s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css
87.248.119.251200 OK 107 kB URL GET HTTP/2 s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (42867)
Size 107 kB (106809 bytes)
Hash ea481464ba6569b3e2231a864005708d
11701ff5cf633e33b702623e6cac4a5dbffb9444
298eff68c8072fab66a60d677784d66bcd6a0d77e112c50c9e9271a882209e63
GET /wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Wo9JOMkmRe+1e4L4KlFI6+T4pEWHqwVSxYKfAExBfFkITqjmX1n6AIremES4dRlXqL7JydskuKE/+HZ4gOuWRH+2NCSgD59r4syn1TVeSV8=
x-amz-request-id: MQP3DAYJ0MFP5Q17
date: Wed, 27 Mar 2024 00:52:00 GMT
last-modified: Tue, 26 Oct 2021 13:54:24 GMT
etag: "ea481464ba6569b3e2231a864005708d-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
accept-ranges: bytes
content-type: text/css
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1758718
content-encoding: gzip
content-length: 106809
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/boot.js
87.248.119.251403 Forbidden 243 B URL GET HTTP/2 s.yimg.com/rq/darla/boot.js
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type XML 1.0 document, ASCII text
Hash 37f2414cf0ae13dd4aa208d46671ef0b
3b5eadecece6f271b212a6050ab8e85dd2a4019d
d5ce53e53c2e099c7c9f04376035ce5ab2dfcc1badc168d771aa03a8f5e02e4a
GET /rq/darla/boot.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
x-amz-request-id: YZCQ0X323VTVV33Z
x-amz-id-2: lrsl6qKMCtPi50j/D/1I4s5TcUJFo9Tk/9HE/fZMITjzTsgIURPupc9uXpCan873CRdgqVjS/xU=
content-type: application/xml
date: Tue, 16 Apr 2024 09:22:57 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
expires: Tue, 16 Apr 2024 09:27:57 GMT
age: 61
content-length: 243
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/4-10-0/js/g-r-min.js
87.248.119.251403 Forbidden 243 B URL GET HTTP/2 s.yimg.com/rq/darla/4-10-0/js/g-r-min.js
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type XML 1.0 document, ASCII text
Hash 99c254847eb0cf95a09f39ec1a1c1310
c7c89f7d154b4ff69e541f6bc75cdb0e49646bd2
427065a319a8cac60a6bcdeaa923f268b7f6cb8e94183dfa449abe9c328fcb49
GET /rq/darla/4-10-0/js/g-r-min.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
x-amz-request-id: YZCHBZZTT96EQXMW
x-amz-id-2: /Og6KbT+mgcrpUg3oDYNm9BDqQwKs/ELU8s5IK7ocPIPfBrL18Nf4/4qF4o70Xus4qD1w2DRE2c=
content-type: application/xml
date: Tue, 16 Apr 2024 09:22:56 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
expires: Tue, 16 Apr 2024 09:27:57 GMT
age: 62
content-length: 243
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/bundle.js
87.248.119.251200 OK 50 kB URL GET HTTP/2 s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/bundle.js
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (29565)
Hash 9d0d35eeb38380d91dbb5f4514dd867a
41292bf95c6d373b4f57fbc158a8f37bd522b3c1
60d695ebfb8891875444d4f4b8fb0ed3983a25b6ff0521e88ad8e28a83979394
GET /wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/bundle.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: /VtMHtQdQAdZU3mgvWnlhMyWSomc4hpfxq9tRUCjZS7Zkp1NITXCuNGHdBu2Q03XSIzxG/67mQI=
x-amz-request-id: R550EDHKARVMGH2K
date: Thu, 29 Feb 2024 12:26:03 GMT
last-modified: Tue, 26 Oct 2021 13:54:24 GMT
etag: "9d0d35eeb38380d91dbb5f4514dd867a-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 4049875
content-encoding: gzip
content-length: 49494
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/ss/rapid-3.53.30.js
87.248.119.251200 OK 18 kB URL GET HTTP/2 s.yimg.com/ss/rapid-3.53.30.js
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash 665798d28ecf9be7cbc434e75267920d
55864f76f012bb11a354c6bacdcc7769a5ec6fa2
7bc917ebee12bcd521ae88840228032579459c25a3ccf8953d8a2dbe5e085be9
GET /ss/rapid-3.53.30.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 0xESuH1KmokmNcNI7cFydYyJqPy1kNkTatBt6WSIZqjtZdsBNG0ciXn9hVzI97I8VGXaqfKCysA=
x-amz-request-id: BSS49K7PMXC3684Y
date: Wed, 10 Apr 2024 14:08:57 GMT
last-modified: Tue, 29 Jun 2021 01:45:07 GMT
etag: "665798d28ecf9be7cbc434e75267920d-df"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, immutable
x-amz-version-id: .Bcg25AHAdRCkTvv5tMdNmGVEjznZ_m3
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
content-encoding: gzip
age: 501301
content-length: 17971
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
87.248.119.251404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash 1e9e3329d04a0d60450bd75288c70c6d
a0f396a49bafb836881c4c92f7d7bf7e9090ac22
e30bd6ab01450e98b574e162d7708907e0978e1c4b9d977b111a331a034afbfc
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 09:23:57 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBK1DHmYCEIRdxdwmfIMM6O3NDj70xwEFEgEBAQGVH2YoZvmfzSMA_eMAAA&S=AQAAAiE5A2dKGUpR7e5eb6LxE9Q; Expires=Wed, 16 Apr 2025 15:23:57 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Regular.woff2
87.248.119.251200 OK 29 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Regular.woff2
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 28860, version 1.0
Hash a99b283070afc519f4816e4300c515d2
65b78d03d56de125060e61069debfc47e38fb3df
fc0e2df417e7959509df87df6b4de2eb1479c8718bc2d8ab0bc70d3753c68560
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Regular.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hck.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: eUqfV3BH2LZbpPpB8piJwTHXInj/5UaUEsDoikmXfIvfPKJpr1yovkLmk6kQ7v5mdf72DepX34A=
x-amz-request-id: WJC6SQFMRJFY6HBH
date: Sun, 31 Mar 2024 10:42:46 GMT
last-modified: Thu, 19 Apr 2018 19:06:41 GMT
etag: "a99b283070afc519f4816e4300c515d2"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:51 GMT
x-amz-meta-mbst-etag: "YM:1:cb5e4811-e042-455c-b2b2-f984d5f70e0200055a9e8550b736"
x-amz-meta-x-ysws-mbst-vtime: 1507011771545398
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 28860
referrer-policy: no-referrer-when-downgrade
age: 1377673
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Semibold.woff2
87.248.119.251200 OK 29 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Semibold.woff2
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 29040, version 1.0
Hash af9fdad7698452697b016850fff96423
710130c79bf56297f8abcc6d6c575172590133b0
b8989e0be6a0c3a8a407d8b69b7884eb5ebf401b7eee8b8b98c5eeec3ba497fa
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Semibold.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hck.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: PEQGrJvR/1t+jLXxoN30CXz3wzejdAB/Ye/PFmi6rOL8T/8BIg9PbPmL8kB/S1zJuhQThp3dqYo=
x-amz-request-id: WZ7X5QKQ2DNFGC5F
date: Mon, 15 Apr 2024 09:43:58 GMT
last-modified: Thu, 19 Apr 2018 17:33:29 GMT
etag: "af9fdad7698452697b016850fff96423"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:51 GMT
x-amz-meta-mbst-etag: "YM:1:95620d49-21c2-4044-b803-58b70c8e419700055a9e854fb9f1"
x-amz-meta-x-ysws-mbst-vtime: 1507011771480561
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 29040
referrer-policy: no-referrer-when-downgrade
age: 85202
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Medium.woff2
87.248.119.251200 OK 29 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Medium.woff2
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 29228, version 1.0
Hash 7c7c02dcee2bf1c2528db6092d4ad1fa
988a01f705c074261490625c70f94b2642413693
d5312dacbe6f248c6c4b60251d7acf77bc3bc891cd9b880dead36d9babb288c4
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Medium.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hck.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WhTtCfl9XOmfCI4oYNlSvFXWhdtve28d047AmTbn+qRDlqM9+yHVyLpj3oToEfUei9XGttRqHtE=
x-amz-request-id: V8BK3SFRFD3KRNGF
date: Wed, 14 Feb 2024 01:19:45 GMT
last-modified: Thu, 19 Apr 2018 16:25:50 GMT
etag: "7c7c02dcee2bf1c2528db6092d4ad1fa"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:52 GMT
x-amz-meta-mbst-etag: "YM:1:1bb49599-26ac-442e-b6b8-f4e40f067ea500055a9e855b6ecb"
x-amz-meta-x-ysws-mbst-vtime: 1507011772247755
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 29228
referrer-policy: no-referrer-when-downgrade
age: 5385854
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Bold.woff2
87.248.119.251200 OK 28 kB URL GET HTTP/2 s.yimg.com/cv/ae/sports/fonts/2017/Yahoo_Sans-Bold.woff2
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 28108, version 1.0
Hash 58b9e3ca84accc5d50ac893317cd6705
fd393c1f50fd2f771deb92bf8b26bd39f97db2c5
22e9e86d745200109fbcb3e96695307fea67880fca509728194b2cfce3906fa7
GET /cv/ae/sports/fonts/2017/Yahoo_Sans-Bold.woff2 HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hck.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://s.yimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 8u9gLmugGBp4XRv/TP59L9XW5YXvNxlLzSIBQuV6OQaiY1vHHjurOKdpSo0+d6ZNd28AOmUsyFY=
x-amz-request-id: AH3Z77GPKGQVVQ4K
date: Thu, 15 Feb 2024 09:25:00 GMT
last-modified: Thu, 19 Apr 2018 17:20:37 GMT
etag: "58b9e3ca84accc5d50ac893317cd6705"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Tue, 03 Oct 2017 06:22:52 GMT
x-amz-meta-mbst-etag: "YM:1:5893a8ed-f86d-4278-b1dc-94c16c36132200055a9e85598641"
x-amz-meta-x-ysws-mbst-vtime: 1507011772122689
expires: Sat, 05 Sep 2026 00:00:00 GMT
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: font/woff2
server: ATS
content-length: 28108
referrer-policy: no-referrer-when-downgrade
age: 5270340
access-control-allow-origin: *
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
vary: Origin
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
87.248.119.251404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash 375eb40270ae4ab4135632e2ea407994
40d9c1f583a58fe922626d5fc2dc5579c7584b2b
2f25749fc5b2fc043ed2afcf5c6eaf67bc2718d8eb2dca47a117860f87f63b2b
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 09:23:58 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBK5DHmYCEG1RPYxab5I7mDN96bxYawAFEgEBAQGVH2YoZvmfzSMA_eMAAA&S=AQAAAsxoifj_2emp3YvCoCE-4cs; Expires=Wed, 16 Apr 2025 15:23:58 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_bestfit_frontpage_2x.png
87.248.119.251200 OK 1.3 kB URL GET HTTP/2 s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_bestfit_frontpage_2x.png
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type PNG image data, 240 x 72, 8-bit colormap, non-interlaced
Hash cd166981c96c6d0f4b5a7d798c25878e
09031c4013138bb8bd54ab9092ac59aa47d7c60c
0fdefe26bac6a6b0b06fe67984582f887af70b7da25d6cb1b401f9074db58338
GET /rz/p/yahoo_frontpage_en-US_s_f_p_bestfit_frontpage_2x.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: c1CpX3lwJojnfgufgkasYEZaSXjrNu1D+y6jPrATRaROrMgtC4vj//JXDXa30s0lCc8iYgrwYqo=
x-amz-request-id: YG6V2E5JHSPGA4DQ
date: Mon, 15 Apr 2024 11:56:54 GMT
last-modified: Sun, 14 Apr 2024 21:30:45 GMT
etag: "cd166981c96c6d0f4b5a7d798c25878e"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=86400
expires: Mon, 15 Apr 2024 23:00:00 GMT
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 1346
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 77225
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_w_bestfit_frontpage_2x.png
87.248.119.251200 OK 1.4 kB URL GET HTTP/2 s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_w_bestfit_frontpage_2x.png
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type PNG image data, 240 x 72, 8-bit colormap, non-interlaced
Hash dd31f56b9e4dff40eb87447c3dc55b84
1908b34af2d15440d33dfc81fcb93aa9b271dc58
4f47ef8ff3dad2a78360ab207cf35ff2905622511c0426109f6e225052cf5637
GET /rz/p/yahoo_frontpage_en-US_s_f_w_bestfit_frontpage_2x.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: hWZIIZexObLv4+4TegnNE0LWSE7dVkxyZUVAA/3KIU44zYj4g/3XygvW7SeNkqBwam7x4WVy2j8=
x-amz-request-id: SVF68AXFJED3M6R6
date: Mon, 15 Apr 2024 12:25:19 GMT
last-modified: Sun, 14 Apr 2024 21:30:45 GMT
etag: "dd31f56b9e4dff40eb87447c3dc55b84"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=86400
expires: Mon, 15 Apr 2024 23:00:00 GMT
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 1391
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 75520
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/images/show-v0.0.1.svg
87.248.119.251200 OK 660 kB URL GET HTTP/2 s.yimg.com/wm/mbr/images/show-v0.0.1.svg
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Size 660 kB (660114 bytes)
Hash 7023de5408ffa052a862ba84dbedea53
2de51ab317838302a14b33180add0386e787d2eb
fc0d81c23cc7191b8d6f9216725c78d42f81f34037c8802df4d21556ad0f7c69
GET /wm/mbr/images/show-v0.0.1.svg HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.yimg.com/wm/mbr/58dc9fe4f6c2083f38135ec31a4db5c11ab15bc4/yahoo-main.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ZY/7390cWV4WOTRU0ACgdV4HXps9gxOLDGkD3IN9GAjmVDWLqwDCJqQwsepx/0cK/JbvbXtMnu4=
x-amz-request-id: 1DHAXYSER34JG4KD
date: Fri, 29 Mar 2024 17:59:46 GMT
last-modified: Tue, 16 Jul 2019 23:13:44 GMT
etag: "7023de5408ffa052a862ba84dbedea53-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=315360000
accept-ranges: bytes
content-type: image/svg+xml
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1524254
content-encoding: gzip
content-length: 660114
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/rq/darla/4-10-0/html/r-csc.html
87.248.119.251403 Forbidden 243 B URL GET HTTP/2 s.yimg.com/rq/darla/4-10-0/html/r-csc.html
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type XML 1.0 document, ASCII text
Hash 18703bff8ded71d166b3f86ce9f6f46c
97ad35731eb27aa07b549a82c95708b58f4b3778
8d7008c73f5dde7d294f265379e0b3b44a8d7c008dcc897e8f172fff9ae04f3e
GET /rq/darla/4-10-0/html/r-csc.html HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
x-amz-request-id: 2BXNMHDM97WNXAZ6
x-amz-id-2: SMEUKy+Y1AKnwxB6fBbUDXc8PzhL4ktM6C98Zi9+IUnOIZc2dsu1sOAWg9N9aXvIrs+yovamnkc=
content-type: application/xml
date: Tue, 16 Apr 2024 09:23:20 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
expires: Tue, 16 Apr 2024 09:28:20 GMT
age: 38
content-length: 243
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
87.248.119.251404 Not Found 5.1 kB URL GET HTTP/2 fc.yahoo.com/sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (384)
Hash f5b722d094e8be6e4d9a6459c0a8d4f9
e41c9e99ac9e50726746fea30a295fe961782532
527c0af02c39116a40a31de941df7f656cb6874f7d5a06d7cb1b7ffecefb9706
GET /sdarla/php/client.php?l=RICH{dest:tgtRICH;asz:flex}&f=794200019&ref=https%3A%2F%2Flogin.yahoo.com%2Faccount%2Fchallenge%2Fpassword&sa=geminifed%253D1%2520y-bucket%253Dmbr-push-untrusted-ar%252Cmbr-fido-1fa-login%252Cmbr-rcscore-threshold%252Cmbr-qr-comet-sdk%252Cmbr-login-domain%252Cmbr-yak-ui-improvement HTTP/1.1
Host: fc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 16 Apr 2024 09:23:58 GMT
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: A3=d=AQABBK5DHmYCEMXDQqaKsDqnuV9nP4uy46sFEgEBAQGVH2YoZvmfzSMA_eMAAA&S=AQAAAvSDiAzgvawucNGXXRDKMBU; Expires=Wed, 16 Apr 2025 15:23:58 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 5052
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/images/yahoo-apple-touch-v0.0.2.png
87.248.119.251200 OK 13 kB URL GET HTTP/2 s.yimg.com/wm/mbr/images/yahoo-apple-touch-v0.0.2.png
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGB, interlaced
Hash a9d2dde886cd61f73365a84878c78475
6f1f1f7414116c4b01f04ee0a07b41202c2da539
b168c836ccef9cf1cbf7b2440bc11d26667c4ae19613f1e7cf5e6cdc303c7de4
GET /wm/mbr/images/yahoo-apple-touch-v0.0.2.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: aqDTvh9uyq8z8gUn5szqLvjjgiqAx8Dsk2SllLMwJQAkC0jKSV5RUvDB/qmhfW7BRnIJ4yajsLQ=
x-amz-request-id: SQ7NQZT9SAVN7P59
date: Tue, 19 Mar 2024 08:44:09 GMT
last-modified: Thu, 12 Sep 2019 21:58:38 GMT
etag: "a9d2dde886cd61f73365a84878c78475"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=315360000
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 12635
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 2421591
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
s.yimg.com/wm/mbr/images/yahoo-favicon-img-v0.0.2.ico
87.248.119.251200 OK 1.4 kB URL GET HTTP/2 s.yimg.com/wm/mbr/images/yahoo-favicon-img-v0.0.2.ico
IP 87.248.119.251:443
ASN #203220 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subject*.fantasysports.yahoo.com
FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB
ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
Hash b6814ae5582d7953821acbd76e977bb4
75a33fc706c2c6ba233e76c17337e466949f403c
4a491acd00880c407a2b749619003716c87e9c25ac344e5934c13e8f9aa0e8b3
GET /wm/mbr/images/yahoo-favicon-img-v0.0.2.ico HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: YKPEruFA43FLijBqG2wsS/MCTmR5vDp5Swl0gPfyNmtN1nrjttQDqXsCPyA6t6Z4y9KjX97S9eM=
x-amz-request-id: H44YZ7A2WR97R1QJ
date: Sun, 14 Apr 2024 08:01:10 GMT
last-modified: Wed, 11 Sep 2019 18:01:04 GMT
etag: "b6814ae5582d7953821acbd76e977bb4"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=315360000
accept-ranges: bytes
content-type: image/vnd.microsoft.icon
server: ATS
content-length: 1406
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 177769
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
3p-udc.yahoo.com/v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=794200019&yhlCT=2&yhlBTMS=1713259438198&yhlClientVer=3.53.30&yhlRnd=1lLRD9c31sYljwKK&yhlCompressed=0
188.125.72.139204 No Content 0 B URL POST HTTP/2 3p-udc.yahoo.com/v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=794200019&yhlCT=2&yhlBTMS=1713259438198&yhlClientVer=3.53.30&yhlRnd=1lLRD9c31sYljwKK&yhlCompressed=0
IP 188.125.72.139:443
ASN #34010 Yahoo-UK Limited
Requested by https://hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
Certificate IssuerDigiCert Inc
Subjectyahoo.com
Fingerprint36:A7:B0:5A:BE:AF:8C:B2:89:38:0B:50:1C:E5:7E:0D:2D:94:E9:79
ValidityTue, 20 Feb 2024 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=794200019&yhlCT=2&yhlBTMS=1713259438198&yhlClientVer=3.53.30&yhlRnd=1lLRD9c31sYljwKK&yhlCompressed=0 HTTP/1.1
Host: 3p-udc.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1867
Origin: https://hck.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://hck.pages.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://hck.pages.dev
vary: Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, private, max-age=0
p3p: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
pragma: no-cache
expires: -1
x-envoy-upstream-service-time: 1
date: Tue, 16 Apr 2024 09:23:58 GMT
server: ATS
age: 0
strict-transport-security: max-age=31536000
set-cookie: A3=d=AQABBK5DHmYCEAgXTYjWs5qV9s1-GvM_sYwFEgEBAQGVH2YoZvmbzSMA_eMAAA&S=AQAAAr5z-Jm1cUTVo-K6Sn7TtOE; Expires=Wed, 16 Apr 2025 15:23:58 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
188.114.97.1200 OK 29 kB URL User Request GET HTTP/2 hck.pages.dev/account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password
IP 188.114.97.1:443
Certificate IssuerGoogle Trust Services LLC
Subjecthck.pages.dev
Fingerprint71:9F:A8:6B:B3:BC:DB:7D:0E:C7:AF:E2:0F:2B:6F:29:41:EB:31:26
ValidityThu, 28 Mar 2024 21:52:57 GMT - Wed, 26 Jun 2024 21:52:56 GMT
File type JavaScript source, ASCII text, with very long lines (14148)
Hash 7153562cc1618001f7b3a3c0b829a34c
33715973c46a50546aae7c48f10d561ac3679561
76282d556daf6fbf2899edf57f6589bbacde0d7ce31d3c0c595b76f5d4d49661
Analyzer Verdict Alert urlquery phishing Phishing - Yahoo
OpenPhish phishing Yahoo! Inc
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /account/js-reporting?crumb=uZ4.07kERLI&message=javascript_not_enabled&ref=/account/challenge/password HTTP/1.1
Host: hck.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:23:57 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3ca2c89ff0be743b8e55dbebd97da4b6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2FZXUX6xGfAjGcZZVILXItcTDgjpHGGvw5k89wxHRw8DHyT3Xr2SzZJnF3q4Jpo8GDa7AzzAaTahpIBbaOPZSK8smNusRsDIZfHLwCYURPK6PsfqbIStav8voET2QGmG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87531e9c5ad05694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2