504 B IP
ASN #20940 Akamai International B.V.
Hash e7492695b5254a3a63fcffb4f1ee8cec
0361713c6d8129210245347284c7c6babfd28fb7
5d1bc1c01894fd88a0d4680490977488d6458bb58a98ace24ef8aa103538bc1f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D1BC1C01894FD88A0D4680490977488D6458BB58A98ACE24EF8AA103538BC1F"
Last-Modified: Tue, 09 Jul 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19956
Expires: Fri, 12 Jul 2024 13:11:26 GMT
Date: Fri, 12 Jul 2024 07:38:50 GMT
Connection: keep-alive
GET cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js
200 OK 23 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (65299)
Hash 6baf57f25796c332144ed58a2a0cd9ee
f7fd0f3dc84b2cf93bf81e832505a673f354e0a3
82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd
GET /npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"13b17-9/0PPchLLPk7+B6DJQWmc/NU4KM"
content-encoding: br
accept-ranges: bytes
date: Fri, 12 Jul 2024 07:38:51 GMT
age: 510245
x-served-by: cache-fra-etou8220085-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22772
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css
200 OK 35 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65342)
Hash cd822b7fd22c8a95a68470c795adea69
1f139981b9b47a766efa0a61bb78ada351f16c4b
3017df4a76db5f01c2b99b603d88b03106df13bcfe18e67b7c13c2341d3a67df
GET /npm/bootstrap@5.3.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"38df4-HxOZgbm0enZu+gphu3ito1HxbEs"
content-encoding: br
accept-ranges: bytes
date: Fri, 12 Jul 2024 07:38:51 GMT
age: 4406276
x-served-by: cache-fra-etou8220083-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34902
X-Firefox-Spdy: h2
GET yieldfifthexterminator.com/8e569672af5a081ee4679a4fa13abd83/invoke.js
200 OK 12 kB URL GET HTTP/1.1 yieldfifthexterminator.com/8e569672af5a081ee4679a4fa13abd83/invoke.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectyieldfifthexterminator.com
FingerprintC9:1C:E8:3E:BF:31:63:11:5E:A1:EE:8B:AD:94:DF:48:DE:23:93:01
ValidityThu, 13 Jun 2024 09:16:23 GMT - Wed, 11 Sep 2024 09:16:22 GMT
File type JavaScript source, ASCII text, with very long lines (31295), with no line terminators
Hash 939075223878fe901b14892e7b62abcc
1c796ebd96d9e23a76f4a03f5da1534b6e3a14f8
b85710a91ce42feaf006bbeaae8a5f680dc05e3308fefa1a4acc40fd9442ac13
GET /8e569672af5a081ee4679a4fa13abd83/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 5ad80b5c6c166ddd723e3bf1cc773ba8
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET yieldfifthexterminator.com/a939b45f48094eba9a23b166485a9176/invoke.js
200 OK 12 kB URL GET HTTP/1.1 yieldfifthexterminator.com/a939b45f48094eba9a23b166485a9176/invoke.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectyieldfifthexterminator.com
FingerprintC9:1C:E8:3E:BF:31:63:11:5E:A1:EE:8B:AD:94:DF:48:DE:23:93:01
ValidityThu, 13 Jun 2024 09:16:23 GMT - Wed, 11 Sep 2024 09:16:22 GMT
File type JavaScript source, ASCII text, with very long lines (31316), with no line terminators
Hash 9fcd16ece942016607c66e4c797a853c
3d2fdd3686919fcaf9d321759bed05bd73048aea
91daa4c4f0315f7cd8df636dd80d637878c683e79c468e60e9b87098826f522d
GET /a939b45f48094eba9a23b166485a9176/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f3d008640e0c5164de119e3cac92bc43
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET yieldfifthexterminator.com/2cd1d97d83835c6c13b75ce072ac79eb/invoke.js
200 OK 12 kB URL GET HTTP/1.1 yieldfifthexterminator.com/2cd1d97d83835c6c13b75ce072ac79eb/invoke.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectyieldfifthexterminator.com
FingerprintC9:1C:E8:3E:BF:31:63:11:5E:A1:EE:8B:AD:94:DF:48:DE:23:93:01
ValidityThu, 13 Jun 2024 09:16:23 GMT - Wed, 11 Sep 2024 09:16:22 GMT
File type JavaScript source, ASCII text, with very long lines (31316), with no line terminators
Hash 4c282defc7108ef1da7ce78b4e686e5e
d15247ddbd163e7fd21075431edf8171a3d594a8
79390e8e8fe6cb52003e6e283f75a7d31bcff61ecc2185c009d431ee4d874487
GET /2cd1d97d83835c6c13b75ce072ac79eb/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: e7813c6437e1b7fe4ecd68810ac2be07
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET yieldfifthexterminator.com/52311e36e5c18a87bc1f047eb0ca43d2/invoke.js
200 OK 12 kB URL GET HTTP/1.1 yieldfifthexterminator.com/52311e36e5c18a87bc1f047eb0ca43d2/invoke.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectyieldfifthexterminator.com
FingerprintC9:1C:E8:3E:BF:31:63:11:5E:A1:EE:8B:AD:94:DF:48:DE:23:93:01
ValidityThu, 13 Jun 2024 09:16:23 GMT - Wed, 11 Sep 2024 09:16:22 GMT
File type JavaScript source, ASCII text, with very long lines (31289), with no line terminators
Hash d3ec99d334c4f778e7bc28bc85c9788d
2f244cc8fbb1465b945f1cd3a84ebd9137afbfb5
6b1f73a9acb2b67a12656c832a643ac15850d2ea58ca54b0b53673b5113d3f35
GET /52311e36e5c18a87bc1f047eb0ca43d2/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 5baf362c734ba1927efb36c04c9be674
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET yieldfifthexterminator.com/3b/68/32/3b68321e652888d37e2dd89afd5c8bf0.js
200 OK 33 kB URL GET HTTP/1.1 yieldfifthexterminator.com/3b/68/32/3b68321e652888d37e2dd89afd5c8bf0.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectyieldfifthexterminator.com
FingerprintC9:1C:E8:3E:BF:31:63:11:5E:A1:EE:8B:AD:94:DF:48:DE:23:93:01
ValidityThu, 13 Jun 2024 09:16:23 GMT - Wed, 11 Sep 2024 09:16:22 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 78e66e13a454d9200fa96fb8f43c8975
68f516e6a255da7d2e678ea21565c33be1496902
6e7bc17405a6b5ca0f1aca295310d850e6de50125ab496e81c27b11040797f50
GET /3b/68/32/3b68321e652888d37e2dd89afd5c8bf0.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CP-107-70=1; expires=Fri, 19 Jul 2024 07:38:52 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cacbc2ed860d3946d675fdc0e0e3890f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
504 B IP
ASN #20940 Akamai International B.V.
Hash 50e4489707989517510128817aedd2ea
36a54d7b34a9ac621715b569e5a870f62671c574
3e28ea2cede92dae0f7bfcd98eaf9bd016ab8ecc4ea81b7e8f7b90ba4e20aa40
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3E28EA2CEDE92DAE0F7BFCD98EAF9BD016AB8ECC4EA81B7E8F7B90BA4E20AA40"
Last-Modified: Wed, 10 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4845
Expires: Fri, 12 Jul 2024 08:59:37 GMT
Date: Fri, 12 Jul 2024 07:38:52 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 50e4489707989517510128817aedd2ea
36a54d7b34a9ac621715b569e5a870f62671c574
3e28ea2cede92dae0f7bfcd98eaf9bd016ab8ecc4ea81b7e8f7b90ba4e20aa40
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3E28EA2CEDE92DAE0F7BFCD98EAF9BD016AB8ECC4EA81B7E8F7B90BA4E20AA40"
Last-Modified: Wed, 10 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4845
Expires: Fri, 12 Jul 2024 08:59:37 GMT
Date: Fri, 12 Jul 2024 07:38:52 GMT
Connection: keep-alive
GET t.dtscout.com/i/?l=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&j=
200 OK 15 kB URL GET HTTP/2 t.dtscout.com/i/?l=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&j=
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint66:24:0A:22:22:C6:B9:75:79:CD:A9:A3:78:A2:89:16:CD:0F:2F:4A
ValidityWed, 15 May 2024 16:12:47 GMT - Tue, 13 Aug 2024 16:12:46 GMT
File type ASCII text, with very long lines (2077)
Hash 51bd741af3fcc4984d1a753eebfa1141
534664acf69cbbb5c9b97c96b63dd37bdc580da2
3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c
GET /i/?l=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Fri, 12-Jul-2024 09:02:12 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
df=1720769932; Domain=dtscout.com; Expires=Sun, 20-Oct-2024 07:38:52 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.252
expires: Fri, 12 Jul 2024 07:38:51 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vzqfgtR3r%2BUchDpuLHEMgihARYA5NCJ4hGZz9KH6kCMvbWakYEMm%2FTSErvWBfgpfsYLhIGUvg0p6E1f%2F2TcR%2BQWCeuiPUANg7HTrgagMS%2FXD0JSHogSH1G%2FBY6DSzmM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1f604a1c3e8d60-HEL
content-encoding: br
X-Firefox-Spdy: h2
GET waust.at/s.js
200 OK 11 kB IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGoogle Trust Services
Subjectwaust.at
Fingerprint23:97:A9:BF:8A:3F:8F:7E:DD:39:FB:28:55:22:37:0A:6E:8E:9F:1B
ValidityTue, 02 Jul 2024 02:16:40 GMT - Mon, 30 Sep 2024 02:16:39 GMT
File type gzip compressed data, max speed, from Unix
Hash af47019b84db4074c480115c526bf5a1
611b4dd36decf75f5a8cf7a25f6010ded6e782a0
1b26ff29bc8d608f3da91da06b51aed9bb23ae6bc66c2c9757613e0c3e3962b0
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:51 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:48 GMT
etag: W/"63c04134-2170"
expires: Sat, 13 Jul 2024 06:49:08 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2983
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T6gCS3B%2BjdQ39f5K6hp5I6MJNWU0tlM%2By0LgbwcM%2BAb9zuMqGOz1LTk1U%2BZQgmk%2F%2F%2Fg6YrO2YHAp7IvXzxxopgtXcbHiXpbmf2IuZJMGAUJ45Kt2T3o1WdZF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f60488ef97128-OSL
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 1297a22e4353410b7a16ec273bc02896
fb3637ac1310e8e0aea3fa8b44e86d3caa7fa41b
adeb8cd807e833b58eb5e77e0de2e7baf21b67279823de511abb453310ac53dc
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://live2.roselife.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=728ccd68-43a4-4840-bda5-41c832663fae:1:1; expires=Mon, 10 Jul 2034 07:38:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash f635241e5869b0941caa51f9678bbe9d
4e4433eebb026654a34e98a254c9b390d57a4205
d1c04522594d108bc2d1b4b11604abd3144a29983c4a64f22809c479a17a3679
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://live2.roselife.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b4e7730e-a6c0-471d-905a-81ff0f4cf996:1:1; expires=Mon, 10 Jul 2034 07:38:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4d9345e8cec4b74302b13a4b13683706
273e3a0bf35557054f5eeea995bd22d3504a88c8
5033ff236d90422abad1fc6cf3d2f1c4464925743bf68671b1447021f6992c48
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://live2.roselife.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=c1d2c987-1f18-4174-bbd2-7b71893292aa:3:1; expires=Mon, 10 Jul 2034 07:38:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 78e54017ff18cb2089777a17994402eb
0a5c2df38c42293c0962cb97dbf78e8cea5e3554
eb7583eefab973d5db69414a188af68adc457504eeeaaf662e1f9549eff7076f
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://live2.roselife.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=37ef2bd0-7e85-4731-9824-35c2d9b46a2d:3:1; expires=Mon, 10 Jul 2034 07:38:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4ef7a9777770b97a390e607a3fb1d472
f7846ef96a325d9c4fbdf7947146b6e8360a9124
d7bf4b4de5829dea0bd8c5c8530101bfd56f8e615caca8be0c905c0b86fadaa8
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://live2.roselife.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=cddf2d6b-4f54-4159-8e8f-c3897d3cf910:3:1; expires=Mon, 10 Jul 2034 07:38:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET trucelabwits.com/pixel/purst?dl=0&th=0&sc=0&rs=1604&rd=1604&fd=1090&bv=24.7.2537&tmpl=70
200 OK 0 B URL GET HTTP/1.1 trucelabwits.com/pixel/purst?dl=0&th=0&sc=0&rs=1604&rd=1604&fd=1090&bv=24.7.2537&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjecttrucelabwits.com
Fingerprint02:3A:00:B4:2D:D9:0B:51:94:A0:C1:E9:5B:B7:39:DE:77:31:59:0A
ValidityMon, 01 Jul 2024 13:44:13 GMT - Sun, 29 Sep 2024 13:44:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=1604&rd=1604&fd=1090&bv=24.7.2537&tmpl=70 HTTP/1.1
Host: trucelabwits.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
200 OK 11 kB URL GET HTTP/3 cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
IP
Requested by https://s1.sportea.link/live/channel.php?ch=es5
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (30387)
Hash 1b142ebaf5f868c4c11a73ffe9175afb
aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9
df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702
GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 10804
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Fri, 12 Jul 2024 07:38:53 GMT
age: 9103
x-served-by: cache-fra-eddf8230055-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET s1.sportea.link/live/channel.php?ch=es5
200 OK 137 kB URL GET HTTP/3 s1.sportea.link/live/channel.php?ch=es5
IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerGoogle Trust Services
Subjectsportea.link
Fingerprint72:2D:32:C7:1F:67:6C:3A:80:A1:29:5A:3C:61:E8:CF:3C:0C:DC:FF
ValiditySat, 08 Jun 2024 22:05:53 GMT - Fri, 06 Sep 2024 22:05:52 GMT
File type JavaScript source, ASCII text, with very long lines (2103), with CRLF, LF line terminators
Size 137 kB (137167 bytes)
Hash 2c42ff29bf496a71c1aaeae1ef85ea3e
d0daed9ee6b5d6d841f7228436073fb8c2282e58
ec535f3afc7461fc2948ad65c7b569ce075c5222892c17117c69dc097ba80e15
GET /live/channel.php?ch=es5 HTTP/1.1
Host: s1.sportea.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/live/embed.php?ch=es5
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:53 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.5
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f0mKwKESMp0TRR922TR99udulZsplrDf6HbickRBNyoubWrz4mPv3xBHqgLGAEmKcGqbk1SPVbeIqKCyTASTLOcIvaxt4Yv%2BSXPqDcRk%2Bal6K6wWRao4XCz9H2fGI7vYFvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1f6051e8c3b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET cdn.jsdelivr.net/npm/p2p-media-loader-hlsjs@latest/build/p2p-media-loader-hlsjs.min.js
200 OK 8.1 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/p2p-media-loader-hlsjs@latest/build/p2p-media-loader-hlsjs.min.js
IP
Requested by https://s1.sportea.link/live/channel.php?ch=es5
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (26814)
Hash 835f1f7feab838f171c6334abc3d14da
68b97b433d37600647338e57f4344e5e1faf6246
189334d0a898e2aa16794cdd1ea47a0e7c1750578173b25033049fafdf55f2a4
GET /npm/p2p-media-loader-hlsjs@latest/build/p2p-media-loader-hlsjs.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 8149
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.6.2
x-jsd-version-type: version
etag: W/"68bf-aLl7Qz03YAZHM45X9DROXh+vYkY"
content-encoding: br
accept-ranges: bytes
age: 5524
date: Fri, 12 Jul 2024 07:38:53 GMT
x-served-by: cache-fra-eddf8230045-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
472 B IP
Hash 5932a1ff456b1d430a45a1c81862986e
59fdc3fe6e7a7f4c2cc4a19ce2f266c33cae1660
b4c67402ad460f291c279c86e4fe55d5917a6ff8ee840a307b3435db065d0d57
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 Jul 2024 07:38:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET irresponsibilityhookup.com/watch.495036948186.js?key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 irresponsibilityhookup.com/watch.495036948186.js?key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectirresponsibilityhookup.com
Fingerprint8B:98:2F:35:7A:86:4E:BA:9B:86:BD:15:FB:3E:25:E0:52:EC:23:EF
ValiditySat, 29 Jun 2024 14:02:53 GMT - Fri, 27 Sep 2024 14:02:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.495036948186.js?key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1 HTTP/1.1
Host: irresponsibilityhookup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Location: https://irresponsibilityhookup.com/watch.495036948186.js?dev=e&key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=9bae9a5b670e74261562b34805982aab760c9e34347202a2cad5448f219b5ddeb5abf4122519099c09e0786bc34957865d8fd2a2953a222a3226930b832d02f40323e9f2481fd26b6c38d428fe58e6cc0f0ce885bb0805fa678f&tz=0&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1
Set-Cookie: u_pl=21727311; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.R4Wx8M8_Ht37wOy4s8UVXYMaGlZkZznKF-FLlLTfoQ8; expires=Fri, 12 Jul 2024 07:39:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 5b742b38cd7bb652182af400fe4d6aa2
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET criticizewiggle.com/watch.1201614486814.js?key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 criticizewiggle.com/watch.1201614486814.js?key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcriticizewiggle.com
Fingerprint4A:56:DA:49:AB:2A:B0:0C:A2:D4:F9:93:0A:4F:55:BC:72:7A:01:67
ValiditySat, 29 Jun 2024 08:24:36 GMT - Fri, 27 Sep 2024 08:24:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1201614486814.js?key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Location: https://criticizewiggle.com/watch.1201614486814.js?dev=e&key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=101aa193958bb28fa5fb9e2ae974cfeef2c70b2f12c75e4bba7c777e773418073982a4c3be9944b71deb0c84e82d5e888f6c87b45750fa15051ed76e5beb7dd969a6f696b7d72094882e95ed9f0903a4a291bb6083cf5e808f1d&tz=0&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1
Set-Cookie: u_pl=21727348; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.HSYuKiff5UCYu5PyZoCJ7c8kXpTupo2fn1SRFMMtg3s; expires=Fri, 12 Jul 2024 07:39:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: e68b4b91b8b825922e10da50fe274e4a
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET www.googletagmanager.com/gtag/js?id=G-YEDGCT18SG
200 OK 104 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-YEDGCT18SG
IP
Requested by https://s1.sportea.link/live/channel.php?ch=es5
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintBA:5D:A9:7F:41:46:B0:37:01:9E:05:B0:92:BA:41:C9:31:5B:4B:4A
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Size 104 kB (103878 bytes)
Hash f08aadbec8ffeb07609912149b3ea265
b9154a8a47ba7d405a7fc6c22013c2fc71ce68c8
cad8a9ec10bb304d11c9079cea2dad3152b644e3755505ac4d8accac8f7199de
GET /gtag/js?id=G-YEDGCT18SG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 12 Jul 2024 07:38:53 GMT
expires: Fri, 12 Jul 2024 07:38:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103878
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET bellowframing.com/watch.1459627807032.js?key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 bellowframing.com/watch.1459627807032.js?key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1459627807032.js?key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Location: https://bellowframing.com/watch.1459627807032.js?dev=e&key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=1150d0d4cbac834e478fcd0da2bbe8ba6276b73f4821447d5c8d24ad4998076adb19d9d0fc900916e4f86ad4339a6a4df14429b5a3a30bea835c1d490b818a1c83bad4e6384e98b0d83168f8757222ad6eb24ea20d270106136ee9add8874d&tz=0&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1
Set-Cookie: u_pl=21727336; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.DNOZIb9vVRpfGKYQsXJI-zYi28WhI5YBmgN7Vg3N_WU; expires=Fri, 12 Jul 2024 07:39:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: fe4e30d2811c8981df20414e98c54c79
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL GET HTTP/1.1 capaciousdrewreligion.com/advertisers.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint4F:7A:98:8B:B8:01:70:75:3B:62:EF:6C:AD:DF:DE:E7:07:37:5E:83
ValidityFri, 05 Jul 2024 07:55:21 GMT - Thu, 03 Oct 2024 07:55:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2fbd168b3b039230437e8401890b5d9f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
472 B IP
Hash 5932a1ff456b1d430a45a1c81862986e
59fdc3fe6e7a7f4c2cc4a19ce2f266c33cae1660
b4c67402ad460f291c279c86e4fe55d5917a6ff8ee840a307b3435db065d0d57
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 Jul 2024 07:38:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET irresponsibilityhookup.com/watch.495036948186.js?dev=e&key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=9bae9a5b670e74261562b34805982aab760c9e34347202a2cad5448f219b5ddeb5abf4122519099c09e0786bc34957865d8fd2a2953a222a3226930b832d02f40323e9f2481fd26b6c38d428fe58e6cc0f0ce885bb0805fa678f&tz=0&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1
200 OK 2.1 kB URL GET HTTP/1.1 irresponsibilityhookup.com/watch.495036948186.js?dev=e&key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=9bae9a5b670e74261562b34805982aab760c9e34347202a2cad5448f219b5ddeb5abf4122519099c09e0786bc34957865d8fd2a2953a222a3226930b832d02f40323e9f2481fd26b6c38d428fe58e6cc0f0ce885bb0805fa678f&tz=0&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectirresponsibilityhookup.com
Fingerprint8B:98:2F:35:7A:86:4E:BA:9B:86:BD:15:FB:3E:25:E0:52:EC:23:EF
ValiditySat, 29 Jun 2024 14:02:53 GMT - Fri, 27 Sep 2024 14:02:52 GMT
File type JavaScript source, ASCII text, with very long lines (2650)
Hash ffa957471a8e25c10ecbb10440cebde0
f8dd2b83895ff23421ce85f0320e22dc84089970
61d43204ec7f724675038405fc485f198c5755224e29f06b4d1f4f8cef279a3d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.495036948186.js?dev=e&key=2cd1d97d83835c6c13b75ce072ac79eb&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=9bae9a5b670e74261562b34805982aab760c9e34347202a2cad5448f219b5ddeb5abf4122519099c09e0786bc34957865d8fd2a2953a222a3226930b832d02f40323e9f2481fd26b6c38d428fe58e6cc0f0ce885bb0805fa678f&tz=0&uuid=37ef2bd0-7e85-4731-9824-35c2d9b46a2d%3A3%3A1 HTTP/1.1
Host: irresponsibilityhookup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
Referer: https://live2.roselife.site/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21727311; ain=eyJhbGciOiJIUzI1NiJ9.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.R4Wx8M8_Ht37wOy4s8UVXYMaGlZkZznKF-FLlLTfoQ8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=37ef2bd0-7e85-4731-9824-35c2d9b46a2d:3:1; expires=Fri, 19 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
iprc6166df20e15a3042586510612d79f131=3569808; expires=Fri, 12 Jul 2024 11:38:53 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
pdhtkv23=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs23=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: bfadd3d0312011f9b8b0e1934d0b559c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET criticizewiggle.com/watch.1201614486814.js?dev=e&key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=101aa193958bb28fa5fb9e2ae974cfeef2c70b2f12c75e4bba7c777e773418073982a4c3be9944b71deb0c84e82d5e888f6c87b45750fa15051ed76e5beb7dd969a6f696b7d72094882e95ed9f0903a4a291bb6083cf5e808f1d&tz=0&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1
200 OK 2.1 kB URL GET HTTP/1.1 criticizewiggle.com/watch.1201614486814.js?dev=e&key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=101aa193958bb28fa5fb9e2ae974cfeef2c70b2f12c75e4bba7c777e773418073982a4c3be9944b71deb0c84e82d5e888f6c87b45750fa15051ed76e5beb7dd969a6f696b7d72094882e95ed9f0903a4a291bb6083cf5e808f1d&tz=0&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcriticizewiggle.com
Fingerprint4A:56:DA:49:AB:2A:B0:0C:A2:D4:F9:93:0A:4F:55:BC:72:7A:01:67
ValiditySat, 29 Jun 2024 08:24:36 GMT - Fri, 27 Sep 2024 08:24:35 GMT
File type JavaScript source, ASCII text, with very long lines (2633)
Hash f12465430d7fd0503976c9b5e3eb3e16
998fc09342b8fdca636ff62ffcda3efa5ca16d92
780102843746e7a0b1bec532833b0e7682fd0c25d5101f0bfa8065cf5c2a72f0
GET /watch.1201614486814.js?dev=e&key=8e569672af5a081ee4679a4fa13abd83&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=101aa193958bb28fa5fb9e2ae974cfeef2c70b2f12c75e4bba7c777e773418073982a4c3be9944b71deb0c84e82d5e888f6c87b45750fa15051ed76e5beb7dd969a6f696b7d72094882e95ed9f0903a4a291bb6083cf5e808f1d&tz=0&uuid=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
Referer: https://live2.roselife.site/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21727348; ain=eyJhbGciOiJIUzI1NiJ9.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.HSYuKiff5UCYu5PyZoCJ7c8kXpTupo2fn1SRFMMtg3s
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=cddf2d6b-4f54-4159-8e8f-c3897d3cf910:3:1; expires=Fri, 19 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
iprc619a44d8fb923e6bdb8fe615825ee8dd=3569806; expires=Fri, 12 Jul 2024 11:38:53 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: dadaadccb80a609dcc7398d7aede224f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET www.blockadsnot.com/jjPjGL/mcloudinary-jquery-file-upload.min.js
200 OK 2.1 kB URL GET HTTP/2 www.blockadsnot.com/jjPjGL/mcloudinary-jquery-file-upload.min.js
IP
ASN #60068 Datacamp Limited
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subject1158060716.rsc.cdn77.org
Fingerprint82:B9:82:9A:19:88:ED:8F:C6:B6:F6:09:56:57:D0:A7:6B:EF:4D:6D
ValidityTue, 09 Jul 2024 10:53:43 GMT - Mon, 07 Oct 2024 10:53:42 GMT
File type JavaScript source, ASCII text, with very long lines (2611)
Hash d7f7349897682954b3d6379ce0db620a
dd519c90dbeb78868f2f6c1a6fa6b7685fca2871
d53f87dde83e2312bf0c0e3e1644b656c219a157d2a78d983951dbba06e89c7c
GET /jjPjGL/mcloudinary-jquery-file-upload.min.js HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: application/x-javascript
popads-node: wb3
expires: Wed, 17 Jul 2024 00:21:57 GMT
access-control-allow-origin: https://live2.roselife.site
link: <https://blockadsnot.com/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBuUwJDQFBDAG5TAoJAdfi+gIADAGckiEnAfeEDgAA
x-77-nzt-ray: c0a4cc28aee234ca8cdd906650e3ef39
x-accel-expires: @1721175718
x-accel-date: 1720574634
x-77-cache: HIT
x-77-age: 195298
vary: Accept-Encoding, Origin
content-encoding: gzip
server: CDN77-Turbo
x-cache: MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET bellowframing.com/watch.1459627807032.js?dev=e&key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=1150d0d4cbac834e478fcd0da2bbe8ba6276b73f4821447d5c8d24ad4998076adb19d9d0fc900916e4f86ad4339a6a4df14429b5a3a30bea835c1d490b818a1c83bad4e6384e98b0d83168f8757222ad6eb24ea20d270106136ee9add8874d&tz=0&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1
200 OK 2.1 kB URL GET HTTP/1.1 bellowframing.com/watch.1459627807032.js?dev=e&key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=1150d0d4cbac834e478fcd0da2bbe8ba6276b73f4821447d5c8d24ad4998076adb19d9d0fc900916e4f86ad4339a6a4df14429b5a3a30bea835c1d490b818a1c83bad4e6384e98b0d83168f8757222ad6eb24ea20d270106136ee9add8874d&tz=0&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT
File type JavaScript source, ASCII text, with very long lines (2639)
Hash d2e920ca71c1504f1522f5361645c696
162888ec51279d44ddef9e071c6d0656ca1dc479
c3a557a82e187a4db1de6943a4c10695a585062741babc9086c8a57e9826c472
GET /watch.1459627807032.js?dev=e&key=52311e36e5c18a87bc1f047eb0ca43d2&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=1150d0d4cbac834e478fcd0da2bbe8ba6276b73f4821447d5c8d24ad4998076adb19d9d0fc900916e4f86ad4339a6a4df14429b5a3a30bea835c1d490b818a1c83bad4e6384e98b0d83168f8757222ad6eb24ea20d270106136ee9add8874d&tz=0&uuid=728ccd68-43a4-4840-bda5-41c832663fae%3A1%3A1 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
Referer: https://live2.roselife.site/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21727336; ain=eyJhbGciOiJIUzI1NiJ9.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.DNOZIb9vVRpfGKYQsXJI-zYi28WhI5YBmgN7Vg3N_WU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=728ccd68-43a4-4840-bda5-41c832663fae:1:1; expires=Fri, 19 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
iprc2fc83624d4cba1a941973344d97ed6c7=3569804; expires=Fri, 12 Jul 2024 11:38:53 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
pdhtkv26=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs26=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8bbba2413c8854ec517350aefef24031
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET live2.roselife.site/favicon.ico
200 OK 0 B URL GET HTTP/3 live2.roselife.site/favicon.ico
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGoogle Trust Services
Subjectroselife.site
FingerprintE5:22:71:17:EF:10:FA:CA:DC:ED:E2:0E:D1:42:CB:4E:6C:35:A0:10
ValidityThu, 11 Jul 2024 14:54:11 GMT - Wed, 09 Oct 2024 14:54:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: live2.roselife.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/155/0/nba/5
Cookie: XSRF-TOKEN=eyJpdiI6Ik9pc1VnZ1FpeDhCZkdrV2VybmExaEE9PSIsInZhbHVlIjoiaG1EbG1IdWswRXk3QWY0SHUzdnlOMkVnYUExeWFEcWFHQ3JNV3U3NGE2UUpEQXRTL2JmZ09uMWxRaWRqdVpmY1Y1cXdVZGV3Y0dBUmI3b0ZJU1ozNjJQZnVJZ3VUTnQ1QnhtWjhmUnBTaWY4T1VFSlBhTk5oWkhTazd5K1llbjUiLCJtYWMiOiI5M2Y5NzUyZTAxYzQ3MTA1ZmIyMTE1ZjUzZDIyZTdjZjg1MDg5N2FhODE5MGY1NjM0M2Y1OGIxN2E3ODBiYTQwIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlUybTZJRjZXbjFnWnNDUFd0L0NpSGc9PSIsInZhbHVlIjoiTWNtQWVjNTg4NzhESEp2Vk5lTXpPRU52Zm5IZUJERWZaTXVtNGYwVG85dGhZc2lwYnJTUWNPVVV0YmpvY3Zwa094U1k0Sm9PNm1Db0Z1b1YwTlV6dFZISU9KS2hzbFY4R3VGalJtbXNhd3RXcTZzeTlTbi80OEV6M2J2RnpoUVAiLCJtYWMiOiJiZGE2ZjEzMTQ0NjI4NGE2ODBkMmY0NTBjNzA5ZmU2ZDJkOWU2NjQ2MTcwODIwNjMxMTQ5YWNlZGI1OGQ0ZTM4IiwidGFnIjoiIn0%3D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=cddf2d6b-4f54-4159-8e8f-c3897d3cf910%3A3%3A1; pp_main_3b68321e652888d37e2dd89afd5c8bf0=1; a=QsBtR2X5MJVLIInrvn730vdU1aDuUOL5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: image/x-icon
content-length: 0
last-modified: Tue, 08 Feb 2022 06:52:58 GMT
etag: "6202134a-0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K28shB5%2BwWsanC0gUkSOIl7YYW1YkFxHZUWQsBUtdMURKGkP8ZDKkORcw2PomAeLYyIxSDUpLks0342gpXjhAUrb0uBqZ%2BRq%2FyEgprHgrZA3vMyEO8dHBVFxJk3tLKBDm8EIOV36"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f60584bd0b518-OSL
alt-svc: h3=":443"; ma=86400
POST jlpxnkagkgyx.l4.adsco.re/
200 OK 0 B URL POST HTTP/2 jlpxnkagkgyx.l4.adsco.re/
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subject*.l4.adsco.re
Fingerprint6A:0E:41:E3:DE:94:4F:DE:EA:FD:23:FA:26:1D:19:3A:24:53:08:53
ValiditySun, 19 May 2024 09:12:48 GMT - Sat, 17 Aug 2024 09:12:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: jlpxnkagkgyx.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
POST adsco.re/p
200 OK 877 B IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (1106), with no line terminators
Hash ebf659fa146a036d2512a4bf3b3f1c63
7c87db2eb402e508b94c6e938b8abfa2148ec3af
4321c8a4800046e9e9b018632702679c97627cf8893e89a1fde887a268144ad7
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1524
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 12 Jul 2024 07:38:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f605a3920b500-OSL
alt-svc: h3=":443"; ma=86400
POST pmpm0rzcxogg.l4.adsco.re/
200 OK 0 B URL POST HTTP/2 pmpm0rzcxogg.l4.adsco.re/
IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerLet's Encrypt
Subject*.l4.adsco.re
Fingerprint6A:0E:41:E3:DE:94:4F:DE:EA:FD:23:FA:26:1D:19:3A:24:53:08:53
ValiditySun, 19 May 2024 09:12:48 GMT - Sat, 17 Aug 2024 09:12:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: pmpm0rzcxogg.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
POST adsco.re/p
200 OK 877 B IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (1106), with no line terminators
Hash 68fa9001cd4372e0508af83c86a312c5
0fb5d3d2c80c77d91bc0417e5d323c48ea673254
3d7e72fcb7ad3e5a69c53e28766a7c6edbf6ab5e614e25be7d2136389ffacced
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1467
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 12 Jul 2024 07:38:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://s1.sportea.link
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
GET cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
200 OK 106 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC0:36:FD:5D:4E:7E:6F:E0:13:60:82:58:0C:BC:8B:40:A2:6B:2C:22
ValidityTue, 21 May 2024 05:00:31 GMT - Mon, 19 Aug 2024 05:00:30 GMT
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced
Size 106 kB (105910 bytes)
Hash a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e
GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: image/png
content-length: 105910
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Sun, 14 Jul 2024 07:38:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
POST jlpxnkagkgyx.n4.adsco.re/
200 OK 0 B URL POST HTTP/2 jlpxnkagkgyx.n4.adsco.re/
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subject*.n4.adsco.re
FingerprintBE:41:74:B3:75:84:DD:5D:5A:13:CD:54:89:18:04:8E:D3:FA:1F:A7
ValidityWed, 19 Jun 2024 09:12:38 GMT - Tue, 17 Sep 2024 09:12:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: jlpxnkagkgyx.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET displayvertising.com/ltojwvlglgtvto?vspdwrTA=BQMyAAAAAAAACZUAAq0ssEx1ArWFebgA7UtbhvzG6cMxKx83O4kb-LRMYJLr6IF43p747TKwcKDcKIVLIm_6o0BzLPpqPC5WfKySz4PREakQlxDVHP8WZRRYHaqTm3zKSYxqtwSpvbKj8n66zW36mF4woknrtePlh_k7dhPdNRl0lwmc-EuLmdVPYGCf6zS8kKykyb8mI9dXDxFCazRWR7WqqYvI9e9vce-87ahHOjOA8jYGJQ2ZGO2WQLie29_2xrooJIVZv6cjZ14HuIvy-Nf_awnWq4LBTIE_t8f9-5LXzpEx2Ke6kckhpJSzvs8XUzToD86awJeGn6PUNvdwAIT2V0LgkCttS3vtV9Dt8tUaW-caHarvNHEd6wFDdyGre9YigAQxenafD1W0UlczAlZ5nGq3nCSRB8tyhyImHWUFVqgkAs5um_9WiSxZX8if6UDs1XAPhkeihk9sfk2FV39N7MHJZwCAGyh5vZJNc8nff1tc3GmDyea6T0ONooSyZ15BEcTqv84_IOYcIE1ZOuhZtEd81uFJvlvbyPPI9AZlYFUWUCIcA7wDgcyJS0CGGxsg6YdyFlArrHXHDnHOAWKBcZwCiazyNQDqdyeS-hQ-cJ6tLGRLmviNiRhB51PioXUuu-kC8xBEtlYTbzUxMOIuLoshoDHy7TKly2o3XQxgwnFM4KACqICKvDMIZT4A3NRqtlo-jBOJ-PoOKCMTMR43EE7mdvckYrFLoMHKAFEn5qILLIb5FF2x-6a2rXEfmHYeq6l0C8kcXGw8gsvAXvOCGBczGT0HpZ2Ps9tXh34hcXgzK-YiIGJjaUX-jY9h9SpPkqk7gFxA1zReXy-AuW-zoqRNU8ApcXmFlFCxDNr8sR3UJGEUDcNGhP8YUcys6-PWcfTpkxVMQeL31nbQGifHV9KKvxUcDRHQ-vK4wbtGGF4fvc4E-HjksWelMw-LE1bMxBPX1hHrUub5GER8fenOLRm8b51HfFPLoX2Gv9eytMnEQtN3PbKJ-3Qai0OnDpVGdE0E3-2Y5pVq7MXmIP0lGXkKtMhGTKlAt5I6Op0XEqgLKBGZnY9ZeEpVEM0b1pYmuds8qID3HFkQ3w&auPdNwYe=4&NdfBxHLY=5090843&qfXDJYAo=&KJMNAluT=0,0&UoWpRrKQ=&IKbuYqmE=https%3A%2F%2Flive2.roselife.site%2F&s=1280,1024,1,1280,1024,1
200 OK 44 B URL GET HTTP/2 displayvertising.com/ltojwvlglgtvto?vspdwrTA=BQMyAAAAAAAACZUAAq0ssEx1ArWFebgA7UtbhvzG6cMxKx83O4kb-LRMYJLr6IF43p747TKwcKDcKIVLIm_6o0BzLPpqPC5WfKySz4PREakQlxDVHP8WZRRYHaqTm3zKSYxqtwSpvbKj8n66zW36mF4woknrtePlh_k7dhPdNRl0lwmc-EuLmdVPYGCf6zS8kKykyb8mI9dXDxFCazRWR7WqqYvI9e9vce-87ahHOjOA8jYGJQ2ZGO2WQLie29_2xrooJIVZv6cjZ14HuIvy-Nf_awnWq4LBTIE_t8f9-5LXzpEx2Ke6kckhpJSzvs8XUzToD86awJeGn6PUNvdwAIT2V0LgkCttS3vtV9Dt8tUaW-caHarvNHEd6wFDdyGre9YigAQxenafD1W0UlczAlZ5nGq3nCSRB8tyhyImHWUFVqgkAs5um_9WiSxZX8if6UDs1XAPhkeihk9sfk2FV39N7MHJZwCAGyh5vZJNc8nff1tc3GmDyea6T0ONooSyZ15BEcTqv84_IOYcIE1ZOuhZtEd81uFJvlvbyPPI9AZlYFUWUCIcA7wDgcyJS0CGGxsg6YdyFlArrHXHDnHOAWKBcZwCiazyNQDqdyeS-hQ-cJ6tLGRLmviNiRhB51PioXUuu-kC8xBEtlYTbzUxMOIuLoshoDHy7TKly2o3XQxgwnFM4KACqICKvDMIZT4A3NRqtlo-jBOJ-PoOKCMTMR43EE7mdvckYrFLoMHKAFEn5qILLIb5FF2x-6a2rXEfmHYeq6l0C8kcXGw8gsvAXvOCGBczGT0HpZ2Ps9tXh34hcXgzK-YiIGJjaUX-jY9h9SpPkqk7gFxA1zReXy-AuW-zoqRNU8ApcXmFlFCxDNr8sR3UJGEUDcNGhP8YUcys6-PWcfTpkxVMQeL31nbQGifHV9KKvxUcDRHQ-vK4wbtGGF4fvc4E-HjksWelMw-LE1bMxBPX1hHrUub5GER8fenOLRm8b51HfFPLoX2Gv9eytMnEQtN3PbKJ-3Qai0OnDpVGdE0E3-2Y5pVq7MXmIP0lGXkKtMhGTKlAt5I6Op0XEqgLKBGZnY9ZeEpVEM0b1pYmuds8qID3HFkQ3w&auPdNwYe=4&NdfBxHLY=5090843&qfXDJYAo=&KJMNAluT=0,0&UoWpRrKQ=&IKbuYqmE=https%3A%2F%2Flive2.roselife.site%2F&s=1280,1024,1,1280,1024,1
IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerSectigo Limited
Subjectdisplayvertising.com
FingerprintAD:50:CF:4F:03:26:91:93:74:1B:D5:8A:D0:EB:44:0D:13:A6:DF:96
ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /ltojwvlglgtvto?vspdwrTA=BQMyAAAAAAAACZUAAq0ssEx1ArWFebgA7UtbhvzG6cMxKx83O4kb-LRMYJLr6IF43p747TKwcKDcKIVLIm_6o0BzLPpqPC5WfKySz4PREakQlxDVHP8WZRRYHaqTm3zKSYxqtwSpvbKj8n66zW36mF4woknrtePlh_k7dhPdNRl0lwmc-EuLmdVPYGCf6zS8kKykyb8mI9dXDxFCazRWR7WqqYvI9e9vce-87ahHOjOA8jYGJQ2ZGO2WQLie29_2xrooJIVZv6cjZ14HuIvy-Nf_awnWq4LBTIE_t8f9-5LXzpEx2Ke6kckhpJSzvs8XUzToD86awJeGn6PUNvdwAIT2V0LgkCttS3vtV9Dt8tUaW-caHarvNHEd6wFDdyGre9YigAQxenafD1W0UlczAlZ5nGq3nCSRB8tyhyImHWUFVqgkAs5um_9WiSxZX8if6UDs1XAPhkeihk9sfk2FV39N7MHJZwCAGyh5vZJNc8nff1tc3GmDyea6T0ONooSyZ15BEcTqv84_IOYcIE1ZOuhZtEd81uFJvlvbyPPI9AZlYFUWUCIcA7wDgcyJS0CGGxsg6YdyFlArrHXHDnHOAWKBcZwCiazyNQDqdyeS-hQ-cJ6tLGRLmviNiRhB51PioXUuu-kC8xBEtlYTbzUxMOIuLoshoDHy7TKly2o3XQxgwnFM4KACqICKvDMIZT4A3NRqtlo-jBOJ-PoOKCMTMR43EE7mdvckYrFLoMHKAFEn5qILLIb5FF2x-6a2rXEfmHYeq6l0C8kcXGw8gsvAXvOCGBczGT0HpZ2Ps9tXh34hcXgzK-YiIGJjaUX-jY9h9SpPkqk7gFxA1zReXy-AuW-zoqRNU8ApcXmFlFCxDNr8sR3UJGEUDcNGhP8YUcys6-PWcfTpkxVMQeL31nbQGifHV9KKvxUcDRHQ-vK4wbtGGF4fvc4E-HjksWelMw-LE1bMxBPX1hHrUub5GER8fenOLRm8b51HfFPLoX2Gv9eytMnEQtN3PbKJ-3Qai0OnDpVGdE0E3-2Y5pVq7MXmIP0lGXkKtMhGTKlAt5I6Op0XEqgLKBGZnY9ZeEpVEM0b1pYmuds8qID3HFkQ3w&auPdNwYe=4&NdfBxHLY=5090843&qfXDJYAo=&KJMNAluT=0,0&UoWpRrKQ=&IKbuYqmE=https%3A%2F%2Flive2.roselife.site%2F&s=1280,1024,1,1280,1024,1 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb4
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Fri, 12 Jul 2024 07:38:54 GMT
X-Firefox-Spdy: h2
POST pmpm0rzcxogg.n4.adsco.re/
200 OK 0 B URL POST HTTP/2 pmpm0rzcxogg.n4.adsco.re/
IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerLet's Encrypt
Subject*.n4.adsco.re
FingerprintBE:41:74:B3:75:84:DD:5D:5A:13:CD:54:89:18:04:8E:D3:FA:1F:A7
ValidityWed, 19 Jun 2024 09:12:38 GMT - Tue, 17 Sep 2024 09:12:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: pmpm0rzcxogg.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
200 OK 144 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC0:36:FD:5D:4E:7E:6F:E0:13:60:82:58:0C:BC:8B:40:A2:6B:2C:22
ValidityTue, 21 May 2024 05:00:31 GMT - Mon, 19 Aug 2024 05:00:30 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:55 GMT
content-type: image/png
content-length: 144379
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sun, 14 Jul 2024 07:38:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
200 OK 25 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC0:36:FD:5D:4E:7E:6F:E0:13:60:82:58:0C:BC:8B:40:A2:6B:2C:22
ValidityTue, 21 May 2024 05:00:31 GMT - Mon, 19 Aug 2024 05:00:30 GMT
File type JPEG image data, baseline, precision 8, 320x50, components 3
Hash d465d02b90e928dfd9d9846e102a9dac
22f7333777bec813bd9a7b870913a2b79b6d2fe4
e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:55 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Sun, 14 Jul 2024 07:38:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/82/55/fc/8255fca3bc9e7c9147b2ab36eb30d1b6/1658919989.png
200 OK 95 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/82/55/fc/8255fca3bc9e7c9147b2ab36eb30d1b6/1658919989.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC0:36:FD:5D:4E:7E:6F:E0:13:60:82:58:0C:BC:8B:40:A2:6B:2C:22
ValidityTue, 21 May 2024 05:00:31 GMT - Mon, 19 Aug 2024 05:00:30 GMT
File type PNG image data, 160 x 300, 8-bit/color RGBA, non-interlaced
Hash 832954c4b42b06378bf4e58ba8e569f6
f6bc7a32bd139dbf5e42e20d96c4a94535f5eaa4
c9cfa61f5f0a9d16f87c1107ba7714ab5e5016892583567b6122670dcc796f68
GET /cti/82/55/fc/8255fca3bc9e7c9147b2ab36eb30d1b6/1658919989.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:55 GMT
content-type: image/png
content-length: 94867
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:06:37 GMT
etag: "62e11c3d-17293"
expires: Sun, 14 Jul 2024 07:38:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
POST jlpxnkagkgyx.s4.adsco.re/
200 OK 0 B URL POST HTTP/2 jlpxnkagkgyx.s4.adsco.re/
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subject*.s4.adsco.re
Fingerprint15:09:26:99:3D:07:A6:77:37:5A:1D:E3:7A:65:2D:B9:99:4F:BB:86
ValidityWed, 19 Jun 2024 09:12:43 GMT - Tue, 17 Sep 2024 09:12:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: jlpxnkagkgyx.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:55 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET blockadsnot.com/veftofkwtqrlolm?GIHzTCRh=BQMyAAAAAAAACZUAAiBbs8EJt0ubqvJFBSjUrkiwsO1-pxNkMzBGHLNU5Nt0KWC7IB4j1pXC8BzZulOQKOuFzMJpDGHxGzhf2BJJ37hiQfiZijSNmRab2tQVdNFsnmJ-yyL1JtcUj1VuxK_WCUgfZFk06dMzOjMiDD9fIZ5O7hhCpOcV1VtK0wqI6itWN0E4ZgoTOihr07VXTow1bXP3slPIetIFvuEk9EVZRUOaJOIh493gw1MmV2Ug-b4MIBFt_21lonR4lriBXXsCbPGre8P4Ezh9SOoFsdg8T85pMGCqtACVsyB5GtONK2B-gfGukgK-eIAxMz2hHNPCDHrsyYfhOjYiIMPHSXth0enXLufB9PJfgOrtO9qSPMbWXAhzumHeMaGhwgMJ9AQ-B5H9WsIRdUfkV2ToXkuBQCnkW8QqUwYWPcWK0grg8PavFf5mtnWR8mczO-VHh5NFQgkDxSbB7l32jeBC2SrA7Anh63R7wLrDN4NuSVUa_g7Y4Gjf5JF2PRjHPHjg7ldqEIbPZtHcxWXwJxnTYLVX478fbBWFXunMqGJb5V7yd6zd3XIOe6OP-eGfb97ccEQkLHKX_32jl3oglVmhLZfX6rddh7WUqF6K--FvtNwN7zDo0wRDM--kjs217fdvEaQvSPVixeRKChOBNllEEaHiGnUxl8-Jgp-t9aVNuELbKg49RrCaRQPs1Ek_Zs3-Qed9Oy0dWppH2pP43PLB6J3R5_DBrbQIGCshFJ9WIT44dbA80QOtVK5gqrImExp3egdp1XKy_hWd_MYdcGQZ_ZWYNnBRWyEeUOfOHpWRWZtePnbJ5_NHjGjx39NA405PVHKw7D_cKE2MOyDjhLiYMgA52rEqWgvHTWM4nwLtfVJ2QBqAWR7BDNYt6YDnV-L28A_gtL1KqOvmbl_X3ymMm_JpfMGY3nyjcgHyYb-U3svqBKkSdbyTiuDpFvUl919z8vVZla0ErGWIhCzkCjEpldC3YkUwLDgnMi4L62yto8HDbx-NEPC6-9WKC99Q5EET0PRlP7zbwW1yfgreNYsvyamsd6QZ0QRZVKU2xhqNRXZpBTDpoGVyIRHHhmxNxz_yMs_chA&JkpVeIUR=4&jyKbMvCH=5100260&EsXpLdKj=&BsTgQbmv=0,0&zZdkGtUD=&SEyDObRo=&s=1280,1024,1,1280,1024,0
200 OK 44 B URL GET HTTP/2 blockadsnot.com/veftofkwtqrlolm?GIHzTCRh=BQMyAAAAAAAACZUAAiBbs8EJt0ubqvJFBSjUrkiwsO1-pxNkMzBGHLNU5Nt0KWC7IB4j1pXC8BzZulOQKOuFzMJpDGHxGzhf2BJJ37hiQfiZijSNmRab2tQVdNFsnmJ-yyL1JtcUj1VuxK_WCUgfZFk06dMzOjMiDD9fIZ5O7hhCpOcV1VtK0wqI6itWN0E4ZgoTOihr07VXTow1bXP3slPIetIFvuEk9EVZRUOaJOIh493gw1MmV2Ug-b4MIBFt_21lonR4lriBXXsCbPGre8P4Ezh9SOoFsdg8T85pMGCqtACVsyB5GtONK2B-gfGukgK-eIAxMz2hHNPCDHrsyYfhOjYiIMPHSXth0enXLufB9PJfgOrtO9qSPMbWXAhzumHeMaGhwgMJ9AQ-B5H9WsIRdUfkV2ToXkuBQCnkW8QqUwYWPcWK0grg8PavFf5mtnWR8mczO-VHh5NFQgkDxSbB7l32jeBC2SrA7Anh63R7wLrDN4NuSVUa_g7Y4Gjf5JF2PRjHPHjg7ldqEIbPZtHcxWXwJxnTYLVX478fbBWFXunMqGJb5V7yd6zd3XIOe6OP-eGfb97ccEQkLHKX_32jl3oglVmhLZfX6rddh7WUqF6K--FvtNwN7zDo0wRDM--kjs217fdvEaQvSPVixeRKChOBNllEEaHiGnUxl8-Jgp-t9aVNuELbKg49RrCaRQPs1Ek_Zs3-Qed9Oy0dWppH2pP43PLB6J3R5_DBrbQIGCshFJ9WIT44dbA80QOtVK5gqrImExp3egdp1XKy_hWd_MYdcGQZ_ZWYNnBRWyEeUOfOHpWRWZtePnbJ5_NHjGjx39NA405PVHKw7D_cKE2MOyDjhLiYMgA52rEqWgvHTWM4nwLtfVJ2QBqAWR7BDNYt6YDnV-L28A_gtL1KqOvmbl_X3ymMm_JpfMGY3nyjcgHyYb-U3svqBKkSdbyTiuDpFvUl919z8vVZla0ErGWIhCzkCjEpldC3YkUwLDgnMi4L62yto8HDbx-NEPC6-9WKC99Q5EET0PRlP7zbwW1yfgreNYsvyamsd6QZ0QRZVKU2xhqNRXZpBTDpoGVyIRHHhmxNxz_yMs_chA&JkpVeIUR=4&jyKbMvCH=5100260&EsXpLdKj=&BsTgQbmv=0,0&zZdkGtUD=&SEyDObRo=&s=1280,1024,1,1280,1024,0
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerSectigo Limited
Subjectblockadsnot.com
Fingerprint96:00:00:44:50:47:F4:4D:23:DB:EE:86:80:A0:C4:5F:3A:EA:F5:03
ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /veftofkwtqrlolm?GIHzTCRh=BQMyAAAAAAAACZUAAiBbs8EJt0ubqvJFBSjUrkiwsO1-pxNkMzBGHLNU5Nt0KWC7IB4j1pXC8BzZulOQKOuFzMJpDGHxGzhf2BJJ37hiQfiZijSNmRab2tQVdNFsnmJ-yyL1JtcUj1VuxK_WCUgfZFk06dMzOjMiDD9fIZ5O7hhCpOcV1VtK0wqI6itWN0E4ZgoTOihr07VXTow1bXP3slPIetIFvuEk9EVZRUOaJOIh493gw1MmV2Ug-b4MIBFt_21lonR4lriBXXsCbPGre8P4Ezh9SOoFsdg8T85pMGCqtACVsyB5GtONK2B-gfGukgK-eIAxMz2hHNPCDHrsyYfhOjYiIMPHSXth0enXLufB9PJfgOrtO9qSPMbWXAhzumHeMaGhwgMJ9AQ-B5H9WsIRdUfkV2ToXkuBQCnkW8QqUwYWPcWK0grg8PavFf5mtnWR8mczO-VHh5NFQgkDxSbB7l32jeBC2SrA7Anh63R7wLrDN4NuSVUa_g7Y4Gjf5JF2PRjHPHjg7ldqEIbPZtHcxWXwJxnTYLVX478fbBWFXunMqGJb5V7yd6zd3XIOe6OP-eGfb97ccEQkLHKX_32jl3oglVmhLZfX6rddh7WUqF6K--FvtNwN7zDo0wRDM--kjs217fdvEaQvSPVixeRKChOBNllEEaHiGnUxl8-Jgp-t9aVNuELbKg49RrCaRQPs1Ek_Zs3-Qed9Oy0dWppH2pP43PLB6J3R5_DBrbQIGCshFJ9WIT44dbA80QOtVK5gqrImExp3egdp1XKy_hWd_MYdcGQZ_ZWYNnBRWyEeUOfOHpWRWZtePnbJ5_NHjGjx39NA405PVHKw7D_cKE2MOyDjhLiYMgA52rEqWgvHTWM4nwLtfVJ2QBqAWR7BDNYt6YDnV-L28A_gtL1KqOvmbl_X3ymMm_JpfMGY3nyjcgHyYb-U3svqBKkSdbyTiuDpFvUl919z8vVZla0ErGWIhCzkCjEpldC3YkUwLDgnMi4L62yto8HDbx-NEPC6-9WKC99Q5EET0PRlP7zbwW1yfgreNYsvyamsd6QZ0QRZVKU2xhqNRXZpBTDpoGVyIRHHhmxNxz_yMs_chA&JkpVeIUR=4&jyKbMvCH=5100260&EsXpLdKj=&BsTgQbmv=0,0&zZdkGtUD=&SEyDObRo=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb3
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Fri, 12 Jul 2024 07:38:55 GMT
X-Firefox-Spdy: h2
POST pmpm0rzcxogg.s4.adsco.re/
200 OK 0 B URL POST HTTP/2 pmpm0rzcxogg.s4.adsco.re/
IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerLet's Encrypt
Subject*.s4.adsco.re
Fingerprint15:09:26:99:3D:07:A6:77:37:5A:1D:E3:7A:65:2D:B9:99:4F:BB:86
ValidityWed, 19 Jun 2024 09:12:43 GMT - Tue, 17 Sep 2024 09:12:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: pmpm0rzcxogg.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:55 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.displayvertising.com/hJTf/zPbH/isequence-diagram-min.js
200 OK 37 kB URL GET HTTP/2 www.displayvertising.com/hJTf/zPbH/isequence-diagram-min.js
IP
ASN #60068 Datacamp Limited
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerLet's Encrypt
Subject1503693843.rsc.cdn77.org
Fingerprint65:19:4C:2D:A6:FC:9A:C4:92:DB:E1:2C:0C:E4:FA:FA:5B:52:85:D9
ValidityTue, 09 Jul 2024 10:54:43 GMT - Mon, 07 Oct 2024 10:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (1568)
Hash 903bfee5e78ec45613eca969998a0a95
1338fc2f31bd4562238a0111f2f9eb2b42353299
5aec8044f565baa8a1faacee9c62bdddc010d2411a1ecb4f67c78ac86f34e6fd
GET /hJTf/zPbH/isequence-diagram-min.js HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:53 GMT
content-type: application/x-javascript
popads-node: wb1
expires: Fri, 19 Jul 2024 07:19:31 GMT
access-control-allow-origin: https://s1.sportea.link
link: <https://displayvertising.com/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBuUwJDQFBCAG5TAoMAUEMAZySIScB94oEAAA
x-77-nzt-ray: c0a4cc2830fe1ad48ddd90667a9be50b
x-accel-expires: @1721373571
x-accel-date: 1720768771
x-77-cache: HIT
x-77-age: 1162
vary: Accept-Encoding, Origin
content-encoding: gzip
server: CDN77-Turbo
x-cache: MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/p2p-media-loader-core@latest/build/p2p-media-loader-core.min.js
200 OK 144 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/p2p-media-loader-core@latest/build/p2p-media-loader-core.min.js
IP
Requested by https://s1.sportea.link/live/channel.php?ch=es5
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size 144 kB (143751 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/p2p-media-loader-core@latest/build/p2p-media-loader-core.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 41840
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.6.2
x-jsd-version-type: version
etag: W/"23187-cy5ZTaquM+MUHEQB7rAOJNYlVIk"
content-encoding: br
accept-ranges: bytes
date: Fri, 12 Jul 2024 07:38:53 GMT
age: 29929
x-served-by: cache-fra-etou8220152-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET live2.roselife.site/155/0/nba/5
200 OK 6.8 kB URL User Request GET HTTP/2 live2.roselife.site/155/0/nba/5
IP
Certificate IssuerGoogle Trust Services
Subjectroselife.site
FingerprintE5:22:71:17:EF:10:FA:CA:DC:ED:E2:0E:D1:42:CB:4E:6C:35:A0:10
ValidityThu, 11 Jul 2024 14:54:11 GMT - Wed, 09 Oct 2024 14:54:10 GMT
File type HTML document, ASCII text, with very long lines (7304), with no line terminators
Hash 30e61d9647649ed129e4b56df69b4a4b
11c9770f61e9667a64890a0e6fd08edb02fcbda4
d241b7d72e9144e9b0551f63ec16a85411d3471f46e4a293fdfd8e1230bf6600
GET /155/0/nba/5 HTTP/1.1
Host: live2.roselife.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Ik9pc1VnZ1FpeDhCZkdrV2VybmExaEE9PSIsInZhbHVlIjoiaG1EbG1IdWswRXk3QWY0SHUzdnlOMkVnYUExeWFEcWFHQ3JNV3U3NGE2UUpEQXRTL2JmZ09uMWxRaWRqdVpmY1Y1cXdVZGV3Y0dBUmI3b0ZJU1ozNjJQZnVJZ3VUTnQ1QnhtWjhmUnBTaWY4T1VFSlBhTk5oWkhTazd5K1llbjUiLCJtYWMiOiI5M2Y5NzUyZTAxYzQ3MTA1ZmIyMTE1ZjUzZDIyZTdjZjg1MDg5N2FhODE5MGY1NjM0M2Y1OGIxN2E3ODBiYTQwIiwidGFnIjoiIn0%3D; expires=Fri, 12 Jul 2024 09:38:51 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlUybTZJRjZXbjFnWnNDUFd0L0NpSGc9PSIsInZhbHVlIjoiTWNtQWVjNTg4NzhESEp2Vk5lTXpPRU52Zm5IZUJERWZaTXVtNGYwVG85dGhZc2lwYnJTUWNPVVV0YmpvY3Zwa094U1k0Sm9PNm1Db0Z1b1YwTlV6dFZISU9KS2hzbFY4R3VGalJtbXNhd3RXcTZzeTlTbi80OEV6M2J2RnpoUVAiLCJtYWMiOiJiZGE2ZjEzMTQ0NjI4NGE2ODBkMmY0NTBjNzA5ZmU2ZDJkOWU2NjQ2MTcwODIwNjMxMTQ5YWNlZGI1OGQ0ZTM4IiwidGFnIjoiIn0%3D; expires=Fri, 12 Jul 2024 09:38:51 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bo737aag3CR6AEVFxpxoqblWR%2BdZX991tYmJTMDOCl2Cuu1HyvJzBd1DCnbeQrsz8vk81hVstSxv6%2FnaMW%2Biv9dT2PtqQqvM5r7qbgYVhvctSiDnBSTAm0NLhbZhOVNpAMEjL5iE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1f6045ce4856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET c.adsco.re/
0 B IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:53 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 12 Aug 2024 07:38:53 GMT
etag: W/"xibKd1SGQvurJG2US2UzpQ=="
content-encoding: gzip
cf-cache-status: HIT
age: 2505730
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f6051fbbab50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET s1.sportea.link/live/embed.php?ch=es5
200 OK 4.9 kB URL GET HTTP/2 s1.sportea.link/live/embed.php?ch=es5
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGoogle Trust Services
Subjectsportea.link
Fingerprint72:2D:32:C7:1F:67:6C:3A:80:A1:29:5A:3C:61:E8:CF:3C:0C:DC:FF
ValiditySat, 08 Jun 2024 22:05:53 GMT - Fri, 06 Sep 2024 22:05:52 GMT
File type JavaScript source, ASCII text, with very long lines (5081), with no line terminators
Hash 41ecf7a6301e08faf3cf99143db8bbc9
fead093ad566c214df7ad993985aca073c4b2fee
4d37f703d37558591c4a0138908f24525a6da8760affe714ac7f260661d2fa13
GET /live/embed.php?ch=es5 HTTP/1.1
Host: s1.sportea.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.5
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8fwPuYoUE8z6uASN%2BK8M0InYCRdvyUIH585C6HkMBnjXSvlW7K4G5x%2BOKPNTsMcr8JEc2FEpoHm%2FMe%2Fk8tOnoYHEQxOv%2FShnW4LxEodDVHUxxu1G4Cf2zr7cH3Mq0thR%2FZo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1f60502cc256bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET recordedthereby.com/sfp.js
200 OK 85 kB URL GET HTTP/2 recordedthereby.com/sfp.js
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGoogle Trust Services
Subjectrecordedthereby.com
FingerprintA1:CB:3E:AF:CE:F5:E9:D2:26:FB:E2:D4:FE:4B:29:D2:B3:C9:AD:3B
ValiditySat, 06 Jul 2024 15:25:15 GMT - Fri, 04 Oct 2024 15:25:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, max-age=0, private, no-cache
x-request-id: 9aebb96632f5362d6eded742d21a83ae
pragma: no-cache
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aC1sY7QYzk7AlQ%2F9W5o%2BteXPeQH9k5utBfXROhGalUJMT6BEzMCbM2ciQdYbIpqx24LbNe%2BEArJRD7ZIgeP44wYJFjewnWjKDY9u41YFXwUZcRCHKCy3ysRuc9ZOAVLetfGInNc4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f604fa920569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET kennelbakerybasketball.com/watch.1194961751808.js?key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1
307 Temporary Redirect 3.5 kB URL GET HTTP/1.1 kennelbakerybasketball.com/watch.1194961751808.js?key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectkennelbakerybasketball.com
Fingerprint5F:A9:E4:9D:9C:9F:A3:62:C7:0D:DF:CA:2F:83:68:7C:12:A0:A6:4E
ValidityMon, 01 Jul 2024 13:50:52 GMT - Sun, 29 Sep 2024 13:50:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1194961751808.js?key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&tz=0&dev=e&res=14.2071&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1 HTTP/1.1
Host: kennelbakerybasketball.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Location: https://kennelbakerybasketball.com/watch.1194961751808.js?dev=e&key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=6abb5781ecfec39ca97b09d903f7d3c6ba9c05799a49de2982f13d7e1ffc733fe332b493787bf3ffbb25a8d817cc04c8026cd66ff3be6e8238370bfeacfbbaa1ac94b418d204f73dee53524d20b4979cd3ae23f68ac9f8fc9b9a6831003653&tz=0&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1
Set-Cookie: u_pl=21727399; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTcyNzM5OSwiayI6ImE5MzliNDVmNDgwOTRlYmE5YTIzYjE2NjQ4NWE5MTc2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozMzQ2MDA4LCJwaWQiOjU3ODI3NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjozMiwicHQiOjQsInBrIjoibnEydHV6YXg3ZSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2xpdmUyLnJvc2VsaWZlLnNpdGUvMTU1LzAvbmJhLzUiLCJhciI6W119fQ.WSo6egHRM2KV00NdTMegzByFVcNiRkYYGUb4UXYCeeU; expires=Fri, 12 Jul 2024 07:39:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 62f75d3dfe0f0b887c6363a870bcdd20
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET c.adsco.re/
0 B IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:53 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 12 Aug 2024 07:38:53 GMT
etag: W/"xibKd1SGQvurJG2US2UzpQ=="
content-encoding: gzip
cf-cache-status: HIT
age: 2505730
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f60536a84b500-OSL
alt-svc: h3=":443"; ma=86400
GET kennelbakerybasketball.com/watch.1194961751808.js?dev=e&key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=6abb5781ecfec39ca97b09d903f7d3c6ba9c05799a49de2982f13d7e1ffc733fe332b493787bf3ffbb25a8d817cc04c8026cd66ff3be6e8238370bfeacfbbaa1ac94b418d204f73dee53524d20b4979cd3ae23f68ac9f8fc9b9a6831003653&tz=0&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1
200 OK 3.5 kB URL GET HTTP/1.1 kennelbakerybasketball.com/watch.1194961751808.js?dev=e&key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=6abb5781ecfec39ca97b09d903f7d3c6ba9c05799a49de2982f13d7e1ffc733fe332b493787bf3ffbb25a8d817cc04c8026cd66ff3be6e8238370bfeacfbbaa1ac94b418d204f73dee53524d20b4979cd3ae23f68ac9f8fc9b9a6831003653&tz=0&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerLet's Encrypt
Subjectkennelbakerybasketball.com
Fingerprint5F:A9:E4:9D:9C:9F:A3:62:C7:0D:DF:CA:2F:83:68:7C:12:A0:A6:4E
ValidityMon, 01 Jul 2024 13:50:52 GMT - Sun, 29 Sep 2024 13:50:51 GMT
File type JavaScript source, ASCII text, with very long lines (3515), with no line terminators
Hash 5cb7159cd728b1c824fcb67c480ade98
35b3c96d9f277add9fa6cb538c93d10a2ae9aa72
9e4488ebf83161e8219a45729ecacd606ef9e6c6e9a67abdd6bf443d761966a7
GET /watch.1194961751808.js?dev=e&key=a939b45f48094eba9a23b166485a9176&kw=%5B%22wnba%22%2C%225%22%2C%22phoenix%22%2C%22mercury%22%2C%22vs%22%2C%22dallas%22%2C%22wings%22%5D&pst=1720769993&refer=https%3A%2F%2Flive2.roselife.site%2F155%2F0%2Fnba%2F5&res=14.2071&rmtc=t&shu=6abb5781ecfec39ca97b09d903f7d3c6ba9c05799a49de2982f13d7e1ffc733fe332b493787bf3ffbb25a8d817cc04c8026cd66ff3be6e8238370bfeacfbbaa1ac94b418d204f73dee53524d20b4979cd3ae23f68ac9f8fc9b9a6831003653&tz=0&uuid=b4e7730e-a6c0-471d-905a-81ff0f4cf996%3A1%3A1 HTTP/1.1
Host: kennelbakerybasketball.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://live2.roselife.site
Referer: https://live2.roselife.site/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21727399; ain=eyJhbGciOiJIUzI1NiJ9.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.WSo6egHRM2KV00NdTMegzByFVcNiRkYYGUb4UXYCeeU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 12 Jul 2024 07:38:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://live2.roselife.site
Access-Control-Allow-Origin: https://live2.roselife.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=b4e7730e-a6c0-471d-905a-81ff0f4cf996:1:1; expires=Fri, 19 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
iprc0fee062eb8e4b9d0f3c33b20807038c5=3570421; expires=Fri, 12 Jul 2024 11:38:53 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
pdhtkv32=true; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
uncs32=1; expires=Sat, 13 Jul 2024 07:38:53 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9c781c0ba82ecd26f8364230f5e69856
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET c.adsco.re/
200 OK 78 kB IP
Requested by https://s1.sportea.link/live/embed.php?ch=es5
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (881)
Hash c626ca77548642fbab246d944b6533a5
bbda9857a83048bd607d2bb916cd0f1e4bac5b88
f5d310d03e3a80feaf50f553297436d007ece35ffb191a1c3e46fb985835aad5
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 12 Aug 2024 07:38:54 GMT
etag: W/"xibKd1SGQvurJG2US2UzpQ=="
content-encoding: gzip
cf-cache-status: HIT
age: 2505731
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f60587f8cb500-OSL
alt-svc: h3=":443"; ma=86400
GET cdn.jsdelivr.net/npm/@clappr/player@0.4.7/dist/clappr.min.js
200 OK 481 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/@clappr/player@0.4.7/dist/clappr.min.js
IP
Requested by https://s1.sportea.link/live/channel.php?ch=es5
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size 481 kB (480925 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/@clappr/player@0.4.7/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 133477
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.4.7
x-jsd-version-type: version
etag: W/"7569d-g/bZEgP/0XCbPxVx7RLqUXpxxzU"
content-encoding: br
accept-ranges: bytes
date: Fri, 12 Jul 2024 07:38:53 GMT
age: 3733933
x-served-by: cache-fra-etou8220068-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
GET waust.at/d.js
200 OK 15 kB IP
Requested by https://s1.sportea.link/live/channel.php?ch=es5
Certificate IssuerGoogle Trust Services
Subjectwaust.at
Fingerprint23:97:A9:BF:8A:3F:8F:7E:DD:39:FB:28:55:22:37:0A:6E:8E:9F:1B
ValidityTue, 02 Jul 2024 02:16:40 GMT - Mon, 30 Sep 2024 02:16:39 GMT
File type JavaScript source, ASCII text, with very long lines (14706), with no line terminators
Hash 38cdedd658fa41770f607c0b117c1f82
3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4
951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:53 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:21 GMT
etag: W/"63c04119-3972"
expires: Sat, 13 Jul 2024 06:52:35 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KQjzqFmOOpGv%2B%2FlaKVEBRFzqdrbfweKlaz8fJlPNXLY7HN%2B3YrOPSfSaVjQZNxIPL%2BvUbiNH%2BdtcNNqiav%2FOn2zUq5pGAMlAlB1bXrOl5%2FGJyJVOYjZ%2FZScX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f60535820b524-OSL
GET c.adsco.re/
200 OK 78 kB IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (881)
Hash c626ca77548642fbab246d944b6533a5
bbda9857a83048bd607d2bb916cd0f1e4bac5b88
f5d310d03e3a80feaf50f553297436d007ece35ffb191a1c3e46fb985835aad5
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 12 Jul 2024 07:38:54 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 12 Aug 2024 07:38:54 GMT
etag: W/"xibKd1SGQvurJG2US2UzpQ=="
content-encoding: gzip
cf-cache-status: HIT
age: 2505731
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1f60585f5ab500-OSL
alt-svc: h3=":443"; ma=86400
GET t.dtscout.com/pv/?_a=v&_h=live2.roselife.site&_ss=500ebjdnt0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=68dg&_cb=_dtspv.c
200 OK 51 B URL GET HTTP/2 t.dtscout.com/pv/?_a=v&_h=live2.roselife.site&_ss=500ebjdnt0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=68dg&_cb=_dtspv.c
IP
Requested by https://live2.roselife.site/155/0/nba/5
Certificate IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint66:24:0A:22:22:C6:B9:75:79:CD:A9:A3:78:A2:89:16:CD:0F:2F:4A
ValidityWed, 15 May 2024 16:12:47 GMT - Tue, 13 Aug 2024 16:12:46 GMT
File type ASCII text, with no line terminators
Hash f65a4f92382f17e37bae3223856f5aa4
f802bb2acc28616e262aab6532570c90f5a70392
e432ee16a0911207df8c6e5ef650a69e90ec871557c34246caa80c2d52fa2d43
GET /pv/?_a=v&_h=live2.roselife.site&_ss=500ebjdnt0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=68dg&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://live2.roselife.site/
Cookie: m=1; df=1720769932
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 Jul 2024 07:38:52 GMT
content-type: application/javascript
x-t: 0.16
x-c: 0
expires: Fri, 12 Jul 2024 07:38:51 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gSi9CgTsHhQWLOeDuR%2Buv%2Fu9GrsyV6awcw9ibXohXS49gpALozLaPhA8o1rCZLxH17tE6k1nyAWaQ2opVOuZpqME%2Fth5SRNLk1yzLU4Rrdw5XrOdK%2BsBH%2FzkKdTTyEA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1f604c1db28d60-HEL
content-encoding: br
X-Firefox-Spdy: h2
104.21.76.122
23.36.77.32
3.126.56.212
192.243.61.227
185.76.9.16
185.200.118.51
185.200.116.51