GET cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2
200 OK 125 kB URL GET cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 125064, version 768.67
Size 125 kB (125064 bytes)
Hash 57b380d27f14f16e737bcca7e849cf79
2e4280929d4d76fc0e31601c98f167f14630c209
94e1bbc1c2a41ebc73fa5253fd563256c0035b4d69181e48f9aef9e474a11251
GET /ajax/libs/font-awesome/6.0.0-beta3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 125064
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "619c057b-1e888"
last-modified: Mon, 22 Nov 2021 21:02:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 391082
expires: Fri, 03 Apr 2026 18:45:47 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Op%2B9s%2BvIyLPxqYH3eB7WQFFSXhbyzOWgiwVxu%2F4K9oDTu76PCw236AuYDZlwrJQUzhoz%2Fct7cvmZLgchW0BSZeAsR2MuD5YhcfyhDvvileJ1uzvq9b4N6ZPdizRsBeIdDpmj5xH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92fd1f5e9b0cb51b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET phd2.live/wp-includes/css/dist/block-library/style.min.css?ver=6.7.2
200 OK 115 kB URL GET phd2.live/wp-includes/css/dist/block-library/style.min.css?ver=6.7.2
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type ASCII text, with very long lines (59458)
Size 115 kB (114706 bytes)
Hash 8c9f31823282e4e056eb0aa7fac262a9
dc3b1a37381e079fda8db59c1a9469852cd18b80
3bb38d0f302677ff4104564454f60f495133579d6e6dfb722b3de850df596502
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.7.2 HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6PHKUMAjqYk%2BPUVxLWq87sCHQv9Sg44U%2BSSnbdGEH3GPX6mhSBUPOGVYnDO30xDtPZbbAYP0rwK%2B8Z91uYw52XARMi75XSpzLAAC5xEZqATW2aHnK%2Bu81h%2F1Tr0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:26 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 130509
content-encoding: br
cf-ray: 92fd1f5a28ff56c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=603&x=16"
GET phd2.live/wp-content/uploads/2024/06/android-chrome-192x192-1-150x150.png
200 OK 14 kB URL GET phd2.live/wp-content/uploads/2024/06/android-chrome-192x192-1-150x150.png
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Hash 1321666198344e7cf935eac0b9f93e45
55b359098fb3f0b4233cdf404865773ba88884a9
fc589fed8446d9a19e00c1a1752f4463c08349486fb44f6c5edb0afa6da4d8cf
GET /wp-content/uploads/2024/06/android-chrome-192x192-1-150x150.png HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Cookie: _ga_M10DF2ED56=GS1.1.1744569947.1.0.1744569948.0.0.0; _ga=GA1.1.624767809.1744569948
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:48 GMT
content-type: image/png
content-length: 14058
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F0DEl2cfV88upmBJbu7qFLDZhbL12yViC3SELvHLmWLsK2l0N3gjI3oTLTKpZkaaufSC2%2Fo63Ml%2FFhNfP%2Fk8tiT1diDet%2FbSAHCgqFxpQPwh4cv%2B1X3SzMluS64%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:25 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
cf-cache-status: HIT
age: 130508
accept-ranges: bytes
cf-ray: 92fd1f61995056c6-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=1752&x=16"
GET phd2.live/wp-includes/js/wp-emoji-release.min.js?ver=6.7.2
200 OK 19 kB URL GET phd2.live/wp-includes/js/wp-emoji-release.min.js?ver=6.7.2
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type JavaScript source, ASCII text, with very long lines (15752)
Hash b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.7.2 HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X9EfaecQsRxNE6evww7wVR7NJ59UlKBw1n0vHGAfoFtfcM5KY9BiFaLvRtKBSiYRO1frByAQ%2FtgJPAF4qvRDwoZgdsYHnHDPQccCmaPowhDlCow6b50X3S%2FMilg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:27 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 130508
content-encoding: br
cf-ray: 92fd1f5d493056c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=1061&x=16"
GET processbigger.com/css/embed.css?ver=1.4.4
200 OK 537 B URL GET processbigger.com/css/embed.css?ver=1.4.4
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerGoogle Trust Services
Subjectprocessbigger.com
Fingerprint40:FB:57:30:08:54:5E:08:E1:5D:E6:D1:BB:73:E6:F6:42:A6:2A:EE
ValidityMon, 07 Apr 2025 20:47:05 GMT - Sun, 06 Jul 2025 21:40:17 GMT
Hash 5d1a4982bf5af51f75154543a5c87dcb
041b9fa8a7c04cd0be4771c2cfb0dcd11092a042
b6d02adae86bbc34515c89f74666d2837fc87d6046e204de27258c279fa47fcf
GET /css/embed.css?ver=1.4.4 HTTP/1.1
Host: processbigger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:49 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fhb9v9j6V%2B9C7uXwpsF9%2BeU%2B70sbZtGb14gAeoWwjrWuQK8dwPYFugiiCZx02CQxBoZAmtldk6MYLtpjjmMjEhRC0vRvDFQt6Djuh3Eg2idjoCLkcdbP2D6k8GOMCg24ZgmBDg%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 29 Oct 2021 09:08:53 GMT
vary: Accept-Encoding
etag: W/"617bba25-219"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1778
cf-ray: 92fd1f68f8251c16-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5515&min_rtt=1582&rtt_var=2635&sent=25&recv=32&lost=0&retrans=0&sent_bytes=4464&recv_bytes=2972&delivery_rate=2056&cwnd=12000&unsent_bytes=0&cid=8afb801b66bebbdc&ts=975&x=16"
POST jaiglouhasub.net/5/5976126/?oo=1&js_build=iclick-v1.1125.0&dmn=gekeebsirs.com&tt=2&ix=0
204 No Content 0 B URL POST jaiglouhasub.net/5/5976126/?oo=1&js_build=iclick-v1.1125.0&dmn=gekeebsirs.com&tt=2&ix=0
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerLet's Encrypt
Subjectjaiglouhasub.net
Fingerprint80:31:D5:15:0E:0C:19:59:41:48:5A:24:2C:66:0F:3E:38:91:A9:AD
ValiditySun, 13 Apr 2025 05:08:14 GMT - Sat, 12 Jul 2025 05:08:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /5/5976126/?oo=1&js_build=iclick-v1.1125.0&dmn=gekeebsirs.com&tt=2&ix=0 HTTP/1.1
Host: jaiglouhasub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2544
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sun, 13 Apr 2025 18:45:53 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://phd2.live
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
POST obmaxyfczwpt.n4.adsco.re/
200 OK 0 B URL POST obmaxyfczwpt.n4.adsco.re/
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerLet's Encrypt
Subject*.n4.adsco.re
Fingerprint12:C2:74:6D:C8:48:4B:6D:CC:7C:C2:90:BC:AE:82:54:E9:DD:F0:C5
ValidityWed, 19 Mar 2025 09:14:09 GMT - Tue, 17 Jun 2025 09:14:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: obmaxyfczwpt.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:54 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn4ads.com/jthbwkepazltvtofakm?GCXwWnLU=BQOCAAAAAAAACZUAAqUha8zNu9trnr_2TqBO46HJGML7rXR_mWDsYfsq7Pgj1NYJXEdmtRlWdpOiBMR3cfWs9wiPIJwNmXSEr_8Xdu7ir9X-f8VAqO6_3IlnREmz_9IWjYKVnR7r1FuembSC8KyKx0D9Q7VIydJ3hj8BsJTEoumm51nlbHTbTg1ESVoQugSN2kwIc86a7EvIVHrbSo0viAggYQxvxyzHQmM53zJNEfGWoRzUuM5IthNbXLm-IS5QW-zpzNsri1nxguhmOG8uEhCQcPOXA9UQoZKzYD0ZWF7fQjPA3GjoTm6rTesOsOlGRg-HnWvUl7misLRuVD3lLu3NapOzLim2UmdTbOuqbklknRal3TyvaJgN7635ztd-WEWzk3O2ZfbnlfAiD13OXwIKCm0HxrlYG_YQxTOG_7LINzFVOUTMvAGlV-15jIqsqVUg7RdORxS2cKt99oGeMyUtsKLOfHj-tlcdONqIex-w9vz1xyDUMbSrEEJG4hPiGgECL_VsrvQzmx0YYuR-Gm9lmIT6UaISydPvavda-fO9QLtShz99waZkvBNhSAPGH_6tBcDwCgIuAAFTBo21R2dv_1GVIwuN8m0JPy3GUqT3gQY5oG0p8Q-nx7lpSP_vFoEWOJvXLkWKi5rQ50WweruACvwGXgE9csYuo9hamsKb8Imj2-OP1HeuMjE77hKta3a0pp3XpNVLVj-VP1bX9-MCFrgwMZ8AYFVxT7QEpv2BwOtNycBv4Koh3WI7H9Y7z68xOtIrKESlCK85SrFU2-s3qq329BI-2VjvyuGt79qYEdl1kjnqa7_mQhW3edFEHwHEKMCY9AsGgWy63noPOqoAfD5iUADxxmYMVNxntM6c4tNwpoc542Fcu6gLqJvhJlcrUHHR8mqBQ2XvsqyxfQdO6O9OOf8tnqhiX20qMn-Vnj6L-jG6oVpVpsOLXW1GTbRe-EqYd-qs3NOE48k0CeGvlE4M414lcuRrreiomd3zvRRW3zGJB2DtA9OzUzcHFU8o1erKKBJMRv7nq0AGJqCjYK3LxnY4ccOR7qm1hZ35-YD67skKw9sZQolLgx9lGA_dI9EdCI_4-_ZxRstYaHVb4zgHd4d7lUPgfp7C2DOkhuxvGluEp_bn4z4eJqWqFkUYbV1yc0yEJZsvaSv1710Yy66yNr7q3tMtak3A7rEo8KEB-Okl6oGadNNW&hzOesDNM=4&hWktuicU=5180268&kOYvteGZ=0.001&VHZLKzWf=0,0&AZLWbCec=&xiIfeFZC=&s=1280,1024,1,1280,1024,0
200 OK 44 B URL GET cdn4ads.com/jthbwkepazltvtofakm?GCXwWnLU=BQOCAAAAAAAACZUAAqUha8zNu9trnr_2TqBO46HJGML7rXR_mWDsYfsq7Pgj1NYJXEdmtRlWdpOiBMR3cfWs9wiPIJwNmXSEr_8Xdu7ir9X-f8VAqO6_3IlnREmz_9IWjYKVnR7r1FuembSC8KyKx0D9Q7VIydJ3hj8BsJTEoumm51nlbHTbTg1ESVoQugSN2kwIc86a7EvIVHrbSo0viAggYQxvxyzHQmM53zJNEfGWoRzUuM5IthNbXLm-IS5QW-zpzNsri1nxguhmOG8uEhCQcPOXA9UQoZKzYD0ZWF7fQjPA3GjoTm6rTesOsOlGRg-HnWvUl7misLRuVD3lLu3NapOzLim2UmdTbOuqbklknRal3TyvaJgN7635ztd-WEWzk3O2ZfbnlfAiD13OXwIKCm0HxrlYG_YQxTOG_7LINzFVOUTMvAGlV-15jIqsqVUg7RdORxS2cKt99oGeMyUtsKLOfHj-tlcdONqIex-w9vz1xyDUMbSrEEJG4hPiGgECL_VsrvQzmx0YYuR-Gm9lmIT6UaISydPvavda-fO9QLtShz99waZkvBNhSAPGH_6tBcDwCgIuAAFTBo21R2dv_1GVIwuN8m0JPy3GUqT3gQY5oG0p8Q-nx7lpSP_vFoEWOJvXLkWKi5rQ50WweruACvwGXgE9csYuo9hamsKb8Imj2-OP1HeuMjE77hKta3a0pp3XpNVLVj-VP1bX9-MCFrgwMZ8AYFVxT7QEpv2BwOtNycBv4Koh3WI7H9Y7z68xOtIrKESlCK85SrFU2-s3qq329BI-2VjvyuGt79qYEdl1kjnqa7_mQhW3edFEHwHEKMCY9AsGgWy63noPOqoAfD5iUADxxmYMVNxntM6c4tNwpoc542Fcu6gLqJvhJlcrUHHR8mqBQ2XvsqyxfQdO6O9OOf8tnqhiX20qMn-Vnj6L-jG6oVpVpsOLXW1GTbRe-EqYd-qs3NOE48k0CeGvlE4M414lcuRrreiomd3zvRRW3zGJB2DtA9OzUzcHFU8o1erKKBJMRv7nq0AGJqCjYK3LxnY4ccOR7qm1hZ35-YD67skKw9sZQolLgx9lGA_dI9EdCI_4-_ZxRstYaHVb4zgHd4d7lUPgfp7C2DOkhuxvGluEp_bn4z4eJqWqFkUYbV1yc0yEJZsvaSv1710Yy66yNr7q3tMtak3A7rEo8KEB-Okl6oGadNNW&hzOesDNM=4&hWktuicU=5180268&kOYvteGZ=0.001&VHZLKzWf=0,0&AZLWbCec=&xiIfeFZC=&s=1280,1024,1,1280,1024,0
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subjectcdn4ads.com
Fingerprint57:54:B9:F2:94:39:A5:88:6C:46:58:9B:E7:F0:C7:D1:1C:32:F1:76
ValidityWed, 11 Sep 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /jthbwkepazltvtofakm?GCXwWnLU=BQOCAAAAAAAACZUAAqUha8zNu9trnr_2TqBO46HJGML7rXR_mWDsYfsq7Pgj1NYJXEdmtRlWdpOiBMR3cfWs9wiPIJwNmXSEr_8Xdu7ir9X-f8VAqO6_3IlnREmz_9IWjYKVnR7r1FuembSC8KyKx0D9Q7VIydJ3hj8BsJTEoumm51nlbHTbTg1ESVoQugSN2kwIc86a7EvIVHrbSo0viAggYQxvxyzHQmM53zJNEfGWoRzUuM5IthNbXLm-IS5QW-zpzNsri1nxguhmOG8uEhCQcPOXA9UQoZKzYD0ZWF7fQjPA3GjoTm6rTesOsOlGRg-HnWvUl7misLRuVD3lLu3NapOzLim2UmdTbOuqbklknRal3TyvaJgN7635ztd-WEWzk3O2ZfbnlfAiD13OXwIKCm0HxrlYG_YQxTOG_7LINzFVOUTMvAGlV-15jIqsqVUg7RdORxS2cKt99oGeMyUtsKLOfHj-tlcdONqIex-w9vz1xyDUMbSrEEJG4hPiGgECL_VsrvQzmx0YYuR-Gm9lmIT6UaISydPvavda-fO9QLtShz99waZkvBNhSAPGH_6tBcDwCgIuAAFTBo21R2dv_1GVIwuN8m0JPy3GUqT3gQY5oG0p8Q-nx7lpSP_vFoEWOJvXLkWKi5rQ50WweruACvwGXgE9csYuo9hamsKb8Imj2-OP1HeuMjE77hKta3a0pp3XpNVLVj-VP1bX9-MCFrgwMZ8AYFVxT7QEpv2BwOtNycBv4Koh3WI7H9Y7z68xOtIrKESlCK85SrFU2-s3qq329BI-2VjvyuGt79qYEdl1kjnqa7_mQhW3edFEHwHEKMCY9AsGgWy63noPOqoAfD5iUADxxmYMVNxntM6c4tNwpoc542Fcu6gLqJvhJlcrUHHR8mqBQ2XvsqyxfQdO6O9OOf8tnqhiX20qMn-Vnj6L-jG6oVpVpsOLXW1GTbRe-EqYd-qs3NOE48k0CeGvlE4M414lcuRrreiomd3zvRRW3zGJB2DtA9OzUzcHFU8o1erKKBJMRv7nq0AGJqCjYK3LxnY4ccOR7qm1hZ35-YD67skKw9sZQolLgx9lGA_dI9EdCI_4-_ZxRstYaHVb4zgHd4d7lUPgfp7C2DOkhuxvGluEp_bn4z4eJqWqFkUYbV1yc0yEJZsvaSv1710Yy66yNr7q3tMtak3A7rEo8KEB-Okl6oGadNNW&hzOesDNM=4&hWktuicU=5180268&kOYvteGZ=0.001&VHZLKzWf=0,0&AZLWbCec=&xiIfeFZC=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb5
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sun, 13 Apr 2025 18:45:57 GMT
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-M10DF2ED56
200 OK 376 kB URL GET www.googletagmanager.com/gtag/js?id=G-M10DF2ED56
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT
File type JavaScript source, ASCII text, with very long lines (6129)
Size 376 kB (376200 bytes)
Hash 0d9181bf100619eed3dcb3720b229f6b
74c7fd619bf6e115e22fe0fb28b410b4332eaa85
ff7848e221be89fac3a8b0b7107da8e63b24e7cf2c267abadfaf22c9ea827e93
GET /gtag/js?id=G-M10DF2ED56 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Apr 2025 18:45:47 GMT
expires: Sun, 13 Apr 2025 18:45:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 125811
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
200 OK 9.0 kB URL GET processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
IP
Requested by https://piratcast.tv/papa.php?hd=301
Certificate IssuerGoogle Trust Services
Subjectprocessbigger.com
Fingerprint40:FB:57:30:08:54:5E:08:E1:5D:E6:D1:BB:73:E6:F6:42:A6:2A:EE
ValidityMon, 07 Apr 2025 20:47:05 GMT - Sun, 06 Jul 2025 21:40:17 GMT
File type JavaScript source, ASCII text, with very long lines (1652)
Hash 71bca2601784c84d0d3a2e89bc198cbd
d035f983de33b3844bac6d35ced7885831079f96
c2efb8cfd9b7c84e5b316a19342f0d0cd39e195319eef6de4ad37d9ccd885544
GET /maestrohd2.php?player=desktop&live=bbtsp1 HTTP/1.1
Host: processbigger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://piratcast.tv/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h1MO7%2BpmDphrT95frfYDA7Dg902MZbX613u%2BXFjXzmyWB%2F8DytX4d1SUgyF6%2F1QGnTUsV%2FsLhmkBSzX6dEUb8ScCPMqnZqTcV%2FlGVBkY0oL8vfBXi7oGZZyuRjv010bY3ZpCAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f645ff2b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1226&min_rtt=465&rtt_var=1489&sent=10&recv=14&lost=0&retrans=1&sent_bytes=5033&recv_bytes=1266&delivery_rate=6798122&cwnd=256&unsent_bytes=0&cid=220fb672c6b46ad4&ts=575&x=0"
X-Firefox-Spdy: h2
GET processbigger.com/css/site.css
200 OK 199 B URL GET processbigger.com/css/site.css
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerGoogle Trust Services
Subjectprocessbigger.com
Fingerprint40:FB:57:30:08:54:5E:08:E1:5D:E6:D1:BB:73:E6:F6:42:A6:2A:EE
ValidityMon, 07 Apr 2025 20:47:05 GMT - Sun, 06 Jul 2025 21:40:17 GMT
Hash 1885af8db9c4146e96aa1096f748151c
36f66795c3d8a969ff1e75866db00b727c9f8c26
2e7930ddd6ef35ae7416215de492de89a3518769259c1606b9f719c44236c5ae
GET /css/site.css HTTP/1.1
Host: processbigger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:49 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FPjOHRd7ruTVzo5VT0%2FlEeD3wVQ5oI03JcjL1bIL1OUjuwTjabG5lfEz10WKnsAHWsDFYBLO8VLjbEOUhmbvJyOol5w%2BQ0KmqIE6k9YKzPh4qTdXA%2FdeP45YvmtKPf5sdviBJA%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 29 Oct 2021 09:54:42 GMT
etag: W/"617bc4e2-c7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1778
content-encoding: br
cf-ray: 92fd1f68f8241c16-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5515&min_rtt=1582&rtt_var=2635&sent=25&recv=32&lost=0&retrans=0&sent_bytes=4464&recv_bytes=2972&delivery_rate=2056&cwnd=12000&unsent_bytes=0&cid=8afb801b66bebbdc&ts=975&x=16"
GET cdn.jsdelivr.net/clappr.level-selector/latest/level-selector.min.js
200 OK 9.5 kB URL GET cdn.jsdelivr.net/clappr.level-selector/latest/level-selector.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6153)
Hash 166bbe11bb8dd332f6fbcf8fe9ec30cf
f42c73e6e89201ccf5ad513915bb4182ec3a410c
23a715a6d8a35921f8c02eab19a93b6c9c42271ecfccbde0005476959e2edff9
GET /clappr.level-selector/latest/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 3061
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"2524-9Cxz5uiSAcz1rVE5FbtBguw6QQw"
content-encoding: gzip
x-served-by: cache-fra-eddf8230115-FRA, cache-lga21936-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 315128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dH6Oq94xpaoi1E7zy2UMMP4KLy6j4NAIMMk5Hn6e2D7xn8knqubbQzlQ%2FR3rlbGJBAzCswi0xzt116%2FbVptStUb4BymNQVDe4SRMlD6d7K8BixFIBxsFCc1mPkXA%2FrrUm94%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f6b9c6e56ca-OSL
X-Firefox-Spdy: h2
POST obmaxyfczwpt.l4.adsco.re/
200 OK 0 B URL POST obmaxyfczwpt.l4.adsco.re/
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerLet's Encrypt
Subject*.l4.adsco.re
FingerprintA3:A1:81:96:9D:3B:EE:16:13:4B:C8:7A:18:50:F8:21:90:08:E8:5A
ValidityWed, 19 Mar 2025 09:14:12 GMT - Tue, 17 Jun 2025 09:14:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: obmaxyfczwpt.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:54 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET phd2.live/wp-content/themes/papahd/assets/css/header-footer.css?ver=1.0
200 OK 1.8 kB URL GET phd2.live/wp-content/themes/papahd/assets/css/header-footer.css?ver=1.0
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type ASCII text, with CRLF line terminators
Hash 1289c8ab29ab1ffd29ed0bbf4b1f9e20
b3e4a2e65d9fd08bb1d2e6f9db1d6b873fc8109c
13ce9254acb15f3939bd41c2bda16bc294fc3f1890fff747c86b3714332e9b41
GET /wp-content/themes/papahd/assets/css/header-footer.css?ver=1.0 HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D6TrahE7zLGxRHQ0z4cy2s1qyzOQL83NcTTuNN31s8s6xqLetLmY66vYp3R8BKCpEa6ht8Y53WhThEmz%2FuGBHV9riGSRYP4JRmgAVjcsadfAH4BGA8HnzpVLPzk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:25 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 130509
content-encoding: br
cf-ray: 92fd1f5a490556c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=595&x=16"
GET cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js
200 OK 203 kB URL GET cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 203 kB (202642 bytes)
Hash bcd8c3fa7470b2f511a059adfdd9bbc6
adabad176d0862619ec6c4ca320016e26fc2ec04
fbd4eb485cc2375ed94f9097c7a990254d5c299934b8bd6628876854beb02c26
GET /npm/@swarmcloud/hls/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 58021
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.14.2
x-jsd-version-type: version
etag: W/"31792-rautF20IYmGexsTKMgAW4m/C7AQ"
content-encoding: br
x-served-by: cache-fra-eddf8230149-FRA, cache-lga21946-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 21111
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rUyce7iGaAvJ37jibNXv9O7spQeFRkORUGSKIdIDMWtaP8ZoIoAlBfmOPWxyJdHnI3urRHcDQG0JgEonZqJz3gxdvLGoCZ8WFLteMAGRqmIeO5DRBsqp13aGta258CghiKU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f6bbca556ca-OSL
X-Firefox-Spdy: h2
GET cdn4ads.com/jthbwkepazltvtofakm?GCXwWnLU=BQOCAAAAAAAACZUAAvHT_skiJKELHZiKO61G0opP4g8Q4ty2aGmtTyTXH6YRiOtkWs8qq1EgZl2VZx80KXfW2LeYa4YFcFYxnndDMr2emWSd50rhgks3Ai1LtzQMfGja8FEidzDjy5g1m5zn1xqnCHGjq1MKo_KptunZMAWLRLn_6XaZH-5w4kJ29EGRdlcbt3hKPT-RPAjVLB7k94A-eahE4pSGVc8jhhTGsmCyPLqcIkkL_OzEPCyHp1fD5WknKYpU27sJEh8jfYYq5EwmpO9DArMAs85UzKKn28uceTh-lFzcwEAN1pr7jDa-A42tqLB3MY0eoDfApv7uA6I2CR5ZllX1B0rk7hMlh1lLlWc6pZKsZD1cHMKXBcFrPkZUxgzZqhlp2TrlLIqY-IDjMLVSWmpZhP3UBVmKxOskZD7xxgp7MKopwAl2mxhpSseJa0O9U4N3BGFjxypo5UP5SbJX7_IysNEUGp1zHi0naz_AosycmdINJkzz715wn1YxFaWVZ9znucatCT2EloH2WV-QT1S9cxwCChiGbkWGV4h-t0gbM6ujRUD93xJXKMGAxhy-LW6GNtVK3jHV1e5RFtfgurTmDvKRzgBQMpM4Sfm2bX7VjZyB0r2w6fIlDZIVYBmxQhYHgONp-7jfluxfPia8GCnuWj0V1_FA_vw3gX_mOb_dt0FPjnypSHgOLTby6vVZXgI9hf7zh7jk0042pv4MnAFBcKOThdv7B_-_GJMAxQqFPT1iEcVVG1tEer4E9HN2q_aQbWt-Dtl2kAb-AIB04aCg8QNwWO6bDj9TCpYoOHi77NkUAn-KRYW24ahS_k0am0mFlOFQ6dZC_dY8ZuiKbRDjBdhcdMXRJ-CCv3RmdV2TSb4TuX4Fmw8yG6-XsDGcVwx9HHo6CO3Xm2znbbC3B5TnxlWwTBbz3izxbShQUr4p_gV9XVfIW3syAjEpIJRqqff_CWpsgz3nqe7OFMcO0ni0B40HlZSlNt-aNsbnHiFDJCV5izEfpUr0yGI5_jPb5zqnP_cTRVIRmAImDneaDPcLTbrKn0i4f2vdhHMz6Xv8qD67LjUAzRrLNSjd1kBhbzq2ZLZpK5bYhtC2aEKM7rct6DzqRWBnMYr2V4WxAxg_2qVz-qLljy9n5Y25pwBFPI18nomGMM24Q-w4h6IYhJoiJgsKWEIZDC_0bANdEIy2dYpRYPdqs6eU&hzOesDNM=4&hWktuicU=5180268&kOYvteGZ=0.001&VHZLKzWf=0,0&AZLWbCec=&xiIfeFZC=&s=1280,1024,1,1280,1024,0
200 OK 44 B URL GET cdn4ads.com/jthbwkepazltvtofakm?GCXwWnLU=BQOCAAAAAAAACZUAAvHT_skiJKELHZiKO61G0opP4g8Q4ty2aGmtTyTXH6YRiOtkWs8qq1EgZl2VZx80KXfW2LeYa4YFcFYxnndDMr2emWSd50rhgks3Ai1LtzQMfGja8FEidzDjy5g1m5zn1xqnCHGjq1MKo_KptunZMAWLRLn_6XaZH-5w4kJ29EGRdlcbt3hKPT-RPAjVLB7k94A-eahE4pSGVc8jhhTGsmCyPLqcIkkL_OzEPCyHp1fD5WknKYpU27sJEh8jfYYq5EwmpO9DArMAs85UzKKn28uceTh-lFzcwEAN1pr7jDa-A42tqLB3MY0eoDfApv7uA6I2CR5ZllX1B0rk7hMlh1lLlWc6pZKsZD1cHMKXBcFrPkZUxgzZqhlp2TrlLIqY-IDjMLVSWmpZhP3UBVmKxOskZD7xxgp7MKopwAl2mxhpSseJa0O9U4N3BGFjxypo5UP5SbJX7_IysNEUGp1zHi0naz_AosycmdINJkzz715wn1YxFaWVZ9znucatCT2EloH2WV-QT1S9cxwCChiGbkWGV4h-t0gbM6ujRUD93xJXKMGAxhy-LW6GNtVK3jHV1e5RFtfgurTmDvKRzgBQMpM4Sfm2bX7VjZyB0r2w6fIlDZIVYBmxQhYHgONp-7jfluxfPia8GCnuWj0V1_FA_vw3gX_mOb_dt0FPjnypSHgOLTby6vVZXgI9hf7zh7jk0042pv4MnAFBcKOThdv7B_-_GJMAxQqFPT1iEcVVG1tEer4E9HN2q_aQbWt-Dtl2kAb-AIB04aCg8QNwWO6bDj9TCpYoOHi77NkUAn-KRYW24ahS_k0am0mFlOFQ6dZC_dY8ZuiKbRDjBdhcdMXRJ-CCv3RmdV2TSb4TuX4Fmw8yG6-XsDGcVwx9HHo6CO3Xm2znbbC3B5TnxlWwTBbz3izxbShQUr4p_gV9XVfIW3syAjEpIJRqqff_CWpsgz3nqe7OFMcO0ni0B40HlZSlNt-aNsbnHiFDJCV5izEfpUr0yGI5_jPb5zqnP_cTRVIRmAImDneaDPcLTbrKn0i4f2vdhHMz6Xv8qD67LjUAzRrLNSjd1kBhbzq2ZLZpK5bYhtC2aEKM7rct6DzqRWBnMYr2V4WxAxg_2qVz-qLljy9n5Y25pwBFPI18nomGMM24Q-w4h6IYhJoiJgsKWEIZDC_0bANdEIy2dYpRYPdqs6eU&hzOesDNM=4&hWktuicU=5180268&kOYvteGZ=0.001&VHZLKzWf=0,0&AZLWbCec=&xiIfeFZC=&s=1280,1024,1,1280,1024,0
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subjectcdn4ads.com
Fingerprint57:54:B9:F2:94:39:A5:88:6C:46:58:9B:E7:F0:C7:D1:1C:32:F1:76
ValidityWed, 11 Sep 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /jthbwkepazltvtofakm?GCXwWnLU=BQOCAAAAAAAACZUAAvHT_skiJKELHZiKO61G0opP4g8Q4ty2aGmtTyTXH6YRiOtkWs8qq1EgZl2VZx80KXfW2LeYa4YFcFYxnndDMr2emWSd50rhgks3Ai1LtzQMfGja8FEidzDjy5g1m5zn1xqnCHGjq1MKo_KptunZMAWLRLn_6XaZH-5w4kJ29EGRdlcbt3hKPT-RPAjVLB7k94A-eahE4pSGVc8jhhTGsmCyPLqcIkkL_OzEPCyHp1fD5WknKYpU27sJEh8jfYYq5EwmpO9DArMAs85UzKKn28uceTh-lFzcwEAN1pr7jDa-A42tqLB3MY0eoDfApv7uA6I2CR5ZllX1B0rk7hMlh1lLlWc6pZKsZD1cHMKXBcFrPkZUxgzZqhlp2TrlLIqY-IDjMLVSWmpZhP3UBVmKxOskZD7xxgp7MKopwAl2mxhpSseJa0O9U4N3BGFjxypo5UP5SbJX7_IysNEUGp1zHi0naz_AosycmdINJkzz715wn1YxFaWVZ9znucatCT2EloH2WV-QT1S9cxwCChiGbkWGV4h-t0gbM6ujRUD93xJXKMGAxhy-LW6GNtVK3jHV1e5RFtfgurTmDvKRzgBQMpM4Sfm2bX7VjZyB0r2w6fIlDZIVYBmxQhYHgONp-7jfluxfPia8GCnuWj0V1_FA_vw3gX_mOb_dt0FPjnypSHgOLTby6vVZXgI9hf7zh7jk0042pv4MnAFBcKOThdv7B_-_GJMAxQqFPT1iEcVVG1tEer4E9HN2q_aQbWt-Dtl2kAb-AIB04aCg8QNwWO6bDj9TCpYoOHi77NkUAn-KRYW24ahS_k0am0mFlOFQ6dZC_dY8ZuiKbRDjBdhcdMXRJ-CCv3RmdV2TSb4TuX4Fmw8yG6-XsDGcVwx9HHo6CO3Xm2znbbC3B5TnxlWwTBbz3izxbShQUr4p_gV9XVfIW3syAjEpIJRqqff_CWpsgz3nqe7OFMcO0ni0B40HlZSlNt-aNsbnHiFDJCV5izEfpUr0yGI5_jPb5zqnP_cTRVIRmAImDneaDPcLTbrKn0i4f2vdhHMz6Xv8qD67LjUAzRrLNSjd1kBhbzq2ZLZpK5bYhtC2aEKM7rct6DzqRWBnMYr2V4WxAxg_2qVz-qLljy9n5Y25pwBFPI18nomGMM24Q-w4h6IYhJoiJgsKWEIZDC_0bANdEIy2dYpRYPdqs6eU&hzOesDNM=4&hWktuicU=5180268&kOYvteGZ=0.001&VHZLKzWf=0,0&AZLWbCec=&xiIfeFZC=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb5
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sun, 13 Apr 2025 18:45:57 GMT
X-Firefox-Spdy: h2
GET code.jquery.com/jquery-1.11.0.min.js
200 OK 96 kB URL GET code.jquery.com/jquery-1.11.0.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32341)
Hash 8fc25e27d42774aeae6edbc0a18b72aa
b66ed708717bf0b4a005a4d0113af8843ef3b8ff
b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1787d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 13 Apr 2025 18:45:50 GMT
age: 3239167
x-served-by: cache-lga21931-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 7961, 45978
x-timer: S1744569950.028301,VS0,VE0
vary: Accept-Encoding
content-length: 33357
X-Firefox-Spdy: h2
GET processbigger.com/blast.js
200 OK 78 kB URL GET processbigger.com/blast.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerGoogle Trust Services
Subjectprocessbigger.com
Fingerprint40:FB:57:30:08:54:5E:08:E1:5D:E6:D1:BB:73:E6:F6:42:A6:2A:EE
ValidityMon, 07 Apr 2025 20:47:05 GMT - Sun, 06 Jul 2025 21:40:17 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 091faec928970e76d37a3601c19fcf8a
6441e8eebe90eb8d4a40e7c25440ff99caba3520
eb06375118b1eb73f43b8f1851472008f84999a1b27359c075bf5da6feef9a12
GET /blast.js HTTP/1.1
Host: processbigger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:49 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fRbSOZZX%2B8nAUFJfFHe1xqH7jLugP7x7pAC1pzTsEBWYAxr6IKEBkqYGoH8uog6gGiedh8OGUgR6lqXLCQlgzwD3ou010%2FHclfMRUp3dmaojOAEq5yflLt0kGe%2FiVuGoIemTgw%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Oct 2022 23:56:20 GMT
vary: Accept-Encoding
etag: W/"63420e24-13040"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1778
cf-ray: 92fd1f68f8261c16-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5515&min_rtt=1582&rtt_var=2635&sent=25&recv=32&lost=0&retrans=0&sent_bytes=4464&recv_bytes=2972&delivery_rate=2056&cwnd=12000&unsent_bytes=0&cid=8afb801b66bebbdc&ts=975&x=16"
GET cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js
200 OK 631 kB URL GET cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 631 kB (630856 bytes)
Hash 9f7ee162594292d8a7cd8c88a8e2318d
55413890dd74e180a2b2a04994c40876bd8b1769
f0243f6e2395c077f4ae46ae4b1d969090d64106387b45cb39a28bbdb07e6752
GET /npm/@clappr/player@0.8/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 162561
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 0.8.0
x-jsd-version-type: version
etag: W/"9a048-VUE4kN104YCisqBJlMQIdr2LF2k"
content-encoding: br
x-served-by: cache-fra-eddf8230058-FRA, cache-lga21951-LGA
x-cache: MISS, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 37869
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=04GmEOWNf%2FKemBb7CncQNwCheF7ZKEM8FoSrD7M587aQ45raqgQNnxXMwj6ytbbTTOWzVib8A4Bjjh2kY9DCi3xlVQvTzRD1N1E0dHEhEgqGaEsrU7FPWWFXJ74ITJaI8eY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f6bbc8a56ca-OSL
X-Firefox-Spdy: h2
POST obmaxyfczwpt.s4.adsco.re/
200 OK 0 B URL POST obmaxyfczwpt.s4.adsco.re/
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerLet's Encrypt
Subject*.s4.adsco.re
FingerprintAD:9A:D5:4E:EA:13:2E:6A:D5:FD:16:56:63:DB:12:C7:26:B4:8C:D5
ValidityWed, 19 Mar 2025 09:14:11 GMT - Tue, 17 Jun 2025 09:14:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: obmaxyfczwpt.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:54 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET phd2.live/lazio-vs-roma
301 Moved Permanently 21 kB IP
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lazio-vs-roma HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 13 Apr 2025 18:45:46 GMT
content-type: text/html; charset=UTF-8
location: https://phd2.live/lazio-vs-roma/
x-redirect-by: WordPress
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KZxag7ipa3r2BvICBp42p1dLQzEl9Gb4kKfbuHZd9qSzrLDb%2BTFpDXSh8jnyLt%2BNfk9WEURrLqLkUwaTKTJbrHGMfy2VmMIITX1h%2BEr4T3AUNQq%2B1nZEW%2FfIy68%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f52f8db569a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6192&min_rtt=442&rtt_var=11332&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3266&recv_bytes=1252&delivery_rate=4205227&cwnd=254&unsent_bytes=0&cid=751ec9d49ee755e2&ts=621&x=0"
X-Firefox-Spdy: h2
GET ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js
200 OK 87 kB URL GET ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint3C:2E:67:30:A6:95:F3:D3:61:49:AB:AC:BC:D1:CF:77:3E:33:8F:B7
ValidityThu, 20 Mar 2025 11:19:46 GMT - Thu, 12 Jun 2025 11:19:45 GMT
File type JavaScript source, ASCII text, with very long lines (32033)
Hash d4162c9d7e520a5de05001be6e741899
0baf29230047c9cd896f14c59618c9948ea79451
2405bdf4c255a4904671bcc4b97938033d39b3f5f20dd068985a8d94cde273e2
GET /ajax/libs/jquery/3.2.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 17:56:19 GMT
expires: Fri, 10 Apr 2026 17:56:19 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 262170
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET acscdn.com/script/aclib.js
200 OK 136 kB URL GET acscdn.com/script/aclib.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerGoogle Trust Services
Subjectacscdn.com
Fingerprint97:3B:3D:A5:2A:FF:D2:C6:5B:46:9D:24:D7:03:55:BC:74:2E:EE:AE
ValiditySun, 16 Feb 2025 19:51:23 GMT - Sat, 17 May 2025 20:49:57 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators
Size 136 kB (135479 bytes)
Hash debf7ede7cd92b5ee57b2f75045ac38c
f04c7542983ca707f21bc0ffafb691147b2a2703
4fd7f47a0d67475fcf4baa95335699febce1f624f7b7aedc947ccef78b75600f
GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:50 GMT
content-type: text/javascript
x-guploader-uploadid: AKDAyIsSRzTRP7Y-gBKipJA7beuFYWjKFV_aDHMHhBtgWWOF-TtyPvbSLcqj3i6dMszs7EQnZN0SOQY
x-goog-generation: 1741700637842684
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 135479
x-goog-hash: crc32c=EfZM1w==, md5=3r9+3nzZK17ley91BFrDjA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 13 Apr 2025 19:44:46 GMT
cache-control: public, max-age=3600
age: 64
last-modified: Tue, 11 Mar 2025 13:43:57 GMT
etag: W/"debf7ede7cd92b5ee57b2f75045ac38c"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eLSl03gd6t0GbhgjxyuJ0ehqvPx78HDab8N6bDCLzRxZFQbRyRPsokk7aUAGlxYAYtxcqB8oCcRCjfHtJQLnI%2BcFJmuIMRBJuXGKP9PXAgYE7NhLPYl0HY2PxtxW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fd1f6b8da4b524-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=825&min_rtt=480&rtt_var=677&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3192&recv_bytes=1067&delivery_rate=6840944&cwnd=254&unsent_bytes=0&cid=6e6d2cb5f06ac56f&ts=364&x=0"
X-Firefox-Spdy: h2
GET phd2.live/wp-content/themes/papahd/assets/js/custom.js?ver=1.0.0%27%20defer=%27defer
200 OK 1.1 kB URL GET phd2.live/wp-content/themes/papahd/assets/js/custom.js?ver=1.0.0%27%20defer=%27defer
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d51d4a94bbe3c0ba3e4a948861aabb54
186f0a5743b736877f0f67f03e31d864c4c71471
2c82ec8200720005cbd04b43e96bb0374892c8376214084b8085cbd465c54324
GET /wp-content/themes/papahd/assets/js/custom.js?ver=1.0.0%27%20defer=%27defer HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iPuVE%2FGE5MpnEwFuDONLtOrZ7W9BIm6I7suTt5Uh91jvb6NPtvu22%2FFgHXig6Mw90jxKcLrN6A4TTDudIVekYWI7Rgbf17MDXSQ%2BoiKpy%2FsZ%2FT95XcMp%2FVktKfI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:25 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 3374412
content-encoding: br
cf-ray: 92fd1f5a490856c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=595&x=16"
GET paupsoborofoow.net/tag.min.js
200 OK 103 kB URL GET paupsoborofoow.net/tag.min.js
IP
Requested by https://piratcast.tv/papa.php?hd=301
Certificate IssuerGoogle Trust Services
Subjectpaupsoborofoow.net
FingerprintBB:AB:82:1F:E9:CA:54:E5:11:30:EC:4D:A7:12:04:8F:33:BE:0C:B5
ValidityMon, 31 Mar 2025 22:57:38 GMT - Sun, 29 Jun 2025 23:55:55 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 103 kB (102577 bytes)
Hash 2ce7d7ddb6188ca5ef5c6a5ad80f2519
0505eeb1c60f761500f018f0655f4e8ff5be9268
d3ae6f2f0a669cad4e7e4cfe225cd9f8f3af3404777e440f4b740495ea17dbc0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: paupsoborofoow.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://piratcast.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:49 GMT
content-type: application/javascript
x-trace-id: e4175a5aa7be0ed33644678ac0ae73e6
cache-control: public, max-age=600, s-maxage=1800
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 680
last-modified: Sun, 13 Apr 2025 18:34:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k8UdeGFb9By9D0dsveiuTBT%2FMLF4%2Baa2cykXjW35d26ZDEJBUViXiR967%2Fmelta4eRycSl9g%2BlolVoOXSwDvwD4QA%2FmGxDE4icHcwhs%2B28SupzyLlkJU5zIDrDPZgSWF0hc%2FaCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fd1f651dc456c3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=533&min_rtt=485&rtt_var=110&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3297&recv_bytes=1196&delivery_rate=7144736&cwnd=252&unsent_bytes=0&cid=c6177fe5f716a79b&ts=101&x=0"
X-Firefox-Spdy: h2
POST 162.252.214.4/p
200 OK 1.2 kB IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoGetSSL
Subject162.252.214.4
Fingerprint99:4E:5E:EE:6D:B3:71:D1:59:DE:66:7A:87:0B:95:4A:AD:A6:DF:04
ValiditySun, 31 Mar 2024 00:00:00 GMT - Thu, 01 May 2025 23:59:59 GMT
File type ASCII text, with very long lines (1212), with no line terminators
Hash e35537af2b65fa64c878bb28bec001f0
cb4ae29951b47cf527dc6ae83f29e2f437fd094d
92e5d39879c575919704a47478ab40a3f2cc238d1bcb775b67e3c452d37473fe
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /p HTTP/1.1
Host: 162.252.214.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1566
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 13 Apr 2025 18:45:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://phd2.live
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css?ver=6.7.2
200 OK 84 kB URL GET cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css?ver=6.7.2
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File type ASCII text, with very long lines (65311)
Hash 3d5ef2bf867c4054a2f336cdbad9e1dc
07228d1fa3245ee156a27a353f45758a3207849f
a361e7885c36bacb3fd9cb068da207c3b9329962cac022d06e28923939f575e8
GET /ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css?ver=6.7.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/css; charset=utf-8
content-length: 14850
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "619c057b-3a02"
last-modified: Mon, 22 Nov 2021 21:02:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 223727
expires: Fri, 03 Apr 2026 18:45:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hMaRYb7xppWcp50aYyZsvMqfjBYQ3QaHWNcSl%2Fg%2FIr7k%2FlTlY7Ga1oc4cIbRrGBxNSZhauLieIn%2Ffnasr5lpDoVsnh82gT23n5MAbTTqkcD6lVdJF%2BWU0NQSu8dnTGea%2BYiad52s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92fd1f5a6a590b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET gekeebsirs.com/tag.min.js
200 OK 103 kB URL GET gekeebsirs.com/tag.min.js
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectgekeebsirs.com
Fingerprint62:05:E4:1A:BD:00:57:39:23:18:02:9C:EA:74:80:18:AC:42:4D:88
ValiditySun, 06 Apr 2025 12:54:11 GMT - Sat, 05 Jul 2025 13:51:54 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 103 kB (102577 bytes)
Hash 2ce7d7ddb6188ca5ef5c6a5ad80f2519
0505eeb1c60f761500f018f0655f4e8ff5be9268
d3ae6f2f0a669cad4e7e4cfe225cd9f8f3af3404777e440f4b740495ea17dbc0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: gekeebsirs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: application/javascript
x-trace-id: 2f9a23d5932db30b877c9ebdd4f6fed1
cache-control: public, max-age=3600, s-maxage=1800
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 1205
last-modified: Sun, 13 Apr 2025 18:25:42 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DtfXHddqw4j7VtOAB%2FF25CABzI12ah4hWnezJJCV0rExLpj99cchfPB3EFljEEqoDwlW9lO8qv2fzaH%2BJUQ2uhXmHklnLqC4dgOSc7Prq9aWMGX4MUygjnxCaauZN5QGIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fd1f5ec9a0712d-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=542&min_rtt=505&rtt_var=95&sent=7&recv=12&lost=0&retrans=0&sent_bytes=3205&recv_bytes=1060&delivery_rate=6830188&cwnd=253&unsent_bytes=0&cid=bd1b317da3052a29&ts=285&x=0"
X-Firefox-Spdy: h2
GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
200 OK 37 kB URL GET maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint90:B1:98:4A:7E:D6:37:CF:9B:DC:7D:67:82:58:17:6C:F7:F6:11:DE
ValiditySun, 16 Mar 2025 01:14:49 GMT - Sat, 14 Jun 2025 02:14:23 GMT
File type JavaScript source, ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:49 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 03/18/2024 12:13:26
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: f51db51e1812ec3681add6a3dbbf5420
cdn-cache: HIT
cf-cache-status: HIT
age: 225891
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 92fd1f6968d756c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET processbigger.com/maestrohd2.js
200 OK 1.0 kB URL GET processbigger.com/maestrohd2.js
IP
Requested by https://piratcast.tv/papa.php?hd=301
Certificate IssuerGoogle Trust Services
Subjectprocessbigger.com
Fingerprint40:FB:57:30:08:54:5E:08:E1:5D:E6:D1:BB:73:E6:F6:42:A6:2A:EE
ValidityMon, 07 Apr 2025 20:47:05 GMT - Sun, 06 Jul 2025 21:40:17 GMT
File type ASCII text, with very long lines (310)
Hash d625e733b7547dcdd415c4b27c4bc527
7f00e2b8792948ae625499c06ae590515250f2b9
83487ba31c45dfaa270e93aca0e5327f12b8a763d2c0822650f65d3d0989388b
GET /maestrohd2.js HTTP/1.1
Host: processbigger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://piratcast.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:48 GMT
content-type: application/javascript
last-modified: Sat, 08 Mar 2025 21:36:34 GMT
vary: Accept-Encoding
etag: W/"67ccb862-3f6"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6047
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cej9aR9PHIbBb2mdax22G0%2B%2BHJVLJ1K8zxqPX6m7iwkgLwAe0RGmVIC0wVRMQbwnJ%2FBBJSqJ7BdM3iPCzHcFSFJgV%2F7I57ciqH8%2Fr%2BTsEp%2BKB79zsteaE6tHwhsYWgJ9Fvphgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f622c04b529-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=544&min_rtt=465&rtt_var=167&sent=6&recv=11&lost=0&retrans=0&sent_bytes=3215&recv_bytes=1066&delivery_rate=6798122&cwnd=254&unsent_bytes=0&cid=220fb672c6b46ad4&ts=104&x=0"
X-Firefox-Spdy: h2
GET c.adsco.re/#0.24731472421298117
200 OK 79 kB URL GET c.adsco.re/#0.24731472421298117
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (689)
Hash f0e71ebb1e2c90b307c171052ca517d0
1a1950b1868c0bfb8629f6f81b81439160727a79
adbce95b9ac0da66ea3a1d707494d9c74876e1c9186c446b4b5a22d15adc1ee5
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:53 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Wed, 14 May 2025 18:45:53 GMT
etag: W/"8Oceux4skLMHwXEFLKUX0A=="
content-encoding: gzip
cf-cache-status: HIT
age: 231511
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fd1f816f700afa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST c.adsco.re/favicon.ico?type=log&code=1000&endpoint=adsco.re&path=p&timeout=1500
403 Forbidden 0 B URL POST c.adsco.re/favicon.ico?type=log&code=1000&endpoint=adsco.re&path=p&timeout=1500
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /favicon.ico?type=log&code=1000&endpoint=adsco.re&path=p&timeout=1500 HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 403 Forbidden
date: Sun, 13 Apr 2025 18:45:55 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Sun, 13 Apr 2025 18:46:10 GMT
priority: u=6,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fd1f8d0f980afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET phd2.live/lazio-vs-roma/
200 OK 21 kB IP
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type HTML document, ASCII text, with very long lines (8856), with CRLF, LF line terminators
Hash f8173273afeda15a87d774c9e0c72588
4ce1b8b458f4b44ac27249743d6dbe2bd2c82472
47b4c8c61e6b2eac09a77b4d181e9f09cd359fef221149dcc16a5eb33c2aaaf1
GET /lazio-vs-roma/ HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:46 GMT
content-type: text/html; charset=UTF-8
link: <https://phd2.live/wp-json/>; rel="https://api.w.org/", <https://phd2.live/wp-json/wp/v2/pages/354391>; rel="alternate"; title="JSON"; type="application/json", <https://phd2.live/?p=354391>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DrZcFn2pJ71didlhxmWUhtX9tSC7BZVvWcbYqVViK9UZDISref7ku1Gv191R4yV6kQyQLeB5Ss%2FNLPGYw3UM4p1hGSlNMdq1yT%2B6vMUwT7qxWzUuQmCf0n9b7ys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f56df14569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4861&min_rtt=442&rtt_var=8683&sent=10&recv=14&lost=0&retrans=0&sent_bytes=3945&recv_bytes=1329&delivery_rate=5019064&cwnd=256&unsent_bytes=0&cid=751ec9d49ee755e2&ts=871&x=0"
X-Firefox-Spdy: h2
GET phd2.live/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 88 kB URL GET phd2.live/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cAal2mgFoWnr4iTQ3aJ78wNJr5ZT2U%2BQo20PsTkzBDC06pj4z81g%2BftRmccJXiC2QNrMx%2Fp%2B%2ByzxQ3LgctkYgMwkG0sOMIbRqmU5qfaD7mBbVy0L2NPdhxcHWl4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:26 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 130509
content-encoding: br
cf-ray: 92fd1f5a490656c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=608&x=16"
GET piratcast.tv/papa.php?hd=301
200 OK 1.2 kB URL GET piratcast.tv/papa.php?hd=301
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectpiratcast.tv
FingerprintCF:5B:FD:80:B6:7F:28:72:63:21:50:5B:E6:A0:26:38:87:48:6A:3C
ValidityTue, 25 Feb 2025 20:49:48 GMT - Mon, 26 May 2025 21:47:55 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 5a5438f00d488c35f8b1bd7da37342b6
05bedaf9f32b58df977c45d5144d96bff6486594
aa41dd0c0b571e78f3def9e2e46f3c8c8d83287ee5dc56e6e56364c61ae70bd6
GET /papa.php?hd=301 HTTP/1.1
Host: piratcast.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.32
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PS5WnDyDtsZRli4svxF0LB5mjnRvld8m57f32Xg1CfFNtxyTFSgJNUyLAJfD%2BGbox00k9NYDbsQtzdE4jXOLrsDufCgbiYc6znylYthlJKYOMNtxJkknlXR8zLAndEY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92fd1f5eeca756aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1598&min_rtt=538&rtt_var=2120&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3279&recv_bytes=1273&delivery_rate=6493273&cwnd=254&unsent_bytes=0&cid=d3dcbb3a49e59588&ts=273&x=0"
X-Firefox-Spdy: h2
GET phd2.live/wp-content/uploads/2024/06/android-chrome-192x192-1.png
200 OK 18 kB URL GET phd2.live/wp-content/uploads/2024/06/android-chrome-192x192-1.png
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Hash 6871d259fffdef14e46b5b98a618cc42
df191e794da66c25c3d9b9de5dc0040df3aa0d3a
320331e797313637ac55e0687b2940dc93156c3b060ac85039dd9f688e27ee9a
GET /wp-content/uploads/2024/06/android-chrome-192x192-1.png HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Cookie: _ga_M10DF2ED56=GS1.1.1744569947.1.0.1744569948.0.0.0; _ga=GA1.1.624767809.1744569948
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:48 GMT
content-type: image/png
content-length: 18156
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d0Ma%2BgrE04tmqdnzliTv7lPSN83YVttSWfEsYpCRNOX8rK46ycZQxqMhcfTQlwPhTnm8LYbBXJWp95N2E1yAI83xJfQiNL7JtgxPKtan6XQm0R9G5bb64i7ZWEg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:25 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
cf-cache-status: HIT
age: 131749
accept-ranges: bytes
cf-ray: 92fd1f61994f56c6-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=1758&x=16"
GET phd2.live/wp-content/themes/papahd/assets/css/main.css?ver=1.0.1
200 OK 7.1 kB URL GET phd2.live/wp-content/themes/papahd/assets/css/main.css?ver=1.0.1
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
Hash 55e03f078c06308fbdd12f4678b441c8
6e2fcab00c4b2e8533563dba7d50bd98062d2502
5bd55cf201306dcbcf0a53a57409f1a32d53165bc4911e8cf1414d3d952cc31a
GET /wp-content/themes/papahd/assets/css/main.css?ver=1.0.1 HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LU8%2FuUdvpmago0ObIrSwQUIHYybls1FLr%2BN7EaswtCw%2BxPoswNOoJbPjtgqFcuFsjmXtbNWB9QxhPYYWMeTaICUN2CyIRCe7IxjKavC%2B5yA5kzOiEBHsNNydApo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:25 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 3374412
content-encoding: br
cf-ray: 92fd1f5a390156c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=595&x=16"
GET phd2.live/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 14 kB URL GET phd2.live/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerGoogle Trust Services
Subjectphd2.live
Fingerprint46:26:6F:75:D5:C9:21:52:9D:6D:B6:BC:9D:91:44:22:41:EE:12:9D
ValiditySat, 01 Mar 2025 16:12:50 GMT - Fri, 30 May 2025 17:11:36 GMT
File type JavaScript source, ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: phd2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/lazio-vs-roma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OD22xt8bC8gf%2FvnPM%2BBD4oBigr8gBS3XvShGunFbTF3oBhbCreEWnUvOrPTxjNGU1nLT2qAK0POA2iIih83GMLj88s2%2FIS9ox3TfFUF9rgRmeubHGhY%2BhHDRM8k%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 03 Mar 2025 06:30:26 GMT
cache-control: max-age=10368000
expires: max-age=A10368000,
vary: Accept-Encoding
cf-cache-status: HIT
age: 130509
content-encoding: br
cf-ray: 92fd1f5a490756c6-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13470&min_rtt=2641&rtt_var=6796&sent=48&recv=60&lost=0&retrans=0&sent_bytes=5569&recv_bytes=5177&delivery_rate=1816&cwnd=12000&unsent_bytes=0&cid=9f9870a124f6916e&ts=596&x=16"
POST 64.adsco.re/p
200 OK 1.2 kB IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT
File type ASCII text, with very long lines (1212), with no line terminators
Hash 919eff1066087099bdb4880203f412b2
b3d2f82ed1f3c626e0741aafc99a0995bf69c752
ea43e153fb0080973300f305a7a61ef4bca1bdcb91b96efec35ccac9b51ea31f
POST /p HTTP/1.1
Host: 64.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1566
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 13 Apr 2025 18:45:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK nyc123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://phd2.live
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
GET code.jquery.com/jquery-latest.js
200 OK 283 kB URL GET code.jquery.com/jquery-latest.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Size 283 kB (282766 bytes)
Hash 3d93b072d14f2bd1ede58f4847f537fd
73e5d044bd153dd912930e8be433059454ce19cd
3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc
GET /jquery-latest.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4508e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 13 Apr 2025 18:45:49 GMT
age: 4004331
x-served-by: cache-lga21958-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 14380, 401476
x-timer: S1744569950.932140,VS0,VE0
vary: Accept-Encoding
content-length: 83875
X-Firefox-Spdy: h2
POST adsco.re/p
200 OK 1.2 kB IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT
File type ASCII text, with very long lines (1212), with no line terminators
Hash fb79c50ab9349b5abb6a28548976fa6c
39d8b1b6df7be34383876789cd1423a5a5c01071
a0d08644ca3bd7453954b14655c40df9b08cb792d6ff8c7f44ee8a4fa6561795
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1566
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 13 Apr 2025 18:45:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK nyc123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://phd2.live
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
POST c.adsco.re/favicon.ico?type=log&code=4&endpoint=adsco.re&path=p&timeout=1500
403 Forbidden 0 B URL POST c.adsco.re/favicon.ico?type=log&code=4&endpoint=adsco.re&path=p&timeout=1500
IP
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B
ValidityMon, 23 Sep 2024 00:00:00 GMT - Mon, 29 Sep 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /favicon.ico?type=log&code=4&endpoint=adsco.re&path=p&timeout=1500 HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 403 Forbidden
date: Sun, 13 Apr 2025 18:45:55 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Sun, 13 Apr 2025 18:46:10 GMT
priority: u=6,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fd1f8ccf340afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.cdn4ads.com/bmui.min.css
200 OK 37 kB URL GET www.cdn4ads.com/bmui.min.css
IP
ASN #60068 Datacamp Limited
Requested by https://phd2.live/lazio-vs-roma/
Certificate IssuerLet's Encrypt
Subject1037973644.rsc.cdn77.org
Fingerprint5C:85:F4:84:08:0D:0B:B6:1F:1F:E1:40:3C:BC:41:40:DF:A2:DB:2B
ValidityTue, 04 Feb 2025 22:53:04 GMT - Mon, 05 May 2025 22:53:03 GMT
File type JavaScript source, ASCII text, with very long lines (1568)
Hash d9a910270d2afde5bab3de002e5945d4
af13e500677dc9bbe92d7e25f65add217a03cf07
4d7b5ad2e723c27acfeee2a7393aa589426cb04961fcc775976a266f5ba06db7
GET /bmui.min.css HTTP/1.1
Host: www.cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://phd2.live
DNT: 1
Connection: keep-alive
Referer: https://phd2.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 18:45:47 GMT
content-type: application/x-javascript
popads-node: wb1
expires: Thu, 17 Apr 2025 06:47:13 GMT
access-control-allow-origin: https://phd2.live
link: <https://cdn4ads.com/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwwBX63NDQH3ZBQEAAwBuUwKEwH3JH0AAAwBisclxAG3YgsAAA
x-77-nzt-ray: 2a494a15702c27238006fc67d72eab39
x-77-cache: HIT
x-77-age: 267364
vary: Accept-Encoding, Origin
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2
GET code.jquery.com/jquery-migrate-1.2.1.min.js
200 OK 7.2 kB URL GET code.jquery.com/jquery-migrate-1.2.1.min.js
IP
Requested by https://processbigger.com/maestrohd2.php?player=desktop&live=bbtsp1
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (7085)
Hash eb05d8d73b5b13d8d84308a4751ece96
743052320809514fb788fe1d3df37fc87ce90452
1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d
GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://processbigger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1c1f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 13 Apr 2025 18:45:50 GMT
age: 3239166
x-served-by: cache-lga21931-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 56645
x-timer: S1744569950.059396,VS0,VE0
vary: Accept-Encoding
content-length: 3063
X-Firefox-Spdy: h2
POST jaiglouhasub.net/5/9183831/?oo=1&js_build=iclick-v1.1125.0&dmn=paupsoborofoow.net&tt=2&ix=1
204 No Content 0 B URL POST jaiglouhasub.net/5/9183831/?oo=1&js_build=iclick-v1.1125.0&dmn=paupsoborofoow.net&tt=2&ix=1
IP
Requested by https://piratcast.tv/papa.php?hd=301
Certificate IssuerLet's Encrypt
Subjectjaiglouhasub.net
Fingerprint80:31:D5:15:0E:0C:19:59:41:48:5A:24:2C:66:0F:3E:38:91:A9:AD
ValiditySun, 13 Apr 2025 05:08:14 GMT - Sat, 12 Jul 2025 05:08:13 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /5/9183831/?oo=1&js_build=iclick-v1.1125.0&dmn=paupsoborofoow.net&tt=2&ix=1 HTTP/1.1
Host: jaiglouhasub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2592
Origin: https://piratcast.tv
DNT: 1
Connection: keep-alive
Referer: https://piratcast.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sun, 13 Apr 2025 18:45:53 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://piratcast.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
104.21.35.143
185.200.116.60
142.250.74.168
185.200.118.62
95.173.205.14
0.0.0.0