{"report_id":"e763988d-3536-4bd3-bc64-ab44d19472f9","version":0,"status":"done","tags":[],"date":"2026-06-17T21:20:43Z","url":{"schema":"https","addr":"yallashots.live/","fqdn":"yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":0,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"title":"Yalla Shoot | Live Soccer Streams \u0026 Matches | Yalla Shots","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"yallashots.live/","fqdn":"yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":0,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-22T21:20:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-06-14T22:29:33.380889Z","alert_count":0,"request_count":1,"received_data":479539,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.golygoal.com","ip":{"addr":"172.67.157.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-12-01","domain_rank":0,"first_seen":"2026-06-14T09:41:16.26793Z","last_seen":"2026-06-14T09:41:16.26793Z","alert_count":0,"request_count":2,"received_data":39087,"sent_data":1162,"comment":"","tags":null,"fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"www.thesportsdb.com","ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2013-10-01","domain_rank":740706,"first_seen":"2015-01-08T11:41:11Z","last_seen":"2026-06-17T20:41:00.5984Z","alert_count":0,"request_count":4,"received_data":15587,"sent_data":2039,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.4.14","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"jnbhi.com","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2022-08-31","domain_rank":0,"first_seen":"2025-11-13T12:34:48.915898Z","last_seen":"2026-06-12T02:02:47.763054Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"site.api.espn.com","ip":{"addr":"23.36.77.115","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"1994-10-04","domain_rank":62493,"first_seen":"2014-11-06T23:42:03Z","last_seen":"2026-06-16T16:37:37.262486Z","alert_count":0,"request_count":1,"received_data":219656,"sent_data":533,"comment":"","tags":null,"fingerprints":[{"name":"Akamai Bot Manager","description":"Akamai Bot Manager detect bots using device fingerprinting bot signatures.","website":"https://www.akamai.com/us/en/products/security/bot-manager.jsp","common_platform_enumeration":"","icon":"Akamai.svg","categories":["Security"]},{"name":"Akamai","description":"Akamai is global content delivery network (CDN) services provider for media and software delivery, and cloud security solutions.","website":"https://akamai.com","common_platform_enumeration":"","icon":"Akamai.svg","categories":["CDN"]}]},{"fqdn":"settingsinauthor.com","ip":{"addr":"172.67.195.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-16","domain_rank":0,"first_seen":"2026-06-17T21:04:13.43206Z","last_seen":"2026-06-17T21:04:13.43206Z","alert_count":0,"request_count":1,"received_data":1264,"sent_data":552,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"yallashots.live","ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-17T17:14:11.996328Z","last_seen":"2026-06-17T17:14:11.996328Z","alert_count":0,"request_count":1,"received_data":212,"sent_data":484,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"gosnaap.com","ip":{"addr":"84.32.84.27","port":443,"asn":47583,"as":"Hostinger International Limited","country":"Lithuania","country_code":"LT"},"domain_registered":"2025-04-30","domain_rank":0,"first_seen":"2026-03-28T23:52:14.388011Z","last_seen":"2026-06-17T20:41:00.691451Z","alert_count":0,"request_count":1,"received_data":582,"sent_data":554,"comment":"","tags":null,"fingerprints":[{"name":"PHP:8.3.30","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]},{"name":"Hostinger CDN","description":"Hostinger Content Delivery Network (CDN).","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["CDN"]}]},{"fqdn":"r2.thesportsdb.com","ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2013-10-01","domain_rank":5027867,"first_seen":"2025-03-02T18:56:45.449311Z","last_seen":"2026-06-14T22:15:51.269306Z","alert_count":0,"request_count":4,"received_data":548475,"sent_data":2320,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-14T22:19:01.724334Z","alert_count":0,"request_count":7,"received_data":230947,"sent_data":3974,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.country.is","ip":{"addr":"104.26.1.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-01-30","domain_rank":253271,"first_seen":"2016-09-23T06:54:06Z","last_seen":"2026-06-13T21:26:59.497702Z","alert_count":0,"request_count":1,"received_data":671,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"upsmnctvkbmaxfh.com","ip":{"addr":"139.45.197.161","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2026-06-16","domain_rank":0,"first_seen":"2026-06-17T21:04:13.425772Z","last_seen":"2026-06-17T21:04:13.425772Z","alert_count":0,"request_count":2,"received_data":764,"sent_data":914,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"flagcdn.com","ip":{"addr":"172.67.180.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-04-05","domain_rank":30920,"first_seen":"2020-04-05T08:17:33Z","last_seen":"2026-06-11T23:28:57.856978Z","alert_count":0,"request_count":4,"received_data":5110,"sent_data":2160,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-14T22:22:05.140579Z","alert_count":0,"request_count":1,"received_data":17185,"sent_data":590,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.yallashots.live","ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-17T20:40:59.934626Z","last_seen":"2026-06-17T20:40:59.934626Z","alert_count":6,"request_count":6,"received_data":191694,"sent_data":2760,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"49toactivate.net","ip":{"addr":"104.21.23.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-17","domain_rank":0,"first_seen":"2026-06-17T21:04:13.44359Z","last_seen":"2026-06-17T21:04:13.44359Z","alert_count":0,"request_count":1,"received_data":1252,"sent_data":1063,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.yallashots.live/script.js","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"c237004317b8c220d3d65ec932c702dd","sha1":"d14b393aebfb144ca1010582256234c6aa32a052","sha256":"6b04bfc711c4aa0804a2c2c7dedafb4657c56d19d5af936023a4410c84929810","sha512":"59b3ee8272d48019507a528d79565b054a34d7f9d88dd96230d556b3bc309718d2e5d03132608d1ee77b557f4db6a3daca779579e3f5cdcd7bdeebedc5be8287","ssdeep":"768:LvwH9gAgPesMau8a+jG1kPb6//9aOKijkR4iNa/AcrVsdCt9+rCxz:LvwHqv7u8JG1kPb/ioJ8Ac6dCt9+rCl","tlshash":"1d23975a912514228977f3badba72118fe326737730285057e7d83092f77c5482aefe8","size":45953,"data":"","first_seen":"2026-06-17T20:41:05.816243Z","last_seen":"2026-06-17T21:20:45.995421Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"c62a41eaa1cc544dd1a666e6cceb5b45","sha1":"9b8d136561fec3756bb6beab4ba82ab4e81e5d9c","sha256":"109e0c42f858de92ed210248ab4e1672aa2404972b49d997e21b0009b10a1a96","sha512":"b19da48312c0c99e5a9359a4b48016f8fe48eec2fe57695ab47ba367724485e693984b3b3529ca1554a0f1a25808908a1bd9fadc749f6c1b3bb614689482cd1e","ssdeep":"","tlshash":"26f0973f59a25131a82b209c38614ac4bdb25b126323f402b72dc2c00f29c4916a0f89","size":540,"data":"","first_seen":"2026-06-17T20:41:05.829747Z","last_seen":"2026-06-17T21:20:46.004064Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1e2fc73829d0590029e990269d3e21e1","sha1":"edaeeea279001414e53c85ecb210f215a41a7e80","sha256":"5b8afa51ebcb6550040366082a2736916a10631a43c83ba82465a5a377058e98","sha512":"2f20488d7fabd3869192cf10abbc1f35f62a1463e738b18d7626ade07236f16bba4251e00356d4984c25b4d0ed3c34bce6b828e7e00de8d24602bbb07319cfe7","ssdeep":"","tlshash":"60c08c88210b2c7051aa2a450b7fba04b045321294909922390e32045f20d07d788824","size":161,"data":"","first_seen":"2026-06-17T20:41:05.832032Z","last_seen":"2026-06-17T21:20:46.004741Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8ef5c6ca433873fafcc61dee0ebcc8c9","sha1":"7b2ef5524b89a20d25b04db179d4e3ca6b3a1310","sha256":"7305510bfd58445267a1b8c48f3d3710afe0e3b10d9bae37c9531f360d9ee712","sha512":"f0f00737bf150d66c468a34833a78dc513393e8d6bd3ad9489480a33fb58cce581dab770af8d551b2dd1a281622f455132ad72c2d4ad997b2e457978b64b74a2","ssdeep":"384:N5jgw/J82k06Roimd/feqh2pBJY+SXCtyZE5lwl9xT5QV7fjoWmnEfybSi2PEXwj:Ny2wmd/epVty25S9DE7fDbvEXwshV47L","tlshash":"4bc207eb32ae79194329553110ff2c85b2dd49c0318f5a78ea14f12539d793282ebef8","size":27870,"data":"","first_seen":"2026-06-17T20:41:05.834307Z","last_seen":"2026-06-17T21:20:46.005284Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/goalna-promo.js","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"cf8be74a006e1ca7ff90503d659178b6","sha1":"4ec9e0c10c18d09ea9ad74164f80454915c75ba8","sha256":"1d196fda1b8beb2a141dc2953bb87258cecf4709fa44da63277d2db4d37678f2","sha512":"a3ca8f79780bb7c05850f056bf9143897d3d48dc2f3da02df387eac41bb489f350edb094bbb12946610470897829dbf37ee0869a76be113c1f4f6cbddf0c6678","ssdeep":"384:NBhgRHFTqeeF1FCHj+SFwY0+tfc3nfcG+oL:NBhgRHFTqeeF1FCHj+SCl+SUG+a","tlshash":"89b2546a77b300207807d4a91b67a3593339a003e546cce93b5ed3848fa7e9ed6a175c","size":25120,"data":"","first_seen":"2026-06-17T20:41:05.806756Z","last_seen":"2026-06-17T21:20:45.993178Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Q6DJ85KKHX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6ea0b7d4dc3a8318905934e133974554","sha1":"d180a0403b138f43e9f09157b0ea20a361a13fe0","sha256":"3271a35718732d0398a047f6e0df565dcdbbc1facca17047afdbe0498ff9b658","sha512":"080c0a0031581e4d444dfef9476678442ec337fdcc315c93becdcc4671d1051da69e3afd3f6107095abf640ed6359dae8351f15736725505630548cd14a948a6","ssdeep":"6144:XQtHbuPe5Mk5OEVxeKwnKc52wJ4/2pqrGj5REuu3fzNz2NOFU3rVDsu:XS7zMk5OEVxLwn8wJ3cp2mUv","tlshash":"caa4f8cdb3d674625396f478903f018ba57b28e2b448c899f18acce42e7465a4277f7c","size":478935,"data":"","first_seen":"2026-06-17T21:20:45.992259Z","last_seen":"2026-06-17T21:20:45.992259Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"6f3241827b336bfdf76275fcfaa2a813","sha1":"47a277f6c1bdfb914e12d857f12cfb6f5df0f66e","sha256":"61a15d21655ed5bf74e187a3ecff6ba187a89d9d48520fa2a0e99c6e606f0913","sha512":"c7cd9a6df97e23c4b1beaf4a9d51e85cb13ae47b8201c0cb3f44cc474ae700d11baf48899ed3cee7aa5fa873a872bb1e980abd01039bfd0b85ebd0e032fe7e6b","ssdeep":"1536:v13lmmlB7Ly3A/KUF+JmV/Cu4/PvvwifFG826lSS8wJ:VznHtR4/Pv1Fh2pS8wJ","tlshash":"fca30afa73c2719e03aba8dd846f7552f22e2cd4094d41a4b0a4a977347491d83bbf78","size":103920,"data":"","first_seen":"2026-06-17T21:20:46.00577Z","last_seen":"2026-06-17T21:20:46.00577Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"c62a41eaa1cc544dd1a666e6cceb5b45","sha1":"9b8d136561fec3756bb6beab4ba82ab4e81e5d9c","sha256":"109e0c42f858de92ed210248ab4e1672aa2404972b49d997e21b0009b10a1a96","sha512":"b19da48312c0c99e5a9359a4b48016f8fe48eec2fe57695ab47ba367724485e693984b3b3529ca1554a0f1a25808908a1bd9fadc749f6c1b3bb614689482cd1e","ssdeep":"","tlshash":"26f0973f59a25131a82b209c38614ac4bdb25b126323f402b72dc2c00f29c4916a0f89","size":540,"data":"","first_seen":"2026-06-17T20:41:05.829747Z","last_seen":"2026-06-17T21:20:46.004064Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1e2fc73829d0590029e990269d3e21e1","sha1":"edaeeea279001414e53c85ecb210f215a41a7e80","sha256":"5b8afa51ebcb6550040366082a2736916a10631a43c83ba82465a5a377058e98","sha512":"2f20488d7fabd3869192cf10abbc1f35f62a1463e738b18d7626ade07236f16bba4251e00356d4984c25b4d0ed3c34bce6b828e7e00de8d24602bbb07319cfe7","ssdeep":"","tlshash":"60c08c88210b2c7051aa2a450b7fba04b045321294909922390e32045f20d07d788824","size":161,"data":"","first_seen":"2026-06-17T20:41:05.832032Z","last_seen":"2026-06-17T21:20:46.004741Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8ef5c6ca433873fafcc61dee0ebcc8c9","sha1":"7b2ef5524b89a20d25b04db179d4e3ca6b3a1310","sha256":"7305510bfd58445267a1b8c48f3d3710afe0e3b10d9bae37c9531f360d9ee712","sha512":"f0f00737bf150d66c468a34833a78dc513393e8d6bd3ad9489480a33fb58cce581dab770af8d551b2dd1a281622f455132ad72c2d4ad997b2e457978b64b74a2","ssdeep":"384:N5jgw/J82k06Roimd/feqh2pBJY+SXCtyZE5lwl9xT5QV7fjoWmnEfybSi2PEXwj:Ny2wmd/epVty25S9DE7fDbvEXwshV47L","tlshash":"4bc207eb32ae79194329553110ff2c85b2dd49c0318f5a78ea14f12539d793282ebef8","size":27870,"data":"","first_seen":"2026-06-17T20:41:05.834307Z","last_seen":"2026-06-17T21:20:46.005284Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"c62a41eaa1cc544dd1a666e6cceb5b45","sha1":"9b8d136561fec3756bb6beab4ba82ab4e81e5d9c","sha256":"109e0c42f858de92ed210248ab4e1672aa2404972b49d997e21b0009b10a1a96","sha512":"b19da48312c0c99e5a9359a4b48016f8fe48eec2fe57695ab47ba367724485e693984b3b3529ca1554a0f1a25808908a1bd9fadc749f6c1b3bb614689482cd1e","ssdeep":"","tlshash":"26f0973f59a25131a82b209c38614ac4bdb25b126323f402b72dc2c00f29c4916a0f89","size":540,"data":"","first_seen":"2026-06-17T20:41:05.829747Z","last_seen":"2026-06-17T21:20:46.004064Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1e2fc73829d0590029e990269d3e21e1","sha1":"edaeeea279001414e53c85ecb210f215a41a7e80","sha256":"5b8afa51ebcb6550040366082a2736916a10631a43c83ba82465a5a377058e98","sha512":"2f20488d7fabd3869192cf10abbc1f35f62a1463e738b18d7626ade07236f16bba4251e00356d4984c25b4d0ed3c34bce6b828e7e00de8d24602bbb07319cfe7","ssdeep":"","tlshash":"60c08c88210b2c7051aa2a450b7fba04b045321294909922390e32045f20d07d788824","size":161,"data":"","first_seen":"2026-06-17T20:41:05.832032Z","last_seen":"2026-06-17T21:20:46.004741Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8ef5c6ca433873fafcc61dee0ebcc8c9","sha1":"7b2ef5524b89a20d25b04db179d4e3ca6b3a1310","sha256":"7305510bfd58445267a1b8c48f3d3710afe0e3b10d9bae37c9531f360d9ee712","sha512":"f0f00737bf150d66c468a34833a78dc513393e8d6bd3ad9489480a33fb58cce581dab770af8d551b2dd1a281622f455132ad72c2d4ad997b2e457978b64b74a2","ssdeep":"384:N5jgw/J82k06Roimd/feqh2pBJY+SXCtyZE5lwl9xT5QV7fjoWmnEfybSi2PEXwj:Ny2wmd/epVty25S9DE7fDbvEXwshV47L","tlshash":"4bc207eb32ae79194329553110ff2c85b2dd49c0318f5a78ea14f12539d793282ebef8","size":27870,"data":"","first_seen":"2026-06-17T20:41:05.834307Z","last_seen":"2026-06-17T21:20:46.005284Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"GeoIP: Starting language detection...","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"GeoIP: Detected country code:NO","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"GeoIP: Detected lang:en| Current lang:en","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:13:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:13:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:13minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T17:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.020ZdiffMins:259.28366666666665","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning post","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:16:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:16:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:16minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T20:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.021ZdiffMins:79.28368333333333","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning in","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:19:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:19:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:19minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T23:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.022ZdiffMins:-100.7163","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning pre","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:00:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:00:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:0minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T04:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.023ZdiffMins:1039.2837166666666","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning post","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:13:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:13:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:13minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T17:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.024ZdiffMins:259.2837333333333","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning post","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"RENDER CARD:soc1state:postfinalHomeScore:1finalAwayScore:1","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:16:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:16:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:16minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T20:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.026ZdiffMins:79.28376666666666","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning in","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"RENDER CARD:soc2state:infinalHomeScore:3finalAwayScore:2","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:19:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:19:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:19minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T23:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.027ZdiffMins:-100.71621666666667","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning pre","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"RENDER CARD:soc3state:prefinalHomeScore:-finalAwayScore:-","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState input:00:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC input:00:00 ET","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed hours:0minutes:0","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: parsed day:map[type:null]monthIdx:map[type:null]","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"parseETTimeToUTC: result UTC date:2026-06-17T04:00:00.000Z","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: now:2026-06-17T21:19:17.029ZdiffMins:1039.2838166666668","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"calculateMatchState: returning post","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0},{"level":"log","text":"RENDER CARD:soc4state:prefinalHomeScore:-finalAwayScore:-","filename":"https://www.yallashots.live/script.js","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Cairo:wght@300;400;600;700;800;900\u0026family=Outfit:wght@300;400;500;600;700;800;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:15.836Z","timestamp":1781731155836,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Cairo:wght@300;400;600;700;800;900\u0026family=Outfit:wght@300;400;500;600;700;800;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 17 Jun 2026 21:19:15 GMT\r\ndate: Wed, 17 Jun 2026 21:19:15 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16501,"size_decoded":1616,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (649)","md5":"825a7afa9eaf0e72150587ce62c14d38","sha1":"a29f243682cf0faa4a2cf74605c1cae2a0bf93f9","sha256":"7a637b7984ae6456694f0db2f23b5cd1e147b1b961b8eac8dafd88744c32ebb1","sha512":"b1b8e9afb86cd71f30b25a78b8d6969fd6de5fbacc175e52df891faa1c1cc2337b29296398268e5de9bb0127233b401ceacf315836ebf6e7e2ad8a3c731bc793","ssdeep":"192:zbClb3UlbCl63JDbClw338bClX3QZbClW3VqbCl132VhbNh6OhprhwEhXxhWCh1V:KlzlvlClflolA","tlshash":"cd72bfd0081f9184bf471dc222cd7e23ee4fa1556494896cabfd2a8b9cabc27735574c","first_seen":"2026-06-17T20:41:05.778915Z","last_seen":"2026-06-17T21:20:45.985489Z","times_seen":3,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":0,"dns":2,"connect":16,"send":0,"wait":36,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/goalna-logo.png","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.316Z","timestamp":1781731156316,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"GET /goalna-logo.png HTTP/1.1\r\nHost: www.yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://www.yallashots.live/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:16 GMT\r\nContent-Type: image/png\r\nContent-Length: 47739\r\nLast-Modified: Wed, 17 Jun 2026 04:47:34 GMT\r\nConnection: keep-alive\r\nETag: \"6a3226e6-ba7b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":47739,"size_decoded":47989,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"f9f80ce770fe28428641e2276d0b186f","sha1":"b45c50536a269da44e112d2e8e343754bb8aa68e","sha256":"95e827e83d3828d50f71722eff4d1fc0b4c56d7110a0bd4855286fb0e24bd85e","sha512":"6c6e85f9dcd78833eb030c2ed6ecad52913ffad0dc1d1740a9fa2122f76a5b147a6079bc69c8334019e06aa42e2f31199a8150d2d681a056002529f25315c3ba","ssdeep":"768:VNuxjMqy1T7PcuMPyTE8fCezlrMsqgMrbWaDCGbM+WQXtWkgEgCTS1Td5:VAjMqwXkuNPRzlrMsqLbW61WhwATd5","tlshash":"eb2312b9c5c2463010875d6c90db0cbacf23a446e5f32da95a2de89b571fdce05a18e4","first_seen":"2026-06-17T20:41:05.775119Z","last_seen":"2026-06-17T21:20:45.986421Z","times_seen":3,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":147,"receive":149,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.thesportsdb.com/api/v1/json/3/searchteams.php?t=Ghana","fqdn":"www.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.030Z","timestamp":1781731157030,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 23 May 2026 00:45:23 GMT","end":"Fri, 21 Aug 2026 01:45:09 GMT"},"fingerprint":{"sha1":"2E:6C:BE:2C:3C:F9:60:B7:16:10:81:B8:99:95:99:B4:9B:3A:FC:31","sha256":"E1:62:92:8E:F5:CB:9E:41:33:5C:E7:E8:8D:0D:29:DC:96:E7:F8:C8:E4:D9:23:97:02:E3:71:79:40:82:EB:E1"}}},"request":{"raw":"GET /api/v1/json/3/searchteams.php?t=Ghana HTTP/1.1\r\nHost: www.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncache-control: public, max-age=14400\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-powered-by: PHP/8.4.14\r\nx-tsdb-cache: HIT\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X_API_KEY, OPTION, OPTIONS, XMLHttpRequest\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, OPTIONS\r\naccess-control-max-age: 1000\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 17 Jun 2026 21:19:17 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p%2FMZXm%2F0PFyIGx906hEm6FuZBY472cGQnaiQhg6CeuQCkmV3vqx58oT0VqBygRdYYYTWfzBUIi702Mun5QPtBtvtJ8x9Fuw01JBsXdcKOpLqIjAbQDhinABKxsL%2FcgV8gt1E%2Bew%3D\"}]}\r\ncontent-length: 1282\r\ncf-ray: a0d517738c0ab28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.4.14","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":3233,"size_decoded":2324,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"75af205ccf38be7eef8a48e5d7b9dabb","sha1":"f3910ccb184258a3650c7d577b9fd716f40d7e29","sha256":"dc52589327c274b75dc5b4fb524ac494758698b6c1077396e40579fb6da50647","sha512":"c8344f1b5461e812c41bd958730c81f4116c70638250a676a92506b5d304798371a27008125ca8b8d8f4c106f92424266db1f6f8fd3fbdbac9fdfc67ed30e049","ssdeep":"","tlshash":"5c61565f5e811672e24703873a5cb8ca84bd1123154bdce19edddf0a6470ae116b35a2","first_seen":"2026-06-17T20:41:05.804369Z","last_seen":"2026-06-17T21:20:45.987387Z","times_seen":3,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":2,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r2.thesportsdb.com/images/media/team/badge/j589xw1751526124.png","fqdn":"r2.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.150Z","timestamp":1781731157150,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r2.thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 07 Jun 2026 07:07:06 GMT","end":"Sat, 05 Sep 2026 08:07:00 GMT"},"fingerprint":{"sha1":"C1:59:7C:C5:38:21:0F:76:04:10:D5:96:F9:28:48:6D:AC:30:D8:F5","sha256":"CE:EB:52:20:3D:39:93:87:3A:A7:B0:27:C6:B8:0E:D4:0E:F5:9D:39:72:47:F1:21:E3:40:19:A8:73:3E:1A:5C"}}},"request":{"raw":"GET /images/media/team/badge/j589xw1751526124.png HTTP/1.1\r\nHost: r2.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 17 Jun 2026 21:19:18 GMT\r\ncontent-type: image/png\r\ncontent-length: 84011\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\naccept-ranges: bytes\r\netag: \"02790cb8514361c815241acb7c2903ce\"\r\nlast-modified: Fri, 01 Aug 2025 16:12:35 GMT\r\nvary: Accept-Encoding\r\nage: 2759\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LOSqfe0KR5LU1ZSSvrEogfuDkOerODpB8gAiSDKlKo8kh044iTI6qcLeULC1MYoNw1D6R%2Bh0A6Djd9fFg1QShzjua0Gep4hR5UzyZaqy9OMZ49nB2ayhi6OjV%2Bbnu1xt%2Bxf5VQ%3D%3D\"}]}\r\ncf-ray: a0d51779da618deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84011,"size_decoded":84736,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"02790cb8514361c815241acb7c2903ce","sha1":"28aaa9144b0990a02d4e6538911fdd9008775ee5","sha256":"b1e92e68e1d5da7f0fe1748784dd40b8404f36129de13491b6b722c64d51eeb8","sha512":"d87035b8422b350f1c272c815a0e12e85b473ea1d5daaf8c4d69514add8a92d4785a8e4956629a03ddea7ee03275c76173e471ec9ac20caba51568ed1e1d43ef","ssdeep":"1536:3XmQovbfPQkx0fSnta5A+4hHGab3spbUD3zBhVmbsLtrYS8ndrfN2gq:HmQovbfYkxznt4ZKHxIxozBPgsLtrYSv","tlshash":"058302df5d9219728954e2e207fc417c04b161b9bab54bdade3e69838a400db20cbfb4","first_seen":"2026-06-17T20:41:05.811586Z","last_seen":"2026-06-23T21:24:13.107487Z","times_seen":4,"resource_available":false,"data":null}},"time_used":921,"timings":{"blocked":908,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"49toactivate.net/wrr?id=11128828\u0026rb=WcsU2Kgf9L14W794bbsBzKDGxrrJkz1FelodlJzQZA0XFJAOKbEAB-HMscCjlAYwM054uneDijK7OHSSNEr1SEtpsIY6rlsmSGb2qDX5KnAC75Av7AAGq49brN5WyUegu5amXC30sV9MV-PTAh3ic4SxUAwLoMFE4xYfcLeD4kCBI8L4f_RC44Zhsatmes6mJZZdQg4471ppmRVp_EVgkcouWdn6uqpqwds1YMygHYMSuOFJFSDo3n0A6tKqF2prsBP2NZNx3anUBz_h_HS15liyj1wkjZ3cGG7r8LLgM3Lx-EumaDoJaGV6Ews%3D\u0026p_rid=69ff77e4-46d1-4544-a967-0210a77de40c\u0026tt=3\u0026js_build=iclick-v1.1818.0\u0026userId=008358ba77464d1fe2551422381c5975\u0026tspl=14106\u0026cslt=0","fqdn":"49toactivate.net","domain":"49toactivate.net","tld":"net"},"ip":{"addr":"104.21.23.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:26.824Z","timestamp":1781731166824,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"49toactivate.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Jun 2026 03:03:33 GMT","end":"Tue, 15 Sep 2026 04:02:21 GMT"},"fingerprint":{"sha1":"EC:04:79:57:4F:A3:A8:50:9B:BC:42:C1:C2:59:F0:6D:2C:55:65:DE","sha256":"1D:66:BE:63:6B:AC:75:CD:60:89:61:E9:D6:0E:15:CD:CA:FB:D8:97:FC:FC:37:6F:40:99:9D:B4:78:88:5C:C5"}}},"request":{"raw":"OPTIONS /wrr?id=11128828\u0026rb=WcsU2Kgf9L14W794bbsBzKDGxrrJkz1FelodlJzQZA0XFJAOKbEAB-HMscCjlAYwM054uneDijK7OHSSNEr1SEtpsIY6rlsmSGb2qDX5KnAC75Av7AAGq49brN5WyUegu5amXC30sV9MV-PTAh3ic4SxUAwLoMFE4xYfcLeD4kCBI8L4f_RC44Zhsatmes6mJZZdQg4471ppmRVp_EVgkcouWdn6uqpqwds1YMygHYMSuOFJFSDo3n0A6tKqF2prsBP2NZNx3anUBz_h_HS15liyj1wkjZ3cGG7r8LLgM3Lx-EumaDoJaGV6Ews%3D\u0026p_rid=69ff77e4-46d1-4544-a967-0210a77de40c\u0026tt=3\u0026js_build=iclick-v1.1818.0\u0026userId=008358ba77464d1fe2551422381c5975\u0026tspl=14106\u0026cslt=0 HTTP/1.1\r\nHost: 49toactivate.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,favicon\r\nReferer: https://www.yallashots.live/\r\nOrigin: https://www.yallashots.live\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 \r\nserver: cloudflare\r\ndate: Wed, 17 Jun 2026 21:19:26 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kV2jXojWHUpFxRncVXWL1JdRocekj3oBzVQZ9EWzcLoD2%2Fz4MLnG2zKCMHCWPbLAXgeHTzH4Z3Sf6hTSg%2FTobtgBB%2FKXE%2FJ6VrAU05gUXeGBTyBDRdzTOG4r%2FydvnOE%2FQ5Pz\"}]}\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://www.yallashots.live\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *, *\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0d517b0b976c759-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":1252,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":0,"dns":1,"connect":8,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.thesportsdb.com/api/v1/json/3/searchteams.php?t=Uzbekistan","fqdn":"www.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.037Z","timestamp":1781731157037,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 23 May 2026 00:45:23 GMT","end":"Fri, 21 Aug 2026 01:45:09 GMT"},"fingerprint":{"sha1":"2E:6C:BE:2C:3C:F9:60:B7:16:10:81:B8:99:95:99:B4:9B:3A:FC:31","sha256":"E1:62:92:8E:F5:CB:9E:41:33:5C:E7:E8:8D:0D:29:DC:96:E7:F8:C8:E4:D9:23:97:02:E3:71:79:40:82:EB:E1"}}},"request":{"raw":"GET /api/v1/json/3/searchteams.php?t=Uzbekistan HTTP/1.1\r\nHost: www.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncache-control: public, max-age=14400\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-powered-by: PHP/8.4.14\r\nx-tsdb-cache: HIT\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X_API_KEY, OPTION, OPTIONS, XMLHttpRequest\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, OPTIONS\r\naccess-control-max-age: 1000\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 17 Jun 2026 21:19:17 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Chm4LcYF9Dx1Woay2jzC0Q7ml0fiJ1HoNWTxtq6SuHiNFcnjWfU16B%2FUMCzCjgdM%2BTMvq3X18lxZTd9YlziDqbHavVgdmlaqsw4jEFk%2FuZgKfHqFmS9vhr6kQWSr0jomD64HolE%3D\"}]}\r\ncontent-length: 1241\r\ncf-ray: a0d517738c09b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.4.14","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2947,"size_decoded":2281,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"0c54e3492bcf60ec9601ff2f28eceb5c","sha1":"5d8cccdb6f6591494c6283ba3e8eb8c50799aa8d","sha256":"f443cb7dff15d80872ccaa0d800dadb743934c115f60b16c3e1443dde5988fdd","sha512":"d92a84547dddd21db8f411a15adf072fec485fa985c02b269420ce252cc33f682461bbf9784835addd0f30cddaa3b398da3738662402a96ee30a5244a7a9b96e","ssdeep":"","tlshash":"ec51331d4d913e72d1c703ca792d7a9988bc65230055ead1abfe8fdb5874be00273921","first_seen":"2026-06-17T20:41:05.764066Z","last_seen":"2026-06-17T21:20:45.989963Z","times_seen":3,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.024Z","timestamp":1781731156024,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 14 Jun 2026 15:30:17 GMT\r\nexpires: Mon, 14 Jun 2027 15:30:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 280139\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":32108,"size_decoded":32921,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-07-02T19:25:39.127251Z","times_seen":25059,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":37,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yallashots.live/","fqdn":"yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T21:19:12.573Z","timestamp":1781731152573,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:14 GMT\r\nContent-Type: text/html\r\nContent-Length: 178\r\nConnection: keep-alive\r\nLocation: https://www.yallashots.live/\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":1863,"timings":{"blocked":-1,"dns":1266,"connect":147,"send":0,"wait":147,"receive":0,"ssl":302},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T21:19:14.455Z","timestamp":1781731154455,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:14 GMT\r\nContent-Type: text/html\r\nLast-Modified: Wed, 17 Jun 2026 04:51:08 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6a3227bc-bf9d\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":49053,"size_decoded":21200,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (27935), with CRLF line terminators","md5":"dde3cbc919b86c671aef559ba02225ba","sha1":"eef2c4d13f9d4deb85442cb6d694f087d3ac8c05","sha256":"7ac7455f11a59eb8a3f4576e28d5279dada4bf3c17b02d9e906bc3d552fc7ab2","sha512":"0cc8706f8de396ec87a166bec2205dbd14a445dfc3be72c2e835c3061d90ee4884be6077078d2404f99037ccc03a269db562e5c1730c90b266dd976bad8ca617","ssdeep":"768:ECvjcTx0/mmfpmTARgFrRmWxbYwy2wmd/epVty25S9DE7fDbvEXwshV47U:EEjcCpsf+8EZ2q9SFE7fDgXBhK7U","tlshash":"f02309b735a9b4250736852990ef3a95f6f44d83a24fa434f11cd2172ff392281a7eb4","first_seen":"2026-06-17T20:41:05.771195Z","last_seen":"2026-06-17T21:20:45.991369Z","times_seen":3,"resource_available":true,"data":null}},"time_used":592,"timings":{"blocked":-1,"dns":3,"connect":146,"send":0,"wait":293,"receive":0,"ssl":150},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Q6DJ85KKHX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:15.530Z","timestamp":1781731155530,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:36:26 GMT","end":"Mon, 17 Aug 2026 08:36:25 GMT"},"fingerprint":{"sha1":"B1:69:2D:8A:87:48:5C:47:05:41:5B:52:3B:0E:2C:E9:BD:CC:03:75","sha256":"91:1E:26:69:78:6C:F7:F4:05:E8:B1:07:F4:04:FB:66:B9:20:6A:EB:43:9D:02:70:C8:AF:60:8C:BB:58:30:4F"}}},"request":{"raw":"GET /gtag/js?id=G-Q6DJ85KKHX HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: zstd\r\nvary: Accept-Encoding\r\ndate: Wed, 17 Jun 2026 21:19:15 GMT\r\nexpires: Wed, 17 Jun 2026 21:19:15 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 162830\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":478935,"size_decoded":163434,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"6ea0b7d4dc3a8318905934e133974554","sha1":"d180a0403b138f43e9f09157b0ea20a361a13fe0","sha256":"3271a35718732d0398a047f6e0df565dcdbbc1facca17047afdbe0498ff9b658","sha512":"080c0a0031581e4d444dfef9476678442ec337fdcc315c93becdcc4671d1051da69e3afd3f6107095abf640ed6359dae8351f15736725505630548cd14a948a6","ssdeep":"6144:XQtHbuPe5Mk5OEVxeKwnKc52wJ4/2pqrGj5REuu3fzNz2NOFU3rVDsu:XS7zMk5OEVxLwn8wJ3cp2mUv","tlshash":"caa4f8cdb3d674625396f478903f018ba57b28e2b448c899f18acce42e7465a4277f7c","first_seen":"2026-06-17T21:20:45.992259Z","last_seen":"2026-06-17T21:20:45.992259Z","times_seen":1,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":-1,"dns":2,"connect":16,"send":0,"wait":45,"receive":47,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/goalna-promo.js","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:15.535Z","timestamp":1781731155535,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"GET /goalna-promo.js HTTP/1.1\r\nHost: www.yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://www.yallashots.live/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:15 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 25120\r\nLast-Modified: Wed, 17 Jun 2026 05:07:36 GMT\r\nConnection: keep-alive\r\nETag: \"6a322b98-6220\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25120,"size_decoded":25383,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (578)","md5":"cf8be74a006e1ca7ff90503d659178b6","sha1":"4ec9e0c10c18d09ea9ad74164f80454915c75ba8","sha256":"1d196fda1b8beb2a141dc2953bb87258cecf4709fa44da63277d2db4d37678f2","sha512":"a3ca8f79780bb7c05850f056bf9143897d3d48dc2f3da02df387eac41bb489f350edb094bbb12946610470897829dbf37ee0869a76be113c1f4f6cbddf0c6678","ssdeep":"384:NBhgRHFTqeeF1FCHj+SFwY0+tfc3nfcG+oL:NBhgRHFTqeeF1FCHj+SCl+SUG+a","tlshash":"89b2546a77b300207807d4a91b67a3593339a003e546cce93b5ed3848fa7e9ed6a175c","first_seen":"2026-06-17T20:41:05.806756Z","last_seen":"2026-06-17T21:20:45.993178Z","times_seen":3,"resource_available":true,"data":null}},"time_used":594,"timings":{"blocked":-1,"dns":0,"connect":146,"send":0,"wait":294,"receive":1,"ssl":152},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.country.is/","fqdn":"api.country.is","domain":"country.is","tld":"is"},"ip":{"addr":"104.26.1.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.324Z","timestamp":1781731156324,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"country.is","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 23 May 2026 23:37:24 GMT","end":"Sat, 22 Aug 2026 00:37:13 GMT"},"fingerprint":{"sha1":"0D:90:C1:5C:29:2F:35:5A:E0:48:C9:C2:55:DF:8D:02:D4:2B:70:79","sha256":"00:B9:86:8B:7B:42:D9:0F:02:85:0E:69:2E:6C:D5:62:83:5E:AA:ED:C5:E7:D1:7B:E1:67:F8:62:91:34:CF:57"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: api.country.is\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 17 Jun 2026 21:19:16 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 38\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: no-cache\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SJXfJ9w7Ket9uXLZFapBIafTvh9TSFMmJ%2BuLiMO40l%2BtRR8HC%2BB1jfhb8sX1JPIHYB6jAyM9rgB5TCzzP9niOyR8qKPShZ4rpvCVaPDckneJuEyhs3bOEd%2FjAKS8eodz\"}]}\r\netag: W/\"26-s87Asb/nOWeVJNZsRLZ5EgeHar0\"\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: a0d5176f2c6db1b8-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38,"size_decoded":671,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"84ce7d452c22b1ff0ffc904e7ab8394f","sha1":"b3cec0b1bfe739679524d66c44b6791207876abd","sha256":"73029324a548df1d37ca51cc4e456e4925e9bb95cefab9e69892626377f64f40","sha512":"9871e27e557fd6f1deaeb8c3ce3d5638c659e1b6085c49e851501dc3300b1207d89eb1847fd0e32355132e7df50c4505b61e4d2601c78e13c9ef22c8d3012cb2","ssdeep":"","tlshash":"3580045500704f04d45043451445503040d7534113434d04c3c4333d4d401dc7000031","first_seen":"2025-12-20T16:42:41.64905Z","last_seen":"2026-07-02T19:17:08.749235Z","times_seen":164,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":0,"dns":3,"connect":1,"send":0,"wait":44,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upsmnctvkbmaxfh.com/","fqdn":"upsmnctvkbmaxfh.com","domain":"upsmnctvkbmaxfh.com","tld":"com"},"ip":{"addr":"139.45.197.161","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:26.328Z","timestamp":1781731166328,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upsmnctvkbmaxfh.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 11:12:34 GMT","end":"Mon, 14 Sep 2026 11:12:33 GMT"},"fingerprint":{"sha1":"35:9C:B6:64:CE:F5:62:85:8B:5F:ED:56:F5:8E:C0:C1:E3:F7:43:50","sha256":"C8:BB:2C:0C:43:08:06:07:4B:16:D9:EF:68:EB:9E:DC:F2:0D:61:B4:2E:B4:35:D3:8E:7D:A7:F3:EB:A4:7B:CC"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: upsmnctvkbmaxfh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 21:19:26 GMT\r\ncontent-type: text/html\r\nx-t34r9a58c55e90-76i67d57: 00000000000000000000000000000000\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: https://www.yallashots.live\r\naccess-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname\r\naccess-control-allow-credentials: true\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\ntiming-allow-origin: *\r\nx-application-key: 4fh0a4vfwdmvhog8QopaFbzl3nb8f5gg\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":764,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":0,"dns":0,"connect":27,"send":0,"wait":27,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flagcdn.com/w80/co.png","fqdn":"flagcdn.com","domain":"flagcdn.com","tld":"com"},"ip":{"addr":"172.67.180.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.041Z","timestamp":1781731157041,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flagcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 01:26:53 GMT","end":"Sat, 29 Aug 2026 02:26:16 GMT"},"fingerprint":{"sha1":"D2:6E:B0:B6:96:56:08:49:68:3B:CB:E0:E3:66:23:60:CD:73:2B:8D","sha256":"F5:81:41:B3:1E:2C:6F:26:A5:EF:89:3C:3C:84:66:48:2D:2F:E3:EA:E4:EF:C2:ED:58:8E:15:45:FB:B1:55:93"}}},"request":{"raw":"GET /w80/co.png HTTP/1.1\r\nHost: flagcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nlast-modified: Tue, 01 Jul 2025 15:39:52 GMT\r\netag: \"68640148-7d\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2678400, s-maxage=2678400\r\naccept-ranges: bytes\r\npriority: u=4,i\r\nage: 2334664\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=w7WLkAaypatrwfNryNNya8%2FvAlN%2Fbz%2F%2Ftm9uHrqtPTOxECa0ePUSOwZJUOY21dk15OLWF%2BJfMRBBfrw1XdBBJQed9vGCHx8urWQzHJHEjW1JT1OySdh16HJcpa49Hw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 125\r\ncf-ray: a0d51773993856aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":125,"size_decoded":958,"mime_type":"image/png","magic":"PNG image data, 80 x 53, 4-bit colormap, non-interlaced","md5":"4eb68e3bfb1c0b0f8c6107d2ac96fe7e","sha1":"10d792444ce0ad53edf5a01ece6356acfef8e7f9","sha256":"cc204eef36e8d922b38b794cd00000b9cfefeb7964c914d5c15d432b27cb0771","sha512":"a3b6cb1644d9a6277b2c34d2e66ffa37f419726a21aad0edb3d91babcf93b723c5443c315bd2b527a1c0f80c26d2d29e9e3e60a0119e55f1ed9d2f9f8f246429","ssdeep":"","tlshash":"36b02bc6b0745d354702901623081098a503050cb20401500589c83333015116044161","first_seen":"2025-08-29T01:16:58.54034Z","last_seen":"2026-07-02T18:01:33.418854Z","times_seen":112,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":14,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r2.thesportsdb.com/images/media/team/badge/asp2ck1715849700.png","fqdn":"r2.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.151Z","timestamp":1781731157151,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r2.thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 07 Jun 2026 07:07:06 GMT","end":"Sat, 05 Sep 2026 08:07:00 GMT"},"fingerprint":{"sha1":"C1:59:7C:C5:38:21:0F:76:04:10:D5:96:F9:28:48:6D:AC:30:D8:F5","sha256":"CE:EB:52:20:3D:39:93:87:3A:A7:B0:27:C6:B8:0E:D4:0E:F5:9D:39:72:47:F1:21:E3:40:19:A8:73:3E:1A:5C"}}},"request":{"raw":"GET /images/media/team/badge/asp2ck1715849700.png HTTP/1.1\r\nHost: r2.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 17 Jun 2026 21:19:18 GMT\r\ncontent-type: image/png\r\ncontent-length: 108990\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\naccept-ranges: bytes\r\netag: \"84094d3f000dcc32624e34bdcc761462\"\r\nlast-modified: Fri, 14 Mar 2025 12:13:28 GMT\r\nvary: Accept-Encoding\r\nage: 5379\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K5xrSy5mPAwQXmM7uWCoUIQdcqaZhYM7oHtDntFfGZCfFy2f7qlE%2FMX2gGESWQUl8AhLIiDXJ8qCn7%2BVrvD4OjYWzdP%2FYuX6p6o%2Flhsvkj%2BHg6YXVk0eDLmm%2BH5ZvBCdb73WLQ%3D%3D\"}]}\r\ncf-ray: a0d51779da5a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":108990,"size_decoded":109722,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"84094d3f000dcc32624e34bdcc761462","sha1":"b03764524b122b5bb32d5e35de436ec43e735a9d","sha256":"b6c6d113300beee8161ef83fc82fc1b07e41c3f6de39291af0ec90706eb28009","sha512":"ed43299ae7b8e6b384e6bbba8117277b603a323472a5b1eb0c28b9b1ea5e67d9bbc78d489da9c18977580f480677b16e16743bc73a2aa6170170bc6e726ffbbb","ssdeep":"3072:5tf4KNP/HTuhKQt+fbL54ZEs/BD/vI3jd0Qw661TV0uI:5BBXHTE5t+JmD/vyHR6NVhI","tlshash":"c5b302abe44247d002448a76daf4f747d734c284b1c4e20adc5e95bca947db35acb781","first_seen":"2026-06-09T01:18:05.926789Z","last_seen":"2026-06-23T21:24:13.109373Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1830,"timings":{"blocked":908,"dns":908,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jnbhi.com/tag.min.js","fqdn":"jnbhi.com","domain":"jnbhi.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:21.464Z","timestamp":1781731161464,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: jnbhi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/script.js","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:15.537Z","timestamp":1781731155537,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: www.yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://www.yallashots.live/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:15 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 45953\r\nLast-Modified: Mon, 15 Jun 2026 12:58:04 GMT\r\nConnection: keep-alive\r\nETag: \"6a2ff6dc-b381\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":45953,"size_decoded":46216,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"c237004317b8c220d3d65ec932c702dd","sha1":"d14b393aebfb144ca1010582256234c6aa32a052","sha256":"6b04bfc711c4aa0804a2c2c7dedafb4657c56d19d5af936023a4410c84929810","sha512":"59b3ee8272d48019507a528d79565b054a34d7f9d88dd96230d556b3bc309718d2e5d03132608d1ee77b557f4db6a3daca779579e3f5cdcd7bdeebedc5be8287","ssdeep":"768:LvwH9gAgPesMau8a+jG1kPb6//9aOKijkR4iNa/AcrVsdCt9+rCxz:LvwHqv7u8JG1kPb/ioJ8Ac6dCt9+rCl","tlshash":"1d23975a912514228977f3badba72118fe326737730285057e7d83092f77c5482aefe8","first_seen":"2026-06-17T20:41:05.816243Z","last_seen":"2026-06-17T21:20:45.995421Z","times_seen":3,"resource_available":true,"data":null}},"time_used":734,"timings":{"blocked":-1,"dns":0,"connect":146,"send":0,"wait":292,"receive":145,"ssl":151},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/cairo/v31/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscQyyS8pg_RWH1vCk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.353Z","timestamp":1781731156353,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/cairo/v31/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscQyyS8pg_RWH1vCk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 30896\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 13 Jun 2026 14:41:28 GMT\r\nexpires: Sun, 13 Jun 2027 14:41:28 GMT\r\ncache-control: public, max-age=31536000\r\nage: 369468\r\nlast-modified: Tue, 16 Sep 2025 03:39:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":30896,"size_decoded":31709,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 30896, version 1.0","md5":"4d90a59cb1819bdd41f970549ab90a16","sha1":"714d40cf07db15fa9268ea607211c31438e4ded4","sha256":"748022f50c427456ad66031e855349be3448ee1f05a5f1eb59574ebe0c686749","sha512":"a0acca1df3a6abcd7b6f4c2757862b77af98571e283adb26be5c5f386c3c1e59afd1e1186ee17a4642c410ca7d2eb60e3cf51df731010bdc5ad9a5b3a7f8eec1","ssdeep":"768:6L9cTVSKprJeCIyonOLwDIzFBO5CTJH0mtCFiCv:k9GteHyonM9ZBO09HxMv","tlshash":"bed2e1c2bca5cd835d7e7f721239a96f008c1c8b776c99fc5cf21e644494dad028aa91","first_seen":"2025-09-17T15:48:15.244682Z","last_seen":"2026-07-02T19:22:40.407692Z","times_seen":2938,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.golygoal.com/wp-content/uploads/2026/02/cropped-dwqg-32x32.png","fqdn":"www.golygoal.com","domain":"golygoal.com","tld":"com"},"ip":{"addr":"172.67.157.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.829Z","timestamp":1781731156829,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"golygoal.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Jun 2026 14:38:36 GMT","end":"Wed, 09 Sep 2026 15:37:04 GMT"},"fingerprint":{"sha1":"16:D2:DF:29:C0:52:94:73:82:7D:4A:5F:06:A5:92:3F:BD:F7:DD:5B","sha256":"BF:E3:40:66:43:FF:20:4E:31:18:4B:3B:93:5D:6C:72:BB:90:06:6C:DB:59:72:50:BC:9F:1E:D4:A5:FB:C4:C3"}}},"request":{"raw":"GET /wp-content/uploads/2026/02/cropped-dwqg-32x32.png HTTP/1.1\r\nHost: www.golygoal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 17 Jun 2026 21:19:16 GMT\r\ncontent-type: image/png\r\npriority: u=6,i=?0\r\ncache-control: public, max-age=2592000\r\nexpires: Sat, 11 Jul 2026 16:07:23 GMT\r\nlast-modified: Thu, 11 Jun 2026 15:46:00 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\nage: 537112\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=09eAgbsfG%2FkmNEZNM49gkgEcmfIUf7uBg1ExzEBaPOlGxsIYoIBSVU7eVRzydCTTUL2UM%2BgywWhkyviaHQBu0bkdzBdjBnhzs%2B9EA1MG90CNWKwsDmIMFKrjfh75TuExpQin\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 2031\r\ncf-ray: a0d517724c4a5687-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2031,"size_decoded":2790,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"902d23e34f3c7bd14bac618c4448f663","sha1":"1bd3f57be023ff68cdfa9e220cb23c4b59161818","sha256":"791efe36fc1ada4600a1d66fa9076ef009ce2a30eb6db1db41dbfca709916bcb","sha512":"79f8a0a6b7cc3c23a81f92a5244173d8e941bdffa98c36f156607bbaf925840a8495354092bee767b4e079f3748d9d3cac83e8778957b3c35588f95aeeeafb18","ssdeep":"","tlshash":"89414c82928be2638458133f47328691aa387d67b2c22b3c941dc4e1ce4e3833503d5d","first_seen":"2025-11-01T20:02:08.701963Z","last_seen":"2026-06-17T21:20:45.996873Z","times_seen":5,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":14,"dns":2,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flagcdn.com/w80/pt.png","fqdn":"flagcdn.com","domain":"flagcdn.com","tld":"com"},"ip":{"addr":"172.67.180.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.038Z","timestamp":1781731157038,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flagcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 01:26:53 GMT","end":"Sat, 29 Aug 2026 02:26:16 GMT"},"fingerprint":{"sha1":"D2:6E:B0:B6:96:56:08:49:68:3B:CB:E0:E3:66:23:60:CD:73:2B:8D","sha256":"F5:81:41:B3:1E:2C:6F:26:A5:EF:89:3C:3C:84:66:48:2D:2F:E3:EA:E4:EF:C2:ED:58:8E:15:45:FB:B1:55:93"}}},"request":{"raw":"GET /w80/pt.png HTTP/1.1\r\nHost: flagcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nlast-modified: Tue, 01 Jul 2025 15:39:52 GMT\r\netag: \"68640148-37d\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2678400, s-maxage=2678400\r\naccept-ranges: bytes\r\npriority: u=4,i\r\nage: 724598\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=v%2Fq9oobsNeu6F0FCRZ2%2FXPWdeuO%2BydfSdxGIB8HIYWX7iRFGkuSJM%2B2%2BQ7b0dqccgu1HRLf5OFKGvQMQ30aXNc5q0AqHU0O0y%2BJTbtPNBZkxdj7otQscieGIMTINKQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 893\r\ncf-ray: a0d51773993756aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":893,"size_decoded":1728,"mime_type":"image/png","magic":"PNG image data, 80 x 53, 8-bit colormap, non-interlaced","md5":"f271c4cf14ad3929231032902b6d384b","sha1":"649a8ee5129a4cfdffadd583f4bc827ce34fc2a1","sha256":"0006bee743a0d81fc4dcea7ae2fdc2bb17e560792b9939fb10ec05d76dd828ef","sha512":"445ad9f02392bf42f593f7aa1c165b8f6c17f866f3d3f5b7d171d9423dca07bbd5be3707dc3afc0e25e9ca320dd7f75b09ebce06dccd17efd8506ce2d63253d7","ssdeep":"","tlshash":"ec11b3ee0e10f91cd31549ea2ebac848f320e1b8160346622a18cf53a402e91a081593","first_seen":"2025-08-29T01:16:58.445561Z","last_seen":"2026-07-02T18:01:33.423775Z","times_seen":198,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":6,"connect":11,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r2.thesportsdb.com/images/media/team/badge/rieszn1728748814.png","fqdn":"r2.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.147Z","timestamp":1781731157147,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r2.thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 07 Jun 2026 07:07:06 GMT","end":"Sat, 05 Sep 2026 08:07:00 GMT"},"fingerprint":{"sha1":"C1:59:7C:C5:38:21:0F:76:04:10:D5:96:F9:28:48:6D:AC:30:D8:F5","sha256":"CE:EB:52:20:3D:39:93:87:3A:A7:B0:27:C6:B8:0E:D4:0E:F5:9D:39:72:47:F1:21:E3:40:19:A8:73:3E:1A:5C"}}},"request":{"raw":"GET /images/media/team/badge/rieszn1728748814.png HTTP/1.1\r\nHost: r2.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 149815\r\naccept-ranges: bytes\r\netag: \"6fa323504482008c1282f915822d98c7\"\r\nlast-modified: Fri, 14 Mar 2025 12:35:45 GMT\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=taoCk1ypK%2FvHsybdfsebt4glywPw63vK8W%2Ff74lBJ8Ux9grz0bJ8BInWnAkCgw4f5ND2s8LYvoevdC5XgPs0V74hS8KDjw0zOo48MCJyjITkjeCa2VP0OQkAMQKgBmAGCGvfQQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 6148\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: a0d517744f188deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":149815,"size_decoded":150516,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"6fa323504482008c1282f915822d98c7","sha1":"33e9f732f43cdf521297508fbde1da5a3e01f995","sha256":"af99bfdafb59bb416f3bd655646a63e5a84bd52fde739e33751ebcaffb690126","sha512":"b88bf2e46f79d5d0e7191f8ed64d427a90380da05811c92efb46e35c657352e85c5940a08314debf2b98d18722defb712a1d9983be044eaa2118aadb15549856","ssdeep":"3072:MlJJ+qC3KbpRRGTO3L5AkmYkmah9F5AGQq3ZpZcu89zBKFRAECdwlgx9pO3KOz4n:Mn0qCaVRETVV9FiGQ0pcr/KFRAVwKxrF","tlshash":"aae312371fbf88a1d999d8c4fb4d4815b67a2f9a4460a6c06d72f83c60305de478f9e8","first_seen":"2026-06-17T20:41:05.767979Z","last_seen":"2026-06-17T21:20:45.998092Z","times_seen":3,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":12,"connect":6,"send":0,"wait":10,"receive":4,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.thesportsdb.com/api/v1/json/3/searchteams.php?t=Panama","fqdn":"www.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.032Z","timestamp":1781731157032,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 23 May 2026 00:45:23 GMT","end":"Fri, 21 Aug 2026 01:45:09 GMT"},"fingerprint":{"sha1":"2E:6C:BE:2C:3C:F9:60:B7:16:10:81:B8:99:95:99:B4:9B:3A:FC:31","sha256":"E1:62:92:8E:F5:CB:9E:41:33:5C:E7:E8:8D:0D:29:DC:96:E7:F8:C8:E4:D9:23:97:02:E3:71:79:40:82:EB:E1"}}},"request":{"raw":"GET /api/v1/json/3/searchteams.php?t=Panama HTTP/1.1\r\nHost: www.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncache-control: public, max-age=14400\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-powered-by: PHP/8.4.14\r\nx-tsdb-cache: HIT\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X_API_KEY, OPTION, OPTIONS, XMLHttpRequest\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, OPTIONS\r\naccess-control-max-age: 1000\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 17 Jun 2026 21:19:17 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WVkby0T5wDr6EmWQsf2d7%2BPAwedYZyXW1sK9eUX4xu7QZzocFF9n7MFlLQNknQHpwXi%2Bi%2BrIkXVQjqB2mTh4G2ExJcKovAd6b9QO4fyXKRYHxZr%2B8wIvE5CXH%2BNdg%2FgzAo%2Fe7Mw%3D\"}]}\r\ncontent-length: 1393\r\ncf-ray: a0d517738c0bb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.4.14","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":3332,"size_decoded":2441,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5ad16899643c3f43d803530cb2345659","sha1":"07f88b2c3ab6c5ed9e09a8c2aff261188a938dfe","sha256":"499b6db8c3d6791a83b4948b6fe70bee4b77dbbeef6d10b7b9139380bce2f16d","sha512":"31a9d75afaf708d2b652ee691316cd1a6e115879e04e7388b2f9425771d0a7e885840ddce7fb17454ae7e7438fa22d3f57b3a52a163e3bdbdb7be72254b80763","ssdeep":"","tlshash":"f861745e4d9165abd28b12d7380d7a87c4bd212701418ce15fe88f0ee474be19673d33","first_seen":"2026-06-17T20:41:05.819819Z","last_seen":"2026-06-17T21:20:45.998695Z","times_seen":3,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flagcdn.com/w80/gb-eng.png","fqdn":"flagcdn.com","domain":"flagcdn.com","tld":"com"},"ip":{"addr":"172.67.180.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.039Z","timestamp":1781731157039,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flagcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 01:26:53 GMT","end":"Sat, 29 Aug 2026 02:26:16 GMT"},"fingerprint":{"sha1":"D2:6E:B0:B6:96:56:08:49:68:3B:CB:E0:E3:66:23:60:CD:73:2B:8D","sha256":"F5:81:41:B3:1E:2C:6F:26:A5:EF:89:3C:3C:84:66:48:2D:2F:E3:EA:E4:EF:C2:ED:58:8E:15:45:FB:B1:55:93"}}},"request":{"raw":"GET /w80/gb-eng.png HTTP/1.1\r\nHost: flagcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nlast-modified: Tue, 01 Jul 2025 15:39:52 GMT\r\netag: \"68640148-7b\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2678400, s-maxage=2678400\r\naccept-ranges: bytes\r\npriority: u=4,i\r\nage: 1057797\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T3aNSuALMriKQwzNpjr6oy0li%2BuxOIFw8OpDKFgCNT6XWOKS3DsQmJwYDC0GIbcR%2B0G1%2Bh%2FAoEgeTgDpi2%2Bl9W04s09RvK889aOKgw3qB6kkgSG6kIRjLHcxC%2Boa5g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 123\r\ncf-ray: a0d51773993a56aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":123,"size_decoded":958,"mime_type":"image/png","magic":"PNG image data, 80 x 48, 2-bit colormap, non-interlaced","md5":"80637152d021b659a66014637b4a447a","sha1":"3fae2ae029b4d33272739ed0d7708edfc8b51f0c","sha256":"51fab4e1b9edf84a4798756f8984c5d767d5d6326dd3614c59de3893bcbeb62e","sha512":"37573cdc674470a7bb4f047eb4f89045324b8e6d0c089f2780019d126d12a34b433ea55b13a073694fcbc99436a17bd05d7d89bcba50b13e2abef16821e6e4f8","ssdeep":"","tlshash":"5cb09bd257416e7397d98575541b0053ed1a00051794105ed2557d1550d51c45085a21","first_seen":"2026-02-24T23:40:31.142412Z","last_seen":"2026-06-29T00:28:50.46891Z","times_seen":22,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":15,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flagcdn.com/w80/hr.png","fqdn":"flagcdn.com","domain":"flagcdn.com","tld":"com"},"ip":{"addr":"172.67.180.104","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.040Z","timestamp":1781731157040,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flagcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 May 2026 01:26:53 GMT","end":"Sat, 29 Aug 2026 02:26:16 GMT"},"fingerprint":{"sha1":"D2:6E:B0:B6:96:56:08:49:68:3B:CB:E0:E3:66:23:60:CD:73:2B:8D","sha256":"F5:81:41:B3:1E:2C:6F:26:A5:EF:89:3C:3C:84:66:48:2D:2F:E3:EA:E4:EF:C2:ED:58:8E:15:45:FB:B1:55:93"}}},"request":{"raw":"GET /w80/hr.png HTTP/1.1\r\nHost: flagcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nlast-modified: Tue, 01 Jul 2025 15:39:52 GMT\r\netag: \"68640148-27f\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2678400, s-maxage=2678400\r\naccept-ranges: bytes\r\npriority: u=4,i\r\nage: 677488\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eXlyCY5eq6RQ9UX3wpbNsNwe7U3Qnmng48T%2Frzp9CXN9vfykVWytZsQkN5Eku3NAbVPPxV0KbcMdXO%2Fc3PDi7udw8lBg1wpOcKv4QhugyWoMpp5fTecFv2eRERHIkg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 639\r\ncf-ray: a0d51773993956aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":639,"size_decoded":1466,"mime_type":"image/png","magic":"PNG image data, 80 x 40, 8-bit colormap, non-interlaced","md5":"3476cedbfe5a47cc1191850d25944ffa","sha1":"1122ea410eb68c9202ff6f2aa098e3a036d235ac","sha256":"37700c20552eff5509370aa315cab83f84a878f3ca47c39f65bb280ef0c99422","sha512":"d496fc44f74d1fd2934d7ece16e70e3c2850fd529cd6b98138cd61418c8a58db4032a778c8086640ed2b6909918a8b7002343c830379bc403ab0d38774625661","ssdeep":"","tlshash":"a5f002c5381fecbe47a9c02385aec188ecb22dbbd7b3c153946165f69c53839408318e","first_seen":"2025-07-08T00:55:32.427575Z","last_seen":"2026-07-02T18:01:33.433301Z","times_seen":139,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":15,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"r2.thesportsdb.com/images/media/team/badge/u5bgze1597943605.png","fqdn":"r2.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.148Z","timestamp":1781731157148,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"r2.thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 07 Jun 2026 07:07:06 GMT","end":"Sat, 05 Sep 2026 08:07:00 GMT"},"fingerprint":{"sha1":"C1:59:7C:C5:38:21:0F:76:04:10:D5:96:F9:28:48:6D:AC:30:D8:F5","sha256":"CE:EB:52:20:3D:39:93:87:3A:A7:B0:27:C6:B8:0E:D4:0E:F5:9D:39:72:47:F1:21:E3:40:19:A8:73:3E:1A:5C"}}},"request":{"raw":"GET /images/media/team/badge/u5bgze1597943605.png HTTP/1.1\r\nHost: r2.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 202771\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nHuaLtrKpz6VD44BIAcMK9mAcJeMk%2Fbl5LotDsZyGPVnMyIO%2F9MJYDcvz1Q0DJXTMxIf3yKpPyTHRx9AM1v%2B4p0pZJ9jr1NQ6X4MiwPMq6VwQDPm%2Fey%2Fx6s4iMPKQjkO25YR4A%3D%3D\"}]}\r\nserver: cloudflare\r\naccept-ranges: bytes\r\netag: \"289bf59131d739063293feb041d8ce64\"\r\nlast-modified: Fri, 14 Mar 2025 12:58:35 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nage: 3922\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: a0d517749c2c4c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":202771,"size_decoded":203501,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"289bf59131d739063293feb041d8ce64","sha1":"6a0fd7f90fff97f873cee420938bd21f9c25eb9a","sha256":"9778fba570f0de82e8d8d0dbb69a078007355f92fb447f6d4e611883b6dd6524","sha512":"b07a022173804b15d71836456ec7b104ce9f8e3a5dc0a810b8f1909d4ece0cd5331fbe047d0c07f4ad1d8bed60541bd0528a3e10158f206d46bf5b75c6229af1","ssdeep":"3072:WCp/FnSIM0Ke2mtEkvmkkqPxcq43tixk0MiFFZDOXweYmjQvyFflRpd15TDYiT:We/o8TECx3jxk67DOXLjXLpPuW","tlshash":"041412839e75b81ca850c23139abe798d36b491733628e0df5efb94a1f805cc7e44961","first_seen":"2026-06-08T15:24:17.665832Z","last_seen":"2026-06-17T21:20:46.000395Z","times_seen":5,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":65,"dns":0,"connect":1,"send":0,"wait":10,"receive":5,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.golygoal.com/wp-content/uploads/2026/02/cropped-dwqg-192x192.png","fqdn":"www.golygoal.com","domain":"golygoal.com","tld":"com"},"ip":{"addr":"172.67.157.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.828Z","timestamp":1781731156828,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"golygoal.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 11 Jun 2026 14:38:36 GMT","end":"Wed, 09 Sep 2026 15:37:04 GMT"},"fingerprint":{"sha1":"16:D2:DF:29:C0:52:94:73:82:7D:4A:5F:06:A5:92:3F:BD:F7:DD:5B","sha256":"BF:E3:40:66:43:FF:20:4E:31:18:4B:3B:93:5D:6C:72:BB:90:06:6C:DB:59:72:50:BC:9F:1E:D4:A5:FB:C4:C3"}}},"request":{"raw":"GET /wp-content/uploads/2026/02/cropped-dwqg-192x192.png HTTP/1.1\r\nHost: www.golygoal.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Wed, 17 Jun 2026 21:19:16 GMT\r\ncontent-type: image/png\r\npriority: u=6,i=?0\r\ncache-control: public, max-age=2592000\r\nexpires: Sat, 11 Jul 2026 16:07:23 GMT\r\nlast-modified: Thu, 11 Jun 2026 15:46:00 GMT\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\nage: 537113\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Whi8CW7KfiUC6%2BYaGdMEy7UDp1zDFP5KUpjLEXUM94Z%2FY2GNRbusc4JfCHz%2Bju%2BVcp%2BbDztPe65n7fOCO0AfdpDrkrPU6OOdKdEGDCZIsu4V%2BX9blHuuAyRpagaO%2BTthGfWF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-length: 35529\r\ncf-ray: a0d517724c4b5687-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]}],"data":{"size":35529,"size_decoded":36297,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"79891ac978329c4b3f20ffffc7a691c6","sha1":"4e62606f42920740648335a701d7ebb6fccb19a7","sha256":"df836897cadfba277a6e1070bc76c25a71a7e28d4909a5b8630ad3b8e002203c","sha512":"b9ad105fdf3bd6d852cab5753e99462adbf3f07eb763f94e1e3f9d296bd802e2113041f5ece6905a1d0c8a6da77d7a14f62ecb63c6d8c2acf54fae1164bcf2fc","ssdeep":"768:jP5sVUpWf186YjA/ORn21LANQgdS3DFmYeZbfJEYssIrn:jPaVe+1OAja6JDiEYssIrn","tlshash":"97f2f1cfc35214d8e65a1934b24ba0f550ad00b76be0be1b55c8ccdd468adb595e234f","first_seen":"2025-11-01T20:02:08.710783Z","last_seen":"2026-06-17T21:20:46.001117Z","times_seen":5,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":3,"connect":11,"send":0,"wait":15,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.thesportsdb.com/api/v1/json/3/searchteams.php?t=Congo%20DR","fqdn":"www.thesportsdb.com","domain":"thesportsdb.com","tld":"com"},"ip":{"addr":"104.26.11.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:17.027Z","timestamp":1781731157027,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"thesportsdb.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 23 May 2026 00:45:23 GMT","end":"Fri, 21 Aug 2026 01:45:09 GMT"},"fingerprint":{"sha1":"2E:6C:BE:2C:3C:F9:60:B7:16:10:81:B8:99:95:99:B4:9B:3A:FC:31","sha256":"E1:62:92:8E:F5:CB:9E:41:33:5C:E7:E8:8D:0D:29:DC:96:E7:F8:C8:E4:D9:23:97:02:E3:71:79:40:82:EB:E1"}}},"request":{"raw":"GET /api/v1/json/3/searchteams.php?t=Congo%20DR HTTP/1.1\r\nHost: www.thesportsdb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncache-control: public, max-age=14400\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nx-powered-by: PHP/8.4.14\r\nx-tsdb-cache: MISS\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X_API_KEY, OPTION, OPTIONS, XMLHttpRequest\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, OPTIONS\r\naccess-control-max-age: 1000\r\ndate: Wed, 17 Jun 2026 21:19:17 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nlast-modified: Wed, 17 Jun 2026 21:19:17 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JAycaTXWJpBFACmNLdFWqOeFP6QWgJkWkNTKy06ulMDbsht3f1pTewRS2oFvZnMh7gVtjoWJaArDNIRkMFeMXtAZa8sWjR%2BGpNDil59BA6U4qVgDnAbcx6BzwWDBjLEmN27SRl4%3D\"}]}\r\ncontent-length: 786\r\ncf-ray: a0d517738c08b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.4.14","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":1909,"size_decoded":1822,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2286fec870b4ed3c14b6acdd1509d316","sha1":"6b9e069b229fea8251acdf5091d50a1373bfd632","sha256":"b6e0d167895994bd509d45671287513b37e2e4f2c0b8101a2ac879cb44823af1","sha512":"b7011dcf6a655f9f09bfd502f0f0178ac1cd2840250436dad8a2608cfe1c1c7e6fed750d28ee95ec87219e41ed1332f1582a7188e7d26e2b47f997e7c95a7096","ssdeep":"","tlshash":"ca417c4f4d51ad61e18b125b6d6d7d8ac8fd2243005adcf4faf85f0a64f0ae146b3822","first_seen":"2026-06-17T20:41:05.800875Z","last_seen":"2026-06-17T21:20:46.001609Z","times_seen":3,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":0,"dns":6,"connect":15,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.026Z","timestamp":1781731156026,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 14 Jun 2026 15:30:17 GMT\r\nexpires: Mon, 14 Jun 2027 15:30:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 280139\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":32108,"size_decoded":32921,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-07-02T19:25:39.127251Z","times_seen":25059,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":43,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.030Z","timestamp":1781731156030,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 14 Jun 2026 15:30:17 GMT\r\nexpires: Mon, 14 Jun 2027 15:30:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 280139\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":32108,"size_decoded":32921,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-07-02T19:25:39.127251Z","times_seen":25059,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":50,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.311Z","timestamp":1781731156311,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: www.yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://www.yallashots.live/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:16 GMT\r\nContent-Type: text/html\r\nLast-Modified: Wed, 17 Jun 2026 04:51:08 GMT\r\nConnection: keep-alive\r\nETag: W/\"6a3227bc-bf9d\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":231,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":146,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.yallashots.live/style.css","fqdn":"www.yallashots.live","domain":"yallashots.live","tld":"live"},"ip":{"addr":"185.139.214.61","port":443,"asn":48430,"as":"Perviy TSOD LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:15.533Z","timestamp":1781731155533,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yallashots.live","organization":""},"issuer":{"commonName":"YE1","organization":"Let's Encrypt"},"validity":{"start":"Fri, 12 Jun 2026 22:59:35 GMT","end":"Thu, 10 Sep 2026 22:59:34 GMT"},"fingerprint":{"sha1":"05:F3:95:0C:71:9D:BE:7B:D4:E3:C7:E1:FE:58:E8:5B:FC:91:EA:DF","sha256":"01:3B:36:AE:17:B0:D7:4A:69:EF:67:D3:D2:B6:AC:66:67:D7:B9:98:38:A6:9B:FC:CA:CC:13:88:42:47:DA:29"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: www.yallashots.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://www.yallashots.live/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Wed, 17 Jun 2026 21:19:15 GMT\r\nContent-Type: text/css\r\nContent-Length: 22314\r\nLast-Modified: Sun, 14 Jun 2026 18:44:58 GMT\r\nConnection: keep-alive\r\nETag: \"6a2ef6aa-572a\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":22314,"size_decoded":22563,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"d47fe29edd17df13de1e6508f9f35463","sha1":"71b997d0c5715636f9c0dcd6ec7cd447f47623cb","sha256":"afd582e06e8391180d8c1d7a4c8d631199ba6f3a4938b8344201600553c82eca","sha512":"17f59eae9e315da42f77961112e4cb3d7fba81e3284bc99238bbd214f11b83c0a24fc572dcb01a156c20ef4841c35efd6fc6abe0fd01c33cbd4b27a8d26fe92b","ssdeep":"192:rAM5ak9hjDD9USDDGhCVaGT+wKW3Gxi2i/dyXnBpu+bNnX6HckRPQU2Yl53tQt25:rAM5aUXzvWMMu","tlshash":"40a24f28e50120a73537ab687bb6865af7a96023cb02177a7bdc62444ff52fc4650fcc","first_seen":"2026-06-17T20:41:05.772755Z","last_seen":"2026-06-17T21:20:46.002067Z","times_seen":3,"resource_available":false,"data":null}},"time_used":293,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"www.yallashots.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.020Z","timestamp":1781731156020,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 14 Jun 2026 15:30:17 GMT\r\nexpires: Mon, 14 Jun 2027 15:30:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 280139\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":32108,"size_decoded":32921,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-07-02T19:25:39.127251Z","times_seen":25059,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":3,"connect":30,"send":0,"wait":20,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/cairo/v31/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS8pg_RWH1.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.022Z","timestamp":1781731156022,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/cairo/v31/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS8pg_RWH1.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 33820\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 12 Jun 2026 00:45:27 GMT\r\nexpires: Sat, 12 Jun 2027 00:45:27 GMT\r\ncache-control: public, max-age=31536000\r\nage: 506029\r\nlast-modified: Tue, 16 Sep 2025 03:39:24 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":33820,"size_decoded":34633,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 33820, version 1.0","md5":"3c9597566d23234e05dc818314188491","sha1":"caa2f572bcbbe2985a96a9d59a459b2d1990b356","sha256":"82c13cbd1352d76e97c3d335caa912ae68fecdc3949a43cf8d149eb892384c1b","sha512":"d76f835a4a850b0225c5e93170423220970e6a40a9bfcd2ddf1e4cf054a543eb640e591495d5250437b9f5dee704feb3b16065318f8b926fb26dfc89baed0034","ssdeep":"768:cKG0/+s/RooAoTwdJMehHY+8ko/9givnjHYzIvg0Hk2Oeej:TGiR/RoqIVpT8+ivjHQyg0HkheS","tlshash":"fee2f214abfa7963912a2ba7bf354f6fe753f391ce0da844074e03d644699409f8030c","first_seen":"2025-06-03T03:54:51.937094Z","last_seen":"2026-07-02T19:22:40.407075Z","times_seen":4774,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":25,"dns":1,"connect":0,"send":0,"wait":22,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.029Z","timestamp":1781731156029,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/outfit/v15/QGYvz_MVcBeNP4NJtEtqUYTkntBJ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 32108\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 14 Jun 2026 15:30:17 GMT\r\nexpires: Mon, 14 Jun 2027 15:30:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 280139\r\nlast-modified: Thu, 04 Sep 2025 17:18:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":32108,"size_decoded":32921,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 32108, version 1.0","md5":"e414fe5664f376c8f145acd792939183","sha1":"5b69d46adc3a06af762193adb2dddbc359b2e786","sha256":"fa31c7981483e52cbb8b8bc1eb0dc6326f160b8699cc0899349f977f0517a9df","sha512":"51c251910e5cce616b3c336bcb63853f83c306e16e9b79e0a18f924a738ba06b3e2cb8132ff9bc6e720527234eb80e90be2625b860e1728b66d4fe86ac9bafe5","ssdeep":"768:gUX6jLkDeuAkZHs27nAflEFIapAgCauwIFPo3zjERcgmcjz:3X6tkpNAf6FIapAgCaMFozInjz","tlshash":"6ee2e14f8beb009ef3828a7812c46b3195b305d569cbfa901eef85d76b5c247c1474a8","first_seen":"2025-09-05T02:25:45.343777Z","last_seen":"2026-07-02T19:25:39.127251Z","times_seen":25059,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":47,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"site.api.espn.com/apis/site/v2/sports/soccer/all/scoreboard?dates=20260616-20260618","fqdn":"site.api.espn.com","domain":"espn.com","tld":"com"},"ip":{"addr":"23.36.77.115","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.320Z","timestamp":1781731156320,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets.espncdn.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 26 May 2026 02:12:37 GMT","end":"Mon, 24 Aug 2026 02:12:36 GMT"},"fingerprint":{"sha1":"8E:F0:25:3E:B7:3C:D2:61:08:2B:6F:2A:2C:88:2A:90:F5:50:8E:0A","sha256":"22:34:45:FF:87:A6:E8:FB:82:6C:D1:2D:6B:98:9F:3B:C2:EE:B4:F0:93:7B:51:FE:BC:B3:71:2E:D7:AE:47:13"}}},"request":{"raw":"GET /apis/site/v2/sports/soccer/all/scoreboard?dates=20260616-20260618 HTTP/1.1\r\nHost: site.api.espn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: application/json;charset=UTF-8\r\ncontent-length: 19041\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS,HEAD\r\naccess-control-expose-headers: content-length,location\r\nlink: \u003cscoreboard.json#\u003e; rel=\"describedby\"\r\ncontent-encoding: gzip\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncache-control: max-age=3\r\ndate: Wed, 17 Jun 2026 21:19:16 GMT\r\nset-cookie: ak_bmsc=E45A13772391FBAC1140F326BCA8A92F~000000000000000000000000000000~YAAQb00kF6JeRq+eAQAA4+Fz1wBUohbKUrEQySi5BdasoHEqEPvG0Q3p/1OUvvJhvq12kAFponxIbwJPXJYojcgusQkaIrVwT5fi98I1MMLctxobN0MmLOsExyjKzXv2azOOye5yy2Pi7KATy0h20G6QM9jPoBU8r+vJWmKW1VfSKJUCPVHac79GKinMZBeRFNFoB/xOCHsxl4vtpxAALozlI2ddsB77GYSzOQtltYaF97dsDeZdh8VqDXgYkgRVW4GQ68HwcJb9dIK0t9qbj2GIDAwlB8cU5D+4jepVdLteOeIUq8DrFQbs7SQlz3+rmdOBp+Gn9BbbQa/F9WGaEJvGM+S0XQ6lVZy/N11tmIBUU2aY+ncK6OTXpkRM3K6bxlh1qhSiVFpM33wHih8=; Domain=.api.espn.com; Path=/; Expires=Wed, 17 Jun 2026 23:19:16 GMT; Max-Age=7200; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Akamai Bot Manager","description":"Akamai Bot Manager detect bots using device fingerprinting bot signatures.","website":"https://www.akamai.com/us/en/products/security/bot-manager.jsp","common_platform_enumeration":"","icon":"Akamai.svg","categories":["Security"]},{"name":"Akamai","description":"Akamai is global content delivery network (CDN) services provider for media and software delivery, and cloud security solutions.","website":"https://akamai.com","common_platform_enumeration":"","icon":"Akamai.svg","categories":["CDN"]}],"data":{"size":218640,"size_decoded":20057,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"96e7f216309484f4ff1d35e15bee9a88","sha1":"deb1757db6f5c4d50dfa7bebb98061897e181240","sha256":"1e4322c1ab9aa410132aad4166cb0bbc860d1994a05bb9d97e4ca2324ece897d","sha512":"330bddf35418981645f59f18543c430f3d007a46521d4a2cfd03e3d7f2cd7b34d32837974edd914234eb28cd7556a199661897c47c4fde90001bc4ff10fa5408","ssdeep":"1536:f8wlWCHP5ZedMT71MdN9pFrz8Efox3ACxYVK2Y9GSWFzOXq1:0wcCv5ZaMn1WNyAw9ZW/","tlshash":"1124733e474d9cfd4b87978ac599bf4bca76142bf0c46f88eafcce2864ca1951212417","first_seen":"2026-06-17T21:20:46.0031Z","last_seen":"2026-06-17T21:20:46.0031Z","times_seen":1,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":3,"connect":1,"send":0,"wait":118,"receive":1,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gosnaap.com/api.php","fqdn":"gosnaap.com","domain":"gosnaap.com","tld":"com"},"ip":{"addr":"84.32.84.27","port":443,"asn":47583,"as":"Hostinger International Limited","country":"Lithuania","country_code":"LT"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.323Z","timestamp":1781731156323,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gosnaap.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 06 Jun 2026 23:30:46 GMT","end":"Fri, 04 Sep 2026 23:30:45 GMT"},"fingerprint":{"sha1":"AE:53:0A:81:BE:40:42:30:B1:4C:1F:FA:F5:11:1E:A1:55:E4:8F:DE","sha256":"7D:BD:05:FC:50:2E:A8:4B:47:03:5B:04:63:F6:19:6A:11:2E:58:01:94:A4:75:B7:D2:1D:9D:AC:C7:D4:19:53"}}},"request":{"raw":"OPTIONS /api.php HTTP/1.1\r\nHost: gosnaap.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: x-goal-auth\r\nReferer: https://www.yallashots.live/\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 \r\ndate: Wed, 17 Jun 2026 21:19:16 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/8.3.30\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: X-Goal-Auth, Content-Type, Accept\r\nplatform: hostinger\r\npanel: hpanel\r\ncontent-security-policy: upgrade-insecure-requests\r\nserver: hcdn\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-hcdn-request-id: 361796b072a66eea89a957fbbf6e8729-fra-edge3\r\nx-hcdn-cache-status: DYNAMIC\r\nx-hcdn-upstream-rt: 0.152\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.3.30","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Hostinger","description":"Hostinger is an employee-owned Web hosting provider and internet domain registrar.","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["Hosting"]},{"name":"Hostinger CDN","description":"Hostinger Content Delivery Network (CDN).","website":"https://www.hostinger.com","common_platform_enumeration":"","icon":"Hostinger.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":583,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":514,"timings":{"blocked":-1,"dns":292,"connect":20,"send":0,"wait":174,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upsmnctvkbmaxfh.com/","fqdn":"upsmnctvkbmaxfh.com","domain":"upsmnctvkbmaxfh.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:16.524Z","timestamp":1781731156524,"http_version":"","security_state":"","security_info":null,"request":{"raw":"HEAD / HTTP/1.1\r\nHost: upsmnctvkbmaxfh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: text/plain\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://www.yallashots.live/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"settingsinauthor.com/","fqdn":"settingsinauthor.com","domain":"settingsinauthor.com","tld":"com"},"ip":{"addr":"172.67.195.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.yallashots.live/","date":"2026-06-17T21:19:26.530Z","timestamp":1781731166530,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"settingsinauthor.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 19:39:01 GMT","end":"Mon, 14 Sep 2026 20:35:20 GMT"},"fingerprint":{"sha1":"F2:F2:C2:07:F9:C2:F1:A1:2D:1D:2F:CF:32:97:86:10:6C:D0:E3:01","sha256":"79:88:F3:46:91:36:CF:19:4F:72:D8:99:A2:03:7B:6D:F6:90:E0:21:EA:2E:6F:3D:6B:A7:23:DF:FA:79:95:48"}}},"request":{"raw":"OPTIONS / HTTP/1.1\r\nHost: settingsinauthor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: favicon\r\nReferer: https://www.yallashots.live/\r\nOrigin: https://www.yallashots.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 \r\nserver: cloudflare\r\ndate: Wed, 17 Jun 2026 21:19:26 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pkBCkaBSIQf6FrkYDplpC5vbq4fdvvNlZ4sTXLFE%2BiGu6rGTSOAzrL%2BKBBa8ElpYCepNODL%2FXrBL41tLwu%2FxRcScH4K7S17gVxjQ5dpAw1YFAPakwp%2FGzu%2BMcf76LT0FvQBMOROyCA%3D%3D\"}]}\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://www.yallashots.live\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *, *\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a0d517aee8875a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":1264,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-02T19:08:26.36743Z","times_seen":16920425,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":1,"connect":14,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}
