Report - tvstreams.ca/

Report Overview

Submitted URL
tvstreams.ca/
IP
64.34.156.166
ASN
#13768 COGECO-PEER1
Submitted
2023-01-20 03:30:23
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	29 kB	31.13.72.12
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.83.201.49
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	495 B	22 kB	142.250.74.35
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	746 B	216.58.207.202
tvstreams.ca	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.9 kB	572 kB	64.34.156.166
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.3 kB	93.184.220.29
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	579 B	110 kB	31.13.72.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-20	medium	tvstreams.ca/	Phishing
2023-01-20	medium	tvstreams.ca/media/jui/css/bootstrap-responsive.min.css?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/media/jui/js/jquery-noconflict.js?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/media/jui/css/bootstrap-extended.css?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/media/system/js/caption.js?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/media/jui/js/bootstrap.min.js?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/media/system/js/core.js?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/media/jui/js/jquery.min.js?2e8218854cb6e9869765e759a301043e	Phishing
2023-01-20	medium	tvstreams.ca/images/115280.jpeg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	tvstreams.ca/media/system/js/core.js?2e8218854cb6e9869765e759a301043e	8.7 kB	2023-03-07	2024-04-24
Pretty URL tvstreams.ca/media/system/js/core.js?2e8218854cb6e9869765e759a301043e IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:54 Last Seen2024-04-24 04:42:17 Times Seen1365 Hash e01099c2824b8fc4a435611089253cf7 ac8338f1566be54e957c123c863a97ca8d6f3ada 98333312a99b4c67911a1c1d4bddda30653715ffa23ea460fe385fa1987b39ba Loading...

	tvstreams.ca/	82 B	2023-03-07	2024-04-22
Pretty URL tvstreams.ca/ IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-22 15:07:22 Times Seen145 Hash 79deca40f1970ad64ecac2695e00c54e e02edbe745fc22be23bb4fb07cc4aac479833d04 82b6fab7b2d49c0f71c57ebd1161f300b1f11aa97550215fc496b8291b5f8d6a Loading...

	tvstreams.ca/	465 B	2023-03-11	2023-03-13
Pretty URL tvstreams.ca/ IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:58:53 Last Seen2023-03-13 03:40:27 Times Seen1 Hash c6d57a9154ec2f9e0937db3917d9ce62 c46c96944e8a502f54dd669804739d3d2500d2a4 f9ae2a932f07cd66f3f422ca42b896af6fa2065c3b360eedc22aa238b094b18c Loading...

	tvstreams.ca/media/jui/js/jquery-migrate.min.js?2e8218854cb6e9869765e759a301043e	10 kB	2023-03-07	2024-04-24
Pretty URL tvstreams.ca/media/jui/js/jquery-migrate.min.js?2e8218854cb6e9869765e759a301043e IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-24 11:43:42 Times Seen37171 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	tvstreams.ca/media/jui/js/jquery.min.js?2e8218854cb6e9869765e759a301043e	98 kB	2023-03-07	2024-04-24
Pretty URL tvstreams.ca/media/jui/js/jquery.min.js?2e8218854cb6e9869765e759a301043e IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-24 11:41:23 Times Seen2720 Hash 48a197817927a6eda6f531064f1dba71 5ba19dcca2e2d7ac659af0fbc97dc99e505c498b 05d31c760df3e6f0c64e3da1cd299e5f73df51c974c6528a60d0685859bbc1ba Loading...

	tvstreams.ca/media/jui/js/jquery-noconflict.js?2e8218854cb6e9869765e759a301043e	21 B	2023-03-07	2024-04-24
Pretty URL tvstreams.ca/media/jui/js/jquery-noconflict.js?2e8218854cb6e9869765e759a301043e IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-24 11:41:23 Times Seen4668 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 Loading...

	tvstreams.ca/media/system/js/caption.js?2e8218854cb6e9869765e759a301043e	491 B	2023-03-07	2024-04-24
Pretty URL tvstreams.ca/media/system/js/caption.js?2e8218854cb6e9869765e759a301043e IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-24 04:42:17 Times Seen2383 Hash 27e0e11b572de3bc44be960d25d65570 9c431113357e1a7147388978bde9b70a3ff6114a 20f7c83ab9dfdc1e88f4c3fafc0712492200ab738fb30660526bad9dcb7282dc Loading...

	connect.facebook.net/en_US/fbevents.js	109 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:30:49 Last Seen2023-03-13 08:53:57 Times Seen1 Hash ab83678e33d91a4c05df6e3d3f200bce 499efc34dc56dbc5e8a6fdb3a7dc4cfda2a3848d ef8f067f829af7c95936a36f38e54c98ab090f937f5557e4c78829ed8fcf5ffd Loading...

	connect.facebook.net/signals/config/1476614589029074?v=2.9.94&r=stable	386 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/signals/config/1476614589029074?v=2.9.94&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:40:27 Last Seen2023-03-13 03:40:27 Times Seen1 Hash 6ab9ed50750e6d6bc1a42b8deae9141e 89e8fa078f638d7793dd63646846a3803f190316 09ce41120dd66e1847f5be82c78bbfcdba136100fdff7d4c7edfbe9b4f42e0a2 Loading...

	tvstreams.ca/media/jui/js/bootstrap.min.js?2e8218854cb6e9869765e759a301043e	29 kB	2023-03-07	2024-04-24
Pretty URL tvstreams.ca/media/jui/js/bootstrap.min.js?2e8218854cb6e9869765e759a301043e IP 64.34.156.166 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-24 04:42:17 Times Seen1843 Hash a125594de09167bd2e9015d790029a64 b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692 b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2 Loading...

HTTP Transactions (50)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2799
Expires: Fri, 20 Jan 2023 04:16:51 GMT
Date: Fri, 20 Jan 2023 03:30:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5909
Expires: Fri, 20 Jan 2023 05:08:41 GMT
Date: Fri, 20 Jan 2023 03:30:12 GMT
Connection: keep-alive

tvstreams.ca/

64.34.156.166

200 OK

3.6 kB

URL HTTP/1.1
tvstreams.ca/
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (623), with CRLF, LF line terminators
Size
3.6 kB (3577 bytes)
Hash
7ab486362415284fdcd018a2c8f8dc47
091869424e91bd97771b15af30d7deefbb909404
929cf33b3b1e56ec3dee61267d724b1d0c9cae16813ff735eb5d0120665ff082

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416; path=/; HttpOnly
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Jan 2023 03:30:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3577
Keep-Alive: timeout=2, max=100
Content-Type: text/html; charset=utf-8

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 20 Jan 2023 02:49:33 GMT
content-type: application/json
age: 2439
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7afaa97fbfa9baa1485c892eac8e114d
8c17c707c218e28ac14197ce8e5eef873207a732
59db16baacb452453dbf44fc2a24f25ab09c4dbaec3a9271fda84230d8f11925

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59DB16BAACB452453DBF44FC2A24F25AB09C4DBAEC3A9271FDA84230D8F11925"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16644
Expires: Fri, 20 Jan 2023 08:07:36 GMT
Date: Fri, 20 Jan 2023 03:30:12 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: aYIh1TY8+gsoII2Z2hjR4bZQPtb5l069kCID9dotyR/7oZVWjlrDsp709fmJAYDuDby9lXuaFo8=
x-amz-request-id: VFYSJFMTY59Q2R6T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 20 Jan 2023 02:46:09 GMT
age: 2643
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 03:30:12 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a435563e4adb6d7d64a8600e6250bf45
a8f5a99620153938ec4cfba0423d6d06c66bb7fe
9e5c713c50dca08152c55041574e3e4003213133a8c78494ff18d1d1808589fb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tvstreams.ca/media/jui/css/bootstrap-responsive.min.css?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

4.8 kB

URL HTTP/1.1
tvstreams.ca/media/jui/css/bootstrap-responsive.min.css?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text, with very long lines (16452)
Size
4.8 kB (4783 bytes)
Hash
b8f7cdca2deb6a6b05b6ead608d11caf
69599bd366d385f1535c3765d563e5ee68a35bf7
c6404e3bcb1a70b768223c81ae6f4975a0233b7f60f0565430bcdeeac551e003

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/css/bootstrap-responsive.min.css?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4783
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a435563e4adb6d7d64a8600e6250bf45
a8f5a99620153938ec4cfba0423d6d06c66bb7fe
9e5c713c50dca08152c55041574e3e4003213133a8c78494ff18d1d1808589fb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tvstreams.ca/media/jui/css/bootstrap.min.css?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

24 kB

URL HTTP/1.1
tvstreams.ca/media/jui/css/bootstrap.min.css?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text, with very long lines (65307)
Size
24 kB (24196 bytes)
Hash
6038a2cf43995b809e0dd4187b87c9ce
a01141392e7e83c26012bb6f37d56b514a315fbd
2883a0c82079617c8b212cd2d72a0ec39a4657b3dcd09f39e8dc88c1b4fb8bf4

HTTP Headers

GET /media/jui/css/bootstrap.min.css?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: text/css

tvstreams.ca/media/jui/js/jquery-noconflict.js?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

21 B

URL HTTP/1.1
tvstreams.ca/media/jui/js/jquery-noconflict.js?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text
Size
21 B (21 bytes)
Hash
e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/js/jquery-noconflict.js?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Content-Length: 21
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript

tvstreams.ca/media/jui/css/bootstrap-extended.css?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

2.8 kB

URL HTTP/1.1
tvstreams.ca/media/jui/css/bootstrap-extended.css?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text
Size
2.8 kB (2777 bytes)
Hash
1ba98a366475efacf07bfaa1089f3240
ec6650d6089ca0e98534a392041d7c224dab34fd
b17f87dcb842e82bdf29018b7fad9a7a775e1734797fa72686aa93dd9c0bc541

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/css/bootstrap-extended.css?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2777
Keep-Alive: timeout=2, max=100
Content-Type: text/css

tvstreams.ca/media/jui/js/jquery-migrate.min.js?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

4.8 kB

URL HTTP/1.1
tvstreams.ca/media/jui/js/jquery-migrate.min.js?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text, with very long lines (9959)
Size
4.8 kB (4823 bytes)
Hash
d4b2d440154b0708bbe47f5911d6824e
e09da35219c04c5bb061dd9178306f0f1874e13a
2f4bdb1a6259e376f56c7b991b6eb056a1ac208644764494a72e70c6a2ab8ab0

HTTP Headers

GET /media/jui/js/jquery-migrate.min.js?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4823
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript

tvstreams.ca/media/system/js/caption.js?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

359 B

URL HTTP/1.1
tvstreams.ca/media/system/js/caption.js?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text, with very long lines (413)
Size
359 B (359 bytes)
Hash
ba33a2a2b0a3e41dbea370cbc2c65e7a
7fa27d8a31257af8de26394c2335b738573b4fe9
2f5bc89e117fd2b64ea8b00d14dc89f56a7917e2d3309bfc29bdfbbad812b48f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/system/js/caption.js?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 359
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript

tvstreams.ca/templates/canadianiptv/css/custom.css

64.34.156.166

200 OK

1.8 kB

URL HTTP/1.1
tvstreams.ca/templates/canadianiptv/css/custom.css
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text
Size
1.8 kB (1757 bytes)
Hash
fc99f4b0e2b651c4ca2f5dc9c15736e0
e4e2205011a5194eb6ae5951b965eba16b848cf0
a56b2c836451d3d6fb3067d7f18915b384c490158c7f1bb0ab36a8a54ea341f4

HTTP Headers

GET /templates/canadianiptv/css/custom.css HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 24 May 2022 17:41:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1757
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css

tvstreams.ca/media/jui/js/bootstrap.min.js?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

11 kB

URL HTTP/1.1
tvstreams.ca/media/jui/js/bootstrap.min.js?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text, with very long lines (28972)
Size
11 kB (10662 bytes)
Hash
7a659c0eb2e3c801f6c88775785fd0e2
35bcc6c1e130c5a9beb110d494cc50450a7d0636
9eda02adfc0068f26500228294a7a59970196b3e51416e114619e7edbe1f7b4c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/js/bootstrap.min.js?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10662
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript

tvstreams.ca/media/system/js/core.js?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

4.0 kB

URL HTTP/1.1
tvstreams.ca/media/system/js/core.js?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
Unicode text, UTF-8 text, with very long lines (8729)
Size
4.0 kB (4009 bytes)
Hash
8c71616a2d3962d0858e903f7f42658c
03fa0b2e79c0ab66f40ca30f43320b92cef0c70c
078d9eaf4127f8288a290e2b5b4ebd92002386110f46b691881973e42deb5ab9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/system/js/core.js?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4009
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript

tvstreams.ca/media/jui/js/jquery.min.js?2e8218854cb6e9869765e759a301043e

64.34.156.166

200 OK

46 kB

URL HTTP/1.1
tvstreams.ca/media/jui/js/jquery.min.js?2e8218854cb6e9869765e759a301043e
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
ASCII text, with very long lines (65462)
Size
46 kB (46196 bytes)
Hash
b70f6e40206640e28d10dc0db24dc276
b7144354d6f46806f74a06b643646bf80c2fe05b
f947415fb5edf8debbba8a67ada0e7fa5f867a2b4257428714699a4c0357315e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/js/jquery.min.js?2e8218854cb6e9869765e759a301043e HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 07 May 2022 18:05:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: application/javascript

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 20 Jan 2023 03:17:28 GMT
age: 765
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tvstreams.ca/images/features-vs-benefits.jpg

64.34.156.166

200 OK

114 kB

URL HTTP/1.1
tvstreams.ca/images/features-vs-benefits.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 970x576, components 3\012- data
Size
114 kB (114146 bytes)
Hash
e1f808c846f35092b9397c5fa36e1ed8
240a0d2805cbbe721d70b0a7f5b56a3e31aa0d61
f0ecd8f4ce5180fdbfe073d372805ed6bedb12eecc5b7dbf4db6a517950ef9d1

HTTP Headers

GET /images/features-vs-benefits.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sun, 22 May 2022 19:36:06 GMT
Accept-Ranges: bytes
Content-Length: 114146
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21280, version 1.0\012- data
Size
21 kB (21280 bytes)
Hash
16911581ab7ea10687a5aee74cbc5612
b0b24248345739209d753a4ac77ccfc1f627b219
c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf

HTTP Headers

GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://tvstreams.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 21:18:45 GMT
expires: Tue, 16 Jan 2024 21:18:45 GMT
cache-control: public, max-age=31536000
age: 281488
last-modified: Mon, 18 Jul 2022 19:57:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tvstreams.ca/images/pigs_and_robot.jpg

64.34.156.166

200 OK

32 kB

URL HTTP/1.1
tvstreams.ca/images/pigs_and_robot.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 576x360, components 3\012- data
Size
32 kB (32337 bytes)
Hash
ca9ada0907af95beaab32e0c4619041a
946d06231be138345aa3cf8c6237f4021b3bbecb
21ab2e200758cb880296b6eb8672ae45e4c337f903424eb5cac8e7e23475b4de

HTTP Headers

GET /images/pigs_and_robot.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Mon, 09 May 2022 18:54:20 GMT
Accept-Ranges: bytes
Content-Length: 32337
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
dce4a8be753d4a93db03ffca50421c43
068040a8f69777484e545c0053ad54f273710797
7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 929
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:13 GMT
Last-Modified: Fri, 20 Jan 2023 03:14:44 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

tvstreams.ca/images/tvstreams.jpg

64.34.156.166

200 OK

3.6 kB

URL HTTP/1.1
tvstreams.ca/images/tvstreams.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (623), with CRLF, LF line terminators
Size
3.6 kB (3577 bytes)
Hash
7ab486362415284fdcd018a2c8f8dc47
091869424e91bd97771b15af30d7deefbb909404
929cf33b3b1e56ec3dee61267d724b1d0c9cae16813ff735eb5d0120665ff082

HTTP Headers

GET /images/tvstreams.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Content-Type-Options: nosniff
Last-Modified: Fri, 20 Jan 2023 03:30:13 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3577
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tvstreams.ca/images/price.jpg

64.34.156.166

200 OK

53 kB

URL HTTP/1.1
tvstreams.ca/images/price.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 975x203, components 3\012- data
Size
53 kB (53430 bytes)
Hash
358ae7425b225ffb42d9e296a2914794
3dbb3c5ae7a0642c1ddd2d13bd2d5703256a6e7a
7c1cb8a97d188aa729445106bf71865d7541be3450fac75087c978072644ecfc

HTTP Headers

GET /images/price.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 25 May 2022 00:13:33 GMT
Accept-Ranges: bytes
Content-Length: 53430
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

tvstreams.ca/images/Interac-e-transfer.jpg

64.34.156.166

200 OK

30 kB

URL HTTP/1.1
tvstreams.ca/images/Interac-e-transfer.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 789x308, components 3\012- data
Size
30 kB (29713 bytes)
Hash
7771d5064d3044343412b4467c6bfa91
e4e6602d9b4907fda163ca18216b00ee5b1cd2cc
63d4e2d2cfd870dd2de953551a55b426327f7e7c29990c099f2ad6b3ac534d0f

HTTP Headers

GET /images/Interac-e-transfer.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 11 May 2022 19:07:13 GMT
Accept-Ranges: bytes
Content-Length: 29713
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

tvstreams.ca/templates/canadianiptv/images/logo.jpg

64.34.156.166

200 OK

6.9 kB

URL HTTP/1.1
tvstreams.ca/templates/canadianiptv/images/logo.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x60, components 3\012- data
Size
6.9 kB (6917 bytes)
Hash
c3dd08e4a912ae2fe58e1bbd2af9500c
bff0edfeb764af2037e7bc237a7cc5ecf1e83a1f
57a30491788e07821c24556b6907de81964aa8898d37e680591696e8d9e59f6b

HTTP Headers

GET /templates/canadianiptv/images/logo.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 24 May 2022 17:52:11 GMT
Accept-Ranges: bytes
Content-Length: 6917
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

tvstreams.ca/images/a-new-way-of-wathing2.jpg

64.34.156.166

200 OK

108 kB

URL HTTP/1.1
tvstreams.ca/images/a-new-way-of-wathing2.jpg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 970x396, components 3\012- data
Size
108 kB (108063 bytes)
Hash
ab49708e1b42a9d9b817e9b5adbc302d
1bb55a5cae497e356895a16622016e375acc7266
369e0a3e57bf12865a91c966c59742e284c4b20b7b13c62d88ac4826a18b68e8

HTTP Headers

GET /images/a-new-way-of-wathing2.jpg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Mon, 23 May 2022 00:25:07 GMT
Accept-Ranges: bytes
Content-Length: 108063
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

tvstreams.ca/images/115280.jpeg

64.34.156.166

200 OK

112 kB

URL HTTP/1.1
tvstreams.ca/images/115280.jpeg
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 700x364, components 3\012- data
Size
112 kB (112486 bytes)
Hash
3c58e9c99dc756a5e5dc600a56261182
8329b2320287a28984577141365763683f64c85b
5a02b96e598c5004ed12da88fbe42726351ab3e3209a00e6ace18846a6926c89

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /images/115280.jpeg HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 21 May 2022 00:24:18 GMT
Accept-Ranges: bytes
Content-Length: 112486
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c09fe3755f0cababb9dbd1e047bfd56
d76f6078e850d2821cef9aafec1dbca9654da281
1cc0bf113be42f803bb99403507f33ec49151538c5227d3d1d4c498e1ccd013d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2239
Cache-Control: max-age=91532
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:13 GMT
Etag: "63c8c492-1d7"
Expires: Sat, 21 Jan 2023 04:55:45 GMT
Last-Modified: Thu, 19 Jan 2023 04:18:26 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27859 bytes)
Hash
9ba458c0d3060a442f3094daf58ec05d
fc35d487d0dd81e6855f1b02367b755609d9608d
17087257ea25c2232c025f338b9f3153d35c3d953cb382b7b6e01728a643bc0b

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tvstreams.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: MWVUxqL7U9Ex0ccrhfe2blKDpJ1YMFoOH5wBO6Md/eAB3FyA2oAHUpgTzUVu7hWguDHdypV9rgR+XghTslhtlg==
priority: u=3,i
content-length: 27859
x-fb-trip-id: 2050670934
date: Fri, 20 Jan 2023 03:30:13 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c09fe3755f0cababb9dbd1e047bfd56
d76f6078e850d2821cef9aafec1dbca9654da281
1cc0bf113be42f803bb99403507f33ec49151538c5227d3d1d4c498e1ccd013d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2239
Cache-Control: max-age=91532
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 03:30:13 GMT
Etag: "63c8c492-1d7"
Expires: Sat, 21 Jan 2023 04:55:45 GMT
Last-Modified: Thu, 19 Jan 2023 04:18:26 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

tvstreams.ca/templates/canadianiptv/favicon.ico

64.34.156.166

200 OK

1.4 kB

URL HTTP/1.1
tvstreams.ca/templates/canadianiptv/favicon.ico
IP
64.34.156.166:0
ASN
#13768 COGECO-PEER1

File type
MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Size
1.4 kB (1406 bytes)
Hash
17c544d7a04daa81bc2b7d59fc8f4718
010b158dd65e6629b5ace7f5965fcf79df612445
4faeb532aa25cdc091da0ccef8c51155d819d29cca1ba193fc67f5594a6abb85

HTTP Headers

GET /templates/canadianiptv/favicon.ico HTTP/1.1
Host: tvstreams.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tvstreams.ca/
Cookie: c17e7f91c87c91d99fd32b6074d448cc=eb862dec410b9720b9c15303b2443416

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 03:30:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 28 May 2022 16:27:46 GMT
Accept-Ranges: bytes
Content-Length: 1406
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/x-icon

push.services.mozilla.com/

35.83.201.49

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.201.49:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DJ596MMPDc9P+VrCUa5IUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YIyy2vhm9NvJMWWrRuBYxbcN7fw=

www.facebook.com/tr/?id=1476614589029074&ev=PageView&dl=http%3A%2F%2Ftvstreams.ca%2F&rl=&if=false&ts=1674185413459&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674185413458.1947270241&it=1674185413102&coo=false&rqm=GET

31.13.72.36

200 OK

110 kB

URL HTTP/2
www.facebook.com/tr/?id=1476614589029074&ev=PageView&dl=http%3A%2F%2Ftvstreams.ca%2F&rl=&if=false&ts=1674185413459&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674185413458.1947270241&it=1674185413102&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
gzip compressed data, from Unix\012- data
Size
110 kB (110143 bytes)
Hash
275c354bb6eddb3c3f6064444d7c8ecd
b1c88608bae0ec8d1ce0fc45bbaee7b928cb29ac
268a683db02a4c1f014d6d19708938cdb9de8f4736d1227a0a7708965a1f7cdb

HTTP Headers

GET /tr/?id=1476614589029074&ev=PageView&dl=http%3A%2F%2Ftvstreams.ca%2F&rl=&if=false&ts=1674185413459&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674185413458.1947270241&it=1674185413102&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tvstreams.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 20 Jan 2023 03:30:14 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Fri, 20 Jan 2023 04:10:36 GMT
Date: Fri, 20 Jan 2023 03:30:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Fri, 20 Jan 2023 04:10:36 GMT
Date: Fri, 20 Jan 2023 03:30:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Fri, 20 Jan 2023 04:10:36 GMT
Date: Fri, 20 Jan 2023 03:30:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Fri, 20 Jan 2023 04:10:36 GMT
Date: Fri, 20 Jan 2023 03:30:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2422
Expires: Fri, 20 Jan 2023 04:10:36 GMT
Date: Fri, 20 Jan 2023 03:30:14 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10867 bytes)
Hash
3638dc76d0638625ac9a31c038df3a44
deff1903d591273a96d538ae77988d8a080e228c
8382af3843ebeca8e5c13fdd60f7fb92b479915416f36686fce40566fd87ce68

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10867
x-amzn-requestid: 8d882e21-d4c5-49ac-b76a-198cec065377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAnVTEfpoAMFgJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b8ee-6579537e6a82269f4bc99395;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:41:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 83ssVBkpe4gl1kI8bKYu90Vee3r32V_IiqQxtvt_TfAFk6DsDfyoTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:09:52 GMT
age: 19222
etag: "deff1903d591273a96d538ae77988d8a080e228c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10497 bytes)
Hash
884f5d7c3a0ee782d4f3fe9f16099891
1c80645a9b9879d1e4b57c546ba35131ba3c28fd
a7b63d331e09518150e6d9eff0c1d80928185ed0734cf1992af7df0021b6886f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10497
x-amzn-requestid: 3bc349ba-7da8-48c8-aa90-2c48c93a023d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnEG8mIAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-08e751fc7f0eacb43fc92712;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bj1mgLbvR-w2s5DeHXjVdV6EKk5hwGDWFvoKS0AvYKy1ycpCivryDA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 04:31:32 GMT
age: 82722
etag: "1c80645a9b9879d1e4b57c546ba35131ba3c28fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7111 bytes)
Hash
f5195ac5d83278bed049661c0d1aaa4a
74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e
30af8f591b2d4f7c8de7d52ea53bb170ca426ef0550001c7802a7f993a6344df

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7111
x-amzn-requestid: d9b5e6b0-3995-4c70-be84-0b1b457b7143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRlHtkIAMFiGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73d-37d253ee68fe1b7e483097dd;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 86-hgCgiYN-PYLZgXJO79kM9Vm6DIiRixaz-kQZFaY0m5481x8GWlw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:12:54 GMT
etag: "74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e"
content-type: image/jpeg
age: 19040
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6557 bytes)
Hash
5553b06c7dde4dc377f9f4e65bc8ace7
9dca5486485416d1aef199be08a50abd717addc7
33a5d1a21738218e0a6fe16d79045bd390af2e84073330a0a94c03812e1ba3ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 70710215-b8fd-44eb-8b50-f0948f98366c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmQWFNvoAMF3ZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b735-19e7e3865ce991cb5447f0f2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fc9dIiT5QQaTowAA6lp8ffJl4Niq3i_iVe54lYhAV52kJ8Q98EMJqQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:04:44 GMT
age: 19530
etag: "9dca5486485416d1aef199be08a50abd717addc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9369b744-9dfc-4ac2-9ce0-a77f2ec05285.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8230 bytes)
Hash
7cea3a2fd9e8c981ece73b75feccf858
37d407635bcb25d297429c10c3e33d58cc82e178
32063a5a3d74bc88752b89b7cd3387169e71e81d97ec0c2041c53c03c60f62a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9369b744-9dfc-4ac2-9ce0-a77f2ec05285.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8230
x-amzn-requestid: 6ab1dccd-6dc5-485a-af2d-ac53f13c78bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRvGMJIAMFkdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73e-586593f974e499e94995c289;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LvLtJnSXSnrBdTUWvpvsX6Vu33POniybQnepJx06DqWLk2KwnC52AQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:04:37 GMT
age: 19537
etag: "37d407635bcb25d297429c10c3e33d58cc82e178"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1ca04e6-1065-4245-9b8a-3ffd11238e67.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13383 bytes)
Hash
10654c1f4148826354dc8ccd8a3ed20b
6a53a07e284a316073fb2d40c2515978b662c947
d7d46a3c5470f1ead1b3a992782d4f07f913187f47155c62e13acf511930d569

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1ca04e6-1065-4245-9b8a-3ffd11238e67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13383
x-amzn-requestid: c9bade48-e562-4b6c-bd14-c9641643ae09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRaEodIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73c-3e5ddece6ab24f464b4a6cab;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MPvJJabVYfTMYR4nuKuxwTx3P3uuw_sOrwBXIrG1O0iYQ8fhZzvAOQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:12:56 GMT
etag: "6a53a07e284a316073fb2d40c2515978b662c947"
content-type: image/jpeg
age: 19038
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Raleway

216.58.207.202

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Raleway
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Raleway HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tvstreams.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jan 2023 03:30:12 GMT
date: Fri, 20 Jan 2023 03:30:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML