Report - staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html

Report Overview

Visited public
2024-10-26 22:12:38
Tags
Submit Tags
URL
staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Finishing URL
streamstv.org/leak/?sams
IP / ASN
185.199.110.153
#54113 FASTLY
Title
Viral Leaked Video Watch Online & Download

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-10-23	2.0 kB	90 kB	216.58.207.227
cdn.creative-stat1.com	unknown	2024-08-20	2024-10-13	2024-10-23	1.9 kB	34 kB	104.21.13.187
staging3.deanguitars.uk.com	unknown	2024-10-26	2024-10-26	2024-10-26	7.8 kB	87 kB	185.199.111.153
recordedthereby.com	unknown	2024-05-08	2024-05-14	2024-10-23	796 B	172 kB	185.196.197.72
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-10-23	427 B	420 B	18.153.167.132
encrypted-tbn0.gstatic.com	unknown	2008-02-11	2013-05-31	2024-10-20	484 B	3.0 kB	142.250.74.174
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-10-13	2024-10-23	473 B	9.6 kB	45.133.44.1
cdn.show-sb.com	unknown	2024-08-20	2024-10-13	2024-10-23	480 B	2.0 kB	104.21.95.140
chinabangla24.blogspot.com	unknown	2000-07-31	2024-10-26	2024-10-26	1.5 kB	23 kB	216.58.207.193
i.imgur.com	5110	2009-01-09	2012-05-21	2024-10-23	431 B	12 kB	199.232.196.193
streamstv.org	unknown	2023-07-27	2023-07-28	2024-10-20	5.3 kB	148 kB	172.67.176.83
lookingserving.com	unknown	2024-06-09	2024-10-26	2024-10-26	435 B	34 kB	192.243.59.12
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-10-23	534 B	58 kB	104.18.10.207
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-10-23	412 B	375 B	185.196.197.72
epochheelbiography.com	unknown	2024-08-12	2024-10-22	2024-10-22	1.4 kB	28 kB	192.243.61.227
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-10-23	1.5 kB	990 B	192.243.59.20
zodiacdinner.com	unknown	2024-08-12	2024-10-22	2024-10-22	7.9 kB	14 kB	172.240.108.76
themes.googleusercontent.com	9661	2008-11-17	2012-05-24	2024-10-23	534 B	229 kB	142.250.74.97
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-10-23	418 B	7.9 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-26	medium	epochheelbiography.com	Sinkholed
2024-10-26	medium	epochheelbiography.com	Sinkholed
2024-10-26	medium	epochheelbiography.com	Sinkholed
2024-10-26	medium	unseenreport.com	Sinkholed
2024-10-26	medium	unseenreport.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed
2024-10-26	medium	zodiacdinner.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	recordedthereby.com/sfp.js	ScriptElement	85 kB	2024-05-17	2025-01-21
Pretty URL recordedthereby.com/sfp.js IP 185.196.197.72 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-17 16:43 Last Seen2025-01-21 11:22 Times Seen13574 Hash 7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b Loading...

	lookingserving.com/c6/ef/a8/c6efa8fea0552aefcaf631e51dc1ed0d.js	ScriptElement	95 kB	2024-10-26	2024-10-26
Pretty URL lookingserving.com/c6/ef/a8/c6efa8fea0552aefcaf631e51dc1ed0d.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-26 22:12 Last Seen2024-10-26 22:12 Times Seen1 Hash 2b1919f95e6949786a7509a421297183 70f70cb10c224e1e470fda3b3ce9bf4895286f78 6d83ab7655f0e3cd9b9caf5e4ac346a8e557abd02abb7184286ba111b70d42d9 Loading...

	streamstv.org/leak/assets/js/jquery.min.js	ScriptElement	88 kB	2023-03-07	2025-07-03
Pretty URL streamstv.org/leak/assets/js/jquery.min.js IP 172.67.176.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24 Last Seen2025-07-03 07:40 Times Seen4412 Hash f832e36068ab203a3f89b1795480d0d7 2115753ca5fb7032aec498db7bb5dca624dbe6be 4c24dfd28784ad2befb3dafaac6bf1ed4e7cd58cce713d9a0b228d426e812baf Loading...

	streamstv.org/leak/?sams	ScriptElement	97 B	2023-03-07	2025-06-28
Pretty URL streamstv.org/leak/?sams IP 172.67.176.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10 Last Seen2025-06-28 15:42 Times Seen95 Hash 40956b0297d2cdb1938779f38b98df2e 314abf0d35da071fd0e658877d0ce2be625fbef5 aac72daad67e197d763fcd7503752c5e1f98633574a0dc0a0ca0cec6257727fd Loading...

	streamstv.org/leak/assets/js/bootstrap.min.js	ScriptElement	49 kB	2023-03-07	2025-07-03
Pretty URL streamstv.org/leak/assets/js/bootstrap.min.js IP 172.67.176.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 08:16 Times Seen82027 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

	streamstv.org/leak/?sams	ScriptElement	4.0 kB	2023-09-10	2025-04-15
Pretty URL streamstv.org/leak/?sams IP 172.67.176.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-10 22:22 Last Seen2025-04-15 10:33 Times Seen22 Hash bb90b25a77511b3b57c1b8c1c1aff5c0 466634359367fe49232fb6bf5de9ad1c6e8a30bf acdc936479ae12e0af4ce942ce990f57e1ee3a7b175e4d48a9d185192a6d3571 Loading...

	epochheelbiography.com/6d/09/23/6d0923dc710edd8ffef772b1a90e60b0.js	ScriptElement	45 kB	2024-10-26	2024-10-26
Pretty URL epochheelbiography.com/6d/09/23/6d0923dc710edd8ffef772b1a90e60b0.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-26 22:12 Last Seen2024-10-26 22:12 Times Seen1 Hash c0ddc27243931bf550a27c4b025ca66e bad0fe879c68a8ba02e80f08b9c7fd232663d621 f36ddc73f1252e6a0b6d33ec1c26ffcd91c20e371bbe2870e7dd4fc546c579a3 Loading...

	streamstv.org/leak/?sams	ScriptElement	424 B	2024-06-30	2025-04-15
Pretty URL streamstv.org/leak/?sams IP 172.67.176.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-30 17:29 Last Seen2025-04-15 10:33 Times Seen9 Hash 881deb286a75db49e3edf4d48339a000 e0a802a570809c9691eab4e494c7738921bab08c 9b751c4efd44e04f085cd4091b101811d4402874e521725cdc7ec13c3d84b526 Loading...

	unknown	ScriptElement	619 B	2024-10-26	2024-10-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-26 22:12 Last Seen2024-10-26 22:12 Times Seen1 Hash 3209197b162db7af9d601a624d30e1e4 9391fda0e28b17da8becae13c3d9cfd962588774 319c5653de4de0d1e23a26d09b3fb5a8440dd62eb1ff551d317bb1d7a86222b8 Loading...

	capaciousdrewreligion.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-07-03
Pretty URL capaciousdrewreligion.com/advertisers.js IP 185.196.197.72 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-07-03 08:19 Times Seen5257586 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	epochheelbiography.com/f9/ba/3d/f9ba3dd1c2e12e64a5fbebca1ca4b945.js	ScriptElement	20 kB	2024-02-25	2024-12-21
Pretty URL epochheelbiography.com/f9/ba/3d/f9ba3dd1c2e12e64a5fbebca1ca4b945.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-25 15:26 Last Seen2024-12-21 20:13 Times Seen35 Hash 7ddc5f0b47e6971cca4d77ec7621fdb2 990d1c9e7a60fc169b27ec3e30e2f481f35a0e6d abf7acf3db3cf2af788bbb19bd4e4af706c6c68e8d9db77c0ea8d97b1845dce4 Loading...

HTTP Transactions (61)

URL IP Response Size

staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html

185.199.111.153

200 OK

9.6 kB

URL
staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1072), with CRLF line terminators
Size
9.6 kB (9577 bytes)
Hash
bb1e652e0220f527e0c27d70ac51bfbb
26e8b7c48b989f31b719157f0034cc4319a06c66
87fd7d53bdb727d22d2efd41ad5357c60d0c7b01de117fd490da7a6a7f54ef5e

HTTP Headers

GET /at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
last-modified: Sat, 26 Oct 2024 20:33:14 GMT
access-control-allow-origin: *
etag: W/"671d520a-99fd"
expires: Sat, 26 Oct 2024 21:36:27 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: B595:195CBC:10701A9:10D1FD2:671D5E82
accept-ranges: bytes
age: 0
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1729980731.177684,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 1e1c31fbf1afe5ee128382091f1989296b0857f0
content-length: 9577
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/static/images/d4fdf41d5g.png

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/static/images/d4fdf41d5g.png
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /static/images/d4fdf41d5g.png HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3ABE:111B81:39C8164:3B15C4C:671D6925
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.583676,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: d7c7d75cd0b1320b62fbbe4c5fcedd3c9cd1ec6e
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/style.css?Ver8.2

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/style.css?Ver8.2
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/style.css?Ver8.2 HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9160:E2802:3D096D3:3E57068:671D6925
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.585148,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 48a804ee7fcba7a61f2a2afdd27ce3629b6b226e
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/responsive.css?V1

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/responsive.css?V1
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/responsive.css?V1 HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6078:8DEDB:3D8081D:3ECF150:671D6923
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.586492,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 5d2dbc3703a309498aa8856f92bc0a36a3c374a1
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/swiper-bundle.min.css?V5

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/swiper-bundle.min.css?V5
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/swiper-bundle.min.css?V5 HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 98D4:115DDF:3E6B064:3FB8D3F:671D6924
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.588273,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 82aea4c1b68dc4eaa151a5d7c28d7d647f914581
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/jQueryUI.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/jQueryUI.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/jQueryUI.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64cd02b0-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 449B:195CBC:10FCD95:1161FB4:671D6925
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.589879,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: e5ab73509c757bcf53663c7b513ca40af743e50b
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/font-awesome.min.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/font-awesome.min.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/font-awesome.min.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E80C:867C9:39DCB06:3B2A347:671D6925
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.591762,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: af4317439d6aeb1b45e2b9decf0669c529716111
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Scripts/jquery-v3.4.1.min.js

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Scripts/jquery-v3.4.1.min.js
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Scripts/jquery-v3.4.1.min.js HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6098:8DEDB:3D8081D:3ECF14F:671D6924
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.593369,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 54588a09e70c58fde2b753a08f7e48939885efe0
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/lightgallery.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/lightgallery.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/lightgallery.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64cd02b0-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4486:115DDF:3E6B067:3FB8D47:671D691F
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.594894,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: b2571e18b4ff8ed0bb2357ce25f46d65c2d68283
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/lg-zoom.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/lg-zoom.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/lg-zoom.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64cd02b0-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4634:F2F90:3C4E7B7:3D9BD40:671D6923
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.595785,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: dba2336a4b0f97b4a9fd25a89f83ceb64b257f78
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/justifiedGallery.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/justifiedGallery.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/justifiedGallery.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E819:30FE7C:656D35:67ABDE:671D6924
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.596727,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 0e0b3be74cce98b00222d45cd760e6d9e16cd7e8
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/static/styles/critical.d71c829298bf.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/static/styles/critical.d71c829298bf.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /static/styles/critical.d71c829298bf.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64cd02b0-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6094:115DDF:3E6B067:3FB8D46:671D691F
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.609573,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4ab82cf7b669e1689c40e52ac54911c8c64629dc
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/Content/lg-thumbnail.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/Content/lg-thumbnail.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /Content/lg-thumbnail.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64cd02b0-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 931D:111B81:39C8166:3B15C51:671D6926
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.609596,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: ad8db992448f2806c4fd97a104f70c9918bdc174
content-length: 5254
X-Firefox-Spdy: h2

staging3.deanguitars.uk.com/static/styles/video-critical.c896d95bb3a9.css

185.199.111.153

404 Not Found

5.3 kB

URL
staging3.deanguitars.uk.com/static/styles/video-critical.c896d95bb3a9.css
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.3 kB (5254 bytes)
Hash
c1f9838a645648cb3b25359f7890a288
0cf12d25140e329bcb4c304feefce63f8f0ba7b3
b620507312c5e97566a3c6cfaf99144fefc18a0da7d941401dfa0f5f58fb0368

HTTP Headers

GET /static/styles/video-critical.c896d95bb3a9.css HTTP/1.1
Host: staging3.deanguitars.uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/at/video/video-mom-and-sons-pakistani-sex-xxx-xnxx-xvideo-xnx-video-xnx-sex-02.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64d39a40-24a3"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: B992:867C9:39DCB09:3B2A34A:671D6921
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:11 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410026-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729980732.613898,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: ad506b73f9a6644ec329e2d9708fb3226cb8a20b
content-length: 5254
X-Firefox-Spdy: h2

chinabangla24.blogspot.com/2024/10/viral-leak.html

216.58.207.193

200 OK

16 kB

URL
chinabangla24.blogspot.com/2024/10/viral-leak.html
IP
216.58.207.193:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text, with very long lines (1995)
Size
16 kB (16526 bytes)
Hash
46dd9f73e2f212747d76e16c879a31f6
b49253b18fbe3cc110f352136e4a814380c6f4b0
160e34993cb5f1981ffbaf8b2a2b3459532d795a4b462e81a0207233448f682b

HTTP Headers

GET /2024/10/viral-leak.html HTTP/1.1
Host: chinabangla24.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://staging3.deanguitars.uk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 26 Oct 2024 22:12:11 GMT
date: Sat, 26 Oct 2024 22:12:11 GMT
cache-control: private, max-age=0
last-modified: Sat, 26 Oct 2024 20:25:46 GMT
etag: W/"ddc90512f477ef9fd356cd6f239a7fa07dadfe63ffab1426a6102d9587879053"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 16526
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

chinabangla24.blogspot.com/js/cookienotice.js

216.58.207.193

200 OK

2.0 kB

URL
chinabangla24.blogspot.com/js/cookienotice.js
IP
216.58.207.193:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: chinabangla24.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chinabangla24.blogspot.com/2024/10/viral-leak.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Oct 2024 19:34:58 GMT
expires: Sat, 02 Nov 2024 19:34:58 GMT
cache-control: public, max-age=604800
last-modified: Sat, 26 Oct 2024 17:50:23 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 9434
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

chinabangla24.blogspot.com/responsive/sprite_v1_6.css.svg

216.58.207.193

200 OK

2.2 kB

URL
chinabangla24.blogspot.com/responsive/sprite_v1_6.css.svg
IP
216.58.207.193:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2244 bytes)
Hash
d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c

HTTP Headers

GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: chinabangla24.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chinabangla24.blogspot.com/2024/10/viral-leak.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Oct 2024 17:58:46 GMT
expires: Sat, 02 Nov 2024 17:58:46 GMT
cache-control: public, max-age=604800
last-modified: Sat, 26 Oct 2024 15:52:49 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 15206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxP.ttf

216.58.207.227

200 OK

25 kB

URL
fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxP.ttf
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Size
25 kB (24737 bytes)
Hash
cf682f60c5fb42d1a829a2b0321c2736
18c9c975b1708062983d37fcc7ce63994a0ac9b8
b1496eadaa0fce5d702d43a9185d31517405002140f090c55cc37a42549f306e

HTTP Headers

GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxP.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://chinabangla24.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://chinabangla24.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24737
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Oct 2024 20:02:03 GMT
expires: Fri, 24 Oct 2025 20:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 180609
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc9.ttf

216.58.207.227

200 OK

25 kB

URL
fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc9.ttf
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409
Size
25 kB (24709 bytes)
Hash
3aed985ab168667693e64bb8220d96f0
9280de1e4563c8404ab56f4092c8ec17c202a1ba
094305f9688c5de6f1d13633c8d3748737550c9b333511aa1258aabba97a0b27

HTTP Headers

GET /s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc9.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://chinabangla24.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://chinabangla24.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24709
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Oct 2024 08:32:44 GMT
expires: Sun, 26 Oct 2025 08:32:44 GMT
cache-control: public, max-age=31536000
age: 49168
last-modified: Thu, 01 Aug 2024 20:41:23 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600

142.250.74.97

200 OK

228 kB

URL
themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Sunset afterglow and twlight dunes in White Sands National Monument, software=Picasa], baseline, precision 8, 1600x1067, components 3
Size
228 kB (228521 bytes)
Hash
e66ef1f4c654be20558150214aa2b85a
ad1dfbefad9a21e48aeeac1bae9f8a5b8ea1ef3c
6a5482e0dc4e77a6be20281b13d7ef4d8b67521e73b66bc633ea4e4242934be9

HTTP Headers

GET /image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chinabangla24.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 27 Oct 2024 22:12:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Sat, 26 Oct 2024 22:12:12 GMT
server: fife
content-length: 228521
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET streamstv.org/leak/maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css

172.67.176.83

200 OK

5.5 kB

URL GET HTTP/3
streamstv.org/leak/maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
ASCII text, with very long lines (23865)
Size
5.5 kB (5471 bytes)
Hash
a07618b3e685bc7e39f68b4c4c3fb67c
9d0fc76b676ca402237c6ad45fc8913c20b106d6
876bd14241cf55a7746478aa82ca28096c0451e449c287a67c402a3465a4635a

HTTP Headers

GET /leak/maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: text/css
content-length: 5471
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:38 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 455
accept-ranges: bytes
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=arLayvQwHu55agxoJuFOhdzf2%2Bv%2BkRuJIFG7YRHzOHKg%2BRH9Nzmo4QjK7luTNoa9YcTRK6rS%2FqDtr2PPAkjIom%2BldGgTuOqHgi9mLeDPGyVONHAIuMPkQF57VRyqVivO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc95d69327130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=14&recv=9&lost=0&retrans=0&sent_bytes=4127&recv_bytes=1990&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=130&x=1", cfExtPri, cfHdrFlush;dur=0

GET streamstv.org/leak/assets/css/style.css

172.67.176.83

200 OK

2.4 kB

URL GET HTTP/3
streamstv.org/leak/assets/css/style.css
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
ASCII text
Size
2.4 kB (2357 bytes)
Hash
15b1486e25bef03794e84082a875f07f
000ae1aafb7c6eec33ba2099a28662fd853bec1f
522bcab3574e8385aeac24a5a46102dd8f95a9a1498c06f697492987baf0c062

HTTP Headers

GET /leak/assets/css/style.css HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: text/css
content-length: 2357
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:38 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 455
accept-ranges: bytes
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F%2F9AeJrOhaJacwyKpRzEWr3T13usysOZJ1QQ5w87OPtMOCZ8gBbLpk5JHcyMaLMLgFsBxZCxqF6sbmeiLSR5Q2G1%2F3uR4WGUWOzu11uhpSQcbvNkTa20BKEYfJYWjlBy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc95d79397130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=20&recv=9&lost=0&retrans=0&sent_bytes=10465&recv_bytes=1990&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=132&x=1", cfExtPri, cfHdrFlush;dur=0

GET streamstv.org/leak/assets/img/channels/devices_pc.png

172.67.176.83

200 OK

681 B

URL GET HTTP/3
streamstv.org/leak/assets/img/channels/devices_pc.png
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
PNG image data, 300 x 300, 8-bit colormap, non-interlaced
Size
681 B (681 bytes)
Hash
8e6f54b2c1730f13276c5527e681a8b4
83a7cc63b748576c1fd85abf503dddbe53080496
45d83e50760557547653ede73727bac3925ae841e92095210c6df0be87fbc56c

HTTP Headers

GET /leak/assets/img/channels/devices_pc.png HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: image/png
content-length: 681
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:38 GMT
cf-cache-status: HIT
age: 455
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z7t%2B6cGahk7G9wB9OTO9N0i5oisMNmfCfF8O0yL0Q941LPrParZcWxEP%2F7Ornss0BZ3gj%2Ff%2FIp7IIeg%2BYOv39KvzPbSsxyVk1QCmCOXok%2FEhJKw%2FUCYOqHzfU2zgnbsU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc95d79457130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16127&recv_bytes=3271&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=146&x=1", cfExtPri, cfHdrFlush;dur=17

GET streamstv.org/leak/assets/css/bootstrap.min.css

172.67.176.83

200 OK

21 kB

URL GET HTTP/3
streamstv.org/leak/assets/css/bootstrap.min.css
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
ASCII text, with very long lines (65325)
Size
21 kB (20560 bytes)
Hash
450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d

HTTP Headers

GET /leak/assets/css/bootstrap.min.css HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: text/css
content-length: 20560
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:38 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 455
accept-ranges: bytes
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gNyBXqQG6%2BHHCBUS7yx2vZ40aaTjFfywJ8Yi2GJXZ5%2BaEfAaKGRQGRZDAhkQ3ZfAUXWP8KUi%2B5H2gI0vL7RZRYitFs5XwOe8SoHQXf1996Ic%2Fgq2gcAJRBD6AmeguLAf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc95d69317130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=23&recv=9&lost=0&retrans=0&sent_bytes=13567&recv_bytes=1990&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=140&x=1", cfExtPri, cfHdrFlush;dur=0

GET streamstv.org/leak/assets/js/jquery.min.js

172.67.176.83

200 OK

31 kB

URL GET HTTP/3
streamstv.org/leak/assets/js/jquery.min.js
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30675 bytes)
Hash
f832e36068ab203a3f89b1795480d0d7
2115753ca5fb7032aec498db7bb5dca624dbe6be
4c24dfd28784ad2befb3dafaac6bf1ed4e7cd58cce713d9a0b228d426e812baf

HTTP Headers

GET /leak/assets/js/jquery.min.js HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: application/javascript
content-length: 30675
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:39 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 454
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bs%2Baja%2BPVEPjMMHdz%2BVmDTplCTm7l2gtItW%2FY%2FhgGUp2R%2BAEEJYTIeYEiJi%2BpJY06luIe7%2FG83029QI8F4Uwo6IzrHRTGJs9sxufHMsTIoXqj7LnFVG3my4gPyNYQm1g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc95d896e7130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16127&recv_bytes=3271&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=154&x=1", cfExtPri, cfHdrFlush;dur=33

GET streamstv.org/leak/assets/js/bootstrap.min.js

172.67.176.83

200 OK

13 kB

URL GET HTTP/3
streamstv.org/leak/assets/js/bootstrap.min.js
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
JavaScript source, ASCII text, with very long lines (48664)
Size
13 kB (13105 bytes)
Hash
14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b

HTTP Headers

GET /leak/assets/js/bootstrap.min.js HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: application/javascript
content-length: 13105
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:39 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 454
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HAmUeUw7Vc%2FkH9vbsTRWjXsaNc1B1tPMybdMTmc%2BpkaumoDCfX4AvYux%2BD7BXVR%2FiF0xSGjpOALNX7X3AyloX2stznZO0lk9oxJyUpRtc5W2TArnV2qay17d3zKc3FOH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc95d89737130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16127&recv_bytes=3271&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=155&x=1", cfExtPri, cfHdrFlush;dur=34

GET streamstv.org/leak/assets/img/channels/apple_pc.png

172.67.176.83

200 OK

4.5 kB

URL GET HTTP/3
streamstv.org/leak/assets/img/channels/apple_pc.png
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
PNG image data, 152 x 166, 8-bit/color RGBA, interlaced
Size
4.5 kB (4525 bytes)
Hash
aae8649eae5ef31ab4fb43c33d44865e
cafdaa8f4344759dcf28a36a1a3238957012e2ce
b520df6dd615d3be012d98b9c1272944fae7b440181116b1f331641ba6e45f2e

HTTP Headers

GET /leak/assets/img/channels/apple_pc.png HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: image/png
content-length: 4525
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:39 GMT
cf-cache-status: HIT
age: 454
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xueHFaMVexKFmvB5Hbaq7fRykXfbxxPjh0ygfliKBvngf6OkCd26rCiP1jt84SN5JM4ffspBuI6JcUdi4pmvpTOV7N7pqT2PigYibyuNkPdCYwC9Q6aC%2BwMWpfrfd%2Fs3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc95d89647130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16127&recv_bytes=3271&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=154&x=1", cfExtPri, cfHdrFlush;dur=9

GET streamstv.org/leak/assets/img/channels/android_pc.png

172.67.176.83

200 OK

3.8 kB

URL GET HTTP/3
streamstv.org/leak/assets/img/channels/android_pc.png
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
PNG image data, 134 x 153, 8-bit/color RGBA, interlaced
Size
3.8 kB (3807 bytes)
Hash
3f5bfe66ed2139a210e52fd77b67304f
e7f0c833b92791e3755d2b6174c96fd08aad16e5
ae442f714ccab6c299bc6c6a06448ec3be1da73c7cc75eeae7e3062e688fd5ce

HTTP Headers

GET /leak/assets/img/channels/android_pc.png HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: image/png
content-length: 3807
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:39 GMT
cf-cache-status: HIT
age: 454
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WgMXrKASbdPwvTADBTrgvfNzsz0oWZnhsjgDRdYNAqHRODajJqufKPCyK%2B0M%2F0KYqE749bNM0ThuFTGYdt7FCvPqdwC1GoKO3D4kUzuvHiHFaA6EWpQxsL9U7nNb4NgW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc95d89677130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16127&recv_bytes=3271&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=152&x=1", cfExtPri, cfHdrFlush;dur=11

GET streamstv.org/leak/assets/img/channels/chromecast_pc.png

172.67.176.83

200 OK

2.5 kB

URL GET HTTP/3
streamstv.org/leak/assets/img/channels/chromecast_pc.png
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
PNG image data, 66 x 67, 8-bit/color RGBA, interlaced
Size
2.5 kB (2538 bytes)
Hash
a4c2f3c54df18a5e63b8430b841ce706
fad5363c7e09e2e33e98456815858f0b2b752a05
559239226f470da8d5d064a6d62566920ecfe3419bd875e14240cad7efb818a2

HTTP Headers

GET /leak/assets/img/channels/chromecast_pc.png HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: image/png
content-length: 2538
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:39 GMT
cf-cache-status: HIT
age: 453
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3BUko2s%2FpviD2kBd3joxKocYE7vlsmb2nfKoR4%2F1kk348Tn1EaEAYbbepzv7jPBwljKOrp5A7zbR%2B6u2p1oF4dhVlXa%2FwNn5GrrKN2oVO10Bs3GL8TNlnvafflzl0%2FcA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc95d896b7130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20503&sent=26&recv=11&lost=0&retrans=0&sent_bytes=16127&recv_bytes=3271&delivery_rate=32865&cwnd=12000&unsent_bytes=0&cid=620a173b95a664cb&ts=154&x=1", cfExtPri, cfHdrFlush;dur=9

GET i.imgur.com/Ip78odY.jpeg

199.232.196.193

200 OK

11 kB

URL GET HTTP/2
i.imgur.com/Ip78odY.jpeg
IP
199.232.196.193:443
ASN
#54113 FASTLY

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerSectigo Limited
Subject*.imgur.com
Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42
ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 1200x675, components 3
Size
11 kB (10931 bytes)
Hash
ed8090e15952f6b3e41f960ed2ab904b
62982804174a57e71dc35b10062efec2511cb15b
f5f1ae45b97b2574743a1364f71c48d48e0e83d260a7678b08dc9e04d7c4e56a

HTTP Headers

GET /Ip78odY.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sun, 01 Sep 2024 17:34:11 GMT
etag: "ed8090e15952f6b3e41f960ed2ab904b"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: -99ADNYiJrIZrgA3wNQ-Y16h7K1MLNLyKBczChoxgt5jEkKWJ5iXxA==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 26 Oct 2024 22:12:13 GMT
age: 233636
x-served-by: cache-iad-kiad7000089-IAD, cache-hel1410021-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 26415, 3
x-timer: S1729980733.221735,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10931
X-Firefox-Spdy: h2

GET lookingserving.com/c6/ef/a8/c6efa8fea0552aefcaf631e51dc1ed0d.js

192.243.59.12

200 OK

34 kB

URL GET HTTP/1.1
lookingserving.com/c6/ef/a8/c6efa8fea0552aefcaf631e51dc1ed0d.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectlookingserving.com
Fingerprint24:1E:7F:EC:D3:EC:2C:3E:43:FB:A9:3A:6C:68:06:68:34:9A:77:52
ValidityTue, 08 Oct 2024 07:15:47 GMT - Mon, 06 Jan 2025 07:15:46 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (33563 bytes)
Hash
2b1919f95e6949786a7509a421297183
70f70cb10c224e1e470fda3b3ce9bf4895286f78
6d83ab7655f0e3cd9b9caf5e4ac346a8e557abd02abb7184286ba111b70d42d9

HTTP Headers

GET /c6/ef/a8/c6efa8fea0552aefcaf631e51dc1ed0d.js HTTP/1.1
Host: lookingserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Oct 2024 22:12:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: lookingserving.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c928d14dcd4d651abc5f3fab8a4ba161
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET recordedthereby.com/sfp.js

185.196.197.72

200 OK

85 kB

URL GET HTTP/1.1
recordedthereby.com/sfp.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
FingerprintA6:94:B5:48:61:24:04:47:02:E8:CB:06:9D:21:58:9B:28:B3:E2:F3
ValidityFri, 06 Sep 2024 22:52:34 GMT - Thu, 05 Dec 2024 22:52:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85378 bytes)
Hash
7e3e44049654b6e244c1777e68ffb8e7
8f2a8298666d607afd92a0baa362ef4dc9ccd039
4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:13 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f458fbf373f9a4e388b3e806622f1310
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0

104.18.10.207

200 OK

57 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint95:66:C2:43:CE:55:3C:D7:76:0E:9C:5F:28:8C:E9:AA:DC:AC:A2:59
ValidityFri, 20 Sep 2024 01:25:04 GMT - Thu, 19 Dec 2024 01:25:03 GMT

File type
Web Open Font Format (Version 2), TrueType, length 56780, version 4.197
Size
57 kB (56780 bytes)
Hash
97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

HTTP Headers

GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: font/woff2
content-length: 56780
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "97493d3f11c0a3bd5cbd959f5d19b699"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:48:19
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 945501e71c76162b9e4262d436fbaee5
cdn-cache: HIT
cf-cache-status: HIT
age: 259673
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8d8dc9625f8956b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET proftrafficcounter.com/stats

18.153.167.132

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.153.167.132:443
ASN
#16509 AMAZON-02

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40
ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
992d29b99772aa7e9190dcbfccb7c463
a0da1a652738c84f1c462a3aca6811e722747ebb
1ba02dc00b1e91884d873ab97dd72277929efad404981574d73b13648c8b0e88

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:13 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://streamstv.org
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; expires=Tue, 24 Oct 2034 22:12:13 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET capaciousdrewreligion.com/advertisers.js

185.196.197.72

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
FingerprintE3:36:E7:35:50:1D:3D:F0:47:9F:E5:94:90:B5:48:C0:67:A2:2B:8A
ValidityTue, 03 Sep 2024 21:28:57 GMT - Mon, 02 Dec 2024 21:28:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cf0d0c5955631ceeae63c03567237c19
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET epochheelbiography.com/f9/ba/3d/f9ba3dd1c2e12e64a5fbebca1ca4b945.js

192.243.61.227

200 OK

9.2 kB

URL GET HTTP/1.1
epochheelbiography.com/f9/ba/3d/f9ba3dd1c2e12e64a5fbebca1ca4b945.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectepochheelbiography.com
FingerprintD6:7A:2D:47:82:61:13:37:2B:51:5E:FA:D5:35:D1:81:92:B4:1A:85
ValiditySat, 12 Oct 2024 05:58:47 GMT - Fri, 10 Jan 2025 05:58:46 GMT

File type
JavaScript source, ASCII text, with very long lines (20358), with no line terminators
Size
9.2 kB (9227 bytes)
Hash
7ddc5f0b47e6971cca4d77ec7621fdb2
990d1c9e7a60fc169b27ec3e30e2f481f35a0e6d
abf7acf3db3cf2af788bbb19bd4e4af706c6c68e8d9db77c0ea8d97b1845dce4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f9/ba/3d/f9ba3dd1c2e12e64a5fbebca1ca4b945.js HTTP/1.1
Host: epochheelbiography.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: epochheelbiography.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cda3a97ccef39970da76638a697c1650
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET epochheelbiography.com/pixel/purst?dl=0&th=0&sc=0&rs=1305&rd=1305&fd=661&bv=24.10.2259&tmpl=70

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
epochheelbiography.com/pixel/purst?dl=0&th=0&sc=0&rs=1305&rd=1305&fd=661&bv=24.10.2259&tmpl=70
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectepochheelbiography.com
FingerprintD6:7A:2D:47:82:61:13:37:2B:51:5E:FA:D5:35:D1:81:92:B4:1A:85
ValiditySat, 12 Oct 2024 05:58:47 GMT - Fri, 10 Jan 2025 05:58:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1305&rd=1305&fd=661&bv=24.10.2259&tmpl=70 HTTP/1.1
Host: epochheelbiography.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Length: 0
Connection: keep-alive
Host: epochheelbiography.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET epochheelbiography.com/6d/09/23/6d0923dc710edd8ffef772b1a90e60b0.js

192.243.61.227

200 OK

16 kB

URL GET HTTP/1.1
epochheelbiography.com/6d/09/23/6d0923dc710edd8ffef772b1a90e60b0.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectepochheelbiography.com
FingerprintD6:7A:2D:47:82:61:13:37:2B:51:5E:FA:D5:35:D1:81:92:B4:1A:85
ValiditySat, 12 Oct 2024 05:58:47 GMT - Fri, 10 Jan 2025 05:58:46 GMT

File type
JavaScript source, ASCII text, with very long lines (44818), with no line terminators
Size
16 kB (16286 bytes)
Hash
c0ddc27243931bf550a27c4b025ca66e
bad0fe879c68a8ba02e80f08b9c7fd232663d621
f36ddc73f1252e6a0b6d33ec1c26ffcd91c20e371bbe2870e7dd4fc546c579a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /6d/09/23/6d0923dc710edd8ffef772b1a90e60b0.js HTTP/1.1
Host: epochheelbiography.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: epochheelbiography.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 1beaa93a623284319cdb24b642b5edcd
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET streamstv.org/leak/favicon.png

172.67.176.83

200 OK

37 kB

URL GET HTTP/3
streamstv.org/leak/favicon.png
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Size
37 kB (37032 bytes)
Hash
295e2ccab07c1d3e2c755bf089aee5e2
be2018e5e98d51a7e7f091e2bc61883845d0eb98
9f8d2130f7071be7671bc92639d545713bf85403cc80a371e6f71c6333a9282b

HTTP Headers

GET /leak/favicon.png HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/leak/?sams
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=300443e7-1569-47a5-a05c-57f1230233d8%3A1%3A1; pp_main_c6efa8fea0552aefcaf631e51dc1ed0d=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 26 Oct 2024 22:12:14 GMT
content-type: image/png
content-length: 37032
last-modified: Wed, 03 Jul 2024 15:44:24 GMT
cache-control: max-age=14400
expires: Sat, 26 Oct 2024 22:19:44 GMT
cf-cache-status: HIT
age: 450
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m5lqb%2FagPJ%2Fw%2BLF5FZKAdaa4tM24TdPme85l9IvAyVW%2BxfCZh4%2B%2FoI10h3nsymyRUCEVVukWXJXXrs1JSy%2BgCw%2Fzb4xn%2B4rU5kdsZji3mDbDY1AjIrWKP63GCAn8xulD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc9654bda7130-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=29400&sent=102&recv=21&lost=0&retrans=1&sent_bytes=96962&recv_bytes=4040&delivery_rate=357787&cwnd=67200&unsent_bytes=0&cid=620a173b95a664cb&ts=1387&x=1", cfExtPri, cfHdrFlush;dur=0

GET recordedthereby.com/sfp.js

185.196.197.72

200 OK

85 kB

URL GET HTTP/1.1
recordedthereby.com/sfp.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
FingerprintA6:94:B5:48:61:24:04:47:02:E8:CB:06:9D:21:58:9B:28:B3:E2:F3
ValidityFri, 06 Sep 2024 22:52:34 GMT - Thu, 05 Dec 2024 22:52:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85378 bytes)
Hash
7e3e44049654b6e244c1777e68ffb8e7
8f2a8298666d607afd92a0baa362ef4dc9ccd039
4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 159973b7b7f46d0add55cea808e5a9e8
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQJi-iuiJMGkIKV5omx6lwaGLTtzdegVbjX8Q&usqp=CAU

142.250.74.174

200 OK

2.1 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQJi-iuiJMGkIKV5omx6lwaGLTtzdegVbjX8Q&usqp=CAU
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintB0:78:E3:AA:FC:0D:C3:F5:76:B8:38:C6:A8:8D:AB:A8:9C:C3:FE:C9
ValidityMon, 07 Oct 2024 08:25:40 GMT - Mon, 30 Dec 2024 08:25:39 GMT

File type
PNG image data, 226 x 223, 8-bit colormap, non-interlaced
Size
2.1 kB (2149 bytes)
Hash
8f4366e471ed8a20a59a3d4bd0ae6ec3
da13e9a64c4b68fcfd3d0ce583a1db19a05aceff
3a2a4dc4a3c14c9ddfe995b329a66ad9582163f3bd5003e196bfdb0c36dd0bf3

HTTP Headers

GET /images?q=tbn:ANd9GcQJi-iuiJMGkIKV5omx6lwaGLTtzdegVbjX8Q&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 2149
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Oct 2024 09:09:08 GMT
expires: Sun, 26 Oct 2025 09:09:08 GMT
cache-control: public, max-age=31536000
age: 46986
last-modified: Fri, 20 Sep 2019 16:49:34 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET unseenreport.com/pxf.gif?uuid=300443e7-1569-47a5-a05c-57f1230233d8&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c6efa8fea0552aefcaf631e51dc1ed0d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=300443e7-1569-47a5-a05c-57f1230233d8&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c6efa8fea0552aefcaf631e51dc1ed0d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintF0:98:AC:22:06:CC:50:D7:62:08:A2:F7:67:3A:D3:8D:DA:4B:FE:E6
ValidityThu, 19 Sep 2024 04:18:43 GMT - Wed, 18 Dec 2024 04:18:42 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=300443e7-1569-47a5-a05c-57f1230233d8&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c6efa8fea0552aefcaf631e51dc1ed0d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0e890e36f89451b5683022cdc1af47fe
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET unseenreport.com/pxf.gif?uuid=300443e7-1569-47a5-a05c-57f1230233d8&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6d0923dc710edd8ffef772b1a90e60b0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=300443e7-1569-47a5-a05c-57f1230233d8&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6d0923dc710edd8ffef772b1a90e60b0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintF0:98:AC:22:06:CC:50:D7:62:08:A2:F7:67:3A:D3:8D:DA:4B:FE:E6
ValidityThu, 19 Sep 2024 04:18:43 GMT - Wed, 18 Dec 2024 04:18:42 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=300443e7-1569-47a5-a05c-57f1230233d8&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6d0923dc710edd8ffef772b1a90e60b0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Oct 2024 22:12:14 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0a68fd7d0fdac3e8bcb26af046f6d74a
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET zodiacdinner.com/sbar.json?key=6d0923dc710edd8ffef772b1a90e60b0&uuid=300443e7-1569-47a5-a05c-57f1230233d8%3A1%3A1

172.240.108.76

200 OK

8.7 kB

URL GET HTTP/1.1
zodiacdinner.com/sbar.json?key=6d0923dc710edd8ffef772b1a90e60b0&uuid=300443e7-1569-47a5-a05c-57f1230233d8%3A1%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type
JSON text data
Size
8.7 kB (8707 bytes)
Hash
8c009f2c9ca4cccf021cc05efbb573ec
eae74aaa673aa5c2b07d84913a230f1d21984d1d
48ad2c29e0b786505fa094f77a8bdb7380154052e5cdcbbb9bf41e845b23f69e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=6d0923dc710edd8ffef772b1a90e60b0&uuid=300443e7-1569-47a5-a05c-57f1230233d8%3A1%3A1 HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:15 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://streamstv.org
Access-Control-Allow-Origin: https://streamstv.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl23447044=1; expires=Sun, 27 Oct 2024 22:12:15 GMT; path=/; secure; SameSite=None
uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; expires=Sat, 02 Nov 2024 22:12:15 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sun, 27 Oct 2024 22:12:15 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sun, 27 Oct 2024 22:12:15 GMT; path=/; secure; SameSite=None
pdhtkv29=true; expires=Sun, 27 Oct 2024 22:12:15 GMT; path=/; secure; SameSite=None
uncs29=1; expires=Sun, 27 Oct 2024 22:12:15 GMT; path=/; secure; SameSite=None
slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]; expires=Sat, 26 Oct 2024 22:12:20 GMT; path=/; secure; SameSite=None
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 74c45631f4ebbfebb77139e2b39c029c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET zodiacdinner.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28bxRueTfM7%2FS4UVeJQVfKBA0jE2T%2F2rk2RIkJIFTU0Vcu%2FG5rdmXWGzO4sM7tex1wiIkGPFp9g89hpBJSKwLkVcio4RELUcMmBID4DUs%2FIJsLwSjPv%2B87zjPTM886nB8U58VDQs7W3VF9ISZebdbv20vuOc722KdKiV%2Bu1%2FA%2F8xvWa7r7a9uv2y7UbPNpRy67t2LZjO7V1oXmsestTECJ70HbqbbvecOtOs4Ge%2Fm9vCguGWmDdc%2FI8BJssPrGuQERjpMk3a9zs5Cp75c2kkDRXGl129E66k6oyRTIvY20hTo8u2FDm6fpjqPRwJheq%2Bw8xFBNi%2FfgYYXp0IRJhdzTTGUrwFCH7P8ruGFyOIegYkdqHYE8JEDHc2kKa3L%2BldEl3%2F0bpFJ2QxWd%2FQpQTsvjbFaTJw1UperW7Sha5UKlBL64gemOIzhhZcYK8vwBRniDKP4FgP5HlZ5tIk9GWkQqCnb3o2Xaj4fFgyWn67aVGQJtL1G5GS80gdlzPdj2PtWYGCTGGiMeQfABqLBTTJSwUsYUis5Cws1rkOE5gs4jarXYUeSzgoc9shwaxQx3bb6GIpm8YIM8GiOQAkd5DpvewIwbQxfcw2xUMs2Bygi6rUHKC0hCUlKAUBGVOUHarQyaNa6r7TJoidC6ye5G9aqjyzgE9VHmHpwRUD6BZNRLZR2YfUX5p2I%2FNzaGKTXSQnZPLU1Mt%2FsMidvhZzWd22%2FVYFDg2Z6wVxzwOAjd0aNvmvh3aMKKCMAszC%2FpiQq4%2F%2Bh2ZmJAXXvsZIT2BkSeIxHOgxTXQsgLdrtBPvza55jQxebeudAdMVcjyReS71oE8J1dnc3336nfg0enKr%2F0%2Fbjy88jEiXSHTFT4UTwg68t7wjirJ6I4qDTneynKRiD6dzvxuTnN%2B6cubfLdUmm2smcEXr0dTYFo%2BeJubfJOmTKQdQ75aFYxxva50xMmjDfMeD28XZnu10GmRbd5%2BY30jyTQ3Rqh0DComhBz%2FD5GYkMuffTv7zrYeQegxdFEhKU7JRUCoE0TZHkw2128UgZZzTphZKItqqN1wfigFgeTznoYVzL%2F6cF4PNZ3epqI6MPfQ0Qug%2BT7SpEJXV%2BjKClQOYIpLwzzTpyu%2FeLNAKBeGodQLo1Bq%2BfnM5ul2DCPOaoHn2dRvN50goDwIG24r9h1GqdvwXd%2BnHnIz6VwTK38FAAD%2F%2Fy64olmoBAAA

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
zodiacdinner.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28bxRueTfM7%2FS4UVeJQVfKBA0jE2T%2F2rk2RIkJIFTU0Vcu%2FG5rdmXWGzO4sM7tex1wiIkGPFp9g89hpBJSKwLkVcio4RELUcMmBID4DUs%2FIJsLwSjPv%2B87zjPTM886nB8U58VDQs7W3VF9ISZebdbv20vuOc722KdKiV%2Bu1%2FA%2F8xvWa7r7a9uv2y7UbPNpRy67t2LZjO7V1oXmsestTECJ70HbqbbvecOtOs4Ge%2Fm9vCguGWmDdc%2FI8BJssPrGuQERjpMk3a9zs5Cp75c2kkDRXGl129E66k6oyRTIvY20hTo8u2FDm6fpjqPRwJheq%2Bw8xFBNi%2FfgYYXp0IRJhdzTTGUrwFCH7P8ruGFyOIegYkdqHYE8JEDHc2kKa3L%2BldEl3%2F0bpFJ2QxWd%2FQpQTsvjbFaTJw1UperW7Sha5UKlBL64gemOIzhhZcYK8vwBRniDKP4FgP5HlZ5tIk9GWkQqCnb3o2Xaj4fFgyWn67aVGQJtL1G5GS80gdlzPdj2PtWYGCTGGiMeQfABqLBTTJSwUsYUis5Cws1rkOE5gs4jarXYUeSzgoc9shwaxQx3bb6GIpm8YIM8GiOQAkd5DpvewIwbQxfcw2xUMs2Bygi6rUHKC0hCUlKAUBGVOUHarQyaNa6r7TJoidC6ye5G9aqjyzgE9VHmHpwRUD6BZNRLZR2YfUX5p2I%2FNzaGKTXSQnZPLU1Mt%2FsMidvhZzWd22%2FVYFDg2Z6wVxzwOAjd0aNvmvh3aMKKCMAszC%2FpiQq4%2F%2Bh2ZmJAXXvsZIT2BkSeIxHOgxTXQsgLdrtBPvza55jQxebeudAdMVcjyReS71oE8J1dnc3336nfg0enKr%2F0%2Fbjy88jEiXSHTFT4UTwg68t7wjirJ6I4qDTneynKRiD6dzvxuTnN%2B6cubfLdUmm2smcEXr0dTYFo%2BeJubfJOmTKQdQ75aFYxxva50xMmjDfMeD28XZnu10GmRbd5%2BY30jyTQ3Rqh0DComhBz%2FD5GYkMuffTv7zrYeQegxdFEhKU7JRUCoE0TZHkw2128UgZZzTphZKItqqN1wfigFgeTznoYVzL%2F6cF4PNZ3epqI6MPfQ0Qug%2BT7SpEJXV%2BjKClQOYIpLwzzTpyu%2FeLNAKBeGodQLo1Bq%2BfnM5ul2DCPOaoHn2dRvN50goDwIG24r9h1GqdvwXd%2BnHnIz6VwTK38FAAD%2F%2Fy64olmoBAAA
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST28bxRueTfM7%2FS4UVeJQVfKBA0jE2T%2F2rk2RIkJIFTU0Vcu%2FG5rdmXWGzO4sM7tex1wiIkGPFp9g89hpBJSKwLkVcio4RELUcMmBID4DUs%2FIJsLwSjPv%2B87zjPTM886nB8U58VDQs7W3VF9ISZebdbv20vuOc722KdKiV%2Bu1%2FA%2F8xvWa7r7a9uv2y7UbPNpRy67t2LZjO7V1oXmsestTECJ70HbqbbvecOtOs4Ge%2Fm9vCguGWmDdc%2FI8BJssPrGuQERjpMk3a9zs5Cp75c2kkDRXGl129E66k6oyRTIvY20hTo8u2FDm6fpjqPRwJheq%2Bw8xFBNi%2FfgYYXp0IRJhdzTTGUrwFCH7P8ruGFyOIegYkdqHYE8JEDHc2kKa3L%2BldEl3%2F0bpFJ2QxWd%2FQpQTsvjbFaTJw1UperW7Sha5UKlBL64gemOIzhhZcYK8vwBRniDKP4FgP5HlZ5tIk9GWkQqCnb3o2Xaj4fFgyWn67aVGQJtL1G5GS80gdlzPdj2PtWYGCTGGiMeQfABqLBTTJSwUsYUis5Cws1rkOE5gs4jarXYUeSzgoc9shwaxQx3bb6GIpm8YIM8GiOQAkd5DpvewIwbQxfcw2xUMs2Bygi6rUHKC0hCUlKAUBGVOUHarQyaNa6r7TJoidC6ye5G9aqjyzgE9VHmHpwRUD6BZNRLZR2YfUX5p2I%2FNzaGKTXSQnZPLU1Mt%2FsMidvhZzWd22%2FVYFDg2Z6wVxzwOAjd0aNvmvh3aMKKCMAszC%2FpiQq4%2F%2Bh2ZmJAXXvsZIT2BkSeIxHOgxTXQsgLdrtBPvza55jQxebeudAdMVcjyReS71oE8J1dnc3336nfg0enKr%2F0%2Fbjy88jEiXSHTFT4UTwg68t7wjirJ6I4qDTneynKRiD6dzvxuTnN%2B6cubfLdUmm2smcEXr0dTYFo%2BeJubfJOmTKQdQ75aFYxxva50xMmjDfMeD28XZnu10GmRbd5%2BY30jyTQ3Rqh0DComhBz%2FD5GYkMuffTv7zrYeQegxdFEhKU7JRUCoE0TZHkw2128UgZZzTphZKItqqN1wfigFgeTznoYVzL%2F6cF4PNZ3epqI6MPfQ0Qug%2BT7SpEJXV%2BjKClQOYIpLwzzTpyu%2FeLNAKBeGodQLo1Bq%2BfnM5ul2DCPOaoHn2dRvN50goDwIG24r9h1GqdvwXd%2BnHnIz6VwTK38FAAD%2F%2Fy64olmoBAAA HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 249d9f97443a1859acb9ae74f58ecd55
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fe1%2F6f%2Fbb%2Fe16fbbe9f31c82c23d1d57f9726b5fc7%2F1654616215.html&l=1038&fd=225

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fe1%2F6f%2Fbb%2Fe16fbbe9f31c82c23d1d57f9726b5fc7%2F1654616215.html&l=1038&fd=225
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fe1%2F6f%2Fbb%2Fe16fbbe9f31c82c23d1d57f9726b5fc7%2F1654616215.html&l=1038&fd=225 HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:15 GMT
Content-Length: 0
Connection: keep-alive
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/img/close.png

104.21.13.187

200 OK

2.0 kB

URL GET HTTP/2
cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/img/close.png
IP
104.21.13.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36
ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
Size
2.0 kB (2005 bytes)
Hash
2cecae5111d5ff932a996679215ad573
f4c63abb5dc373aba5bc144c3831d98516cc7cc9
31f6aad6a88eca32f245dc6d0e030ef422f306b4f8479855b30e59b6dc134ebc

HTTP Headers

GET /sb/ssp/in-page_push/os/android/2/img/close.png HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:15 GMT
content-type: image/png
content-length: 2005
last-modified: Fri, 19 Jan 2024 14:19:44 GMT
etag: "65aa8500-7d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 152800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pgis%2Bhxdx%2FHTzkNM0E3kjdKObMGANfcQ5rIgCfWz4QPrS8x7Uzg8TngutQnTkWIlezRC43UlkSx5MsiupC9FH648YlLSDt8Q1xY%2FntYzRTmNGTN2B4kAEaOfkqJ9tSl6Q4yKNQnnAlka"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc96f1d2cb523-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=16894&sent=20&recv=13&lost=0&retrans=0&sent_bytes=11435&recv_bytes=1574&delivery_rate=262303&cwnd=254&unsent_bytes=0&cid=a05e434157d3f984&ts=72&x=0"
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/si/f6353b8e25c2610080e9f08e90db10a132010b875e02c71d1699827e1e6dd357.png

45.133.44.1

200 OK

9.2 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/si/f6353b8e25c2610080e9f08e90db10a132010b875e02c71d1699827e1e6dd357.png
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36
ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
9.2 kB (9221 bytes)
Hash
d11bff70ba4a20993aa0e7421b8ff0d1
2e9b8e6c3ab1402c3c5eed353b3a2381628a9f5a
8a4d45d80e4cf2d7222e088e38951af804377d1115bf9036c7f19f6590e778e2

HTTP Headers

GET /si/f6353b8e25c2610080e9f08e90db10a132010b875e02c71d1699827e1e6dd357.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:16 GMT
content-type: image/png
content-length: 9221
server: nginx/1.21.6
last-modified: Thu, 24 Oct 2024 15:54:16 GMT
etag: "671a6da8-2405"
expires: Mon, 28 Oct 2024 22:12:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

GET zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fcss%2Fanimate.css&l=78689&fd=137

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fcss%2Fanimate.css&l=78689&fd=137
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fcss%2Fanimate.css&l=78689&fd=137 HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:16 GMT
Content-Length: 0
Connection: keep-alive
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fjs%2Fscript.js&l=404&fd=128

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fjs%2Fscript.js&l=404&fd=128
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fjs%2Fscript.js&l=404&fd=128 HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:16 GMT
Content-Length: 0
Connection: keep-alive
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/css/animate.css

104.21.13.187

200 OK

23 kB

URL GET HTTP/2
cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/css/animate.css
IP
104.21.13.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36
ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT

File type
gzip compressed data, from Unix
Size
23 kB (23394 bytes)
Hash
2f2ae6bcfaaeb7d245b9b3a1a8457877
cc989e8435626fbde23d01e88964a574d831c11f
62481a5472ff34d62e0a8ef6fd8de068778269ed59bbf1763f9fb8289adf2578

HTTP Headers

GET /sb/ssp/in-page_push/os/android/2/css/animate.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:15 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:44 GMT
etag: W/"65aa8500-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 192217
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m8mbfB%2FhfMIrMPOeb4y8cXZYo6gPtno7H2Wkp703A0QgNfjxBfJY5wMXA3nQF0JNdM5tsw4GJ0L7yNOKDSqJYxcZhX087U84qpum%2BO2F3mn2pi%2BAhhm5JSUKATRFUBQtJQ1izKDTxvle"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc96efd09b523-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=16498&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3293&recv_bytes=1442&delivery_rate=262303&cwnd=253&unsent_bytes=0&cid=a05e434157d3f984&ts=58&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.227

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintB0:78:E3:AA:FC:0D:C3:F5:76:B8:38:C6:A8:8D:AB:A8:9C:C3:FE:C9
ValidityMon, 07 Oct 2024 08:25:40 GMT - Mon, 30 Dec 2024 08:25:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18492, version 1.0
Size
18 kB (18492 bytes)
Hash
7fda4c62c1bdeae7a08e6fd438104bac
b1f626e78f5f6d7be993303a49eb81f0fa4ce57c
4dbd328e347e890a801d51f9a5f8d38a3efd51ec34c0aa22cc83d0a95d6d9d71

HTTP Headers

GET /s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18492
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Oct 2024 04:07:13 GMT
expires: Sun, 26 Oct 2025 04:07:13 GMT
cache-control: public, max-age=31536000
age: 65103
last-modified: Thu, 01 Aug 2024 20:41:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET zodiacdinner.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTuLJiysBD8vCHDwomEn39Pw0QjDGLGHjZtn1102qq6onZaq72qru6cl4CQZ0j4N%2FQeebyQZ1XYyed5HJooeAuKOXHIz4Nwh7lhmD4z6oeu%2FV9xV89b36%2FDC7ID4yer7%2Bju5JpehyreyWXvnQ81ZKWzLOuqVus%2F5RvbpSMp3XW%2FWy%2B2rpumC7ernieq7ruV5pQxoR6u7yBIRM7re8csstVytlr1ZF1zzb28yBpQ5454K8CMnHC4%2BdRUg2Qhx9ty7sbqqT196OMkVTbdDhx%2B%2FFu7HOY0SzMjQOwvj4kg1tn2w8go6PpnKhO%2F8RAzkmzs%2BPEMTHlyIRdIZTnYGCiBHw55F3RhBqBElHYPoAkj8hAOO4uY04undTm5zu%2FYvSCTomC0%2F%2FhszHZOGPRcTRgzUlu6U7WmWp1LFFNywguyPI9ghJdoq0NweZn4Kln0HyX8jy0y3E0XDbKg3Jz1%2F2Xbda9UVjyavVW0vVBq0tUbfGlmqN0Kv4bsX3eXNqkJQjyHAEJfqg1kE2WdJBFjrIEgcRPy8xz%2FMaLmfUbbYY83lDBHXuerQRetRz601kbPKGPtKkD6b6YGYfidnHruzDZD%2FC7hSw3IFNCTq8QC4IckuQU4JcEuQpQd4pjriyFVvc48pmgXeZK5fZLwY6bR%2FSI522RUxATR%2BGF0OZfGIPwNL5QS%2B0NwY6tOwwuSBXJqY64qcF7IrzUp27rYrPWcNzBefNMBRho1EJPNpyRd0NXFhZQNq5qQU9OSYrD%2F9EIsfkpTd%2BRUBPYdUpmHwBNLsGmhegOwV68bc2NYJGNu2UtWmD6wJJuoB0zzlUF%2BTqdK7vX%2F0Bgp2t%2Ft776%2FqDxU%2FBTIHEFPhYPiZoq7uD2zonw9s6t%2BRkO0llJHt0MvM7KU3F%2FNc3xF6uDd9ct%2F2v3mQTYFLef1fYdIvGXMZtS75Zk5wLs6ENE%2BThpv1ABLcyu7OWmThLtm69tbEZJUZYK3U8ApVjQk6eA5NjcuWL76ff2TVDSDOCyQpE2Rm5DEh9CpbswyYz%2FVYTGDXjBImDPCsGphLMDpUkUGLW06CA%2FV8fzOqBoZPbVBaH9i7aZg40PUAcFeiYAh1VgKo%2BbDY%2FSBNztvqbPw0Eam4QKDM3DJRRX05tnmwnsPK85Lu8EYhQNAJRrVVDwXhQqwUuC1ng82aTIbXj9jW5%2Bk8AAAD%2F%2F65sd7GoBAAA

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
zodiacdinner.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTuLJiysBD8vCHDwomEn39Pw0QjDGLGHjZtn1102qq6onZaq72qru6cl4CQZ0j4N%2FQeebyQZ1XYyed5HJooeAuKOXHIz4Nwh7lhmD4z6oeu%2FV9xV89b36%2FDC7ID4yer7%2Bju5JpehyreyWXvnQ81ZKWzLOuqVus%2F5RvbpSMp3XW%2FWy%2B2rpumC7ernieq7ruV5pQxoR6u7yBIRM7re8csstVytlr1ZF1zzb28yBpQ5454K8CMnHC4%2BdRUg2Qhx9ty7sbqqT196OMkVTbdDhx%2B%2FFu7HOY0SzMjQOwvj4kg1tn2w8go6PpnKhO%2F8RAzkmzs%2BPEMTHlyIRdIZTnYGCiBHw55F3RhBqBElHYPoAkj8hAOO4uY04undTm5zu%2FYvSCTomC0%2F%2FhszHZOGPRcTRgzUlu6U7WmWp1LFFNywguyPI9ghJdoq0NweZn4Kln0HyX8jy0y3E0XDbKg3Jz1%2F2Xbda9UVjyavVW0vVBq0tUbfGlmqN0Kv4bsX3eXNqkJQjyHAEJfqg1kE2WdJBFjrIEgcRPy8xz%2FMaLmfUbbYY83lDBHXuerQRetRz601kbPKGPtKkD6b6YGYfidnHruzDZD%2FC7hSw3IFNCTq8QC4IckuQU4JcEuQpQd4pjriyFVvc48pmgXeZK5fZLwY6bR%2FSI522RUxATR%2BGF0OZfGIPwNL5QS%2B0NwY6tOwwuSBXJqY64qcF7IrzUp27rYrPWcNzBefNMBRho1EJPNpyRd0NXFhZQNq5qQU9OSYrD%2F9EIsfkpTd%2BRUBPYdUpmHwBNLsGmhegOwV68bc2NYJGNu2UtWmD6wJJuoB0zzlUF%2BTqdK7vX%2F0Bgp2t%2Ft776%2FqDxU%2FBTIHEFPhYPiZoq7uD2zonw9s6t%2BRkO0llJHt0MvM7KU3F%2FNc3xF6uDd9ct%2F2v3mQTYFLef1fYdIvGXMZtS75Zk5wLs6ENE%2BThpv1ABLcyu7OWmThLtm69tbEZJUZYK3U8ApVjQk6eA5NjcuWL76ff2TVDSDOCyQpE2Rm5DEh9CpbswyYz%2FVYTGDXjBImDPCsGphLMDpUkUGLW06CA%2FV8fzOqBoZPbVBaH9i7aZg40PUAcFeiYAh1VgKo%2BbDY%2FSBNztvqbPw0Eam4QKDM3DJRRX05tnmwnsPK85Lu8EYhQNAJRrVVDwXhQqwUuC1ng82aTIbXj9jW5%2Bk8AAAD%2F%2F65sd7GoBAAA
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTuLJiysBD8vCHDwomEn39Pw0QjDGLGHjZtn1102qq6onZaq72qru6cl4CQZ0j4N%2FQeebyQZ1XYyed5HJooeAuKOXHIz4Nwh7lhmD4z6oeu%2FV9xV89b36%2FDC7ID4yer7%2Bju5JpehyreyWXvnQ81ZKWzLOuqVus%2F5RvbpSMp3XW%2FWy%2B2rpumC7ernieq7ruV5pQxoR6u7yBIRM7re8csstVytlr1ZF1zzb28yBpQ5454K8CMnHC4%2BdRUg2Qhx9ty7sbqqT196OMkVTbdDhx%2B%2FFu7HOY0SzMjQOwvj4kg1tn2w8go6PpnKhO%2F8RAzkmzs%2BPEMTHlyIRdIZTnYGCiBHw55F3RhBqBElHYPoAkj8hAOO4uY04undTm5zu%2FYvSCTomC0%2F%2FhszHZOGPRcTRgzUlu6U7WmWp1LFFNywguyPI9ghJdoq0NweZn4Kln0HyX8jy0y3E0XDbKg3Jz1%2F2Xbda9UVjyavVW0vVBq0tUbfGlmqN0Kv4bsX3eXNqkJQjyHAEJfqg1kE2WdJBFjrIEgcRPy8xz%2FMaLmfUbbYY83lDBHXuerQRetRz601kbPKGPtKkD6b6YGYfidnHruzDZD%2FC7hSw3IFNCTq8QC4IckuQU4JcEuQpQd4pjriyFVvc48pmgXeZK5fZLwY6bR%2FSI522RUxATR%2BGF0OZfGIPwNL5QS%2B0NwY6tOwwuSBXJqY64qcF7IrzUp27rYrPWcNzBefNMBRho1EJPNpyRd0NXFhZQNq5qQU9OSYrD%2F9EIsfkpTd%2BRUBPYdUpmHwBNLsGmhegOwV68bc2NYJGNu2UtWmD6wJJuoB0zzlUF%2BTqdK7vX%2F0Bgp2t%2Ft776%2FqDxU%2FBTIHEFPhYPiZoq7uD2zonw9s6t%2BRkO0llJHt0MvM7KU3F%2FNc3xF6uDd9ct%2F2v3mQTYFLef1fYdIvGXMZtS75Zk5wLs6ENE%2BThpv1ABLcyu7OWmThLtm69tbEZJUZYK3U8ApVjQk6eA5NjcuWL76ff2TVDSDOCyQpE2Rm5DEh9CpbswyYz%2FVYTGDXjBImDPCsGphLMDpUkUGLW06CA%2FV8fzOqBoZPbVBaH9i7aZg40PUAcFeiYAh1VgKo%2BbDY%2FSBNztvqbPw0Eam4QKDM3DJRRX05tnmwnsPK85Lu8EYhQNAJRrVVDwXhQqwUuC1ng82aTIbXj9jW5%2Bk8AAAD%2F%2F65sd7GoBAAA HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 26 Oct 2024 22:12:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 810bc8ea758a4679b21f2a3c73a8a9c8
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fcss%2Fstyle.css&l=4682&fd=142

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
zodiacdinner.com/pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fcss%2Fstyle.css&l=4682&fd=142
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.43.5145&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Fin-page_push%2Fos%2Fandroid%2F2%2Fcss%2Fstyle.css&l=4682&fd=142 HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Oct 2024 22:12:16 GMT
Content-Length: 0
Connection: keep-alive
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET zodiacdinner.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
zodiacdinner.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerLet's Encrypt
Subjectzodiacdinner.com
Fingerprint42:9B:7F:4F:5B:8C:AB:3F:86:93:04:ED:5A:BF:83:C6:1C:E3:4B:2D
ValiditySat, 12 Oct 2024 11:48:56 GMT - Fri, 10 Jan 2025 11:48:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: zodiacdinner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Cookie: u_pl23447044=1; uid_id2=300443e7-1569-47a5-a05c-57f1230233d8:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec6d0923dc710edd8ffef772b1a90e60b0=[5643187,5643185]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Oct 2024 22:12:16 GMT
Content-Length: 0
Connection: keep-alive
Host: zodiacdinner.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.show-sb.com/sb/au/e1/6f/bb/e16fbbe9f31c82c23d1d57f9726b5fc7/1654616215.html

104.21.95.140

200 OK

1.0 kB

URL GET HTTP/2
cdn.show-sb.com/sb/au/e1/6f/bb/e16fbbe9f31c82c23d1d57f9726b5fc7/1654616215.html
IP
104.21.95.140:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectshow-sb.com
FingerprintDE:97:01:25:F3:91:37:6C:5B:CA:2B:55:01:2E:C7:F8:D9:16:D8:DC
ValidityFri, 18 Oct 2024 17:26:42 GMT - Thu, 16 Jan 2025 17:26:41 GMT

File type
HTML document, ASCII text, with very long lines (1105), with no line terminators
Size
1.0 kB (1038 bytes)
Hash
b3dbcc7bda277712ab6c111f7dd5b218
e68936db71fea46525d1d07868a9d6599e7a6a17
4e86b5724dcc3ea92cc005460b5c81b461d4b5c69e0d745d4886d0449f59b3b6

HTTP Headers

GET /sb/au/e1/6f/bb/e16fbbe9f31c82c23d1d57f9726b5fc7/1654616215.html HTTP/1.1
Host: cdn.show-sb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:15 GMT
content-type: text/html
last-modified: Tue, 07 Jun 2022 15:37:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8sA38nK8yuHYyoNkFPfW6P%2BJKUJCyqLlTPduVkDfrgJ1YfgOum%2FHKcSp6aEVfMPdw9n5%2BKIugR%2F4wj5zHgJtJ6IA2NqF9DHfVPcRHzH3GyshzIr5h24zTHH976G9CLsJt48%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc96d68d5569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=22512&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3199&recv_bytes=1115&delivery_rate=261781&cwnd=254&unsent_bytes=0&cid=467e9af2f2345dd9&ts=147&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintB0:78:E3:AA:FC:0D:C3:F5:76:B8:38:C6:A8:8D:AB:A8:9C:C3:FE:C9
ValidityMon, 07 Oct 2024 08:25:40 GMT - Mon, 30 Dec 2024 08:25:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Size
18 kB (18536 bytes)
Hash
8eff0b8045fd1959e117f85654ae7770
227fee13ceb7c410b5c0bb8000258b6643cb6255
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

HTTP Headers

GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Oct 2024 20:17:17 GMT
expires: Fri, 24 Oct 2025 20:17:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
age: 179699
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET streamstv.org/leak/?sams

172.67.176.83

200 OK

16 kB

URL User Request GET HTTP/2
streamstv.org/leak/?sams
IP
172.67.176.83:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectstreamstv.org
Fingerprint13:1F:44:2B:52:65:F5:F9:22:3A:11:75:94:A6:4C:72:8A:F5:83:56
ValidityFri, 13 Sep 2024 16:12:02 GMT - Thu, 12 Dec 2024 16:12:01 GMT

File type
HTML document, ASCII text
Size
16 kB (15933 bytes)
Hash
3af1eee99bd8f941109708bd401f64b2
9511607baaaf5dcbb9eacd41a6dc80c8981a87f2
1c09c53a0e30c4e2201c9908029a06e8b05241326d1b3f60e3d6b95240befd1d

HTTP Headers

GET /leak/?sams HTTP/1.1
Host: streamstv.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chinabangla24.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:12 GMT
content-type: text/html
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4VCG5ySElputqygxo5ZGCccM1VusmFFFwm4VTYm3hLoLBHg1MY%2FBUXSketx0uI6GS9oUZCUAWHOInfQH5vO6mKOK%2BFTaCNBFCO0nnbU8LhTrGp%2Fz9ub%2F63LjGta1t7Sa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d8dc95a2decb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=21573&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3279&recv_bytes=1276&delivery_rate=263384&cwnd=254&unsent_bytes=0&cid=480d9a94d3a9c88c&ts=433&x=0"
X-Firefox-Spdy: h2

GET cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/css/style.css

104.21.13.187

200 OK

4.7 kB

URL GET HTTP/2
cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/css/style.css
IP
104.21.13.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36
ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT

File type
ASCII text, with very long lines (4942), with no line terminators
Size
4.7 kB (4682 bytes)
Hash
3c322ca8e86e3b80df2633ae4023d605
2346278de279cfef28a590134db26472d40a77af
551bbe3e5451f642de63fdf3ed2303b5b929fca65d26733eca389bc214c911c6

HTTP Headers

GET /sb/ssp/in-page_push/os/android/2/css/style.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:15 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:44 GMT
etag: W/"65aa8500-124a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 192217
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rMgpXyeobJhcqxQVZx0r9BB9ZqDLgt%2BM%2Ft9xMJnzqp4YBEdWKdIO8UAaO4LgebnOsZP46yACZwqectfD7kqk5EbqOfNR2jB6KN15g9ed%2FQQBdcQru59SpRniguSizb6UJxH9BxFct7%2Fs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc96f0d0eb523-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=16894&sent=17&recv=13&lost=0&retrans=0&sent_bytes=9692&recv_bytes=1574&delivery_rate=262303&cwnd=254&unsent_bytes=0&cid=a05e434157d3f984&ts=65&x=0"
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

7.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint74:3D:68:F7:64:93:DF:41:12:95:A6:69:57:38:7A:AF:75:38:44:2D
ValidityMon, 07 Oct 2024 08:25:41 GMT - Mon, 30 Dec 2024 08:25:40 GMT

File type
ASCII text, with very long lines (7364), with no line terminators
Size
7.2 kB (7175 bytes)
Hash
e082b2c49137015642f9e60e58c34f87
02ab175bf4bcab25a605a280bb2405ea233d3085
654f6d483488078da3ff22c940040ea8a603172ff7d43d21a57b213976e06ec5

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Oct 2024 22:12:16 GMT
date: Sat, 26 Oct 2024 22:12:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/js/script.js

104.21.13.187

200 OK

404 B

URL GET HTTP/2
cdn.creative-stat1.com/sb/ssp/in-page_push/os/android/2/js/script.js
IP
104.21.13.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://streamstv.org/leak/?sams
Certificate
IssuerGoogle Trust Services
Subjectcreative-stat1.com
Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36
ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT

File type
ASCII text, with very long lines (416), with no line terminators
Size
404 B (404 bytes)
Hash
579f1c5636e651e926ad592c22f9e89c
b2b42ab876031bc2005857b5c8d029816de201a7
38da60a90eb425f8f62b0dce72e43233622c75da4126d4b7e0784e0b5ba94765

HTTP Headers

GET /sb/ssp/in-page_push/os/android/2/js/script.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streamstv.org
DNT: 1
Connection: keep-alive
Referer: https://streamstv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 26 Oct 2024 22:12:15 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:44 GMT
etag: W/"65aa8500-194"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 192217
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WL%2F6j0N9UyJEHZIdq0SlK%2FLzT%2BSWbXpv%2F%2FXjsDx%2FbffImLGIKaVQ%2BoWnRKLQFXgfPY0uRZgmY1M9O9u6kikHmxJweSOtDdPp1Fm2Nv1YbjeIpBianSwPP5E6LFvL9vtUjXD5%2FB2fCM1C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d8dc96efd0db523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=16498&sent=14&recv=12&lost=0&retrans=0&sent_bytes=8976&recv_bytes=1442&delivery_rate=262303&cwnd=253&unsent_bytes=0&cid=a05e434157d3f984&ts=60&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash