86400
age: 68386
vary: ImageFormat, Accept-Encoding
x-vcl-time-ms: 1
expires: Mon, 25 Sep 2023 10:32:39 GMT
timing-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 80c0e31b58261c0e-OSL
X-Firefox-Spdy: h2
eedsaung.net/9?z=6311481&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=f5lt318253dt377310293l1d6nadz774
200 OK 2.8 kB URL POST HTTP/2 eedsaung.net/9?z=6311481&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=f5lt318253dt377310293l1d6nadz774
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecteedsaung.net
Fingerprint39:1A:51:39:17:5B:6C:AA:21:3B:A2:96:D4:95:44:AB:8E:75:75:65
ValiditySun, 13 Aug 2023 02:55:57 GMT - Sat, 11 Nov 2023 02:55:56 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6708), with no line terminators
Hash 3698c6cc4663eac923c57b34ef240a5b
b70b1837db1d484933bf803545d43b392f6eb86e
f918a5ec5ac07cb14b76a62e66a0d2a109909face8f37e375e4e0991589eca4d
POST /9?z=6311481&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=f5lt318253dt377310293l1d6nadz774 HTTP/1.1
Host: eedsaung.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 115
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: scm=1; OAID=7688d390e6104ea09b5d03e4ea5e8be6; oaidts=1695619951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: ff2cbbb3f4fd1512b4e35c2d5c4b8f78
access-control-expose-headers: X-Sc
set-cookie: OAID=f5lt318253dt377310293l1d6nadz774; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
oaidts=1695619951; expires=Tue, 24 Sep 2024 05:32:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT
File type JSON data\012- , ASCII text
Hash b36561b9b4d6779177ec7c7f4ab0636b
ba8bdf487b10180f5a3447eb4f53c8d5f8ee07f9
11dd6898c2e01a2863577a291538d740a2ea0129d79993a73b3a3a05b5d6769b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Content-Type: application/json
Content-Length: 512
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: 83a000ec56cfc241f4e281c7f9ed4ec0
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ossmightyenar.net/500/6311482?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 1.0 kB URL GET HTTP/2 ossmightyenar.net/500/6311482?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint75:BB:EE:5D:84:C1:37:EF:9F:A0:FC:E1:55:C0:DF:C2:CD:DB:73:24
ValiditySun, 10 Sep 2023 05:22:07 GMT - Sat, 09 Dec 2023 05:22:06 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1232), with no line terminators
Hash 37d34cdaeb4c4c41dab656b7ff81ce12
3486bc09d2314621e28a25f21c208195bf895021
9d9eca87775c2fb12a048e24125d1a5676e75d5f0e2d4d7a7101bf34608e8cd4
GET /500/6311482?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: OAID=d4667721c78f4c69ba564350a0ecd3ca
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
x-trace-id: be11f10e67a7d1f856bd2bd630d67bd7
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: https://streamdav.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=f5lt318253dt377310293l1d6nadz774; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ibrapush.com/event
200 OK 94 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type JSON data\012- , ASCII text
Hash 57b1ea3895e3427f13f805b19636ffd6
24bbb76743d92acab1c368a8f3889d50c31c56b5
f183c031b8aa6cea90a0c97a3813f1128d22c6fc777598c23f2527a4a00e15cb
POST /event HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Content-Type: application/json
Content-Length: 1695
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: 175d33c9ce7749478baa73f4e6233fa9
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
offerimage.com/www/images/008ffa94da51bbf79ec003525f69e7d2.png
200 OK 60 kB URL GET HTTP/2 offerimage.com/www/images/008ffa94da51bbf79ec003525f69e7d2.png
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 008ffa94da51bbf79ec003525f69e7d2
cd241aa85c8f6d60b32997ad16d288e0312ea23a
21059b3c1e16b41f9dbe86185055a2d7b0a85919c77774d5b8ec1611112bc540
GET /www/images/008ffa94da51bbf79ec003525f69e7d2.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: image/png
content-length: 59668
last-modified: Sat, 16 Sep 2023 19:35:32 GMT
etag: "65060384-e914"
expires: Mon, 25 Sep 2023 21:26:10 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 29182
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e31c793e56cc-OSL
X-Firefox-Spdy: h2
offerimage.com/www/images/7d763937692f59aea0578ffe58c10ee0.jpeg
200 OK 14 kB URL GET HTTP/2 offerimage.com/www/images/7d763937692f59aea0578ffe58c10ee0.jpeg
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 7d763937692f59aea0578ffe58c10ee0
b3a4cc4fd1a0d8319e59057e535b0b19f1a3b35b
2d7300c572db1683cbc8071be4bbaf31b00954193f6f82d453c99a7a58bd7620
GET /www/images/7d763937692f59aea0578ffe58c10ee0.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: image/jpeg
content-length: 13778
cache-control: max-age=86400
cf-bgj: h2pri
etag: "63888441-35d2"
expires: Mon, 25 Sep 2023 11:15:03 GMT
last-modified: Thu, 01 Dec 2022 10:38:57 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 65849
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e31c794356cc-OSL
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=a43fbaf2398a4bb1abc589cad2c45d0d&zoneId=6311483&checkDuplicate=true&ymid=&var=
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?pub=0&userId=a43fbaf2398a4bb1abc589cad2c45d0d&zoneId=6311483&checkDuplicate=true&ymid=&var=
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT
File type JSON data\012- , ASCII text
Hash 918dde1d0ee2af0ef1c4cf92cdb3fdd8
757c5f59791d040dec4805dac8cee9507b6e716f
aaa031ab258a1b0a0892f4770bd33c78579f037d4d3e101308f19fc26ddd9e90
GET /gid.js?pub=0&userId=a43fbaf2398a4bb1abc589cad2c45d0d&zoneId=6311483&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Cookie: ID=377a48a8ee824ff2b6e5bc592facd818
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=377a48a8ee824ff2b6e5bc592facd818; expires=Tue, 24 Sep 2024 05:32:32 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT
File type JSON data\012- , ASCII text
Hash 1da33078f68dc300c663aed5c4bc91ec
60b6a760d617ef24cfa4c5f2a665076afc781061
8a2c755942d1a4040fd100dc5c6a6d65d7fa5e16c5e1e4725f95e4a904200281
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Content-Type: application/json
Content-Length: 512
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: 603afcedf5f5b9ab93f5db15a7e9e0fb
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhd34Q2Id9uAs8n5t3XM9PigsAjJBSsfJ8mGgGDgWNTUWOsKIvhn5_LE8w-J5O7-BOfWAjQ__Q
302 Found 404 B URL GET HTTP/3 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhd34Q2Id9uAs8n5t3XM9PigsAjJBSsfJ8mGgGDgWNTUWOsKIvhn5_LE8w-J5O7-BOfWAjQ__Q
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (394)
Hash 6db1e774240ecce2aaf43d756a911983
18690755b499e674280312e1967996d0c2fcd221
2002d1aa34328dae9f22078e06eb6ada095249baa3208a7eb54c8ad83075a442
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhd34Q2Id9uAs8n5t3XM9PigsAjJBSsfJ8mGgGDgWNTUWOsKIvhn5_LE8w-J5O7-BOfWAjQ__Q HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:sTwozDIjESxOEoXrT4ROixfXH-fwuw:694jtdx4lG6ciTCG;Path=/;Expires=Wed, 24-Sep-2025 05:32:32 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 25 Sep 2023 05:32:32 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd2hJW5v-Rc7NKsqN9zHTM6Ks52gQhmhoXJYdPOzH4lFUvi08BPFSjKv69SFk_FVvGT1IKE&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2096702701%3A1695619952208995&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-bCPCBMFACMNyzOSxPDYc6Q' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 404
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pogothere.xyz/asd100.bin
200 OK 105 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 105 kB (104802 bytes)
Hash df6a0c9dd3563674f4509caa14718dcd
611f2d0734a76547efa6f700b1d906f305e567f2
813bcb81316cc8fd58731a0045008eee73bb273b52b91ba79360603832485f51
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 966
last-modified: Mon, 25 Sep 2023 05:16:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VlqIZhXGFQojVbwL4r0UVseYA39RWz1UOUIl%2B2Kk3v60%2BMgqImql2rZJc%2F0aNsXFAhFMdmwVD1hrQSU9iQWYtLMhKpzwwEItoo0I9Kz8kIJIMWVoxKyxChEtjZlFPtC2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e3198c3588a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ibrapush.com/custom
200 OK 39 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Content-Type: application/json
Content-Length: 374
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: dd2468fbba56d6d54f932fa84180d69f
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ibrapush.com/custom
200 OK 39 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Content-Type: application/json
Content-Length: 734
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 6226e4219ed8377c91b4001714c5b826
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
gourgoldpieceso.com/bGhlMWlDVwZCVDhbIwQLKiJdYwJdPjx5ESk7I0UbCQMncD5eMUNFAAhVXAhdVVFdFxkFDFgATx8cBEUcH1VWAVldTgxfDwNVVQFZXU4TDFhCW1EfWlhGVRccUV1cB1FZXFEDWl1fUAVYXU4RQQgLVVQXGRgcCQxYWlFQB1hVUVACWV1R
204 No Content 0 B URL POST HTTP/3 gourgoldpieceso.com/bGhlMWlDVwZCVDhbIwQLKiJdYwJdPjx5ESk7I0UbCQMncD5eMUNFAAhVXAhdVVFdFxkFDFgATx8cBEUcH1VWAVldTgxfDwNVVQFZXU4TDFhCW1EfWlhGVRccUV1cB1FZXFEDWl1fUAVYXU4RQQgLVVQXGRgcCQxYWlFQB1hVUVACWV1R
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectgourgoldpieceso.com
Fingerprint2F:6C:A4:39:D1:55:B5:C3:E1:69:AB:2B:9A:94:A6:6C:EA:FB:0A:F9
ValidityWed, 13 Sep 2023 06:21:57 GMT - Tue, 12 Dec 2023 06:21:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bGhlMWlDVwZCVDhbIwQLKiJdYwJdPjx5ESk7I0UbCQMncD5eMUNFAAhVXAhdVVFdFxkFDFgATx8cBEUcH1VWAVldTgxfDwNVVQFZXU4TDFhCW1EfWlhGVRccUV1cB1FZXFEDWl1fUAVYXU4RQQgLVVQXGRgcCQxYWlFQB1hVUVACWV1R HTTP/1.1
Host: gourgoldpieceso.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
date: Mon, 25 Sep 2023 05:32:32 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3zD6XTo%2FnW2wDCIOZxi6W0FIkXx6jS%2FmKsD%2FDa8v13Yqy4ic8R%2BKms%2BdeSmTbR7NKVp18w2m8YMShaqaIp57K5S2u8ui78B%2BcJwq%2FYRoVWcQf%2FdYMmoSoErwWoTYR95GFoQBbDMQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e320dd6e569f-OSL
alt-svc: h3=":443"; ma=86400
dubzenom.com/5/6308091/?oo=1&js_build=iclick-v1.601.0
200 OK 21 kB URL GET HTTP/2 dubzenom.com/5/6308091/?oo=1&js_build=iclick-v1.601.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectdubzenom.com
FingerprintB4:A2:7A:7C:28:7D:21:81:28:0D:43:28:55:83:62:AB:A7:E8:B5:4B
ValidityTue, 05 Sep 2023 14:16:13 GMT - Mon, 04 Dec 2023 14:16:12 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 9f5d902108149b8be4405b491a3dc0a3
4d6ee82e10ee68cc136fe147706780074adee081
821bf20fbe23ded9fe143641ea3f88ae56bf5d52cd3c9d561fdad72d9eae9679
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/6308091/?oo=1&js_build=iclick-v1.601.0 HTTP/1.1
Host: dubzenom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/json
x-trace-id: 3777d09d910f06c3a71b30385ef9d267
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=377a48a8ee824ff2b6e5bc592facd818; expires=Tue, 24 Sep 2024 05:32:30 GMT; path=/; secure; SameSite=None
oaidts=1695619950; expires=Tue, 24 Sep 2024 05:32:30 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=ca3a9904827f0041232be6ab023a4d4f&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=ca3a9904827f0041232be6ab023a4d4f&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintBE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A
ValiditySat, 23 Sep 2023 07:33:12 GMT - Fri, 22 Dec 2023 07:33:11 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=ca3a9904827f0041232be6ab023a4d4f&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 25 Sep 2023 05:32:33 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c286df97becd51a2e6ab31263249c9a
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=7622f20a76c793f0c2bacc82a57fc0f0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=7622f20a76c793f0c2bacc82a57fc0f0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintBE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A
ValiditySat, 23 Sep 2023 07:33:12 GMT - Fri, 22 Dec 2023 07:33:11 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=7622f20a76c793f0c2bacc82a57fc0f0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 25 Sep 2023 05:32:33 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e1e405b97e4b67437ea9bb5df9f6aec2
Strict-Transport-Security: max-age=0; includeSubdomains
wheeledabbotafterward.com/sbar.json?key=7622f20a76c793f0c2bacc82a57fc0f0&uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1
200 OK 4.0 kB URL GET HTTP/1.1 wheeledabbotafterward.com/sbar.json?key=7622f20a76c793f0c2bacc82a57fc0f0&uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectwheeledabbotafterward.com
Fingerprint3F:24:76:15:4F:26:48:A0:78:64:DE:F1:10:54:6B:ED:D0:F4:6C:E4
ValidityMon, 18 Sep 2023 15:12:11 GMT - Sun, 17 Dec 2023 15:12:10 GMT
File type JSON data\012- , ASCII text, with very long lines (5627), with no line terminators
Hash 91855bd4cf06bbf361c5cb5b2cdea8a9
021567471afffc303d0839ddaf5baa608e6fe66b
a989392a7ffa34125eb1f85e573993f0094027b7fb6ab5f179a9ada267196679
GET /sbar.json?key=7622f20a76c793f0c2bacc82a57fc0f0&uuid=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1 HTTP/1.1
Host: wheeledabbotafterward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 25 Sep 2023 05:32:33 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://streamdav.com
Access-Control-Allow-Origin: https://streamdav.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20394697; expires=Tue, 26 Sep 2023 05:32:33 GMT; secure; SameSite=None
uid_id2=25f705e8-14ad-48f0-a57b-8adb8bf06665:1:1; expires=Mon, 02 Oct 2023 05:32:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 26 Sep 2023 05:32:33 GMT; secure; SameSite=None
uncs=1; expires=Tue, 26 Sep 2023 05:32:33 GMT; secure; SameSite=None
pdhtkv29=true; expires=Tue, 26 Sep 2023 05:32:33 GMT; secure; SameSite=None
uncs29=1; expires=Tue, 26 Sep 2023 05:32:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0c9df526d6ad9aae4dbd0f8bf3a14097
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
wheeledabbotafterward.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3l%2FYw8%2BDrOhBRJiDC8qaSXWnZ3rGPcjGNRKMm2VX0ZtUV1VPylR3tVXd05PoIbggexz%2Fg843yQY1LvoHKDLxIgtCxlMOZkHwL1jYs8wkOPqgeO973zt873v15V55RihKdrr6ntlRWrOlVpM2Xv3I96831lVWDhqDTvvjdni9Yftv%2BLTbpK813pF8yywF1KfUp35jVVmZmMGS7%2FtNCpUfdf1mlzbDoOm3Qgzsf7ErPTjmQfTPyHNQYvL%2Fo4chFB8jS7%2B%2FKd1WYfLX305LzQpj0ReHH2RbmakypPMysR6S7PBiGsadrP4Ekx3MBMP0%2FxmM1YR4f%2F2JODu8UIm4f3AuNNaQGWLxDKr%2BGFKPodgY3NyDEicE4AK3NpClD24ZW7Htc5ZN2QlZePoEqpqQhT%2BeR5Y%2BXNFq0LhrdFkokzkMkhpqMIbqjZGXxyh2LkFVx%2BDFF1DiN7L0dB1Zur%2FhtIESp68ErSSiLdlZ9EMmFsNOQhdZK4oXO0zEnTih7Xa7NXNIqTFUMoaWQzDnoZw%2B5aFMPJS5h1ScNiIedjqi0xJMch7Eid9JwiTsMk4TTpe7AUo%2B3WGIIh%2BC6yG43UVud7GlhrDlz3CbNZzw4AqCvqhRSYLKEVSMoFIEVUFQ9esDoV3g6gdCuzL2L3JwkZfrkSl6e%2BzAFD2Zkb38jFyZGudFwa%2FYkqeNqB0ESUBZ1OZRdzmhPIgZ552AtaKE04TCqRrKXZqtuaMm5NrjZ5GrCSFPriJmx3D6GFxdBStfBqtGUUDBNkdhh2In%2B84VVrJUsH6TmxTC1MiLBRTb3p4%2BIy%2FOLnjts01I%2FohcBLitkdsan6hfCHr6%2FuiOqcj%2BHVM58sNGXqhU7bDpde8WrJCXv3lXblfGirWbbvj1DT4lpuXR%2B9IV6ywTKus58u2KEkLaVWO5JD%2BuuQ9lfLt0myulzcp8%2FfZbq2tpbqVzymRjMHXyeRtcTcjlGwezf%2FvC4xjKjmHLGmk5V6rMGDzfhcvnPWcIrJ7jOPdQlfXIBvG8qRWBlnPM4hruXzie13vuPnrWAyvuIUtr9G2Nvq7B9BCu%2FN%2BoyO2jN39fngVi7Y1ibb39WFv91bm1Tp02ZCTb3W5Iw0hQGociCPyW5Gw5ZF0WBEmEwk3klZc%2B%2FRsAAP%2F%2FAQAA%2F%2F%2FEFi4OhAQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 wheeledabbotafterward.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3l%2FYw8%2BDrOhBRJiDC8qaSXWnZ3rGPcjGNRKMm2VX0ZtUV1VPylR3tVXd05PoIbggexz%2Fg843yQY1LvoHKDLxIgtCxlMOZkHwL1jYs8wkOPqgeO973zt873v15V55RihKdrr6ntlRWrOlVpM2Xv3I96831lVWDhqDTvvjdni9Yftv%2BLTbpK813pF8yywF1KfUp35jVVmZmMGS7%2FtNCpUfdf1mlzbDoOm3Qgzsf7ErPTjmQfTPyHNQYvL%2Fo4chFB8jS7%2B%2FKd1WYfLX305LzQpj0ReHH2RbmakypPMysR6S7PBiGsadrP4Ekx3MBMP0%2FxmM1YR4f%2F2JODu8UIm4f3AuNNaQGWLxDKr%2BGFKPodgY3NyDEicE4AK3NpClD24ZW7Htc5ZN2QlZePoEqpqQhT%2BeR5Y%2BXNFq0LhrdFkokzkMkhpqMIbqjZGXxyh2LkFVx%2BDFF1DiN7L0dB1Zur%2FhtIESp68ErSSiLdlZ9EMmFsNOQhdZK4oXO0zEnTih7Xa7NXNIqTFUMoaWQzDnoZw%2B5aFMPJS5h1ScNiIedjqi0xJMch7Eid9JwiTsMk4TTpe7AUo%2B3WGIIh%2BC6yG43UVud7GlhrDlz3CbNZzw4AqCvqhRSYLKEVSMoFIEVUFQ9esDoV3g6gdCuzL2L3JwkZfrkSl6e%2BzAFD2Zkb38jFyZGudFwa%2FYkqeNqB0ESUBZ1OZRdzmhPIgZ552AtaKE04TCqRrKXZqtuaMm5NrjZ5GrCSFPriJmx3D6GFxdBStfBqtGUUDBNkdhh2In%2B84VVrJUsH6TmxTC1MiLBRTb3p4%2BIy%2FOLnjts01I%2FohcBLitkdsan6hfCHr6%2FuiOqcj%2BHVM58sNGXqhU7bDpde8WrJCXv3lXblfGirWbbvj1DT4lpuXR%2B9IV6ywTKus58u2KEkLaVWO5JD%2BuuQ9lfLt0myulzcp8%2FfZbq2tpbqVzymRjMHXyeRtcTcjlGwezf%2FvC4xjKjmHLGmk5V6rMGDzfhcvnPWcIrJ7jOPdQlfXIBvG8qRWBlnPM4hruXzie13vuPnrWAyvuIUtr9G2Nvq7B9BCu%2FN%2BoyO2jN39fngVi7Y1ibb39WFv91bm1Tp02ZCTb3W5Iw0hQGociCPyW5Gw5ZF0WBEmEwk3klZc%2B%2FRsAAP%2F%2FAQAA%2F%2F%2FEFi4OhAQAAA%3D%3D
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectwheeledabbotafterward.com
Fingerprint3F:24:76:15:4F:26:48:A0:78:64:DE:F1:10:54:6B:ED:D0:F4:6C:E4
ValidityMon, 18 Sep 2023 15:12:11 GMT - Sun, 17 Dec 2023 15:12:10 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3l%2FYw8%2BDrOhBRJiDC8qaSXWnZ3rGPcjGNRKMm2VX0ZtUV1VPylR3tVXd05PoIbggexz%2Fg843yQY1LvoHKDLxIgtCxlMOZkHwL1jYs8wkOPqgeO973zt873v15V55RihKdrr6ntlRWrOlVpM2Xv3I96831lVWDhqDTvvjdni9Yftv%2BLTbpK813pF8yywF1KfUp35jVVmZmMGS7%2FtNCpUfdf1mlzbDoOm3Qgzsf7ErPTjmQfTPyHNQYvL%2Fo4chFB8jS7%2B%2FKd1WYfLX305LzQpj0ReHH2RbmakypPMysR6S7PBiGsadrP4Ekx3MBMP0%2FxmM1YR4f%2F2JODu8UIm4f3AuNNaQGWLxDKr%2BGFKPodgY3NyDEicE4AK3NpClD24ZW7Htc5ZN2QlZePoEqpqQhT%2BeR5Y%2BXNFq0LhrdFkokzkMkhpqMIbqjZGXxyh2LkFVx%2BDFF1DiN7L0dB1Zur%2FhtIESp68ErSSiLdlZ9EMmFsNOQhdZK4oXO0zEnTih7Xa7NXNIqTFUMoaWQzDnoZw%2B5aFMPJS5h1ScNiIedjqi0xJMch7Eid9JwiTsMk4TTpe7AUo%2B3WGIIh%2BC6yG43UVud7GlhrDlz3CbNZzw4AqCvqhRSYLKEVSMoFIEVUFQ9esDoV3g6gdCuzL2L3JwkZfrkSl6e%2BzAFD2Zkb38jFyZGudFwa%2FYkqeNqB0ESUBZ1OZRdzmhPIgZ552AtaKE04TCqRrKXZqtuaMm5NrjZ5GrCSFPriJmx3D6GFxdBStfBqtGUUDBNkdhh2In%2B84VVrJUsH6TmxTC1MiLBRTb3p4%2BIy%2FOLnjts01I%2FohcBLitkdsan6hfCHr6%2FuiOqcj%2BHVM58sNGXqhU7bDpde8WrJCXv3lXblfGirWbbvj1DT4lpuXR%2B9IV6ywTKus58u2KEkLaVWO5JD%2BuuQ9lfLt0myulzcp8%2FfZbq2tpbqVzymRjMHXyeRtcTcjlGwezf%2FvC4xjKjmHLGmk5V6rMGDzfhcvnPWcIrJ7jOPdQlfXIBvG8qRWBlnPM4hruXzie13vuPnrWAyvuIUtr9G2Nvq7B9BCu%2FN%2BoyO2jN39fngVi7Y1ibb39WFv91bm1Tp02ZCTb3W5Iw0hQGociCPyW5Gw5ZF0WBEmEwk3klZc%2B%2FRsAAP%2F%2FAQAA%2F%2F%2FEFi4OhAQAAA%3D%3D HTTP/1.1
Host: wheeledabbotafterward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: u_pl=20394697; uid_id2=25f705e8-14ad-48f0-a57b-8adb8bf06665:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 25 Sep 2023 05:32:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a300465f4629d3053385daffbd42b180
Strict-Transport-Security: max-age=0; includeSubdomains
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhdOTprSCj4ioz-idkgMCFliPQKD3zCATfdTUQ2Q4gsSRHh8MFPHdbVS5a02QRLKUxdh4PFr&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-200635982%3A1695619952260394&theme=glif
403 Forbidden 1.3 kB URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhdOTprSCj4ioz-idkgMCFliPQKD3zCATfdTUQ2Q4gsSRHh8MFPHdbVS5a02QRLKUxdh4PFr&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-200635982%3A1695619952260394&theme=glif
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1666)
Hash a4a157222354ec58db624553b67b7435
6f92f3f161f4a56e98fc4b3f395279ce2e528427
1ec219ee7f3f364862a4b6097727397b114c30fd1c46a4d35eae692feb989ad3
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhdOTprSCj4ioz-idkgMCFliPQKD3zCATfdTUQ2Q4gsSRHh8MFPHdbVS5a02QRLKUxdh4PFr&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-200635982%3A1695619952260394&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 25 Sep 2023 05:32:32 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-e-wTVABiwWO4vnA3ObKowg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/img/update-icon.png
200 OK 35 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/img/update-icon.png
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash b9c521672928c7785b30728c7d52a37f
cc61c72fd799b55d2a253d8f68f8b1c7eeb6b5cc
1937ab36e5de81103171a30582d0d2174c5fccaed5a0f831ae7ceb07833ab8b0
GET /sb/notifications/vpn/default/us/yan-center/white-icon/1/img/update-icon.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:33 GMT
content-type: image/png
content-length: 34598
last-modified: Fri, 11 Jun 2021 13:55:06 GMT
etag: "60c36b3a-8726"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 8126853
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hH%2B%2BtewBK3O0fD88BIxs2BLMPu2mggUsj0S3tN2DDxfC%2FTRkqgDMicgNNFrQitL7Jeis5OTmjNJpX2Jn9cpoRHi4ms1Pt755a3Cx9ByvwSzwptwZIusbZsfoIfRIdC%2FfdJXDM7XtPV6Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e328685e48c4-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash c1481fcd5428e1e8013edc7621812724
8e86eadf871ca94477b0e469360502203eab3d97
9b9ad2ae252224803a2cc6f160d3305677ca54c8053008fd5b469574c42ac12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/css/animate.css
200 OK 5.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/css/animate.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET /sb/notifications/vpn/default/us/yan-center/white-icon/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:33 GMT
content-type: text/css
last-modified: Fri, 11 Jun 2021 13:55:05 GMT
etag: W/"60c36b39-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 205435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b%2BBtufRxeR3e7KM24krYirYaFp6RXJfNYGSmCJkRS5ddxPHKsK1K4oAfuRyPQnWt38OKBfGvqJSyfqj8T7Ob0nmJ8NlkO5J6E7JSI8YLvL%2F3SIzSqpZF8cSz71qR6mcS2vd%2FLhCbp7wd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e328282248c4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 348099
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:05:24 GMT
expires: Sat, 21 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 242830
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
wheeledabbotafterward.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4sc1Rd9lV%2FI4udCIroQEXphQInTU1Vd3V1tFpIYRwbHTEgU3cn7Vz3PeVWvfK%2Bqq2d0MRiQLNtvUHN6JoM6Bv0AivS4kYAw7WoWTkDwEwSylu4ZbL3wuPfccxfnnvu%2B3C1PiY%2BSnqy8Z7aV1nS53fQbr34UBNcaayorh41h3Pm4E11r2MEbgd9r%2Bq813pF80yyHfuD7gR80VpSViRkuB0HQ9KHyw17Q7PnNKGwG7QhD%2B1%2FsSg%2BOehCDU%2FIclJj%2B%2F%2FBhBMUnyNLvb0q3WZj89bfTUtPCWAzEwQfZZmaqDOmiTKyHJDs4n4Zxxys%2FwWT7c8Ewg38GmZoS768%2FwbKDc5Vgg%2F0zoUxDZmDiGVSDCaSeQNEJuLkHJY4JwAVurSNLH9wytqJbZyydsVNy8ekTqGpKLv7xPLL04Q2tho27RpeFMpnDMKmhhhOo%2FgR5eYRi%2BwJUdQRefAElfiPLT9eQpXvrThsocfJK2E66flvGS0FExVIUJ%2F4SbXfZUkwFi1nidzqd9twhpSZQyQRajkCdh3L2lIcy8VDmHlJx0ujyKI5F3BZUch6yJIiTKIl6lPsJ91u9ECWf7TBCkY%2FA9Qjc7iC3O9hUI9jyZ7iNGk54cAXBQNSoJEHlCCpKUCmCqiCoBvW%2B0C509QOhXcmC8xye51Y9NkV%2Fl%2B6boi8zspufkssz47xu%2BCs25Umj2wnDJPRpt8O7vVbi85BRzuOQtrsJ9xMfTtVQ7sJ8zW01JVcfP4tcTQl5cgWMHsHpI3B1BbR8GbQad0MfdGMcxT62s%2B9cYSVNBR00uUkhTI28uIhiy9vVp%2BTF%2BQWvfrYByR%2BR8wC3NXJb4xP1C0Ff3x%2FfMRXZu2MqR35YzwuVqm06u%2B7dghby0jfvyq3KWLF6042%2Bvs5nxKw8fF%2B6Yo1mQmV9R769oYSQdsVYLsmPq%2B5DyW6XbuNGabMyX7v91spqmlvpnDLZBFQdf94BV1Ny6fr%2B%2FN%2B%2B8JhB2QlsWSMtF0qVmYDnO3D5oucMgdULzHIPVVmPbcgWTa0ItFxgymq4f2G2qHfdffStB1rcQ5bWGNgaA12D6hFc%2Bb9xkdtHb%2F7emgeY9sZMW2%2BPaau%2FOrPWqZMG576kAesGUgrZbnEedXjMOkkr6sq4Ldoo3FRefunTvwEAAP%2F%2FAQAA%2F%2F87MYYehAQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 wheeledabbotafterward.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4sc1Rd9lV%2FI4udCIroQEXphQInTU1Vd3V1tFpIYRwbHTEgU3cn7Vz3PeVWvfK%2Bqq2d0MRiQLNtvUHN6JoM6Bv0AivS4kYAw7WoWTkDwEwSylu4ZbL3wuPfccxfnnvu%2B3C1PiY%2BSnqy8Z7aV1nS53fQbr34UBNcaayorh41h3Pm4E11r2MEbgd9r%2Bq813pF80yyHfuD7gR80VpSViRkuB0HQ9KHyw17Q7PnNKGwG7QhD%2B1%2FsSg%2BOehCDU%2FIclJj%2B%2F%2FBhBMUnyNLvb0q3WZj89bfTUtPCWAzEwQfZZmaqDOmiTKyHJDs4n4Zxxys%2FwWT7c8Ewg38GmZoS768%2FwbKDc5Vgg%2F0zoUxDZmDiGVSDCaSeQNEJuLkHJY4JwAVurSNLH9wytqJbZyydsVNy8ekTqGpKLv7xPLL04Q2tho27RpeFMpnDMKmhhhOo%2FgR5eYRi%2BwJUdQRefAElfiPLT9eQpXvrThsocfJK2E66flvGS0FExVIUJ%2F4SbXfZUkwFi1nidzqd9twhpSZQyQRajkCdh3L2lIcy8VDmHlJx0ujyKI5F3BZUch6yJIiTKIl6lPsJ91u9ECWf7TBCkY%2FA9Qjc7iC3O9hUI9jyZ7iNGk54cAXBQNSoJEHlCCpKUCmCqiCoBvW%2B0C509QOhXcmC8xye51Y9NkV%2Fl%2B6boi8zspufkssz47xu%2BCs25Umj2wnDJPRpt8O7vVbi85BRzuOQtrsJ9xMfTtVQ7sJ8zW01JVcfP4tcTQl5cgWMHsHpI3B1BbR8GbQad0MfdGMcxT62s%2B9cYSVNBR00uUkhTI28uIhiy9vVp%2BTF%2BQWvfrYByR%2BR8wC3NXJb4xP1C0Ff3x%2FfMRXZu2MqR35YzwuVqm06u%2B7dghby0jfvyq3KWLF6042%2Bvs5nxKw8fF%2B6Yo1mQmV9R769oYSQdsVYLsmPq%2B5DyW6XbuNGabMyX7v91spqmlvpnDLZBFQdf94BV1Ny6fr%2B%2FN%2B%2B8JhB2QlsWSMtF0qVmYDnO3D5oucMgdULzHIPVVmPbcgWTa0ItFxgymq4f2G2qHfdffStB1rcQ5bWGNgaA12D6hFc%2Bb9xkdtHb%2F7emgeY9sZMW2%2BPaau%2FOrPWqZMG576kAesGUgrZbnEedXjMOkkr6sq4Ldoo3FRefunTvwEAAP%2F%2FAQAA%2F%2F87MYYehAQAAA%3D%3D
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectwheeledabbotafterward.com
Fingerprint3F:24:76:15:4F:26:48:A0:78:64:DE:F1:10:54:6B:ED:D0:F4:6C:E4
ValidityMon, 18 Sep 2023 15:12:11 GMT - Sun, 17 Dec 2023 15:12:10 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4sc1Rd9lV%2FI4udCIroQEXphQInTU1Vd3V1tFpIYRwbHTEgU3cn7Vz3PeVWvfK%2Bqq2d0MRiQLNtvUHN6JoM6Bv0AivS4kYAw7WoWTkDwEwSylu4ZbL3wuPfccxfnnvu%2B3C1PiY%2BSnqy8Z7aV1nS53fQbr34UBNcaayorh41h3Pm4E11r2MEbgd9r%2Bq813pF80yyHfuD7gR80VpSViRkuB0HQ9KHyw17Q7PnNKGwG7QhD%2B1%2FsSg%2BOehCDU%2FIclJj%2B%2F%2FBhBMUnyNLvb0q3WZj89bfTUtPCWAzEwQfZZmaqDOmiTKyHJDs4n4Zxxys%2FwWT7c8Ewg38GmZoS768%2FwbKDc5Vgg%2F0zoUxDZmDiGVSDCaSeQNEJuLkHJY4JwAVurSNLH9wytqJbZyydsVNy8ekTqGpKLv7xPLL04Q2tho27RpeFMpnDMKmhhhOo%2FgR5eYRi%2BwJUdQRefAElfiPLT9eQpXvrThsocfJK2E66flvGS0FExVIUJ%2F4SbXfZUkwFi1nidzqd9twhpSZQyQRajkCdh3L2lIcy8VDmHlJx0ujyKI5F3BZUch6yJIiTKIl6lPsJ91u9ECWf7TBCkY%2FA9Qjc7iC3O9hUI9jyZ7iNGk54cAXBQNSoJEHlCCpKUCmCqiCoBvW%2B0C509QOhXcmC8xye51Y9NkV%2Fl%2B6boi8zspufkssz47xu%2BCs25Umj2wnDJPRpt8O7vVbi85BRzuOQtrsJ9xMfTtVQ7sJ8zW01JVcfP4tcTQl5cgWMHsHpI3B1BbR8GbQad0MfdGMcxT62s%2B9cYSVNBR00uUkhTI28uIhiy9vVp%2BTF%2BQWvfrYByR%2BR8wC3NXJb4xP1C0Ff3x%2FfMRXZu2MqR35YzwuVqm06u%2B7dghby0jfvyq3KWLF6042%2Bvs5nxKw8fF%2B6Yo1mQmV9R769oYSQdsVYLsmPq%2B5DyW6XbuNGabMyX7v91spqmlvpnDLZBFQdf94BV1Ny6fr%2B%2FN%2B%2B8JhB2QlsWSMtF0qVmYDnO3D5oucMgdULzHIPVVmPbcgWTa0ItFxgymq4f2G2qHfdffStB1rcQ5bWGNgaA12D6hFc%2Bb9xkdtHb%2F7emgeY9sZMW2%2BPaau%2FOrPWqZMG576kAesGUgrZbnEedXjMOkkr6sq4Ldoo3FRefunTvwEAAP%2F%2FAQAA%2F%2F87MYYehAQAAA%3D%3D HTTP/1.1
Host: wheeledabbotafterward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: u_pl=20394697; uid_id2=25f705e8-14ad-48f0-a57b-8adb8bf06665:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 25 Sep 2023 05:32:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0103a1476e0e6ab653d2ad494af17dbc
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
471 B IP
Hash c1481fcd5428e1e8013edc7621812724
8e86eadf871ca94477b0e469360502203eab3d97
9b9ad2ae252224803a2cc6f160d3305677ca54c8053008fd5b469574c42ac12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 25 Sep 2023 05:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wheeledabbotafterward.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 wheeledabbotafterward.com/pixel/sbs?c=1
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectwheeledabbotafterward.com
Fingerprint3F:24:76:15:4F:26:48:A0:78:64:DE:F1:10:54:6B:ED:D0:F4:6C:E4
ValidityMon, 18 Sep 2023 15:12:11 GMT - Sun, 17 Dec 2023 15:12:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: wheeledabbotafterward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: u_pl=20394697; uid_id2=25f705e8-14ad-48f0-a57b-8adb8bf06665:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 25 Sep 2023 05:32:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ossmightyenar.net/impression/_GNoMlUT7sCvntBwreZZdrX7CMjYSl3FyIXtWUHXexdpV8RLJlSPIq50ihTbbWkBUKWejGcIa_2hl3TC-uLhOsqSZuxGRsHiMwhuOXkGWEl8Kp4wm5xGpduys2_mMkCz6DvY1iDb-ufMnQMpTnnqDt0tel892vkFW7dh_TiYn_z_KKSpkjynAWBt7veETZVDQuqJPd6W2HQJJsSeJr6zzpm1MShVbDQoHX1_IPhHgIViuZhv8BGGwsARyhii--TGLiD-CQDBDLQMWjAtcCchFo6DBz-Yz3RGONVP9ASJdNULWQ2Q1JlJInHAPxco9-QlBCcZUO29F4OiE_h_LBAVek3u3lgZqFtEdLZzZULtMRUP_DF9EujzlhsXmW0fmPXkQvKdhSFTIoxwGoVkV_G8qwgYU1av4iugtvSRAuOYIpXSYkpUi5cE3IyOkBKo8HDo4gfzxe3dEb1tlCibSGbmBZwL6njF_G96-nQdGA0tQbj5x_1bzWAdtzXRcWzYYUrQzNCclgcJ2fHfGMW--KiEMQYo6n9IV3FXjECxu9-oqMo_rBUK6DrcsW5uhh0RIXGaa9yRcHoua-QL0bQ0XNPYUg==?_z=6311482&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 43 B URL GET HTTP/2 ossmightyenar.net/impression/_GNoMlUT7sCvntBwreZZdrX7CMjYSl3FyIXtWUHXexdpV8RLJlSPIq50ihTbbWkBUKWejGcIa_2hl3TC-uLhOsqSZuxGRsHiMwhuOXkGWEl8Kp4wm5xGpduys2_mMkCz6DvY1iDb-ufMnQMpTnnqDt0tel892vkFW7dh_TiYn_z_KKSpkjynAWBt7veETZVDQuqJPd6W2HQJJsSeJr6zzpm1MShVbDQoHX1_IPhHgIViuZhv8BGGwsARyhii--TGLiD-CQDBDLQMWjAtcCchFo6DBz-Yz3RGONVP9ASJdNULWQ2Q1JlJInHAPxco9-QlBCcZUO29F4OiE_h_LBAVek3u3lgZqFtEdLZzZULtMRUP_DF9EujzlhsXmW0fmPXkQvKdhSFTIoxwGoVkV_G8qwgYU1av4iugtvSRAuOYIpXSYkpUi5cE3IyOkBKo8HDo4gfzxe3dEb1tlCibSGbmBZwL6njF_G96-nQdGA0tQbj5x_1bzWAdtzXRcWzYYUrQzNCclgcJ2fHfGMW--KiEMQYo6n9IV3FXjECxu9-oqMo_rBUK6DrcsW5uhh0RIXGaa9yRcHoua-QL0bQ0XNPYUg==?_z=6311482&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint75:BB:EE:5D:84:C1:37:EF:9F:A0:FC:E1:55:C0:DF:C2:CD:DB:73:24
ValiditySun, 10 Sep 2023 05:22:07 GMT - Sat, 09 Dec 2023 05:22:06 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/_GNoMlUT7sCvntBwreZZdrX7CMjYSl3FyIXtWUHXexdpV8RLJlSPIq50ihTbbWkBUKWejGcIa_2hl3TC-uLhOsqSZuxGRsHiMwhuOXkGWEl8Kp4wm5xGpduys2_mMkCz6DvY1iDb-ufMnQMpTnnqDt0tel892vkFW7dh_TiYn_z_KKSpkjynAWBt7veETZVDQuqJPd6W2HQJJsSeJr6zzpm1MShVbDQoHX1_IPhHgIViuZhv8BGGwsARyhii--TGLiD-CQDBDLQMWjAtcCchFo6DBz-Yz3RGONVP9ASJdNULWQ2Q1JlJInHAPxco9-QlBCcZUO29F4OiE_h_LBAVek3u3lgZqFtEdLZzZULtMRUP_DF9EujzlhsXmW0fmPXkQvKdhSFTIoxwGoVkV_G8qwgYU1av4iugtvSRAuOYIpXSYkpUi5cE3IyOkBKo8HDo4gfzxe3dEb1tlCibSGbmBZwL6njF_G96-nQdGA0tQbj5x_1bzWAdtzXRcWzYYUrQzNCclgcJ2fHfGMW--KiEMQYo6n9IV3FXjECxu9-oqMo_rBUK6DrcsW5uhh0RIXGaa9yRcHoua-QL0bQ0XNPYUg==?_z=6311482&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: OAID=f5lt318253dt377310293l1d6nadz774
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:36 GMT
content-type: image/gif
content-length: 43
x-trace-id: 9a83be2817eff8b6fb776e65f88e919e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 737 B URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type gzip compressed data, max compression\012- data
Hash 4c196c499189c6ecb908ef1c284e9e15
1065ccda47a6906938b0e29b70c3c8d1d51ccf1d
97d0b80fb76cd9815bc4d291ec68f4e4fd9619a3f5a718697e8abae0dff180df
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 25 Sep 2023 05:32:33 GMT
date: Mon, 25 Sep 2023 05:32:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
offerimage.com/www/images/7d763937692f59aea0578ffe58c10ee0.jpeg
200 OK 14 kB URL GET HTTP/2 offerimage.com/www/images/7d763937692f59aea0578ffe58c10ee0.jpeg
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 7d763937692f59aea0578ffe58c10ee0
b3a4cc4fd1a0d8319e59057e535b0b19f1a3b35b
2d7300c572db1683cbc8071be4bbaf31b00954193f6f82d453c99a7a58bd7620
GET /www/images/7d763937692f59aea0578ffe58c10ee0.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:36 GMT
content-type: image/jpeg
content-length: 13778
cache-control: max-age=86400
cf-bgj: h2pri
etag: "63888441-35d2"
expires: Mon, 25 Sep 2023 11:15:03 GMT
last-modified: Thu, 01 Dec 2022 10:38:57 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 65853
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e33818ac56cc-OSL
X-Firefox-Spdy: h2
soumehoo.net/500/6311480?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 17 kB URL GET HTTP/2 soumehoo.net/500/6311480?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectsoumehoo.net
FingerprintF5:39:03:CC:85:44:8A:CC:6A:B3:0D:B7:57:C8:AB:4E:A3:FE:EB:66
ValidityWed, 13 Sep 2023 09:58:44 GMT - Tue, 12 Dec 2023 09:58:43 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 43288e14b75ec61fe33195c4d9f93c8f
c174bf6833178d14fdfc68a7c7293408b72566b8
123fe54c50fcc77bc89351d197424abc289f16e17d33aeddba63bdd45de8648a
GET /500/6311480?excludes=&oaid=f5lt318253dt377310293l1d6nadz774&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: soumehoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: OAID=56cf6dc75f3d430596f86d2861d6c392
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
x-trace-id: fa1b4fb0959fb01b93194e473271548e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://streamdav.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=f5lt318253dt377310293l1d6nadz774; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 348101
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
soumehoo.net/500/6311480?excludes=18991416&oaid=377a48a8ee824ff2b6e5bc592facd818&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 0 B URL GET HTTP/2 soumehoo.net/500/6311480?excludes=18991416&oaid=377a48a8ee824ff2b6e5bc592facd818&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectsoumehoo.net
FingerprintF5:39:03:CC:85:44:8A:CC:6A:B3:0D:B7:57:C8:AB:4E:A3:FE:EB:66
ValidityWed, 13 Sep 2023 09:58:44 GMT - Tue, 12 Dec 2023 09:58:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/6311480?excludes=18991416&oaid=377a48a8ee824ff2b6e5bc592facd818&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: soumehoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:36 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://streamdav.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
offerimage.com/www/images/136e62a06622dc909b6bcd2da2d2c989.png
200 OK 76 kB URL GET HTTP/2 offerimage.com/www/images/136e62a06622dc909b6bcd2da2d2c989.png
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 136e62a06622dc909b6bcd2da2d2c989
68b2685adce03d9634c8699d8daee025240fb447
ab2c3df44c04eb9a532e61c7ceca3ede667763761003526111a4854b82736174
GET /www/images/136e62a06622dc909b6bcd2da2d2c989.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:36 GMT
content-type: image/png
content-length: 75541
last-modified: Mon, 12 Jun 2023 22:30:43 GMT
etag: "64879c93-12715"
expires: Mon, 25 Sep 2023 20:12:26 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 33610
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e33a3a9356cc-OSL
X-Firefox-Spdy: h2
soumehoo.net/impression/OXRvYhcB3YDElJ9Dc2f3pgfrQPFZGvRrIo8cArXG_6xbfqeiUH1AZmWNYR-nYZd3P0Wm5TkAjAbi642w7zJ4pZDJOrMym43E1M6HLn6D0jVXLsPLrg8LMbeuqZGLAXUM7dTm5Yz0TdveQLBp3MHJ5GJTGcMHKmh1LT0FZaiiNQtHxpb8OkMpcYI3oIG_VpfWqORJL5f2e0xdmg0lU9TfQwHQ3D0AcDGuAf3avlYqxhCe3JgocrSAmFM6H1ACPL7bUOLeWaXAl59pmv2a6MPOZHZtBNRBpUMNXtp-s6bHG-QnWfR8_kuQVUA-2rZCwn4BamRcTz9waPfUvhWNwP8HRgl16EzJcdaIdpi2Hr9_OyI6pdOaHX45rP7wfJT08QkmWEFFHztEZafVYbFroTZwzn88_3qoArNZ24adhB4TYuhEYpQUMv9MCALg7_8UW43kzQe4qio-uPVz62VjG3Fw8vzS12ThJf81cAueH0gMVujN04IzJnj6RKEEtvGz2Nxaghiz9GY180oWjfHXePggm8qauV6zwXx--AaqWA7ebknC2tuxqilOC2we8smrAyD5gFHkC5QPpHX-JHJtGdISww0FOidxo4vtE-niJwN5pvmhE0EAwjP4APB4FY_8Z81Jzp07sOMzWIXZfFMC3Nkd_Alx-BA=?_z=6311480&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 43 B URL GET HTTP/2 soumehoo.net/impression/OXRvYhcB3YDElJ9Dc2f3pgfrQPFZGvRrIo8cArXG_6xbfqeiUH1AZmWNYR-nYZd3P0Wm5TkAjAbi642w7zJ4pZDJOrMym43E1M6HLn6D0jVXLsPLrg8LMbeuqZGLAXUM7dTm5Yz0TdveQLBp3MHJ5GJTGcMHKmh1LT0FZaiiNQtHxpb8OkMpcYI3oIG_VpfWqORJL5f2e0xdmg0lU9TfQwHQ3D0AcDGuAf3avlYqxhCe3JgocrSAmFM6H1ACPL7bUOLeWaXAl59pmv2a6MPOZHZtBNRBpUMNXtp-s6bHG-QnWfR8_kuQVUA-2rZCwn4BamRcTz9waPfUvhWNwP8HRgl16EzJcdaIdpi2Hr9_OyI6pdOaHX45rP7wfJT08QkmWEFFHztEZafVYbFroTZwzn88_3qoArNZ24adhB4TYuhEYpQUMv9MCALg7_8UW43kzQe4qio-uPVz62VjG3Fw8vzS12ThJf81cAueH0gMVujN04IzJnj6RKEEtvGz2Nxaghiz9GY180oWjfHXePggm8qauV6zwXx--AaqWA7ebknC2tuxqilOC2we8smrAyD5gFHkC5QPpHX-JHJtGdISww0FOidxo4vtE-niJwN5pvmhE0EAwjP4APB4FY_8Z81Jzp07sOMzWIXZfFMC3Nkd_Alx-BA=?_z=6311480&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectsoumehoo.net
FingerprintF5:39:03:CC:85:44:8A:CC:6A:B3:0D:B7:57:C8:AB:4E:A3:FE:EB:66
ValidityWed, 13 Sep 2023 09:58:44 GMT - Tue, 12 Dec 2023 09:58:43 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/OXRvYhcB3YDElJ9Dc2f3pgfrQPFZGvRrIo8cArXG_6xbfqeiUH1AZmWNYR-nYZd3P0Wm5TkAjAbi642w7zJ4pZDJOrMym43E1M6HLn6D0jVXLsPLrg8LMbeuqZGLAXUM7dTm5Yz0TdveQLBp3MHJ5GJTGcMHKmh1LT0FZaiiNQtHxpb8OkMpcYI3oIG_VpfWqORJL5f2e0xdmg0lU9TfQwHQ3D0AcDGuAf3avlYqxhCe3JgocrSAmFM6H1ACPL7bUOLeWaXAl59pmv2a6MPOZHZtBNRBpUMNXtp-s6bHG-QnWfR8_kuQVUA-2rZCwn4BamRcTz9waPfUvhWNwP8HRgl16EzJcdaIdpi2Hr9_OyI6pdOaHX45rP7wfJT08QkmWEFFHztEZafVYbFroTZwzn88_3qoArNZ24adhB4TYuhEYpQUMv9MCALg7_8UW43kzQe4qio-uPVz62VjG3Fw8vzS12ThJf81cAueH0gMVujN04IzJnj6RKEEtvGz2Nxaghiz9GY180oWjfHXePggm8qauV6zwXx--AaqWA7ebknC2tuxqilOC2we8smrAyD5gFHkC5QPpHX-JHJtGdISww0FOidxo4vtE-niJwN5pvmhE0EAwjP4APB4FY_8Z81Jzp07sOMzWIXZfFMC3Nkd_Alx-BA=?_z=6311480&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: soumehoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: OAID=377a48a8ee824ff2b6e5bc592facd818
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:39 GMT
content-type: image/gif
content-length: 43
x-trace-id: 7acb48a314f6377d985bbe9da22b0675
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/miniModules/volume.js
200 OK 1.2 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/volume.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (1232), with no line terminators
Hash bd582a30f607282b67f494624158082d
03679a487ce425f3d27d7db7de392e1aec260deb
b15789e70d61592e0e2f69d8418f11c5e71e0bd252a0bd5bf3f8f11bf56f8f44
GET /modules/desktopPlayer/miniModules/volume.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"4a1-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N5kpk4K6lISD4jceiJfhM3IJ5AF0jfprPxuBPQUVMkQmFtv1U%2F9Mn2VXXD6NnV87jrZhQ7u5qnyNPQSLTSfDu7jF%2FAAUD7cvENoH1l%2BORoe35eP4uEO1MbcNiZZSLdPh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30eb88a56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
pogothere.xyz/
200 OK 26 B IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 20c6bde3906637ad43583d2c0c899e45
c5fdf6f0cdf168b81e811555914492575779de44
992736c412d700e729d1ee1f2fd53da83dbdbe651fa77ee84931f6749c00b77d
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: text/plain
set-cookie: csu=596854423175411@1@1695619951; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dyDBk7o7kJPGbiYI%2BcbMuVpxAjkLB0ghDXljFLLsTVpa5Dk6vlzyGdH2L53wZsdYH4y%2Bl54nukw%2F1TJeRz0J6uO%2F0x4xxuKuRJR8zbLfLXuYwM7kQHA5ALKqGZSktM5o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e319cc6b88a1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
200 OK 11 kB URL GET HTTP/3 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
Hash dbdc7ee435c6a7f4277bfc7fedf28368
8194a5d7e0108bed7abb001d8bf2b8985a5aa2ca
91b113cbf5aedc9b93ceebe313863344b1ead775a618a7e9f31f9e98dbbdf227
GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 25 Sep 2023 05:32:36 GMT
date: Mon, 25 Sep 2023 05:32:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gmxvmvptfm.com/aas/r45d/vki/1995559/51c126f0.js
200 OK 86 kB URL GET HTTP/2 gmxvmvptfm.com/aas/r45d/vki/1995559/51c126f0.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint36:76:FA:87:79:13:81:95:B3:AB:E9:8D:E6:AB:B8:22:69:B0:34:21
ValidityWed, 31 May 2023 13:05:08 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with very long lines (65106)
Hash c239c0d017a243384d0d0adff10643f5
654d66266c996f3d9e6243b14b06b561f345c8f9
2da578a5a4cbd3a4b65c11ca1b79921b61bbcf6b41699a645854ad6a92ed0155
GET /aas/r45d/vki/1995559/51c126f0.js HTTP/1.1
Host: gmxvmvptfm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:28 GMT
content-type: application/javascript
last-modified: Thu, 21 Sep 2023 14:13:02 GMT
vary: Accept-Encoding
etag: W/"650c4f6e-1513f"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
200 OK 80 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectinklinkor.com
FingerprintF9:E2:87:BB:45:BD:69:84:B8:1A:2C:23:70:4D:BE:9E:4F:00:3C:F6
ValidityFri, 25 Aug 2023 12:55:35 GMT - Thu, 23 Nov 2023 12:55:34 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash a3b25ba8316f38d39cbf075d179aad71
9ee5f28a77d2bf3eaa59865c259e8d5c5d6cf272
311c51da9b45e9b6d879e703d48b0324b6921919659a430735032711fb7126cd
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 3241521bbf7d7736e4e6d3da124e53b2
cache-control: max-age=86400
last-modified: Tue, 19 Sep 2023 12:04:07 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 26 Sep 2023 04:45:51 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 2798
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y06p7%2F%2BU9qFKAz9irl934N2dxyXr30bUrdYi9mhMPRmf4w3nxO8O%2BjwF%2FrCyg%2B0FIobzQzCfmwZz%2BtHQG%2FgsrTvXj8OwfSwCTx4AZdIp7aYN3hy4RGZ2CsvuFxjR7qJ1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30c6970b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alwingulla.com/88/tag.min.js
200 OK 71 kB URL GET HTTP/2 alwingulla.com/88/tag.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectalwingulla.com
Fingerprint08:D7:B3:96:27:87:C6:D6:5E:CE:B5:D5:5D:1B:5A:46:91:42:18:3E
ValiditySun, 17 Sep 2023 17:51:53 GMT - Sat, 16 Dec 2023 17:51:52 GMT
File type ASCII text, with very long lines (65494)
Hash 666cb5684d4aced380175dc685f84553
12a642949c399cb0d6f5c3671096068567103d5c
27f60eab227985ef4cf910d92a16664a29f8a3b9d568699956adc4dc7daf313f
GET /88/tag.min.js HTTP/1.1
Host: alwingulla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 13a11b69e892396ff8c5166ef94cc2f1
cache-control: max-age=86400
last-modified: Tue, 19 Sep 2023 12:05:27 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Mon, 25 Sep 2023 14:49:43 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 52964
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pvdOfltrFKjWh8ZJm%2Bol%2Fyk3Z7szRqYQlLC8UYsJcasOzuZwPa9fjkX6cbUjQieuDyanyxEfPwnNk%2F1%2Bjwk35HQPs9IyxbXAhWOoHz%2FI5BXi37joiE1WJW84qKrH8I6TAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e301ab2c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.4.2/css/free-v5-font-face.min.css?token=fc27d47fe7
200 OK 823 B URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.4.2/css/free-v5-font-face.min.css?token=fc27d47fe7
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint64:27:AB:CA:DB:24:8C:C9:87:09:13:04:21:49:9C:6A:4E:DD:97:93
ValiditySun, 10 Sep 2023 05:39:32 GMT - Sat, 09 Dec 2023 05:39:31 GMT
File type ASCII text, with very long lines (845), with no line terminators
Hash 60f771d70194eee2f6ca53f652629c57
80569fe18344d0c3f526479a886fba91d2de0aca
64d1a9645b5b437137ca6c04f5aa6bedd4fe5d102c592894411232a7121e7b02
GET /releases/v6.4.2/css/free-v5-font-face.min.css?token=fc27d47fe7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"dbf296002d53e56d340b105d9d764940"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 cdd8daeefcf66738f6e908663e79c33e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: ODmNhkLWOkXAdVaYTUuM9XrDMko4HfQst0iKphBKxcl40J7dS0R9fQ==
age: 3263305
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sfkp6A8AXnQ7mXkuKkDHywEoTZNEZ2RFW4H%2B5v17Jy0AvXdLltTP8tYjtT4XGPpZWAOCT%2BjHUaOPzE9S1jZVHPgs2UmTQSY1Hm9LqJgCkQSX%2F5%2F3lriYRqromMIcMN7C%2BIiOnOYjxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e3057c847695-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 2720997539f22cddc002d1a48c32d141
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 25 Sep 2023 05:32:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tgOvXlgFohrvfeY0yzMRjgeAxL%2FvfUMnD%2FHYippNaaYr%2BuLp497pISogshn%2BJ3j1X2xibflwBR%2Bc5IwHxZ7A2KtpVnggyV5AHTLs8HV7eabkbXibsiCa8w6W%2F4vQb13P2C0qemg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e3168ae5d174-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/miniModules/cookie.js
200 OK 1.2 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/cookie.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (1289), with no line terminators
Hash 0403343ab1943bc71dff3d579650d344
cfa79c4e1e5ab849c328b4f6e058f6e38c131980
b75abcd5f56337a4ce16d568a3c8e146522547ae2483fc2710ad721021c77e29
GET /modules/desktopPlayer/miniModules/cookie.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"4cf-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EWpHccZu5rWyeWRy%2FHUetAVHRmaYOdnchuCWzUXZggXGddd8u5xLSh5XN0YhAARPu8Vjaacs3Q8EcSUDBUgDIxraBZm5%2FWT3uf%2FozOy94mvpnRPPPtSthfmf3%2FSQnBR%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ee8cf56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/routes/playerRouting.js
200 OK 74 B URL GET HTTP/3 streamdav.com/routes/playerRouting.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with no line terminators
Hash e11c2da207546194633e226fc073cac9
0cb97a2295ec93c73217dc3db0e3410e8ff678b2
878aebb8691498964563606b9b7d374648ee3d9660465ffa8e3dcb19858ec037
GET /routes/playerRouting.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"4a-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bblcBsg%2BW7f%2Foi1%2BoDoXG1PFevpGAwnBHBdBo3BnVncKc3a%2Fn8jgqigw14DINJ%2FpQBrrzKbjalOlXT2bfiVjfNUFTDjph72c1EtMke1NuG4HH8DGNjmWae8xXB%2FuRrYu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30039f356a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/js/script.js
200 OK 463 B URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/js/script.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT
File type ASCII text, with very long lines (482), with no line terminators
Hash 8d7b449c580be37e7a881bcd282a17af
3fe1899c8b4a95c02b4369cd4e4cdd06e61984a9
e2b713d7f11b2c6397c79e39173f7dccf9615bb9e89551f6a6041f5f037465af
GET /sb/notifications/vpn/default/us/yan-center/white-icon/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:33 GMT
content-type: application/javascript
last-modified: Tue, 08 Jun 2021 09:00:47 GMT
etag: W/"60bf31bf-1cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 205435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ffOu%2BzTYLlllHB2i%2FAa%2B7r9FCiH5o05mZQQ0XNxu%2BM75%2B5iebRlHh3C5qhSY6gPI6OyIyY1xW%2BCDvYnlBYbJK%2FX11aDx3y49RDXbvRGFu2MSzvIGiFAeYwcu9xZz7WBU0roWS4McFRDy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e328484248c4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/index.css
200 OK 5.0 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/index.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (5282), with no line terminators
Hash 235e3d0117d96fb55885cddbed76b9d4
b4d0be84c35ec33fa7d89664f4a31f4a59368cf8
bafda4caabd6b352f719e661e7c116ad0e31fb799472111543f56a6479464504
GET /modules/desktopPlayer/index.css HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"1393-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8fPsb56cLyc%2BigESFHll9447b8wMC1690gt2eZwKsHt%2BAwx6xW%2FNCnC3YTppgfxce8fogfYiIg1rwTSXLQQPVto83UK0ZRd7VCzECiXa88Em0f34WjFyEg4J2pYhUF90"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30dbf9256a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
wheeledabbotafterward.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Fvpn%2Fdefault%2Fus%2Fyan-center%2Fwhite-icon%2F1%2Findex.html&l=1766&fd=137
200 OK 0 B URL GET HTTP/1.1 wheeledabbotafterward.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Fvpn%2Fdefault%2Fus%2Fyan-center%2Fwhite-icon%2F1%2Findex.html&l=1766&fd=137
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectwheeledabbotafterward.com
Fingerprint3F:24:76:15:4F:26:48:A0:78:64:DE:F1:10:54:6B:ED:D0:F4:6C:E4
ValidityMon, 18 Sep 2023 15:12:11 GMT - Sun, 17 Dec 2023 15:12:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Fvpn%2Fdefault%2Fus%2Fyan-center%2Fwhite-icon%2F1%2Findex.html&l=1766&fd=137 HTTP/1.1
Host: wheeledabbotafterward.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: u_pl=20394697; uid_id2=25f705e8-14ad-48f0-a57b-8adb8bf06665:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 25 Sep 2023 05:32:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
streamdav.com/modules/desktopPlayer/miniModules/dom.js
200 OK 2.9 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/dom.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (3073), with no line terminators
Hash b01cd197b33ef379717fb12465788603
6d4cdeaecd508aa5f58ff4f804fc48813ab2f033
178204049a042b7e5f65d0df32a67d3fbc611d74c8fda6629f753ac99d12d51b
GET /modules/desktopPlayer/miniModules/dom.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"b73-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kdUeXkeyqKhC9D5xq8NmVr2%2FZFX2hqjN73Mr3tqA5WumQU42nQODOccN7%2BTRi55sDlhE1ftepJqV9Uyk5mTKNkoCo4UdYngd1%2FLoAsds92ExZp6QuVc85571omSYRX8e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ec8b156a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
gourgoldpieceso.com/popunder.gif
200 OK 35 B URL GET HTTP/3 gourgoldpieceso.com/popunder.gif
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectgourgoldpieceso.com
Fingerprint2F:6C:A4:39:D1:55:B5:C3:E1:69:AB:2B:9A:94:A6:6C:EA:FB:0A:F9
ValidityWed, 13 Sep 2023 06:21:57 GMT - Tue, 12 Dec 2023 06:21:56 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /popunder.gif HTTP/1.1
Host: gourgoldpieceso.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 133655
last-modified: Sat, 23 Sep 2023 16:24:55 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CmU6du1mBzGHu7xyaSjJiOTJZUCxejJXsPFLG7y6aKo16yFYxu1feotCMcPASsF9xnlr99QPqCVazfdxBkwXxImCEq8s6YJe5%2Fomu%2FOA71RLemleR5AO1nfnIDmx00tZWjCNbJZH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e310bf4f569f-OSL
alt-svc: h3=":443"; ma=86400
streamdav.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL GET HTTP/3 streamdav.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: application/javascript
last-modified: Wed, 20 Sep 2023 08:17:07 GMT
etag: W/"650aaa83-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MhPUgkmwTpCEerDziS6EVvY6RcaxJTLjXwV74OTthFSKKq00xf6Ux3B%2BU1mXq2nUgnSax3%2BmhC%2FG3WlWgJ4CIDAoNiTMaZeVQhkm2RrODIw4lM3DRDKpZ9bz41gkMOr1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30049ff56a4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 27 Sep 2023 05:32:27 GMT
cache-control: max-age=172800, public
content-encoding: gzip
cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/img/close.svg
200 OK 1.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/img/close.svg
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1374), with no line terminators
Hash 5ff33e884803785a8002a2aa5fa03b0e
a04406f2592e23e648bee499477f823da0c48362
6ba65121162b5b03e75501501ddaa928f73be8d1fe81c032a4879561de63ff58
GET /sb/notifications/vpn/default/us/yan-center/white-icon/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:33 GMT
content-type: image/svg+xml
last-modified: Fri, 11 Jun 2021 13:55:06 GMT
etag: W/"60c36b3a-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 18113365
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hZTyNG3fOTA%2FExlJgXJ7VLVgZTeOL6xhi0Bxco7VReg3OiQaGYZndFVdaBdJCereIfBcFApq6FiakHY9qVgcQV5OflSSlbBHI5yNEaytPiKxjjArzgw26X0x2I6jSEI1Z0FgS59m3JuX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e328685b48c4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/fc27d47fe7.js
200 OK 12 kB URL GET HTTP/2 kit.fontawesome.com/fc27d47fe7.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (11213)
Hash d78107455178026d78e8d02186c519fd
3cb1713f17b54beace98600df12c3dff8d86cd1a
c4ca6d3c95fa63044b2532abe8b90da5aa24d9d2b401c20e8f35408bc54998a6
GET /fc27d47fe7.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F4YsEXURFH8KZQlcoAKi
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 80c0e301ab6556a4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/miniModules/language.js
200 OK 1.9 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/language.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (2028), with no line terminators
Hash d40af0e49f22b83495fdf57177170106
c1699b0ba3a5886be39d34ed2448d686bb327096
511daa691865fe916b6b23d3996d3d92817778bd6585112fcee2c55921cdb9b3
GET /modules/desktopPlayer/miniModules/language.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"785-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FmxlnLd8zi3b4Jb%2BY1xPehOm%2FRRUAN5XlMUZXp1KZQZ8B2yKS2ljiqWPIx7z2ZyeQL03vNR3aVrt8XgDBy81WssKQSLn0YecHUlRZJYNAoYHQnpzXbeFSW58%2FZpAWSLv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ec8ac56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ibrapush.com/pfe/current/defaultSkin.min.js
200 OK 57 kB URL GET HTTP/2 ibrapush.com/pfe/current/defaultSkin.min.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:32 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-df63"
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Nunito+Sans:wght@400;700&display=swap
200 OK 4.4 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Nunito+Sans:wght@400;700&display=swap
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type ASCII text, with very long lines (4528), with no line terminators
Hash fdff672c31a7b3f56e16b66aa68133a3
5511d28a311eb06fd98fd780e8007a24332439de
2c8143e8e10025caaae7a318e2f630ef1f5e6c5a2be3af91b2717404dc3e1db8
GET /css2?family=Nunito+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 25 Sep 2023 05:32:28 GMT
date: Mon, 25 Sep 2023 05:32:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
streamdav.com/controllers/PlayerController.js
200 OK 880 B URL GET HTTP/3 streamdav.com/controllers/PlayerController.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (927), with no line terminators
Hash 506d723cb8c10224b3591507b96a42a8
8cf5416e1887a22de00e563f5a29c4fd89d23be9
4ae5369ae5a838f8a978aba829344fd9114a2a5d325a957e143e4f77b6e7d90d
GET /controllers/PlayerController.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"370-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sXvvs%2FB%2BC2qfS%2FMFbD7SEuusu%2B66IEickxLljDEVGNWZ81WfaG%2BWviTXQb8aDwuI0yJxsX%2BslYa0fn3AA%2FcIyygzd06LMfUnTnRCljP8QPjk1T17%2F0E3pqaXgCibzoRc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e3004a0056a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
eedsaung.net/27/e70947491773b29465b66e664f6dd7f1
200 OK 413 kB URL GET HTTP/2 eedsaung.net/27/e70947491773b29465b66e664f6dd7f1
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjecteedsaung.net
Fingerprint39:1A:51:39:17:5B:6C:AA:21:3B:A2:96:D4:95:44:AB:8E:75:75:65
ValiditySun, 13 Aug 2023 02:55:57 GMT - Sat, 11 Nov 2023 02:55:56 GMT
File type ASCII text, with very long lines (65523)
Size 413 kB (412876 bytes)
Hash 152d7faccc2e1133ff50f8d875e1778f
82c385ac3b6eb22b3cb5a9cb54f4fd6fc57c0f97
4a29d993864a9f91a4137d3fe1d3e1ddbffad9d130c4be30e191cc8a9095bb1b
GET /27/e70947491773b29465b66e664f6dd7f1 HTTP/1.1
Host: eedsaung.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: scm=1; OAID=7688d390e6104ea09b5d03e4ea5e8be6; oaidts=1695619951
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 635608e5428ec51d9ac7ab1ef6689756
cache-control: max-age:290304000, public
last-modified: Tue, 12 Sep 2023 06:15:15 GMT
expires: Tue, 12 Oct 2083 06:15:15 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
veepteero.com/88/9944
200 OK 3.0 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint18:8E:43:6B:DE:B9:D5:C4:32:24:60:6A:7A:AA:F1:EA:EF:54:81:13
ValidityThu, 27 Jul 2023 05:27:19 GMT - Wed, 25 Oct 2023 05:27:18 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3275), with no line terminators
Hash 41c28850228e827247e2ff94401c133d
64ffa48120f69347afe6b70cd0bdb20ac80f2aa4
9e3e7e9ee5231b37514659504205941ee8c027dbe936509028e823d255848bde
GET /88/9944 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/json
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
gmxvmvptfm.com/get/1995559?zoneid=1995559&jp=_clm8wqjbi1iuehdzi2h83c&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=1&im=1&cid=3488823869562368
200 OK 4.2 kB URL GET HTTP/2 gmxvmvptfm.com/get/1995559?zoneid=1995559&jp=_clm8wqjbi1iuehdzi2h83c&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=1&im=1&cid=3488823869562368
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint36:76:FA:87:79:13:81:95:B3:AB:E9:8D:E6:AB:B8:22:69:B0:34:21
ValidityWed, 31 May 2023 13:05:08 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with very long lines (4563), with no line terminators
Hash d31b4ace4b64f8d060c2ce089037fd95
6b33de5c8af6b7b7dae92873487eb6d590ba3d9f
08f7b1c73b73b137b084f6ced89996c1ee75273c32890d0d28b857f11c2eea71
GET /get/1995559?zoneid=1995559&jp=_clm8wqjbi1iuehdzi2h83c&nojs=0&ix=0&abvar=0&febuild=1.0.155&t=0&x=1280&y=1024&wcks=1&wgl=0&cnvs=1&os=0&md=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=1&im=1&cid=3488823869562368 HTTP/1.1
Host: gmxvmvptfm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
UID=2309250032cd8d272c45494ebb8a4b760e11; Path=/; Expires=Mon, 28 Oct 2024 05:32:29 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
soumehoo.net/impression/8VrXSUeH4oVVjVSDyvCYod1adjamGsDFgQKUIroMfV-U23lZ50NId_kCrmkFkUYNBj5i4_Rw6vlBGo3ht_ootKO3GTK4GO4ocUhJw6LqekBA0h-n5y5TrJM2pMXvesDZ_E01wqOS8GJouLyBB3BjhNTVz7I-J8BZkL6UhR3xiPt5r6o9d2EaebXsbtFmpXTvLEp9UVVFBxFaxChrYt3rb-dhZlwv2gsl7rYoUL6zNgBwo9aGFWfW6hgsZVY3gu63gfJlDYCMJ-S6BeZ9oRZneZzsl219J3Ul3LgodzfW2g8x2UyGm2EwkJyzIPkgrf0xDcU-q4BEFld7K5GYB42w677hkFZu5t-bPDRebj7u_Ulk8lLkTem3SV8xPnXdhYk7w5Ye51BP6jXOzE9c4qaFwpn-mhKhj3wYXoCdkhttZGiY62ZNgfgJgpwL_WD9V7cXvDx5LbJg9YZqDYE9NqRAHquVdy1KS2moACVHc-G6fSIArMsaVWdX1cXlwCeuGRBxcZKvd1_VnMunih6C3YiAkldvkWtLRaDSsC5R1rNOhAxlgofqE_o54T0LRj4HWh5J7pE7-wUEnuSdZY-6khYV4KMLxqLeOc3yvw5XSZ15NX_LsG4MNY3GVWXDDQsBGpSZ_M-wPAYe47_4oT5aomkAjWB8yBOiiHTyfMymmF_rYx83-HgQ4-gMWNKAcnFuWJIuI-Zi34AzvEiMriC6?_z=6311480&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 43 B URL GET HTTP/2 soumehoo.net/impression/8VrXSUeH4oVVjVSDyvCYod1adjamGsDFgQKUIroMfV-U23lZ50NId_kCrmkFkUYNBj5i4_Rw6vlBGo3ht_ootKO3GTK4GO4ocUhJw6LqekBA0h-n5y5TrJM2pMXvesDZ_E01wqOS8GJouLyBB3BjhNTVz7I-J8BZkL6UhR3xiPt5r6o9d2EaebXsbtFmpXTvLEp9UVVFBxFaxChrYt3rb-dhZlwv2gsl7rYoUL6zNgBwo9aGFWfW6hgsZVY3gu63gfJlDYCMJ-S6BeZ9oRZneZzsl219J3Ul3LgodzfW2g8x2UyGm2EwkJyzIPkgrf0xDcU-q4BEFld7K5GYB42w677hkFZu5t-bPDRebj7u_Ulk8lLkTem3SV8xPnXdhYk7w5Ye51BP6jXOzE9c4qaFwpn-mhKhj3wYXoCdkhttZGiY62ZNgfgJgpwL_WD9V7cXvDx5LbJg9YZqDYE9NqRAHquVdy1KS2moACVHc-G6fSIArMsaVWdX1cXlwCeuGRBxcZKvd1_VnMunih6C3YiAkldvkWtLRaDSsC5R1rNOhAxlgofqE_o54T0LRj4HWh5J7pE7-wUEnuSdZY-6khYV4KMLxqLeOc3yvw5XSZ15NX_LsG4MNY3GVWXDDQsBGpSZ_M-wPAYe47_4oT5aomkAjWB8yBOiiHTyfMymmF_rYx83-HgQ4-gMWNKAcnFuWJIuI-Zi34AzvEiMriC6?_z=6311480&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectsoumehoo.net
FingerprintF5:39:03:CC:85:44:8A:CC:6A:B3:0D:B7:57:C8:AB:4E:A3:FE:EB:66
ValidityWed, 13 Sep 2023 09:58:44 GMT - Tue, 12 Dec 2023 09:58:43 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/8VrXSUeH4oVVjVSDyvCYod1adjamGsDFgQKUIroMfV-U23lZ50NId_kCrmkFkUYNBj5i4_Rw6vlBGo3ht_ootKO3GTK4GO4ocUhJw6LqekBA0h-n5y5TrJM2pMXvesDZ_E01wqOS8GJouLyBB3BjhNTVz7I-J8BZkL6UhR3xiPt5r6o9d2EaebXsbtFmpXTvLEp9UVVFBxFaxChrYt3rb-dhZlwv2gsl7rYoUL6zNgBwo9aGFWfW6hgsZVY3gu63gfJlDYCMJ-S6BeZ9oRZneZzsl219J3Ul3LgodzfW2g8x2UyGm2EwkJyzIPkgrf0xDcU-q4BEFld7K5GYB42w677hkFZu5t-bPDRebj7u_Ulk8lLkTem3SV8xPnXdhYk7w5Ye51BP6jXOzE9c4qaFwpn-mhKhj3wYXoCdkhttZGiY62ZNgfgJgpwL_WD9V7cXvDx5LbJg9YZqDYE9NqRAHquVdy1KS2moACVHc-G6fSIArMsaVWdX1cXlwCeuGRBxcZKvd1_VnMunih6C3YiAkldvkWtLRaDSsC5R1rNOhAxlgofqE_o54T0LRj4HWh5J7pE7-wUEnuSdZY-6khYV4KMLxqLeOc3yvw5XSZ15NX_LsG4MNY3GVWXDDQsBGpSZ_M-wPAYe47_4oT5aomkAjWB8yBOiiHTyfMymmF_rYx83-HgQ4-gMWNKAcnFuWJIuI-Zi34AzvEiMriC6?_z=6311480&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: soumehoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Cookie: OAID=f5lt318253dt377310293l1d6nadz774
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:36 GMT
content-type: image/gif
content-length: 43
x-trace-id: 290c99731f1fdf605c1d7187609c4446
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/css/style.css
200 OK 3.0 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/css/style.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT
File type ASCII text, with very long lines (3217), with no line terminators
Hash e721f13c34a28c935d15cb86025ab6a1
ebe63c8c18da2ada707dccd3a9d1e27582750e32
fd8ac12fcadfc0da8c4659cf5bf9c383ab3dd362817486ee42068399740f524e
GET /sb/notifications/vpn/default/us/yan-center/white-icon/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:33 GMT
content-type: text/css
last-modified: Fri, 11 Jun 2021 13:55:06 GMT
etag: W/"60c36b3a-bd5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 205435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RO8Qd00si6q%2Bl0XCfQvlRziJ95FxFLcqeeADE%2FgIF9bCySdxkMKiHvUkFYlLZMps4EOEANHysP5ciIV2yzo6kT6eVtGlXPZktZm23qEsP0uLgSbZkWw4WdHwLYSKt1BI6qOIcLh7JfoT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e328484448c4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
streamdav.com/css/adam/variables.css
200 OK 809 B URL GET HTTP/3 streamdav.com/css/adam/variables.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash 6c5e5065e7be1a6f7d5f646196ec4102
b7e0a93fda68b1a8a834270ad04a256035826b5f
de9c0b88a5167b56e1eeefe9fe0603c75d82f044e3ca320964d313682cd613fa
GET /css/adam/variables.css HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"329-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=orWLFd8e%2BQgSrypLvR0eLzbjvdaPI%2BXtv59hl0iwpK2ojfIT%2FZyZs9s8E5MxXVbbuMyDRjaMftlcwMSsci2a0JGv5Sf4cYBhyBzKa%2Fv%2BgSm0nkjxbHxEqSe0WQtcdokc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30009c256a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/modules/desktopPlayer/miniModules/displayMode.js
200 OK 1.7 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/displayMode.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (1787), with no line terminators
Hash df2ff67ac09c078306dc4244c6260cf2
5c6da9cc738278be257ee5cb823e22ab622aa720
c778fde9c6eb4402debde30385baaac2fb917ad1e1fb9e095c41e48855dbb7ed
GET /modules/desktopPlayer/miniModules/displayMode.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"6ae-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2FGGsLCJ8G9oGCKolUgmgqYsflnuZ8vNAovt7LvoKtTYe5uAbIjiyOuJKyZSU1Y3%2F4C55AIQgm6coHXHUZHwskWgYB4MN1f0F0kNKpCd4Gnk93b%2BRNGGgkisUcwuWGTZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30eb89156a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
my.rtmark.net/gid.js?userId=33068cc9c54342c3a9121f2ae42cc44e
0 B URL GET my.rtmark.net/gid.js?userId=33068cc9c54342c3a9121f2ae42cc44e
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gid.js?userId=33068cc9c54342c3a9121f2ae42cc44e HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
streamdav.com/css/adam/custom.css
200 OK 3.0 kB URL GET HTTP/3 streamdav.com/css/adam/custom.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (3221), with no line terminators
Hash 531b9b0f26ede13fde7bf61ee0a15ea7
8bf86e530660bb8539162fef3e93b47fe9255655
63f74a02cdb36cb6b6c7179e6536d46726fdc29b7fd254333ab7638c2ed55a0c
GET /css/adam/custom.css HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"bd0-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XuT6dGJZcYIwvpxed1KZjZIK%2BU1yAntBS8aY5qCkweAgipomhnMBPmEtYu5MrwMYEcsUy%2BcXbK17%2FGJqkwOrgWkMPukKk8Aty1eRtc8wYU%2FlTb%2BeyOTFffFfhpQ%2FSZ2Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30009c556a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/modules/desktopPlayer/miniModules/upload.js
200 OK 2.1 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/upload.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (2132), with no line terminators
Hash 7a262bf5e3e0a9e5907a2b3628474d54
6e8e4f8113304b8ed20c11d6858418366747199e
f05342762aa70ade3dfc05ce4693e7e0185b29e686be2f1247cf4f318425a2b1
GET /modules/desktopPlayer/miniModules/upload.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"804-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LVt3ek%2BJHCQsfDxGYTtPBYW3ijYV%2FIXGuDPjzbintAmhPSmFif4ufDhF53vmhtRqGTbQecPKxyFPJX8384cD0l4nMl5dHDl5fCCegaE%2FyOv5HK%2BjSzrPRMATJVt6oI5d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ec8a356a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/modules/desktopPlayer/miniModules/playback.js
200 OK 838 B URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/playback.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (876), with no line terminators
Hash 907ca0661d5187645d4e0ade7abea0be
d1cee9eb9bd17de5235f905b6aeef1ef9f66e676
b0ce23cbf69f022e75b1c0d64d1aa1e487c7803026e1ea68b7cb7033824591c2
GET /modules/desktopPlayer/miniModules/playback.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"346-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TGWbngWyPeLoUS%2BvlnYOz6K4agVwo0qfMaB8KFEAzDmO7uFwDXEu7zxMh8hMFXuiHjl7ThofnfOWrJhkmcIvStNqvccGlaiTiDyjwKtgEM7ymX83KTYDG%2B1rEfCCte1A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ec8a556a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 12 B URL POST HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 6949f52318584a4b51c719a9b84a7287
9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905
72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1662
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Mon, 25 Sep 2023 05:34:02 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://streamdav.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint2F:C1:71:0A:05:D9:0F:38:EF:D1:16:F7:50:AF:41:48:6B:F9:BA:B5
ValidityMon, 04 Sep 2023 08:23:30 GMT - Mon, 27 Nov 2023 08:23:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:vyx9IufpiM-_c-8vx17kTvo0Gl3teg:kxf5o_xJ7-tw2e8v; Expires=Wed, 24-Sep-2025 05:32:31 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 25 Sep 2023 05:32:31 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhd34Q2Id9uAs8n5t3XM9PigsAjJBSsfJ8mGgGDgWNTUWOsKIvhn5_LE8w-J5O7-BOfWAjQ__Q
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-vVypBzJy6Svpx-QUFeMU_g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/miniModules/captions.js
200 OK 3.8 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/captions.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (4014), with no line terminators
Hash fd270b57137cb49a507e8fb7c36b54e3
9814bb10ec77e52d62a951b415e8514e3084f935
3efc0cb98fe1f41e7334f4f6841315cc98fa4318e9a99730dab6b6ffdf4e7529
GET /modules/desktopPlayer/miniModules/captions.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"f08-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eYCTKhCYjD63vakDnUDOxC5eqyRhJvdbCssr7fQgj9ljx9e5m4ukFr3rS4JLH7iVwNZkgYBy39LQkIDWVOgb04J0WxeSB6DO%2FT7n1HT1tNNIEFHWiMOOtqepuQdf5P9l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30eb88956a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/modules/desktopPlayer/miniModules/styling.js
200 OK 2.5 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/styling.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (2635), with no line terminators
Hash cab0ce093334509b67adfc67120c7b2d
5683292c00517b3f2ad557f74121083aa2390f73
d88d45eb09a45bbed0a5ece91d26d8addbb934b2740428e7d53ed76d646a6a0d
GET /modules/desktopPlayer/miniModules/styling.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"9d8-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HAbCepNtwlgOg0rsIw4RULOKEgEX6Kb25QrqV5dAjOcAyM6UtS7gWl7g1Jax7OP5LR8om6JB2j%2FFIdX2QsnjjQUxVXTlgOiC78N14Knt19rgnoMji1H4fmjGNlC9M72j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ec8a056a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
tzegilo.com/stattag.js
200 OK 19 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint42:15:A6:1F:C2:2C:D5:FF:32:2C:B9:6C:84:A6:86:63:B0:45:C5:20
ValidityMon, 07 Aug 2023 17:09:01 GMT - Sun, 05 Nov 2023 17:09:00 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4056
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tk01nuTz5K%2Fwd%2FlePhNYVhGohELUfx%2BzjIfdeHfelxQnsTWwABE8LiIxvIK9zdZMt7c1tQchp6M3kcPgzERInAarpFm9aXYYBatG4e92LpMr8J5XjRA6DG3rZJ9hGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e317ff280b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
200 OK 156 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
Size 156 kB (155845 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Mon, 25 Sep 2023 05:32:27 GMT
age: 9143190
x-served-by: cache-fra-eddf8230097-FRA, cache-bma1631-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdCe6D9W_sHqYZevAiv8j1Ylmg9eLsAUXJBLgJ_UL0L34O_kRMk-24QvDiYDgtoQmcdUIk2ag
302 Found 0 B URL GET HTTP/3 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdCe6D9W_sHqYZevAiv8j1Ylmg9eLsAUXJBLgJ_UL0L34O_kRMk-24QvDiYDgtoQmcdUIk2ag
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdCe6D9W_sHqYZevAiv8j1Ylmg9eLsAUXJBLgJ_UL0L34O_kRMk-24QvDiYDgtoQmcdUIk2ag HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:XIqR_sxPu1bhHK0X4iG6feH562LVMw:rQUN1RxGIiTAsTqI;Path=/;Expires=Wed, 24-Sep-2025 05:32:32 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 25 Sep 2023 05:32:32 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhdOTprSCj4ioz-idkgMCFliPQKD3zCATfdTUQ2Q4gsSRHh8MFPHdbVS5a02QRLKUxdh4PFr&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-200635982%3A1695619952260394&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-it-FUIeyySm9iBq7EO5zzQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 405
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dubzenom.com/?rb=n5nOgGjPvR6Qg6cHG1BHWrZy1Xacq4MENpQKsRaTpVEGiUBIPJOSpFs9nQKBLrJzt4Ww9xDG4dclai70CAxcWHgeNTFLNd_v9yE7xdNRuaE_eQaKUZJ_EKtJKO7nI3rLbypRyafBkYUBjoWkk77Sblpf-0DoJ9hcYW7lRbhVYeo8O3Tq9wikefuFxHMqUAVHSCa9NqKSQDhVS5_LyaeuetQu1Xk%3D&request_ab2=0&zoneid=6308091&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=b5a4585a-59c5-463f-b9a3-03dbbd8b9bd0&userId=377a48a8ee824ff2b6e5bc592facd818&m=link
200 OK 1.6 kB URL GET HTTP/2 dubzenom.com/?rb=n5nOgGjPvR6Qg6cHG1BHWrZy1Xacq4MENpQKsRaTpVEGiUBIPJOSpFs9nQKBLrJzt4Ww9xDG4dclai70CAxcWHgeNTFLNd_v9yE7xdNRuaE_eQaKUZJ_EKtJKO7nI3rLbypRyafBkYUBjoWkk77Sblpf-0DoJ9hcYW7lRbhVYeo8O3Tq9wikefuFxHMqUAVHSCa9NqKSQDhVS5_LyaeuetQu1Xk%3D&request_ab2=0&zoneid=6308091&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=b5a4585a-59c5-463f-b9a3-03dbbd8b9bd0&userId=377a48a8ee824ff2b6e5bc592facd818&m=link
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectdubzenom.com
FingerprintB4:A2:7A:7C:28:7D:21:81:28:0D:43:28:55:83:62:AB:A7:E8:B5:4B
ValidityTue, 05 Sep 2023 14:16:13 GMT - Mon, 04 Dec 2023 14:16:12 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1636), with no line terminators
Hash 3de48a8536b31a69c567412d1ed2ac4e
c509b5d20b4462495793b15e0d9bcdd769d7cdcb
9c1c1201346eb3d4e00dafafb88e75c2de6814e745e0c91a1a2d4f1a3f6aeaaa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?rb=n5nOgGjPvR6Qg6cHG1BHWrZy1Xacq4MENpQKsRaTpVEGiUBIPJOSpFs9nQKBLrJzt4Ww9xDG4dclai70CAxcWHgeNTFLNd_v9yE7xdNRuaE_eQaKUZJ_EKtJKO7nI3rLbypRyafBkYUBjoWkk77Sblpf-0DoJ9hcYW7lRbhVYeo8O3Tq9wikefuFxHMqUAVHSCa9NqKSQDhVS5_LyaeuetQu1Xk%3D&request_ab2=0&zoneid=6308091&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=0&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=b5a4585a-59c5-463f-b9a3-03dbbd8b9bd0&userId=377a48a8ee824ff2b6e5bc592facd818&m=link HTTP/1.1
Host: dubzenom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Cookie: OAID=377a48a8ee824ff2b6e5bc592facd818; oaidts=1695619950
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json
x-trace-id: 5438caf851abf9fd5ca79d49d13f0773
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=377a48a8ee824ff2b6e5bc592facd818; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
oaidts=1695619951; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Mon, 02 Oct 2023 05:32:31 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/index.html
200 OK 1.8 kB URL GET HTTP/2 cdn.barscreative1.com/sb/notifications/vpn/default/us/yan-center/white-icon/1/index.html
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintCB:0F:87:85:B0:83:8B:5C:86:E5:81:91:9D:F5:ED:C4:A2:B6:B1:BE
ValidityTue, 12 Sep 2023 01:01:21 GMT - Mon, 11 Dec 2023 01:01:20 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1865), with no line terminators
Hash 1697c66ab9ec7eeb1f85076f18aad67d
77bc672ae060dea6e7c5afb8dab6db26d47f7bb5
0df11f25b8c90555e918b307b4201c1a26744ec59a8385daa0e2c8a45377178f
GET /sb/notifications/vpn/default/us/yan-center/white-icon/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:33 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Fri, 11 Jun 2021 13:55:05 GMT
etag: W/"60c36b39-6e6"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Mon, 25 Sep 2023 06:32:33 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/miniModules/keyboard.js
200 OK 1.2 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/keyboard.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (1310), with no line terminators
Hash 3808488e702e905c0d222c63db8cd3cf
61abf4b753ec99ba73972dfd51991c9f84662cce
6d6431ddffaffe9440f2434fb32567fc136d54dda09e54f03b3e31119978f517
GET /modules/desktopPlayer/miniModules/keyboard.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"4c9-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FcN6NNGhW3EGTF3YtTMSXny6He1lSz0mmC647KPPgwXV2SuqtqF4ukG40CfbnOr%2BKX%2Fw2V3JHc8BY0TbWP42D49%2FY4BV1caq4iAQpJwBPKi8ZisDVeWCRJOSQip0INfP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30eb89656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/favicon.ico
200 OK 15 kB URL GET HTTP/3 streamdav.com/favicon.ico
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 4a5f1e658ec734619344d5d641c060c4
fe7a765d3b9ea521b5cdd3b74759806271f5e0a0
f00595b164f18ade241fb7443fdc346af50e6a917d9b51ce0e40fa8c1c7e4a66
GET /favicon.ico HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1; prefetchAd_6311479=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"3c2e-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RaFKTTvYdFppbJWVGvKF3WZCHs7shXbu%2FltgbME%2FW922GVENkosoFywNwRUQdx069eXc%2FW7I33Zz4jFWWts5Wkcf5wV1XC3RlGJ%2F0IBXaxDzcXy8dajC4%2FaS2mZnMzK%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e318898d56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd2hJW5v-Rc7NKsqN9zHTM6Ks52gQhmhoXJYdPOzH4lFUvi08BPFSjKv69SFk_FVvGT1IKE&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2096702701%3A1695619952208995&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd2hJW5v-Rc7NKsqN9zHTM6Ks52gQhmhoXJYdPOzH4lFUvi08BPFSjKv69SFk_FVvGT1IKE&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2096702701%3A1695619952208995&theme=glif
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd2hJW5v-Rc7NKsqN9zHTM6Ks52gQhmhoXJYdPOzH4lFUvi08BPFSjKv69SFk_FVvGT1IKE&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2096702701%3A1695619952208995&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 25 Sep 2023 05:32:32 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-_9wNIelqv1mIoeXxwrYZ7Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
veepteero.com/?rb=ydffBcoaD01Qw4IwzF0MeOxCpq0Nfa3E0rXGWDsNSqqY0LIsRuLw_ezw_LfRkhPyovkzEmJCSklYxsi229XPcWPzz132r3ZdsaoqlfrfQFgd72GqzdcPAhOpIHOZ2n8c3dAUGvrkAbbJXzLBzHm_3QlExOe3uwNrNIoj8EO5Ue2xm7Ijkh3wB5v-dem4Bn-Y5USM75TdY8X8qFjUWxAj1F2rzLw%3D&request_ab2=0&zoneid=6311479&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=65c950b6-af36-40f9-ab4d-586084b0f651&userId=f5lt318253dt377310293l1d6nadz774&m=link
200 OK 1.7 kB URL GET HTTP/2 veepteero.com/?rb=ydffBcoaD01Qw4IwzF0MeOxCpq0Nfa3E0rXGWDsNSqqY0LIsRuLw_ezw_LfRkhPyovkzEmJCSklYxsi229XPcWPzz132r3ZdsaoqlfrfQFgd72GqzdcPAhOpIHOZ2n8c3dAUGvrkAbbJXzLBzHm_3QlExOe3uwNrNIoj8EO5Ue2xm7Ijkh3wB5v-dem4Bn-Y5USM75TdY8X8qFjUWxAj1F2rzLw%3D&request_ab2=0&zoneid=6311479&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=65c950b6-af36-40f9-ab4d-586084b0f651&userId=f5lt318253dt377310293l1d6nadz774&m=link
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint18:8E:43:6B:DE:B9:D5:C4:32:24:60:6A:7A:AA:F1:EA:EF:54:81:13
ValidityThu, 27 Jul 2023 05:27:19 GMT - Wed, 25 Oct 2023 05:27:18 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1745), with no line terminators
Hash e9f36f8f9db234cbc12229fe29a4e2e4
9b39ece2a111b6094a68c6bbf025c60be0d6acc6
ea8fc13981c3e9b9dda3352a7e44366c6d76d73d9b4e634a11651f1402bb1bf5
GET /?rb=ydffBcoaD01Qw4IwzF0MeOxCpq0Nfa3E0rXGWDsNSqqY0LIsRuLw_ezw_LfRkhPyovkzEmJCSklYxsi229XPcWPzz132r3ZdsaoqlfrfQFgd72GqzdcPAhOpIHOZ2n8c3dAUGvrkAbbJXzLBzHm_3QlExOe3uwNrNIoj8EO5Ue2xm7Ijkh3wB5v-dem4Bn-Y5USM75TdY8X8qFjUWxAj1F2rzLw%3D&request_ab2=0&zoneid=6311479&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fstreamdav.com%2Ff%2Fzaj473Gr33Of&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=65c950b6-af36-40f9-ab4d-586084b0f651&userId=f5lt318253dt377310293l1d6nadz774&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json
x-trace-id: 31204b64ba8fe22be280c5a1d6f39dd0
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=f5lt318253dt377310293l1d6nadz774; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
oaidts=1695619951; expires=Tue, 24 Sep 2024 05:32:31 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Mon, 02 Oct 2023 05:32:31 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
streamdav.com/modules/helpers.js
200 OK 836 B URL GET HTTP/3 streamdav.com/modules/helpers.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (889), with no line terminators
Hash 77c6995370ff7384d645120c4bb55e55
772ce9aef734290503aa2a85f0cdb2afb20afee6
6db7d269b327c2fb03347a0040b6348ef2f8b8875f858a6278503d77c7e7f7e3
GET /modules/helpers.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/controllers/PlayerController.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"344-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cOdksU89sebZVba1%2BWjL%2FXJirJO2ktdfZY%2BDJh%2FV1ZziuGeSXIpcg8aoTX6JhzFNLmjqVw9134ODkUV9fymrP7TQsmY5jVXIa8geSG47nOAcbECOkvsDeFoAHROqVyXr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e303edbd56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ibrapush.com/zone?pub=0&zone_id=6311483&is_mobile=false&domain=streamdav.com&var=&ymid=&var_3=&tg=0
200 OK 880 B URL GET HTTP/2 ibrapush.com/zone?pub=0&zone_id=6311483&is_mobile=false&domain=streamdav.com&var=&ymid=&var_3=&tg=0
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type troff or preprocessor input, ASCII text, with very long lines (977), with no line terminators
Hash d99c6c96a1508889125b4ea524a4e358
042c1be396a91dad6b52cbb486664c017e793196
e57ee1a834e578a282c26f03671049ff4ade7c6eaec96527895c07b5fcbb91dd
GET /zone?pub=0&zone_id=6311483&is_mobile=false&domain=streamdav.com&var=&ymid=&var_3=&tg=0 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: 667cc079012dc804a9633d858fabc297
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
streamdav.com/sw.js
200 OK 6.3 kB IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6666), with no line terminators
Hash 4ed93b0adf8b39d3dfb44e6f3021517e
1ac9a6c7ca58c49c719dd568bca3882c92f087ae
b8c641f7a3521cc7ec761427b739c12fb7b9941f4dcea7ddf514e5e4199b6d0d
GET /sw.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/f/zaj473Gr33Of
DNT: 1
Connection: keep-alive
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1; prefetchAd_6311479=true; sb_main_7622f20a76c793f0c2bacc82a57fc0f0=1; sb_idelay_7622f20a76c793f0c2bacc82a57fc0f0=1; prefetchAd_6308091=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: text/html; charset=utf-8
cf-cache-status: BYPASS
set-cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; Max-Age=7200; Path=/; HttpOnly
clmygc4hhbqzowbmb75ey6m8p=e%3AOwHmwP6r4aLm7RGCeqMv5pBrqLxTAYy6vv4tJIG8YQdjR5hq3RDyraVf069HTe5EWJFsciFBi_rnIUAgGlZNaw.YkhiYXNBRWh5WHgyQV9yWA.McnurJ6HDezC9wgKzRTumLSVU07mpYWKt_L-qrxle3o; Max-Age=7200; Path=/; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xn7xlbmDCgkAywKG3GAWp7d6HyixQkbUJexSHaTFITVQ8Da11wKx6wA3gJAMRe8OG3KRMBhDTS%2F7NjG29jHtwE5PqgicGqpW6l1lNnjVd%2FXGVLSvLqVYJOafdlNHLwIC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e31a9b2d56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/modules/desktopPlayer/miniModules/timeline.js
200 OK 3.6 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/timeline.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (3767), with no line terminators
Hash f39de29e41a6671e03cd0a527b3f0408
9f7946effab096b536460df9b283a4ffd3a2ce59
b397ebfba690b40e3c960f6c26d470726b790515507ccd383fa2da806c7a527b
GET /modules/desktopPlayer/miniModules/timeline.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"e2e-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WzVOTp2e4y24fdhSVDoNV77GYJo%2BusFeWQi13ha7vEgg4f1VGRUr0boE4XnmyZKBvR4Wpx%2Fx5HSKNkDmO%2B0Dn%2Bq8pgVm9lsKcMvKCRcmASCVesCe33nDdou06rGT%2FnKw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30ec89b56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ibrapush.com/pfe/current/universal.min.js?v=3.1.460
200 OK 88 kB URL GET HTTP/2 ibrapush.com/pfe/current/universal.min.js?v=3.1.460
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerLet's Encrypt
Subjectibrapush.com
Fingerprint3B:3D:4B:42:6B:6E:62:C4:F4:D3:DC:97:17:EF:48:8C:68:5C:58:85
ValidityFri, 25 Aug 2023 05:43:35 GMT - Thu, 23 Nov 2023 05:43:34 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0f22080b3f88f2f09bbabbcb8e9550c4
191596e48cd208528643ab0530ce3b2cb3f68fae
5d1d95a226026f763d0d086ef23b7cdc09e9dd0c68df56d6d638b0474a64e1e0
GET /pfe/current/universal.min.js?v=3.1.460 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 25 Sep 2023 05:32:31 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-155a7"
access-control-allow-origin: https://streamdav.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
idohethisisathllea.com/utx?cb=54FP99A4mSQu&top=streamdav.com&tid=994998
204 No Content 0 B URL GET HTTP/2 idohethisisathllea.com/utx?cb=54FP99A4mSQu&top=streamdav.com&tid=994998
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerAmazon
Subjectidohethisisathllea.com
Fingerprint85:DD:DD:23:88:CB:8B:EE:0A:E8:28:AD:8D:6A:15:CA:6B:85:DA:DF
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=54FP99A4mSQu&top=streamdav.com&tid=994998 HTTP/1.1
Host: idohethisisathllea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Mon, 25 Sep 2023 05:32:31 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://streamdav.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Mon, 25 Sep 2023 05:33:31 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 9ee3245d13c492e7e4abb0f2de012802.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: aR6UYL2Tctdrc0JS8irTNL8hj389medtmyMNvF1OBteHU_czAzP_8g==
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-shims.min.css?token=fc27d47fe7
200 OK 28 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-shims.min.css?token=fc27d47fe7
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint64:27:AB:CA:DB:24:8C:C9:87:09:13:04:21:49:9C:6A:4E:DD:97:93
ValiditySun, 10 Sep 2023 05:39:32 GMT - Sat, 09 Dec 2023 05:39:31 GMT
File type ASCII text, with very long lines (27377)
Hash da06df503ced6ee507b5fb4fa0999f74
d10d67ffa9c263e24c43b1df7fa3ba8f2dee2c36
236e285339a2a692e9491d356489cdf83513cfb1add049a0620123d644e47554
GET /releases/v6.4.2/css/free-v4-shims.min.css?token=fc27d47fe7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"da06df503ced6ee507b5fb4fa0999f74"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7334e58f541a6f336bf4941e79456558.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: q296yiABaJq9cFZ2Gj9McQwGrxTx8HMTj9m9gX0TiAhAPp3fX0VodA==
age: 3263305
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HCNm1v1IN30iLTa%2FfIrgJIxala23tpY3cFKnbi8MrMSegH3CJ3ZuB0o9JpO%2BgvAX9b8V2B1isbQgZwqQCHW4EgD1G%2BEyIP1UdWBM8DY12pzdXztxbPon6WgDH0NrbaQeM%2FHgQOIuig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e3056c7f7695-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
0 B URL GET addresseepaper.com/sfp.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-font-face.min.css?token=fc27d47fe7
200 OK 1.8 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-font-face.min.css?token=fc27d47fe7
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint64:27:AB:CA:DB:24:8C:C9:87:09:13:04:21:49:9C:6A:4E:DD:97:93
ValiditySun, 10 Sep 2023 05:39:32 GMT - Sat, 09 Dec 2023 05:39:31 GMT
File type ASCII text, with very long lines (1803), with no line terminators
Hash e222c7d81e67e7d64f8e1e2c2bf5b558
05f52e4d94bf5f8a4f874589b2c66f3d40b64ce6
35f3c6cee4d181081c6e1c723440924507201b46e4d5aa80a63fe29f7d8c748a
GET /releases/v6.4.2/css/free-v4-font-face.min.css?token=fc27d47fe7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"9b853b50f37dd0ca770ce0f294d427df"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 cb8e2cd001e8928a49dc551941d5c7da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: ggm3d7C_e0JikSFDCiSLUTEsfkQPx2WvzYhVDg4tvkjBo1ijnXnFYg==
age: 338641
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qCfkaFFLLHDZXFqstpfeYd1UuURj1ay6CBPoK3XWtmZfiTjYeLu43Q1LA2RXGVTF1x1EydKH82eFD7UX9WNTQXzB572dW0FcHLjjZx8klpcvqVMsSNjfuZih5AAQ4ioyodv7nJZILw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e3055c767695-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
streamdav.com/modules/desktopPlayer/miniModules/overlay.js
200 OK 2.1 kB URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/overlay.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (2145), with no line terminators
Hash 587e31e22d7b238c7da32dfd59bf4a9f
980774c45e9c7b488b7643ee8905f1a3e4c47efc
735a2e4d628f2b5bc5ec0d5966ec6456d95d607e7179853fc2e5870faa61e861
GET /modules/desktopPlayer/miniModules/overlay.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/index.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:29 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"809-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F5ak1Jtu%2FpgifEUOfKqXDgRfH5Cu1zmh93adeTBS4no7sbATh%2FlDjE5agjUtqblzp3JdxRykY38FXvM3p7kddvgNSdrvIEkAtH57xVBWn4H9ZQVhx7sCToZ%2FSvfp4LbQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30eb88756a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/modules/desktopPlayer/miniModules/message.js
200 OK 528 B URL GET HTTP/3 streamdav.com/modules/desktopPlayer/miniModules/message.js
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type ASCII text, with very long lines (556), with no line terminators
Hash 30b5351f759a7aee43903068fa707535
6ac0d79ef95b33c0b51b39dfc429f3d96fd67ad8
cc89a5a47fa2eb8ee311a208dd155ee370bb62d2b514ea2f1a90772aaa8fc0b7
GET /modules/desktopPlayer/miniModules/message.js HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/modules/desktopPlayer/miniModules/captions.js
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8; __PPU___PPU_SESSION_URL=%2Ff%2Fzaj473Gr33Of; dom3ic8zudi28v8lr6fgphwffqoz0j6c=25f705e8-14ad-48f0-a57b-8adb8bf06665%3A1%3A1; ppu_main_ca3a9904827f0041232be6ab023a4d4f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"210-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5znoUlO5JbejDbQPaVhYmn6FUxvJQzyaLCTESVHECmtgjbVxC51D%2B%2FvlQvNeStduumshI6LF15Cye8y%2BUmcqfJt24heuO9Sbpp9U1dHJ6QZp5Yw6M7RvH1HiHpfXtxB8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e31019cc56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
streamdav.com/css/adam/bootstrap-complementary.css
200 OK 14 kB URL GET HTTP/3 streamdav.com/css/adam/bootstrap-complementary.css
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectstreamdav.com
Fingerprint3A:89:EB:1E:2B:0B:93:3F:E9:34:FD:14:10:AA:41:9A:B7:3D:BD:D7
ValidityFri, 22 Sep 2023 16:48:22 GMT - Thu, 21 Dec 2023 16:48:21 GMT
File type assembler source, ASCII text
Hash ea1d2e5487255aed235c129ba014c03c
83bc386389bae6ffea27e810f6d61a3aec890826
b992db04fef3df817797977662bfd66819f8e6057417c9a170f8109297ff16f7
GET /css/adam/bootstrap-complementary.css HTTP/1.1
Host: streamdav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamdav.com/f/zaj473Gr33Of
Cookie: adonis-session=s%3AeyJtZXNzYWdlIjoiY2xteWdjNGhoYnF6b3dibWI3NWV5Nm04cCIsInB1cnBvc2UiOiJhZG9uaXMtc2Vzc2lvbiJ9.d0u8k1yn4oXi2T2rX8DFfRuygHFvIE37xukU2iN3sbQ; clmygc4hhbqzowbmb75ey6m8p=e%3AUNoSQwYFz7ljZ6oExo-poFE6pVC8dBdV_ZmhNrse6IIWTNZY8w34y3bSK7oNEQw7ZOxqhPtgeoE1qz_eqb-FFQ.WllocC1MY3R1dFREOUVXWg._KZPEzLi7SQCvZ6Bgk7BYZDOAtgNYGtsZh6KG_j6cI8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 25 Sep 2023 05:32:27 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=14400
last-modified: Tue, 07 Feb 2023 15:32:43 GMT
etag: W/"35ac-1862c820178"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ifeQsYAvArjaJvb80pMs3BW2hxLJhOSWM4IMu8z1b27%2BEfwOt7CrqrHH8EXB4MBznz2PNlnq34Sodee0erlPAovP%2F7xzc7baK4J%2Fg2FiT4jsJE3jHBBXDiU1xcewmfqa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80c0e30009c956a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ka-f.fontawesome.com/releases/v6.4.2/css/free.min.css?token=fc27d47fe7
200 OK 103 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.4.2/css/free.min.css?token=fc27d47fe7
IP
Requested by https://streamdav.com/f/zaj473Gr33Of
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint64:27:AB:CA:DB:24:8C:C9:87:09:13:04:21:49:9C:6A:4E:DD:97:93
ValiditySun, 10 Sep 2023 05:39:32 GMT - Sat, 09 Dec 2023 05:39:31 GMT
File type ASCII text, with very long lines (65321)
Size 103 kB (102749 bytes)
Hash ae737a19e46fd502ba9cbe9e33213861
a4b5d757af122c49259d4398807e62d4ca6f2493
5e0821588462d15b0ff8e911760fc041332c162e2e30ab4b1071bcc8eb6c8223
GET /releases/v6.4.2/css/free.min.css?token=fc27d47fe7 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streamdav.com/
Origin: https://streamdav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 25 Sep 2023 05:32:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"ae737a19e46fd502ba9cbe9e33213861"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6a1a17bbe377bf7c4423397c71959da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: dZkPRPoTPVRCpksK-hdLjQMldwf6RAxHX3CQjzMFyb27WZap3SG1nA==
age: 338641
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2FBHkcQpGzPuHn2ykKBTaib2DPwereGL0C3ifwNyaSHyRj8C9%2Fo7b2dR%2BJ0VDQT9ne7MHjnQATETIXbtVjeSYkbomV44LFr%2F%2B2iaiGPNrnmoXEbhy%2F2yMqUcXbwz0Ep6eJyxwilPpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80c0e3053c667695-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
188.114.96.1
139.45.197.245
172.64.102.10
52.58.179.111
104.21.21.130
62.122.171.6
23.36.76.200