code.jquery.com/jquery-3.2.1.min.js
69.16.175.10200 OK 30 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.min.js
IP 69.16.175.10:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1684982461.dop232.sk1.t,1684982461.cds246.sk1.hn,1684982461.cds222.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c02ea2eb31eb1af30ad378cddf6f94b5
f6190e85f669f8282ec9c4a36cf7f552c82f4989
e218cdd31cbdc6f9019a3ba5dbcd1451c74d4c9704bb0187b0b2dcc7481a4daa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 02:41:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 3cd11736a494e3b099d888ca94acbfc2
32a4eb572df98523b2e05ad6ace84bafe791ee59
229dcfdcfba2437dfb69860f2020d71fde3e74fdf2b878281f0b7b256c88989a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 02:41:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash 46a4395b9cb8fbea7086e25038bd6413
cd5d7a34ba05963620a18c2ce913be4b43601418
59d00f83dd2fd38f41d7ad837de691df733ef1934e272de5d8a285b37a528597
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 May 2023 02:41:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 22 May 2023 23:50:03 GMT
Expires: Mon, 29 May 2023 23:50:02 GMT
Etag: "cd5d7a34ba05963620a18c2ce913be4b43601418"
Cache-Control: max-age=422505,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cca6abf6e93b505-OSL
www.googletagmanager.com/gtag/js?id=UA-166622646-1
142.250.74.72200 OK 48 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-166622646-1
IP 142.250.74.72:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2271)
Hash be1f66634af19a5f89c3bd9fce89d392
a056acad5b7fbff011b62f4ec9d4ca2411a0cc4e
df544c8f5d0a65596ad3fd0511d330286d8f95eb5f81ab5e2e41c9472cb11f5b
GET /gtag/js?id=UA-166622646-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 May 2023 02:41:01 GMT
expires: Thu, 25 May 2023 02:41:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47730
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
watchsb.com/d/8jj9879q10zl.html
172.64.204.27200 OK 51 kB URL User Request GET HTTP/2 watchsb.com/d/8jj9879q10zl.html
IP 172.64.204.27:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (898), with CRLF, LF line terminators
Hash bf1c09882c5bbaec9fb0cb3892f15ce5
4726cf40ede51933f92ad3715fe35e2697fa6aad
521981d78dd36137398ee8324f7f19d08c7cbc33395ac00f0a5313ba9b29ab5f
GET /d/8jj9879q10zl.html HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 24 May 2023 02:41:00 GMT
set-cookie: lang=1; domain=.watchsb.com; path=/; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQoEUGVoB71Dv2ACLeoUP7IylQj1dEiDrVTRSH29p%2FVjE25cp07L3czS3yimpqQvLIl1tiw4vBkTSEV1lxkLAGWlgeA%2B8Wp4O91bE1QDkrKDYDeBmRrP%2BHZTWNXbTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cca6abc383174a9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 3cd11736a494e3b099d888ca94acbfc2
32a4eb572df98523b2e05ad6ace84bafe791ee59
229dcfdcfba2437dfb69860f2020d71fde3e74fdf2b878281f0b7b256c88989a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 02:41:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Poppins:wght@400;500;700&display=swap
142.250.74.106200 OK 961 B URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@400;500;700&display=swap
IP 142.250.74.106:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type gzip compressed data, max compression\012- data
Hash 67d5e7267de9f0a04961337a5942f1d2
12c39176f6c9701d513ee7f7542f76a3bc8f683b
3b654ca591de16dab52a355f665d7e894bef79966d730139c45a2faf8bbadea4
GET /css2?family=Poppins:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 May 2023 02:41:01 GMT
date: Thu, 25 May 2023 02:41:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lv.chajagibbous.com/tfkihe8cvk1/62124
172.255.6.248200 OK 25 B URL GET HTTP/1.1 lv.chajagibbous.com/tfkihe8cvk1/62124
IP 172.255.6.248:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subjectlv.chajagibbous.com
FingerprintE0:CF:48:9A:D3:37:90:5B:E1:B2:B5:5F:41:DB:1B:3D:9A:99:C2:1A
ValidityThu, 30 Mar 2023 11:00:26 GMT - Wed, 28 Jun 2023 11:00:25 GMT
File type ASCII text, with no line terminators
Hash f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a
GET /tfkihe8cvk1/62124 HTTP/1.1
Host: lv.chajagibbous.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 May 2023 02:41:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://watchsb.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Fri, 26-May-2023 02:41:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJw9i8sKwjAURGuUYNVWBvwAf8D6QBdu1aXUhbgOtd6WYM0tTXzUr%2FcFruYwc8bzPDEIIXSJ3nIaLSfRfBZNF3M0c2KIeIdeylfjqlqZ5EKQMVf3pIasKNdsAnR%2FoFI%2BETrxbnQwZ8N38x8%2BtwCtVLs6gP%2BJrxu20dS2RLgq9GO45%2BLq3raFb8gpWxKd4K%2BTY0HjzX6L8N9%2Bz7KBtraqrPhRv7nv9IWebEhxlllyUqBxk%2BIFsdRBIw%3D%3D; expires=Fri, 26-May-2023 02:41:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0e2a51fc0a704370c246690b8e25c332
28b056e0210c4e5139982c887bbd5b416a7c888e
639b72f46177c45cf6faed4c59c70f988ba038216aceeb1a9734de3364da854d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 02:41:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0e2a51fc0a704370c246690b8e25c332
28b056e0210c4e5139982c887bbd5b416a7c888e
639b72f46177c45cf6faed4c59c70f988ba038216aceeb1a9734de3364da854d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 02:41:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.227:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchsb.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 18:05:59 GMT
expires: Sun, 19 May 2024 18:05:59 GMT
cache-control: public, max-age=31536000
age: 376502
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchsb.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:36 GMT
expires: Thu, 23 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 95065
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LKBMYHCW0K&l=dataLayer&cx=c
142.250.74.72200 OK 80 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-LKBMYHCW0K&l=dataLayer&cx=c
IP 142.250.74.72:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (3288)
Hash d678f98df88af2ce60ecc9ad32b67883
5c03caea8de002be6c64343a2a1b476908f23d02
19dd6d2db73beb49f5c2af1a1f81ce3c74dec719f3d13596e5ba367ea13ba78b
GET /gtag/js?id=G-LKBMYHCW0K&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 May 2023 02:41:01 GMT
expires: Thu, 25 May 2023 02:41:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79876
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 02:41:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash f26f064c3a8d9c6c9d23a45d798ae6ed
ebccfc3565010e8cb172cf61f11d53000bd5dd97
b9b6fa49ac40a80105a2c2f175df5b8092afaa336165b500465a3eb384dd698c
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 25 May 2023 02:41:01 GMT
Etag: "646e3bce-1d7"
Expires: Thu, 25 May 2023 04:41:01 GMT
Last-Modified: Wed, 24 May 2023 16:31:10 GMT
Server: ECAcc (nya/78E9)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PoBLtNTWd-9qvmzkCr_Hv0RtntBvwrzgKIcpqQB1u9A6XoHQWvWYVg==
Age: 5646
simplewebanalysis.com/stats
52.58.93.188200 OK 40 B URL GET HTTP/2 simplewebanalysis.com/stats
IP 52.58.93.188:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerAmazon
Subjectsimplewebanalysis.com
FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash b8a1fe821f75a3402bb23c39cccdbc8c
25f5ae7f696dd1564aa84154e2b55de2dffa3b6e
a1a78e9b0ed57febb3be4e65e1b0c4d6b1b867558e4c953160305d66f8b27fc0
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchsb.com
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://watchsb.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4d5bcf3c-eb36-47e5-acc8-017df93548f8:3:1; expires=Sun, 22 May 2033 02:41:01 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
akamai-content-images.com/8jj9879q10zl_xt.jpg
104.21.40.131200 OK 60 kB URL GET HTTP/2 akamai-content-images.com/8jj9879q10zl_xt.jpg
IP 104.21.40.131:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerGoogle Trust Services LLC
Subject*.akamai-content-images.com
Fingerprint8F:70:4E:3D:1D:DD:42:66:70:F9:CD:78:08:53:62:C5:6A:83:31:B4
ValiditySat, 08 Apr 2023 19:17:44 GMT - Fri, 07 Jul 2023 19:17:43 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 875x366, components 3\012- data
Hash 1531b1feaa4fd44058bbdaa82c2b702b
5887e5bce50fd85f47924c68901c554956cf1dd8
6617acf5ece9c45c6a1d4b1a427ec93b4593529278157a975a2890a57bf3f596
GET /8jj9879q10zl_xt.jpg HTTP/1.1
Host: akamai-content-images.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 59552
last-modified: Tue, 23 May 2023 04:35:37 GMT
etag: "646c4299-e8a0"
expires: Thu, 08 Jun 2023 02:41:01 GMT
cache-control: max-age=1209600
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fleqfBDyI7zISO%2BqyIY4lRqmuE8OSvRcpeLOH16CzLZFoqH3F0sDSzmhHQUDKgokQKGGqCY589mSUAgILS2GUp%2F3eLsCRjCfRqIqmN6JKF8QdelF%2FQ3mTlnNUadZHxeF6aQg%2Fes23LtfJNhV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6abf5ba7b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stealingattentions.com/54/42/5b/54425b8e8ac39b56c91d1586d719761f.js
192.243.61.227403 Forbidden 0 B URL GET HTTP/1.1 stealingattentions.com/54/42/5b/54425b8e8ac39b56c91d1586d719761f.js
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subject*.stealingattentions.com
Fingerprint14:DA:51:CE:80:05:BE:3A:D7:E3:A7:4D:FF:96:2F:13:7B:63:50:DA
ValiditySun, 26 Mar 2023 06:25:49 GMT - Sat, 24 Jun 2023 06:25:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /54/42/5b/54425b8e8ac39b56c91d1586d719761f.js HTTP/1.1
Host: stealingattentions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:01 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
watchsb.com/d5/images/favicon/apple-touch-icon.png
172.64.204.27200 OK 5.4 kB URL GET HTTP/3 watchsb.com/d5/images/favicon/apple-touch-icon.png
IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 5bfb39ef98bec8bae2c31e7965d22e81
7d16a8c37b1c7ee649bc246ce66080efc235ef8c
ba31665ca1fb55172e56df3b0026d0a0ab8059eff90a3db365e4c744f287a90b
GET /d5/images/favicon/apple-touch-icon.png HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1; _ga_LKBMYHCW0K=GS1.1.1684982461.1.0.1684982461.0.0.0; _ga=GA1.1.992483058.1684982462; dom3ic8zudi28v8lr6fgphwffqoz0j6c=4d5bcf3c-eb36-47e5-acc8-017df93548f8%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:02 GMT
content-type: image/png
content-length: 5387
last-modified: Wed, 04 Jan 2023 22:31:11 GMT
etag: "150b-5f177bdcf8291"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 3760
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=559tfXaCQTsqDXsQAm6HblPfpX7v%2BMW5JgQf5oDpzUB8%2B6nFy4oSe9ZZOjB0c%2FXAaVUZJzILxTWbZBVeTxyQMjFaQuM2l31z2DnDYYj6w2FOrSV53tQIh3PGoVB%2FZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6ac419117480-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
dearestimmortality.com/5c/2c/a6/5c2ca6d2f1c5d1785a0c679ac01a5c78.json
173.233.137.52403 Forbidden 0 B URL GET HTTP/1.1 dearestimmortality.com/5c/2c/a6/5c2ca6d2f1c5d1785a0c679ac01a5c78.json
IP 173.233.137.52:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subject*.dearestimmortality.com
FingerprintA3:FD:91:01:F5:9D:58:61:B2:87:0E:E1:60:04:B2:2E:74:67:7C:57
ValidityFri, 31 Mar 2023 06:13:33 GMT - Thu, 29 Jun 2023 06:13:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /5c/2c/a6/5c2ca6d2f1c5d1785a0c679ac01a5c78.json HTTP/1.1
Host: dearestimmortality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchsb.com
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:02 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
watchsb.com/d5/images/favicon/favicon-16x16.png
172.64.204.27200 OK 563 B URL GET HTTP/3 watchsb.com/d5/images/favicon/favicon-16x16.png
IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d092fe8b946d9df897e64cfb88f1a785
79ec00cdd790753fcade7707b86c9ce64b4e13fc
ec998bf67f1de484cb106cf499731ed3b0339024cd0835fb3972960b462ef68c
GET /d5/images/favicon/favicon-16x16.png HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1; _ga_LKBMYHCW0K=GS1.1.1684982461.1.0.1684982461.0.0.0; _ga=GA1.1.992483058.1684982462; dom3ic8zudi28v8lr6fgphwffqoz0j6c=4d5bcf3c-eb36-47e5-acc8-017df93548f8%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:02 GMT
content-type: image/png
content-length: 563
last-modified: Wed, 04 Jan 2023 22:31:11 GMT
etag: "233-5f177bdcf8679"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IdvrAhgy6hHnhhJXqKyNAhGgwUD3rnI%2FbH0w2z2rbNtats%2Bz7S1InitWvQ6eZrM%2FUbX2g7RYH7rD3vl6LjuOoqqlhXF0SLt9NB3cDgFsMmzKhwNbgOwlEe1lQq8aYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6ac419127480-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
poshhateful.com/advertisers.js
173.233.139.164200 OK 0 B URL GET HTTP/1.1 poshhateful.com/advertisers.js
IP 173.233.139.164:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subjectposhhateful.com
Fingerprint86:EA:FA:D7:E2:8F:7D:8C:A8:64:EE:3D:F1:60:9F:90:9E:8B:FF:D5
ValiditySun, 16 Apr 2023 07:05:46 GMT - Sat, 15 Jul 2023 07:05:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: poshhateful.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:02 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 358f71379d851ae2e819b04c14cdea93
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=4d5bcf3c-eb36-47e5-acc8-017df93548f8&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=12.2079&b_frame=0&pk=5c2ca6d2f1c5d1785a0c679ac01a5c78&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2
192.243.61.227200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=4d5bcf3c-eb36-47e5-acc8-017df93548f8&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=12.2079&b_frame=0&pk=5c2ca6d2f1c5d1785a0c679ac01a5c78&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint33:54:5C:58:7C:8E:75:EE:DF:A0:8C:41:D3:AC:1B:BF:B6:66:28:EC
ValidityMon, 27 Mar 2023 07:09:08 GMT - Sun, 25 Jun 2023 07:09:07 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=4d5bcf3c-eb36-47e5-acc8-017df93548f8&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=12.2079&b_frame=0&pk=5c2ca6d2f1c5d1785a0c679ac01a5c78&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:02 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 741cecf8a1b31fe58a639b42407539c2
Strict-Transport-Security: max-age=0; includeSubdomains
poplarcolonistgreatest.com/4c/8d/2c/4c8d2ce6eefe488ef657c1fe55c35e87.js
192.243.59.12403 Forbidden 0 B URL GET HTTP/1.1 poplarcolonistgreatest.com/4c/8d/2c/4c8d2ce6eefe488ef657c1fe55c35e87.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subjectpoplarcolonistgreatest.com
Fingerprint87:5E:6C:0E:A3:34:07:E9:D4:D4:84:38:17:03:53:E4:77:6E:E4:93
ValidityWed, 10 May 2023 06:42:37 GMT - Tue, 08 Aug 2023 06:42:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4c/8d/2c/4c8d2ce6eefe488ef657c1fe55c35e87.js HTTP/1.1
Host: poplarcolonistgreatest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:02 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
poplarcolonistgreatest.com/4c/8d/2c/4c8d2ce6eefe488ef657c1fe55c35e87.js
192.243.59.12403 Forbidden 0 B URL GET HTTP/1.1 poplarcolonistgreatest.com/4c/8d/2c/4c8d2ce6eefe488ef657c1fe55c35e87.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subjectpoplarcolonistgreatest.com
Fingerprint87:5E:6C:0E:A3:34:07:E9:D4:D4:84:38:17:03:53:E4:77:6E:E4:93
ValidityWed, 10 May 2023 06:42:37 GMT - Tue, 08 Aug 2023 06:42:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4c/8d/2c/4c8d2ce6eefe488ef657c1fe55c35e87.js HTTP/1.1
Host: poplarcolonistgreatest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:06 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
unseenreport.com/pxf.gif?uuid=4d5bcf3c-eb36-47e5-acc8-017df93548f8&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=12.2079&b_frame=0&pk=5c2ca6d2f1c5d1785a0c679ac01a5c78&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2
192.243.61.227200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=4d5bcf3c-eb36-47e5-acc8-017df93548f8&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=12.2079&b_frame=0&pk=5c2ca6d2f1c5d1785a0c679ac01a5c78&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint33:54:5C:58:7C:8E:75:EE:DF:A0:8C:41:D3:AC:1B:BF:B6:66:28:EC
ValidityMon, 27 Mar 2023 07:09:08 GMT - Sun, 25 Jun 2023 07:09:07 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=4d5bcf3c-eb36-47e5-acc8-017df93548f8&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=12.2079&b_frame=0&pk=5c2ca6d2f1c5d1785a0c679ac01a5c78&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 May 2023 02:41:06 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b6c1434ee61e23403ee344edbce2c549
Strict-Transport-Security: max-age=0; includeSubdomains
addresseepaper.com/sfp.js
0.0.0.0 0 B URL GET addresseepaper.com/sfp.js
IP 0.0.0.0:0
Requested by https://watchsb.com/d/8jj9879q10zl.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js
185.244.209.62200 OK 80 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js
IP 185.244.209.62:443
ASN #58286 Electric-IT Business S.R.L.
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerSectigo Limited
Subjectcdn.jsdelivr.net
Fingerprint95:B3:FD:0C:F5:9E:0C:6C:F5:81:AB:DD:5D:6D:67:BF:FF:4A:FD:CC
ValiditySat, 01 Oct 2022 00:00:00 GMT - Fri, 20 Oct 2023 23:59:59 GMT
File type ASCII text, with very long lines (65299)
Hash 2faceb2d3db75ced808545e78fab94ed
c663baa051856b64d746629a961e23bbf0fbaf8c
c0c09020adb6f602b16d48374166b9e38ca92383a81650b6a9097c43cc43f31f
GET /npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 May 2023 02:41:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 5.2.0
x-jsd-version-type: version
etag: W/"137ae-xmO6oFGFa2TXRmKalh4ju/D7r4w"
age: 7797748
x-served-by: cache-fra-eddf8230139-FRA, cache-ams21026-AMS
x-cache: HIT, HIT
vary: Accept-Encoding, Accept-Encoding
content-encoding: br
cache: HIT, HIT
x-cached-since: 2023-05-23T14:23:19+00:00, 2023-05-23T14:23:55+00:00
x-id: am3-up-gc89, osix-up-gc4
x-nginx: nginx-be, nginx-be
X-Firefox-Spdy: h2
watchsb.com/d5/images/logo.svg
172.64.204.27200 OK 3.2 kB URL GET HTTP/3 watchsb.com/d5/images/logo.svg
IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3248), with no line terminators
Hash e5d84b141a8d1b3aeb43e8ab54dc93c5
aa5f50101b7d329ee77821ff859ee8e6a43a6114
c3bde51b7336eed8e7e954de1a4df678962830f2834c37df1bd000dc0b815e81
GET /d5/images/logo.svg HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: image/svg+xml
last-modified: Wed, 04 Jan 2023 22:31:10 GMT
etag: W/"c88-5f177bdc38fee"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 3799
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AKuL%2BRzZ85kmAa7YTGheP%2BYHsFMpCT6Bf9rihA75Ymml28qCndOVMX1%2BwEQgnAqBMDJnoOcmYPrzQ%2Fz7Jd%2BQPzB%2FDY0ujaNiE9a8n7op3ElFBTtfpzBH2N2gs8JUCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6abf2ecd7480-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
watchsb.com/js/mainmb.js
172.64.204.27200 OK 69 kB IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/mainmb.js HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 20:17:19 GMT
etag: W/"628e8ecf-10e2d"
expires: Thu, 01 Jun 2023 02:41:01 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Egaq%2BWgQ4dexDRk%2Fp70Q0pai3nevnVK6aaMzdKFpcwpUppl2lINg9UsnsAH2NCQJ6YsUGExM9tw2x6qbb1O%2BDyzvtFaIepp06C9sC7Z30gMNSP6V0t5NnaMZlJTXDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6abf3ed17480-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
watchsb.com/d5/js/app.js
172.64.204.27200 OK 549 B IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (580), with no line terminators
Hash f07109fcc5fcb922256c304f022116f3
1c391e7569d31c69b1a0836038d1fac2c3b902d3
a7870d6dfdf66d18a1479618a51c433dd6d0e3d03c69db104b1ee09cefa90430
GET /d5/js/app.js HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 04 Jan 2023 22:31:12 GMT
etag: W/"225-5f177bdd83cf9"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 4450
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wh21O9zHYajp%2FCNJbnkqDZmwWmCZxrATzGqh5EmNW%2FyI421PTpPVvxbSzO3wLQ0b%2FlIii5rJ27pvp7U3zdoFx6BIAcwiNu4OKBRc%2BNix6rta8qn3RuK%2BCIGk9J3iKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6abf2ecc7480-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
watchsb.com/d5/js/xupload.js?v19
172.64.204.27200 OK 11 kB URL GET HTTP/3 watchsb.com/d5/js/xupload.js?v19
IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash b26c24ab42be4af95502187fc56777ea
6bf6096fa207a37b7490a7c2d4466cf2f6ff320c
7279cf2f96083442b5d7f7ceb3fb88a4dc8940deeb8eab24d4af95e885f43d4c
GET /d5/js/xupload.js?v19 HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 19 Jan 2023 14:47:06 GMT
etag: W/"2958-5f29f01c04eea"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=keyaRpgT%2BglQei8Y9QG00gnq%2FSf7lHW5KLv0tLSP%2BQjrMg32RYt06J37PQbAppoLFO4ge7QhT3%2BAg7FpJstV72aCgc3WXLdwnP4TlNJcbSvml3tL3cp06Fzsv7D6sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6abf2eca7480-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
addresseepaper.com/sfp.js
0.0.0.0 0 B URL GET addresseepaper.com/sfp.js
IP 0.0.0.0:0
Requested by https://watchsb.com/d/8jj9879q10zl.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
watchsb.com/d5/css/style.css?v=4
172.64.204.27200 OK 256 kB URL GET HTTP/3 watchsb.com/d5/css/style.css?v=4
IP 172.64.204.27:443
Requested by https://watchsb.com/d/8jj9879q10zl.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBF:69:A6:E9:1C:04:97:E1:BA:3B:A6:73:C7:76:32:5C:69:66:CF:EA
ValidityWed, 01 Mar 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (651)
Size 256 kB (256481 bytes)
Hash fd5f3048af5612ac89285508b7981615
de96a2d741e87ee7516a5c3391ecc3bdc6f8afe2
b98360604d128a33b3650e02b1b1386a04fdefae0a0862841f95a24125011f48
GET /d5/css/style.css?v=4 HTTP/1.1
Host: watchsb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchsb.com/d/8jj9879q10zl.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 May 2023 02:41:01 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2023 21:44:14 GMT
etag: W/"3e9e1-5f2545e25f3cc"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 4750
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2%2Bo3rmuejGpATzwld5f54Z4aidPIddxGS05a6lXkXKYS2MJZtTkuVzoNePPsczydU%2F6c7fAT2pSGvyFCPrYnnRTagF%2Fo3D4C6Ale1qDZ%2F4K6AKC7%2Bu4gx1yAyKbd4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca6abf2ec17480-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400