www.stokourbeti.com/wp-content/uploads/2023/09/%CE%9A%CE%9F%CE%A5RBETI-WALL2.png
200 OK 704 kB URL GET HTTP/3 www.stokourbeti.com/wp-content/uploads/2023/09/%CE%9A%CE%9F%CE%A5RBETI-WALL2.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type PNG image data, 1056 x 594, 8-bit/color RGB, non-interlaced\012- data
Size 704 kB (704416 bytes)
Hash 3841770ce709230f0f383a2273acd500
0353617fb06762d681afeac4ec7413bb42efa5d2
02d0c858c276a1f9b3876c152bdc38b4e57a4c255f01b15ed681f1858be1ee01
GET /wp-content/uploads/2023/09/%CE%9A%CE%9F%CE%A5RBETI-WALL2.png HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: image/png
content-length: 704416
last-modified: Wed, 06 Sep 2023 09:57:23 GMT
etag: "64f84d03-abfa0"
x-ray: p15931:0.000/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4270
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3A3%2BQNhiqEYO5lX5llIItPyhoCoGkoTJa24koxM0q9inSJ9zQ1CNIy7rEIS%2FL02hTSzHWWbylYuCggW8GELYlK5PL5QRk%2Fud8tEsFNcGyrkY0ZOrf0O2h2M%2FjesEqCMEKNXQidv9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bb4b517-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff
200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format, TrueType, length 31292, version 1.1\012- data
Hash 76c7375392099b93fa48759263c8f6de
23fbe71952b68172db99e71b9b2cdf86ff59f4b3
8035ec9cc1f2f4b2277e10ae36ac529e58c06cf7688e29960b792ef492fa689c
GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:48:57 GMT
expires: Thu, 28 Nov 2024 21:48:57 GMT
cache-control: public, max-age=31536000
age: 423109
last-modified: Wed, 13 Sep 2023 23:30:57 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.stokourbeti.com/wp-content/themes/Divi/core/admin/js/common.js?ver=6.3.2
200 OK 26 kB URL GET HTTP/3 www.stokourbeti.com/wp-content/themes/Divi/core/admin/js/common.js?ver=6.3.2
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
Hash d71b75b2327258b1d01d50590c1f67ca
b7820e4ffb6becc133c48f66d9f683545530b959
1ca76922f55b389b8f590ae7e3bcc3a2dccdce3aff1e5a4335af081b76a414ea
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=6.3.2 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 08:44:29 GMT
etag: W/"6549f8ed-53f"
x-ray: p15931:0.004/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4270
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S4LUk7NTihnFTC%2BkaC0%2BM5O2Kz0zbIvRed1dCpcBo%2BF7%2BXykhjue96ClGslEWJDNBLm8MmCxJSd76LQ8ION%2Fb32ho6GqIj0WoOlbf7d%2FAIcUaYKP2nvZvMOqoKW2syGG%2FiWIv0GL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bbeb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2
200 OK 25 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 25384, version 1.0\012- data
Hash da1fad84831e19559a0119dca38b30af
5ce6faee2df441f18e2e1a6491da609d6bdad9bd
320fb7e771568759087a963cc5d33a8d88897f498ee0b67ad1adb2ef320d2a16
GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25384
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:48:56 GMT
expires: Thu, 28 Nov 2024 21:48:56 GMT
cache-control: public, max-age=31536000
age: 423110
last-modified: Thu, 14 Sep 2023 01:21:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=99eae692aa464ba3b50600363cc2ae50
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=99eae692aa464ba3b50600363cc2ae50
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash 8ad5be99390605faf0b6dae76d5d2577
b66e38b6b2bc39a3080042673d2154757871cf85
1948ffc054d8e529354d82fef82d52e75c0cf6199629f1b6ab5c30289f4a66b3
GET /gid.js?userId=99eae692aa464ba3b50600363cc2ae50 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.stokourbeti.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=99eae692aa464ba3b50600363cc2ae50; expires=Tue, 03 Dec 2024 19:20:47 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/clappr-chromecast-plugin@0.1.1/dist/clappr-chromecast-plugin.min.js
200 OK 7.3 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/clappr-chromecast-plugin@0.1.1/dist/clappr-chromecast-plugin.min.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (25391)
Hash e5d13c4d7c790f7dfa01d86cd6c2419b
0d5e7500ba0cea98d5fc014918d7cd1a48b5a668
1ce773865196b7bfd386873ca7eebaf8f9e903b56ca2e2ce45127e0699c0da90
GET /npm/clappr-chromecast-plugin@0.1.1/dist/clappr-chromecast-plugin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.1.1
x-jsd-version-type: version
etag: W/"6368-DV51ALoM6pjV/AFJGNfNGki1pmg"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:47 GMT
age: 1649562
x-served-by: cache-fra-etou8220046-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7330
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/clappr@0.3.13/dist/clappr.min.js
200 OK 145 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/clappr@0.3.13/dist/clappr.min.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 145 kB (145133 bytes)
Hash f55c6c796275a41ce7d97bd160e648ff
936285f9c8c85a749a1ef8cfc4d5e84b7ea2bc89
db7ce4b1edd2c3701c3f2585f7cbd70857173195489a99703ab39de16fa45b6c
GET /npm/clappr@0.3.13/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:47 GMT
age: 2375246
x-served-by: cache-fra-etou8220051-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 145133
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/console-ban@4.1.0/dist/console-ban.min.js
200 OK 1.2 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/console-ban@4.1.0/dist/console-ban.min.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (2290)
Hash cf47acbe3349c00e89193b1ff852d043
c761584c511b50350c95c995fedac85bbd354a38
0a637e8d49894e4211bdf5d4f7326a3aaab7b8be4386575820159b8c67b8ffbf
GET /npm/console-ban@4.1.0/dist/console-ban.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.1.0
x-jsd-version-type: version
etag: W/"94a-x2FYTFEbUDUMlcmV/trIW701Sjg"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:47 GMT
age: 2298018
x-served-by: cache-fra-etou8220103-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1165
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/clappr-pip@0.2.0/dist/clappr-pip.js
200 OK 9.8 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/clappr-pip@0.2.0/dist/clappr-pip.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (564)
Hash 88478d211fb04e7dfe512264d6aed0a2
fa5a01983aabd55434c17620f9ebafa37f830211
d1cd35cb26a3b41a55eab7ed858d7ea493e6c6e768a57d17a583bd32001d7154
GET /npm/clappr-pip@0.2.0/dist/clappr-pip.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.0
x-jsd-version-type: version
etag: W/"a116-+loBmDqr1VQ0wXYg+euvo3+DAhE"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:47 GMT
age: 1566451
x-served-by: cache-fra-etou8220118-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9822
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/level-selector@0.2.0/dist/level-selector.min.js
200 OK 10 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/level-selector@0.2.0/dist/level-selector.min.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type HTML document, ASCII text, with very long lines (28462), with no line terminators
Hash 110ab17d2f89cdc69efc719e25393129
42216f79fa9c5fbaab842306f22adf5e19837e4a
9be66c3a85d64fc039d17d90baa279e49a1bde4229e4378d8c0044f2146307fb
GET /npm/level-selector@0.2.0/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.2.0
x-jsd-version-type: version
etag: W/"6f2e-QiFvefqcX7qrhCMG8irfXhmDfko"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:47 GMT
age: 2896014
x-served-by: cache-fra-etou8220041-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10069
X-Firefox-Spdy: h2
modulecooper.com/48/8c/37/488c370d298b1c89d23c0738de31b888.js
200 OK 23 kB URL GET HTTP/1.1 modulecooper.com/48/8c/37/488c370d298b1c89d23c0738de31b888.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectmodulecooper.com
Fingerprint20:B2:DE:02:19:CC:25:5A:E2:A1:86:B8:75:75:8E:15:D1:1C:50:B3
ValidityThu, 19 Oct 2023 06:51:26 GMT - Wed, 17 Jan 2024 06:51:25 GMT
File type ASCII text, with very long lines (59719)
Hash 39a8d8bd065b84f2799ec0fd3f6e041f
54bcfac7114484befb69e31dc801e93aba8dc41a
aa780766967cfb84b52393b87f7024bcc2ffec3af3ea7268773a90bafe2be02f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /48/8c/37/488c370d298b1c89d23c0738de31b888.js HTTP/1.1
Host: modulecooper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 19:20:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_AN-1159_layer=1; expires=Fri, 08 Dec 2023 23:20:47 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ea9497e874ee2b2c585a6278de8b70c7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
acacdn.com/script/suv4.js
200 OK 62 kB URL GET HTTP/2 acacdn.com/script/suv4.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGoogle Trust Services LLC
Subjectacacdn.com
FingerprintA9:D8:CB:62:27:75:7B:F9:8D:A4:41:1D:37:D3:0B:52:45:40:83:EC
ValidityMon, 06 Nov 2023 04:04:26 GMT - Sun, 04 Feb 2024 04:04:25 GMT
File type Unicode text, UTF-8 text, with very long lines (47039), with LF, NEL line terminators
Hash 46fe731714434788a6b4238f2a29d221
cd0b9920fca8cb80e5540b7adfc76d3dee7ddfb7
7b10e9caa6fb373349ef3b886574f632123288ec262a8855984346878a4cb774
GET /script/suv4.js HTTP/1.1
Host: acacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPp-q0AXdkH4XYs2bvK5_DCCDmRfMepjw_ixxJwHFK2ZuT96K9qDYugqxoOkAGhE4oj70xeoCGeiCHm4y6qQ8Li4WgML3YW-
x-goog-generation: 1701698650971889
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 202851
x-goog-hash: crc32c=fPIuDw==, md5=Rv5zFxRDR4imtCOPKinSIQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 04 Dec 2023 19:23:35 GMT
cache-control: public, max-age=14400
age: 2620
last-modified: Mon, 04 Dec 2023 14:04:11 GMT
etag: W/"46fe731714434788a6b4238f2a29d221"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DzuyrXRQvtu83Zl5PHGXOftE4qXnP6GatJvJPA0iReBSREnBLxWJzheRLRJR3McQmcDP1VOWfIWsPC28DYqkX6wzLYZgSktvmsH7OiIXvrhlUi1Y23OJfQv0e6YV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8306689e3edfb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
st.chatango.com/js/gz/emb.js
200 OK 24 kB URL GET HTTP/1.1 st.chatango.com/js/gz/emb.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (1651)
Hash c1a289685475db88938201b4a2735cb6
b3e9e7e9104c3e76ea85fe3d20c5978d038355f0
509a9e10fd20643e27986373ca0342aa25d85a7c60772c80fe0a2d73593c877e
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 19:20:47 GMT
Content-Type: application/x-javascript
Content-Length: 23805
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Expires: Mon, 04 Dec 2023 19:20:47 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
i.ibb.co/0D4bp9f/SCCfwxq.png
200 OK 1.2 kB URL GET HTTP/2 i.ibb.co/0D4bp9f/SCCfwxq.png
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subjectibb.co
FingerprintCC:72:96:95:90:7F:15:8E:AC:C5:40:3A:D2:6F:83:A3:DF:5E:72:56
ValidityMon, 09 Oct 2023 14:39:49 GMT - Sun, 07 Jan 2024 14:39:48 GMT
File type PNG image data, 588 x 454, 8-bit colormap, non-interlaced\012- data
Hash 613678c01b1604d5cd1e515517e095a1
cb306e19705d9e1da2aa1487283b7f9f69ad330a
ae0433ac5d000ac03daf9059492d0390e427b7461332f0f488bbc6f44b5107a7
GET /0D4bp9f/SCCfwxq.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: image/png
content-length: 1220
last-modified: Sun, 12 Feb 2023 09:38:20 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
200 OK 25 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 24712, version 1.0\012- data
Hash 6426d7c7cf628698f2693c345e78f3ed
ba5c3dc9e202a5a6fa582ec90e94449e88c65d60
607eb42162512af73de673e5529e0f752efc846afd3cd75ca794af1ddc2f3d00
GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:28:53 GMT
expires: Thu, 28 Nov 2024 21:28:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:30:56 GMT
content-type: font/woff2
age: 424314
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 24a776b1f2e9d3fff472472cff5e9b16
38a6b9ce7b18c9204f5ace875325ca74c863d1a9
108f3caa2c7db8c122fcea5f02f4f0f1e058d4da8e913dc2b4e8ace4e5a50e81
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 04 Dec 2023 19:20:47 GMT
Last-Modified: Mon, 04 Dec 2023 18:22:35 GMT
Server: ECAcc (ska/F7A3)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DCwMngPixn7dYiQO3Zyk4XYZl9zQ3ZFkAOUZeO-nWcCC2hpz7EkaIg==
Age: 3493
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 922b490f6fc53f8df810978098703506
bf90d50dc7170c1be674642502ee91ef5e951355
e072b14017247d41f23515665f5034719f198b7966d1afc0cb7634a3805a106d
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.stokourbeti.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=72a57088-a301-48bb-a4df-79a729d681c9:3:1; expires=Thu, 01 Dec 2033 19:20:47 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/clappr@0.3.13/dist/38861cba61c66739c1452c3a71e39852.ttf
200 OK 20 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/clappr@0.3.13/dist/38861cba61c66739c1452c3a71e39852.ttf
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, RobotoRegularVersion 2.001101; 2014Roboto-Regularhttp://www.apache.org/licenses/LICENSE-2.0\003\012- data
Hash 38861cba61c66739c1452c3a71e39852
4b1ef58e476b789c97521834abdf7a2fd66d6caf
967e5cecfbfbf64099c3c1232273482dd7436f05714266953c4d2c8ee9c28af5
GET /npm/clappr@0.3.13/dist/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 19464
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/ttf
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"7f8c-Sx71jkdreJyXUhg0q996L9ZtbK8"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:48 GMT
age: 2405014
x-served-by: cache-fra-eddf8230083-FRA, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
6.adsco.re/
200 OK 0 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.stokourbeti.com
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a4cd950b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
incurableyankmarshal.com/pixel/purst?dl=0&th=0&sc=0&rs=1826&rd=1826&fd=1013&bv=23.12.v.1&tmpl=70
200 OK 0 B URL GET HTTP/1.1 incurableyankmarshal.com/pixel/purst?dl=0&th=0&sc=0&rs=1826&rd=1826&fd=1013&bv=23.12.v.1&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectincurableyankmarshal.com
Fingerprint27:8D:20:90:2C:CE:6C:5B:CA:85:05:4D:BF:55:1E:B2:FB:AF:60:B3
ValidityTue, 17 Oct 2023 12:46:41 GMT - Mon, 15 Jan 2024 12:46:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1826&rd=1826&fd=1013&bv=23.12.v.1&tmpl=70 HTTP/1.1
Host: incurableyankmarshal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
4.adsco.re/
200 OK 62 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://www.stokourbeti.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
s.pemsrv.com/venor.php
200 OK 21 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subjectpemsrv.com
Fingerprint40:E8:94:FF:56:F9:C8:1A:71:42:46:90:F1:80:43:D0:63:BB:7B:54
ValidityThu, 05 Oct 2023 15:33:19 GMT - Wed, 03 Jan 2024 15:33:18 GMT
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /venor.php HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
zplvv6poh8cc.l4.adsco.re/
200 OK 0 B URL POST HTTP/2 zplvv6poh8cc.l4.adsco.re/
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subject*.l4.adsco.re
Fingerprint30:24:2D:06:44:32:CD:4B:46:E0:81:9A:CF:B1:F6:9B:D2:4F:F3:6F
ValidityMon, 25 Sep 2023 16:35:45 GMT - Sun, 24 Dec 2023 16:35:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: zplvv6poh8cc.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
c.adsco.re/
77 kB IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 04 Jan 2024 19:20:48 GMT
etag: W/"QbONdm6N+fFtme5WVlUGEw=="
cf-cache-status: HIT
age: 358726
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a5ab0856a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.stokourbeti.com/wp-content/uploads/2023/09/cropped-%CE%9A%CE%9F%CE%A5RBETI-WALL2-32x32.png
200 OK 2.1 kB URL GET HTTP/3 www.stokourbeti.com/wp-content/uploads/2023/09/cropped-%CE%9A%CE%9F%CE%A5RBETI-WALL2-32x32.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 2c3f3ffda01cc8abf00298f9d7765799
4fcf3a14922d729ca2ec143023befc20f178b66e
2a36c26e51c5806ba810f6f68ae3d5b6a1e1ccee35fa1dc6f8c80c2e55bf4baf
GET /wp-content/uploads/2023/09/cropped-%CE%9A%CE%9F%CE%A5RBETI-WALL2-32x32.png HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_6695749=true; a=HMw7HAZ0FWvzg51zU3D9bUDUN5h5JRkI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: image/png
content-length: 2137
last-modified: Fri, 15 Sep 2023 21:17:31 GMT
etag: "6504c9eb-859"
x-ray: p15931:0.000/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 1789
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HMxf6inCBUCEZ99wbGZYCXZ%2BfUn4v3vPWS5XHlMfIOqCDJc%2FtmvXshbte5oEPFvHnJrKaQgFI%2F5YAh9ET95OcUw9uW%2Bh0YAmqf17Li0inGzcdj7l%2FtQ49viJkJAq7%2FiWqgpSreiK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a5f975b517-OSL
alt-svc: h3=":443"; ma=86400
6.adsco.re/
200 OK 0 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a71dd456a8-OSL
alt-svc: h3=":443"; ma=86400
c.adsco.re/
27 kB IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 04 Jan 2024 19:20:48 GMT
etag: W/"QbONdm6N+fFtme5WVlUGEw=="
cf-cache-status: HIT
age: 358726
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a6bd5356a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
4.adsco.re/
200 OK 62 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://foothubhd.xyz
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
zplvv6poh8cc.n4.adsco.re/
200 OK 0 B URL POST HTTP/2 zplvv6poh8cc.n4.adsco.re/
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subject*.n4.adsco.re
FingerprintAF:10:8A:4D:72:FD:FC:08:77:84:8F:BE:F7:48:3B:D0:52:53:23:0A
ValidityFri, 29 Sep 2023 17:35:50 GMT - Thu, 28 Dec 2023 17:35:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: zplvv6poh8cc.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
4.adsco.re/
200 OK 62 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
glflikwv29eo.l4.adsco.re/
200 OK 0 B URL POST HTTP/2 glflikwv29eo.l4.adsco.re/
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subject*.l4.adsco.re
Fingerprint30:24:2D:06:44:32:CD:4B:46:E0:81:9A:CF:B1:F6:9B:D2:4F:F3:6F
ValidityMon, 25 Sep 2023 16:35:45 GMT - Sun, 24 Dec 2023 16:35:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: glflikwv29eo.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
6.adsco.re/
200 OK 0 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a9daac56a8-OSL
alt-svc: h3=":443"; ma=86400
4.adsco.re/
200 OK 62 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5b41cb22f84f645a103acc7bfbf084ff
bac3967b26d5ec4a0d09a580714e8219796816bd
709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
glflikwv29eo.n4.adsco.re/
200 OK 0 B URL POST HTTP/2 glflikwv29eo.n4.adsco.re/
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subject*.n4.adsco.re
FingerprintAF:10:8A:4D:72:FD:FC:08:77:84:8F:BE:F7:48:3B:D0:52:53:23:0A
ValidityFri, 29 Sep 2023 17:35:50 GMT - Thu, 28 Dec 2023 17:35:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: glflikwv29eo.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:49 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
c.adsco.re/
27 kB IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 04 Jan 2024 19:20:48 GMT
etag: W/"QbONdm6N+fFtme5WVlUGEw=="
cf-cache-status: HIT
age: 358726
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a71dce56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
incurableyankmarshal.com/pixel/pure
200 OK 0 B URL POST HTTP/1.1 incurableyankmarshal.com/pixel/pure
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectincurableyankmarshal.com
Fingerprint27:8D:20:90:2C:CE:6C:5B:CA:85:05:4D:BF:55:1E:B2:FB:AF:60:B3
ValidityTue, 17 Oct 2023 12:46:41 GMT - Mon, 15 Jan 2024 12:46:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: incurableyankmarshal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.stokourbeti.com/
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 19:20:49 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
adsco.re/p
200 OK 845 B IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (1063), with no line terminators
Hash 79b9ec7b61d00133811fc2babc3ab240
9075c49946279e38f5544cf1b1f45683a3b94f09
b17b8c1c330b3e15e05c1dad5a2f842fa354664a671dbfa46ffd0ed6310def9b
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1652
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 19:20:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Critical-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Access-Control-Allow-Origin: https://foothubhd.xyz
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
st.chatango.com/h5/gz/r0925230558/id.html
200 OK 224 kB URL GET HTTP/1.1 st.chatango.com/h5/gz/r0925230558/id.html
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size 224 kB (224195 bytes)
Hash 0a71e50fd4bb2c4b9bb43f2c0cc4645c
b24dcf8f8fa8a49c89332918024e36cbe23df6f9
06ffbd69d3f9f08dfb4040174e5addaa1a9c4b9a26ffd0e6308d763f7c14c0d6
GET /h5/gz/r0925230558/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 19:20:48 GMT
Content-Type: text/html
Content-Length: 224195
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Expires: Tue, 03 Dec 2024 19:20:48 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
acacdn.com/script/suv5.js
200 OK 32 kB URL GET HTTP/3 acacdn.com/script/suv5.js
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGoogle Trust Services LLC
Subjectacacdn.com
FingerprintA9:D8:CB:62:27:75:7B:F9:8D:A4:41:1D:37:D3:0B:52:45:40:83:EC
ValidityMon, 06 Nov 2023 04:04:26 GMT - Sun, 04 Feb 2024 04:04:25 GMT
File type Unicode text, UTF-8 text, with very long lines (65442)
Hash fe85f0affad429f5413cd601a475b728
88b8cee8368b6b943d1ddd5be8b9c441f63ef580
25ab5707f8caa81d4c8ef4d9373254d130c294ed2ee997c807e068b149fdb4e8
GET /script/suv5.js HTTP/1.1
Host: acacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPr0a3xW3SGirJv3XdikLHsCaMZBudS_cx6l5u2XFybeib_OZlh-XDIuKdcRwX-u5ir9xg074VhZefFT6p5OwnqT87QCLFWH
x-goog-generation: 1701698677261682
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 97361
x-goog-hash: crc32c=4eu5MA==, md5=/oXwr/rUKfVBPNYBpHW3KA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 04 Dec 2023 19:42:10 GMT
cache-control: public, max-age=14400
last-modified: Mon, 04 Dec 2023 14:04:37 GMT
etag: W/"fe85f0affad429f5413cd601a475b728"
age: 2317
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zR3BmIR4%2BP4Y50UI5EwkbsRKl6gb6pPUP2iV8rEdhsO%2Bl4V1cTcptG2H15o8i9anhnlS75b4CZ7sgZTydWKWQGk6kAOSuhjRhJr1XHegbxFfo8bJhDtD4uMoVVQ9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a2f84b0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
incurableyankmarshal.com/pixel/pure
200 OK 0 B URL POST HTTP/1.1 incurableyankmarshal.com/pixel/pure
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectincurableyankmarshal.com
Fingerprint27:8D:20:90:2C:CE:6C:5B:CA:85:05:4D:BF:55:1E:B2:FB:AF:60:B3
ValidityTue, 17 Oct 2023 12:46:41 GMT - Mon, 15 Jan 2024 12:46:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /pixel/pure HTTP/1.1
Host: incurableyankmarshal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 19:20:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
st.chatango.com/cfg/nc/r.json?3c40540020000360461294713
200 OK 20 B URL GET HTTP/1.1 st.chatango.com/cfg/nc/r.json?3c40540020000360461294713
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text
Hash 779cc59be8faa109ef9886b2913cee3a
8f4eb98975d87b07ea199cd34f7519537d78dca3
4fb3560401e43be312d784a722dd988a0278cff49c8ae188965651efd5566a6b
GET /cfg/nc/r.json?3c40540020000360461294713 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 19:20:49 GMT
Content-Type: application/octet-stream
Content-Length: 20
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
glflikwv29eo.s4.adsco.re/
200 OK 0 B URL POST HTTP/2 glflikwv29eo.s4.adsco.re/
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subject*.s4.adsco.re
Fingerprint64:CA:F8:23:A5:E5:7F:B7:B7:9E:AD:14:92:A0:E1:5C:12:BB:22:C1
ValidityTue, 03 Oct 2023 12:32:24 GMT - Mon, 01 Jan 2024 12:32:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: glflikwv29eo.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:49 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/clappr@0.3.13/dist/38861cba61c66739c1452c3a71e39852.ttf
200 OK 20 kB URL GET HTTP/3 cdn.jsdelivr.net/npm/clappr@0.3.13/dist/38861cba61c66739c1452c3a71e39852.ttf
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, RobotoRegularVersion 2.001101; 2014Roboto-Regularhttp://www.apache.org/licenses/LICENSE-2.0\003\012- data
Hash 38861cba61c66739c1452c3a71e39852
4b1ef58e476b789c97521834abdf7a2fd66d6caf
967e5cecfbfbf64099c3c1232273482dd7436f05714266953c4d2c8ee9c28af5
GET /npm/clappr@0.3.13/dist/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 19464
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/ttf
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"7f8c-Sx71jkdreJyXUhg0q996L9ZtbK8"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 19:20:49 GMT
age: 2405016
x-served-by: cache-fra-eddf8230083-FRA, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
displayvertising.com/kaulomkbayykshj?LzqJUxKd=BQMSAAAAAAAACZUAAg3vQ6mcW6rBc_HRwGVBF5_-JCFzPZfB_QO8w6QxH0rWuAzNy8vjh35liOa0o8I8b6mwA_hMpJxGqNNlo5e91mUiCIYCIdfAWUjXKjX9c1V3BuH5b_9cKCA4SEAHEiFygrgj6EWuOw8VtvOMzgkGI7-zPKBz1r-kp1HN71N9jWzqVhIGhDJWhZ0PhMbhjE0R9y2IL6yK3vebUAdUA7SHej1FqGKdlVFIa5cgEtcPNyR1tLWN2EXN_8_2n85ykHhvCwIQM--jW6AfVD7RfaPdGEKQk5CT8SejQPstNTmqzBd26TUH6cPOwsJjkAnJJuKUV1F6_EKVj8raFBnVMjtMcCy1u0nSCpP-JRVxyUAxvP5VgPOdD9Bu-D2yGhIK1px3qO9ZS6UWstwggrXVyJBap_OokxFls_cixlhAWmYnWXOcSxdcTsH0OXXQAKup3-JAPY8y6v3qLRYsiJAhMxYiC8oQOJr9CjnB1ccVrZVlVF6T0vO6fKdCKJHxaM5LrCA5RYzDeJq8wpgrjQ6xwjqrBURhz1BiLAWnMCQErTNKSXQv2vkmbnan5twZN9EFR-eOpEAew21_B-XkcgcA4bUvWgh9tg33ciQolIJGQPuR0rCLbVjmdkHVXl6FFUKNlH3rsOp4o56vLeXGbH14MYKymBC--FzI_EbmBJ76QcrQMe43AcEu-A53VCsn1XnVqFV9Dt7mL81L-ddDQV2t1TcMnSWZbY1jjTdwMUPil_kDKhP6zgaBvtOr1VfehALi7jIHdHZGsTVuA5aG-ia2uINCTBXikn7UXdRXWznTmQT4zKjjRjFNOynNwd5gxAS4myA638ibbbfA8KJhA3F3oTuB7X4YF_rFagnCd1OSnJQ2MKZgVvIQD0NWVYYWIog8V_AYHw6UQSTEVB4lFDesleH_7OEDs0fcV7kAEqT8i0Hd16KuJxTni6o0mA25b9ptnBzuUHcUxCZjlttG-oW1bfVD3uZKB_joxtmYax7riLQlg7bsSO9boev5udDcU3x0eini_yTZer2L3janmIfKzMWsxZU&xyrnsphS=4&gbZOoGJS=4953195&MeWoYVAE=&qfUPSBcA=0,0&LIOKQkcZ=&mMnBNtUY=https%3A%2F%2Fwww.stokourbeti.com%2F&yoGADEtq=1280,1024,1,1280,1024,1
200 OK 44 B URL GET HTTP/2 displayvertising.com/kaulomkbayykshj?LzqJUxKd=BQMSAAAAAAAACZUAAg3vQ6mcW6rBc_HRwGVBF5_-JCFzPZfB_QO8w6QxH0rWuAzNy8vjh35liOa0o8I8b6mwA_hMpJxGqNNlo5e91mUiCIYCIdfAWUjXKjX9c1V3BuH5b_9cKCA4SEAHEiFygrgj6EWuOw8VtvOMzgkGI7-zPKBz1r-kp1HN71N9jWzqVhIGhDJWhZ0PhMbhjE0R9y2IL6yK3vebUAdUA7SHej1FqGKdlVFIa5cgEtcPNyR1tLWN2EXN_8_2n85ykHhvCwIQM--jW6AfVD7RfaPdGEKQk5CT8SejQPstNTmqzBd26TUH6cPOwsJjkAnJJuKUV1F6_EKVj8raFBnVMjtMcCy1u0nSCpP-JRVxyUAxvP5VgPOdD9Bu-D2yGhIK1px3qO9ZS6UWstwggrXVyJBap_OokxFls_cixlhAWmYnWXOcSxdcTsH0OXXQAKup3-JAPY8y6v3qLRYsiJAhMxYiC8oQOJr9CjnB1ccVrZVlVF6T0vO6fKdCKJHxaM5LrCA5RYzDeJq8wpgrjQ6xwjqrBURhz1BiLAWnMCQErTNKSXQv2vkmbnan5twZN9EFR-eOpEAew21_B-XkcgcA4bUvWgh9tg33ciQolIJGQPuR0rCLbVjmdkHVXl6FFUKNlH3rsOp4o56vLeXGbH14MYKymBC--FzI_EbmBJ76QcrQMe43AcEu-A53VCsn1XnVqFV9Dt7mL81L-ddDQV2t1TcMnSWZbY1jjTdwMUPil_kDKhP6zgaBvtOr1VfehALi7jIHdHZGsTVuA5aG-ia2uINCTBXikn7UXdRXWznTmQT4zKjjRjFNOynNwd5gxAS4myA638ibbbfA8KJhA3F3oTuB7X4YF_rFagnCd1OSnJQ2MKZgVvIQD0NWVYYWIog8V_AYHw6UQSTEVB4lFDesleH_7OEDs0fcV7kAEqT8i0Hd16KuJxTni6o0mA25b9ptnBzuUHcUxCZjlttG-oW1bfVD3uZKB_joxtmYax7riLQlg7bsSO9boev5udDcU3x0eini_yTZer2L3janmIfKzMWsxZU&xyrnsphS=4&gbZOoGJS=4953195&MeWoYVAE=&qfUPSBcA=0,0&LIOKQkcZ=&mMnBNtUY=https%3A%2F%2Fwww.stokourbeti.com%2F&yoGADEtq=1280,1024,1,1280,1024,1
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerSectigo Limited
Subjectdisplayvertising.com
FingerprintAD:50:CF:4F:03:26:91:93:74:1B:D5:8A:D0:EB:44:0D:13:A6:DF:96
ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /kaulomkbayykshj?LzqJUxKd=BQMSAAAAAAAACZUAAg3vQ6mcW6rBc_HRwGVBF5_-JCFzPZfB_QO8w6QxH0rWuAzNy8vjh35liOa0o8I8b6mwA_hMpJxGqNNlo5e91mUiCIYCIdfAWUjXKjX9c1V3BuH5b_9cKCA4SEAHEiFygrgj6EWuOw8VtvOMzgkGI7-zPKBz1r-kp1HN71N9jWzqVhIGhDJWhZ0PhMbhjE0R9y2IL6yK3vebUAdUA7SHej1FqGKdlVFIa5cgEtcPNyR1tLWN2EXN_8_2n85ykHhvCwIQM--jW6AfVD7RfaPdGEKQk5CT8SejQPstNTmqzBd26TUH6cPOwsJjkAnJJuKUV1F6_EKVj8raFBnVMjtMcCy1u0nSCpP-JRVxyUAxvP5VgPOdD9Bu-D2yGhIK1px3qO9ZS6UWstwggrXVyJBap_OokxFls_cixlhAWmYnWXOcSxdcTsH0OXXQAKup3-JAPY8y6v3qLRYsiJAhMxYiC8oQOJr9CjnB1ccVrZVlVF6T0vO6fKdCKJHxaM5LrCA5RYzDeJq8wpgrjQ6xwjqrBURhz1BiLAWnMCQErTNKSXQv2vkmbnan5twZN9EFR-eOpEAew21_B-XkcgcA4bUvWgh9tg33ciQolIJGQPuR0rCLbVjmdkHVXl6FFUKNlH3rsOp4o56vLeXGbH14MYKymBC--FzI_EbmBJ76QcrQMe43AcEu-A53VCsn1XnVqFV9Dt7mL81L-ddDQV2t1TcMnSWZbY1jjTdwMUPil_kDKhP6zgaBvtOr1VfehALi7jIHdHZGsTVuA5aG-ia2uINCTBXikn7UXdRXWznTmQT4zKjjRjFNOynNwd5gxAS4myA638ibbbfA8KJhA3F3oTuB7X4YF_rFagnCd1OSnJQ2MKZgVvIQD0NWVYYWIog8V_AYHw6UQSTEVB4lFDesleH_7OEDs0fcV7kAEqT8i0Hd16KuJxTni6o0mA25b9ptnBzuUHcUxCZjlttG-oW1bfVD3uZKB_joxtmYax7riLQlg7bsSO9boev5udDcU3x0eini_yTZer2L3janmIfKzMWsxZU&xyrnsphS=4&gbZOoGJS=4953195&MeWoYVAE=&qfUPSBcA=0,0&LIOKQkcZ=&mMnBNtUY=https%3A%2F%2Fwww.stokourbeti.com%2F&yoGADEtq=1280,1024,1,1280,1024,1 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Mon, 04 Dec 2023 19:20:50 GMT
X-Firefox-Spdy: h2
www.stokourbeti.com/cdn-cgi/challenge-platform/h/b/jsd/r/8306689769f81c0a
200 OK 41 B URL POST HTTP/3 www.stokourbeti.com/cdn-cgi/challenge-platform/h/b/jsd/r/8306689769f81c0a
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type ASCII text, with no line terminators
Hash 008948a8d863c42cd0fde3198bac6666
6345e48763629f1c73ca7bf9264dd71eeeda6458
e57473b8c665450fa9b9334dae3a579bb1406be913d3e2a58962ec4460b11dda
POST /cdn-cgi/challenge-platform/h/b/jsd/r/8306689769f81c0a HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12207
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
Cookie: prefetchAd_6695749=true; a=HMw7HAZ0FWvzg51zU3D9bUDUN5h5JRkI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:49 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=MBS7RNBAie3i8hj36T5SRBflN2hvvJVAen4eS0__eUQ-1701717649-0-1-730ca2d2.73a07051.5b213570-0.2.1701717649; path=/; expires=Tue, 03-Dec-24 19:20:49 GMT; domain=.stokourbeti.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YLjNAkc8js6djOXHay6Wk7dfpR67JLTbYYxkAgIULmbT%2BlCl7%2FI6lacxt%2BcU%2FzkfsvKX3ek8bbv%2Fp8XHxVj%2BcrdzVxlcegSY%2Bs0FpzfoKRSWMZ7NhzsX6gb75tNBcf13dAqYNqKe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668ab3b20b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.chatbro.com/images/chat_vk_logo.png
200 OK 735 B URL GET HTTP/3 www.chatbro.com/images/chat_vk_logo.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 124622ded412c2fde635c9338ce9fddc
71890a5762084a476f876b73edc694be433d0497
163a89e59b219649c013ead3230f372f0e7dca9c8ea0dc0463f991b671b14404
GET /images/chat_vk_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: image/png
content-length: 735
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-2df"
expires: Mon, 04 Dec 2023 19:22:26 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 504
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y9BhaeygMYusoiSDV1zhN8Nf%2FHujJJ6sfdha3GR9PaOrjVncERV4wUBnD5lAQ2ZRJ9SQVL3olcPaKl5M9c2mG3HxrEGB3JYo499qKtcIPaCKvkDzX9K3S8IADIyMUR2QR60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b20ea923c5-LHR
alt-svc: h3=":443"; ma=86400
www.chatbro.com/images/chat_telegram_logo.png
200 OK 777 B URL GET HTTP/3 www.chatbro.com/images/chat_telegram_logo.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 38e9345467aa316aae5c14d634382ce9
ab3b2e385ad90ae3a9b672f6822f0bf20d885de8
a2f63f18bbbe390a7a2d93c0f42bd05c549d856969ccba17ee2f1fc734a77f51
GET /images/chat_telegram_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: image/png
content-length: 777
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-309"
expires: Mon, 04 Dec 2023 19:22:26 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 504
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FEEqgC8s62bjeaUIzG51hPCLE8yaUMLOOIbu6z4ZRwHj1sM2aolhqzcezh%2FRgUnd0iMdZP%2B87sDuVywyOZ%2BmAeLFlCGnuwj9v64ntVO81vZeBxDemY0DCJG0b1DAKoAJrR4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b20eab23c5-LHR
alt-svc: h3=":443"; ma=86400
www.chatbro.com/images/chat_facebook_logo.png
200 OK 329 B URL GET HTTP/3 www.chatbro.com/images/chat_facebook_logo.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 62136bbb9342052c20579d384292b02f
321044fc8b20951d67e82f00aae6edd319faca5e
d813de68c702196d2eeaa7e2e5d55167638741533191d3e5038e329ac3f54940
GET /images/chat_facebook_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: image/png
content-length: 329
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-149"
expires: Mon, 04 Dec 2023 19:22:26 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 504
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GXlHwExSf3vLDlxvvWfA8zb3sCPHUCeIQKYX9ppfUo91A58YpIzmLtrQW8hehvPF9Dl46%2B625A%2Bk4qZlvCZMUgtK7e8Lx915E7UcvTinI7%2FC%2BvOCtMzWMqGafd00XNvvKi0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b21eb223c5-LHR
alt-svc: h3=":443"; ma=86400
www.chatbro.com/images/chat_google_logo.png
200 OK 656 B URL GET HTTP/3 www.chatbro.com/images/chat_google_logo.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 84e2bf2e06db3b9ef5f53e933cfaae30
6378efa7ccadfe5be02959f57ffa7c27b1da168a
7c1fc1f22827f0dabf3486fdc286f1c909e7acc4b5999365b9328c36c18d17d7
GET /images/chat_google_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: image/png
content-length: 656
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-290"
expires: Mon, 04 Dec 2023 19:22:22 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 508
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A9QQO6xxbtlRT5bGiOoKme7JW7Xg2v5PUSZAHKGGFpleeEy9YXLm%2FE8NyG7c7v4IJQaXV5AQJ5AHqQZ7pLR9j3VdBVRPdo948SX0j8hPWvnd5m7bN%2FnS8Xi7c75XNZkfLSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b21eb423c5-LHR
alt-svc: h3=":443"; ma=86400
a.pemsrv.com/popunder1000.js
200 OK 146 kB URL GET HTTP/2 a.pemsrv.com/popunder1000.js
IP
ASN #60068 Datacamp Limited
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subjectpemsrv.com
Fingerprint40:E8:94:FF:56:F9:C8:1A:71:42:46:90:F1:80:43:D0:63:BB:7B:54
ValidityThu, 05 Oct 2023 15:33:19 GMT - Wed, 03 Jan 2024 15:33:18 GMT
File type gzip compressed data, from Unix\012- data
Size 146 kB (146358 bytes)
Hash ac2eb3cb8eb396eb4c030d30a70c1871
3bf8c56db813d03d6823b3d9215510ee7137637f
b5e4b22d2117b7673b6328f487e40b9251a002e47b5b37fd947e7ee2a825e0e7
GET /popunder1000.js HTTP/1.1
Host: a.pemsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"b1045db6b80631cf37afadef713"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Mon, 04 Dec 2023 18:44:41 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH31wYAAAwBuUwKAQH3CAAAAAwBJRPCKAH3jQEAAA
x-77-nzt-ray: af585630fd854d958f266e656fc69823
x-accel-expires: @1701726696
x-accel-date: 1701715896
x-77-cache: HIT
x-77-age: 2156
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 8, 1751
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
incurableyankmarshal.com/pixel/pure
200 OK 0 B URL POST HTTP/1.1 incurableyankmarshal.com/pixel/pure
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectincurableyankmarshal.com
Fingerprint27:8D:20:90:2C:CE:6C:5B:CA:85:05:4D:BF:55:1E:B2:FB:AF:60:B3
ValidityTue, 17 Oct 2023 12:46:41 GMT - Mon, 15 Jan 2024 12:46:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /pixel/pure HTTP/1.1
Host: incurableyankmarshal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 19:20:50 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
www.chatbro.com/fonts/chatbro.woff?10
200 OK 14 kB URL GET HTTP/3 www.chatbro.com/fonts/chatbro.woff?10
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type Web Open Font Format, CFF, length 14396, version 1.0\012- data
Hash 58980c138190f1f32bb04c5a9d6c4653
c2635b4ab6bd7464aa5e97f18c706911a6b24dfd
f74fcaf9c728521c218b7bf05a0bf7173b522e7769165c8f97fdf74734cf0907
GET /fonts/chatbro.woff?10 HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: application/font-woff
content-length: 14396
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-383c"
expires: Mon, 04 Dec 2023 19:30:50 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N67Fnh1ANrmDFbgitITxho%2FnHtFEJ5aJqSDkWuJRZzEjcrvL%2FqEBnxCn75fmL5NeJV6RWpTQuk80U87aP%2BeprHg%2BvLunYcasahvA5dOZW2hoQ9Go8sebdqssL2BDpXuMJpY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b25f0e23c5-LHR
alt-svc: h3=":443"; ma=86400
adsco.re/p
200 OK 846 B IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (1063), with no line terminators
Hash d2e2f5d82111a0c2b81323611f712f5a
aaae704ccae65eb9c4df7a2dc9b43decbf9b1cea
7f0a96108ae27e37898a7df3005e5b0be9be3b90c28028a1d09e63a752fddf8f
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2133
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 19:20:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Critical-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Access-Control-Allow-Origin: https://www.stokourbeti.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 43797df38ed0420d2d0df0f422037e4d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 04 Dec 2023 19:20:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gQu%2FPplDRzC6Kh0dtaP3%2FRnDUv1S4wgt3q7xewJfYDIqR0aLxJlcc7bXqMnQKiwyo4vlqnkWkgHcbFW8rINnWElpIcGWea6bMO1Z8ahFhbsWNHPJCKPQsB18E0PWw03AF%2BBwuh%2BedjVJVpM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b4ac4b5691-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
st.chatango.com/js/gz/r0925230558/CollapsedViewModule.js
200 OK 3.5 kB URL GET HTTP/1.1 st.chatango.com/js/gz/r0925230558/CollapsedViewModule.js
IP
Requested by https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (800)
Hash 9e425175d5432db9dfa7fc9199d8ef90
10401aee54ac954f4f2444f9b3e2aa0f50570ad4
8282aa064878fe6e7cae98d3b44680b9eacfc223dd9be8f028113ce162564d6b
GET /js/gz/r0925230558/CollapsedViewModule.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0925230558/id.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 19:20:50 GMT
Content-Type: application/x-javascript
Content-Length: 3507
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Expires: Tue, 03 Dec 2024 19:20:50 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
ws.chatbro.com/ws?chatId=1425491&clientId=7d31a685-a655-4eeb-b00e-436dfedf59ed
0 B URL ws.chatbro.com/ws?chatId=1425491&clientId=7d31a685-a655-4eeb-b00e-436dfedf59ed
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?chatId=1425491&clientId=7d31a685-a655-4eeb-b00e-436dfedf59ed HTTP/1.1
Host: ws.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.stokourbeti.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CqxLw/5E6vCMWFnbIXRMeg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 19:20:51 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4nHJhM2u+ol6ZnTN9krltbPH9Z0=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z2q%2BUElvHBBmyXmEzb07yq9i2OUOGrp5EIgR9kDZ%2BgDeyUlXOJZjSmGNqLq%2F58tEeL0%2F3ZckCi8jdl6tFdgdHQh7zyAYNK5COo6EfiRO0VMNktsYqHda%2BZQkKZLe8bbwzw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 830668b688297797-LHR
alt-svc: h3=":443"; ma=86400
cdn4ads.com/xigqrshwewwjev?GsEumPlW=BQMSAAAAAAAACZUAAgudLEsSkpP2kFt5muUj1QbqN5Raf5RrnhtJleaAuc8gkQcSo2-hVyXM1f3rPni2kps70Uxtcllk9C3-ggstGXW5Ss9F4Jqvh4lYVc-tkNQD-vkgUppaOkgxmXYl7UOOhGevoTSVFzvjL9lIlzmq2Y4BsC5_AHVG-ydgfB7mSBbaq9loSzYT4qGjfJO7yQCChCg-SHcwkR9EuuRg_0E_zDp7wSCdr2i2yq0Z7xSjJ-6efO3Jlkdp25RS8A4DBfv-zDKDEBoHJCOaJc8F1xw3qtEe2gdDVvJRX5wnpAkY__uUQbVBKTrzeuOgcR_29L9z8hTD95RcnTorwZe82Efs8mXtIYWkZu0aCxab5GTQ85an5qvDS0Np5smw3FUgchp7tSiPHIf0fIvwY_vo9LWJc0Cwmchwk1oMflXSmAUcQnXtAfIkXWMaTk86bRuXcqs-XwRqE14ydG8-9NI_p2eVSD0p4pIcm2NozOQRypEy-ximGPzbeWibem_Qc4TTZ6r-t4Dt7iC8RTYq395mo5fGZCTcQdxc0qWf_30VzlXP0YtGDox1ifl837ZwN29as-prBiu0OfDAhQSvCPjEoaEp0i8lLODOUeBFFyX33XmngxDMnS16j-u6wk9giCS0wr99ahUVVKcpAAuwvw8g6obfEciASvpNLPaZ2KrRblxdURtLPal6QIiWpGpzoZZVi0GSQUiDmWk_0EyKbdvKVSOhZiyHZPPFwVW8pi61F_azOKn3_Ivsma7JKRWWq2Ihy9TAdXFOgaXLrbfzu7xnl9vyZo6oUeGdxGBy79l5i82Dk7xk3QuLZxXgEMlpv6xGrXXeWSe6DRZFrhS0SkPFVWdERpiMD-AdGNsDoLgNPS8RhFdq9-0kqR0iOO7KB8noDzd8fZ_KDD08dfNar-E926It-pEZGeD2hJlf3F--zVBUFSvk9kebr55cP4JGATPL2He0HXfcHWugwfNgtjgzE_rHcIgCQwLUFI3wtsF82-THGGkvJutZyDwquoMz_0GumYoPMQzqH5LS4A7lKbGYJJ6XOr8&vJmxrhna=4&cCANnXyb=4932418&IUArliYn=&iJSnjoyA=0:1,0&ImQUCrOd=&aASoWJBk=&gObqymiu=1280,1024,1,1280,1024,0
200 OK 44 B URL GET HTTP/2 cdn4ads.com/xigqrshwewwjev?GsEumPlW=BQMSAAAAAAAACZUAAgudLEsSkpP2kFt5muUj1QbqN5Raf5RrnhtJleaAuc8gkQcSo2-hVyXM1f3rPni2kps70Uxtcllk9C3-ggstGXW5Ss9F4Jqvh4lYVc-tkNQD-vkgUppaOkgxmXYl7UOOhGevoTSVFzvjL9lIlzmq2Y4BsC5_AHVG-ydgfB7mSBbaq9loSzYT4qGjfJO7yQCChCg-SHcwkR9EuuRg_0E_zDp7wSCdr2i2yq0Z7xSjJ-6efO3Jlkdp25RS8A4DBfv-zDKDEBoHJCOaJc8F1xw3qtEe2gdDVvJRX5wnpAkY__uUQbVBKTrzeuOgcR_29L9z8hTD95RcnTorwZe82Efs8mXtIYWkZu0aCxab5GTQ85an5qvDS0Np5smw3FUgchp7tSiPHIf0fIvwY_vo9LWJc0Cwmchwk1oMflXSmAUcQnXtAfIkXWMaTk86bRuXcqs-XwRqE14ydG8-9NI_p2eVSD0p4pIcm2NozOQRypEy-ximGPzbeWibem_Qc4TTZ6r-t4Dt7iC8RTYq395mo5fGZCTcQdxc0qWf_30VzlXP0YtGDox1ifl837ZwN29as-prBiu0OfDAhQSvCPjEoaEp0i8lLODOUeBFFyX33XmngxDMnS16j-u6wk9giCS0wr99ahUVVKcpAAuwvw8g6obfEciASvpNLPaZ2KrRblxdURtLPal6QIiWpGpzoZZVi0GSQUiDmWk_0EyKbdvKVSOhZiyHZPPFwVW8pi61F_azOKn3_Ivsma7JKRWWq2Ihy9TAdXFOgaXLrbfzu7xnl9vyZo6oUeGdxGBy79l5i82Dk7xk3QuLZxXgEMlpv6xGrXXeWSe6DRZFrhS0SkPFVWdERpiMD-AdGNsDoLgNPS8RhFdq9-0kqR0iOO7KB8noDzd8fZ_KDD08dfNar-E926It-pEZGeD2hJlf3F--zVBUFSvk9kebr55cP4JGATPL2He0HXfcHWugwfNgtjgzE_rHcIgCQwLUFI3wtsF82-THGGkvJutZyDwquoMz_0GumYoPMQzqH5LS4A7lKbGYJJ6XOr8&vJmxrhna=4&cCANnXyb=4932418&IUArliYn=&iJSnjoyA=0:1,0&ImQUCrOd=&aASoWJBk=&gObqymiu=1280,1024,1,1280,1024,0
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subjectcdn4ads.com
Fingerprint68:D8:58:BD:34:E8:B3:D8:CA:10:F2:9A:EA:B3:4E:27:B5:5C:87:B1
ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /xigqrshwewwjev?GsEumPlW=BQMSAAAAAAAACZUAAgudLEsSkpP2kFt5muUj1QbqN5Raf5RrnhtJleaAuc8gkQcSo2-hVyXM1f3rPni2kps70Uxtcllk9C3-ggstGXW5Ss9F4Jqvh4lYVc-tkNQD-vkgUppaOkgxmXYl7UOOhGevoTSVFzvjL9lIlzmq2Y4BsC5_AHVG-ydgfB7mSBbaq9loSzYT4qGjfJO7yQCChCg-SHcwkR9EuuRg_0E_zDp7wSCdr2i2yq0Z7xSjJ-6efO3Jlkdp25RS8A4DBfv-zDKDEBoHJCOaJc8F1xw3qtEe2gdDVvJRX5wnpAkY__uUQbVBKTrzeuOgcR_29L9z8hTD95RcnTorwZe82Efs8mXtIYWkZu0aCxab5GTQ85an5qvDS0Np5smw3FUgchp7tSiPHIf0fIvwY_vo9LWJc0Cwmchwk1oMflXSmAUcQnXtAfIkXWMaTk86bRuXcqs-XwRqE14ydG8-9NI_p2eVSD0p4pIcm2NozOQRypEy-ximGPzbeWibem_Qc4TTZ6r-t4Dt7iC8RTYq395mo5fGZCTcQdxc0qWf_30VzlXP0YtGDox1ifl837ZwN29as-prBiu0OfDAhQSvCPjEoaEp0i8lLODOUeBFFyX33XmngxDMnS16j-u6wk9giCS0wr99ahUVVKcpAAuwvw8g6obfEciASvpNLPaZ2KrRblxdURtLPal6QIiWpGpzoZZVi0GSQUiDmWk_0EyKbdvKVSOhZiyHZPPFwVW8pi61F_azOKn3_Ivsma7JKRWWq2Ihy9TAdXFOgaXLrbfzu7xnl9vyZo6oUeGdxGBy79l5i82Dk7xk3QuLZxXgEMlpv6xGrXXeWSe6DRZFrhS0SkPFVWdERpiMD-AdGNsDoLgNPS8RhFdq9-0kqR0iOO7KB8noDzd8fZ_KDD08dfNar-E926It-pEZGeD2hJlf3F--zVBUFSvk9kebr55cP4JGATPL2He0HXfcHWugwfNgtjgzE_rHcIgCQwLUFI3wtsF82-THGGkvJutZyDwquoMz_0GumYoPMQzqH5LS4A7lKbGYJJ6XOr8&vJmxrhna=4&cCANnXyb=4932418&IUArliYn=&iJSnjoyA=0:1,0&ImQUCrOd=&aASoWJBk=&gObqymiu=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Mon, 04 Dec 2023 19:20:51 GMT
X-Firefox-Spdy: h2
s52.chatango.com:8081/
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: s52.chatango.com:8081
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://st.chatango.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fXY00Re9InL7raczlRX13A==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: UtLtWt9+fQ4OlUVFrP4mKaqpn3o=
ust.chatango.com/groupinfo/s/t/stokourbeti/gprofile.xml
200 OK 67 B URL GET HTTP/1.1 ust.chatango.com/groupinfo/s/t/stokourbeti/gprofile.xml
IP
Requested by https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with no line terminators
Hash ab191aa6138703ca717df07a7478ab83
627b44e6c13cf0fb566d71efe6acec5b63d7cecb
9f03f6769853373863a80f6e816dcc554e3b58de3bc759a8d8240148fda11ff5
GET /groupinfo/s/t/stokourbeti/gprofile.xml HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.chatango.com
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 19:20:51 GMT
Content-Type: text/xml
Content-Length: 67
Last-Modified: Sun, 04 Sep 2022 16:10:57 GMT
Connection: keep-alive
Expires: Mon, 04 Dec 2023 19:20:51 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
unseenreport.com/pxf.gif?uuid=72a57088-a301-48bb-a4df-79a729d681c9&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=488c370d298b1c89d23c0738de31b888&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=72a57088-a301-48bb-a4df-79a729d681c9&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=488c370d298b1c89d23c0738de31b888&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=72a57088-a301-48bb-a4df-79a729d681c9&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=488c370d298b1c89d23c0738de31b888&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 04 Dec 2023 19:20:51 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 870fc5deac0344fda509c58398a331cb
Strict-Transport-Security: max-age=0; includeSubdomains
st.chatango.com/pcache/sounds/message_received.mp3?1
206 Partial Content 3.6 kB URL GET HTTP/1.1 st.chatango.com/pcache/sounds/message_received.mp3?1
IP
Requested by https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Hash 751b8404037ee33d5038a335329444f8
fabc33696ff290a74d8e16c3883c6ac7482f9d4a
1ff3e9a39d7c0b422cd1a275c2292f55effdde5f3d648369634ad121bfb81b2b
GET /pcache/sounds/message_received.mp3?1 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0925230558/id.html
Cookie: session_id=7895804348084699
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Mon, 04 Dec 2023 19:20:52 GMT
Content-Type: audio/mpeg
Content-Length: 3584
Last-Modified: Mon, 25 Sep 2023 13:02:23 GMT
Connection: keep-alive
Expires: Tue, 03 Dec 2024 19:20:52 GMT
Cache-Control: max-age=31536000
Content-Range: bytes 0-3583/3584
pubtrky.com/ut/hb.php?cb=0.15494134957962835&v=1
0 B URL pubtrky.com/ut/hb.php?cb=0.15494134957962835&v=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.15494134957962835&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 745
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
date: Mon, 04 Dec 2023 19:21:04 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3MBXBerkIddwdCjvQVX48l%2FGE7QusGiHGN9M9p642jDUoyvAjqlb9doyAnKzxh075BIt7L8MvVEapiOrGo1gB%2FjMK2vJP7dAeUpCDe8obDjn6FGIX2T4S3iXNqMMYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306690c291b0b55-OSL
alt-svc: h3=":443"; ma=86400
ws.chatbro.com/ws?chatId=1425491&clientId=7d31a685-a655-4eeb-b00e-436dfedf59ed
101 Switching Protocols 0 B URL GET HTTP/1.1 ws.chatbro.com/ws?chatId=1425491&clientId=7d31a685-a655-4eeb-b00e-436dfedf59ed
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?chatId=1425491&clientId=7d31a685-a655-4eeb-b00e-436dfedf59ed HTTP/1.1
Host: ws.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.stokourbeti.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CqxLw/5E6vCMWFnbIXRMeg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 19:20:51 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4nHJhM2u+ol6ZnTN9krltbPH9Z0=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z2q%2BUElvHBBmyXmEzb07yq9i2OUOGrp5EIgR9kDZ%2BgDeyUlXOJZjSmGNqLq%2F58tEeL0%2F3ZckCi8jdl6tFdgdHQh7zyAYNK5COo6EfiRO0VMNktsYqHda%2BZQkKZLe8bbwzw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 830668b688297797-LHR
alt-svc: h3=":443"; ma=86400
glaultoa.com/?rb=9nTX3mQUU9Z0_DX8JyMKlXdmgOkwzi6C-xxrjZQ6mnUKgAitD9XJS0ouIKfCq4LYWx5mirSf7TqE-be08hc1lsHec6-OM80EFhHbuEgbhuHEa1dtL0MU-iv3Di0sSrVSENLHXRrKBgOAtZ79E0hEZXONANv26DxcB58cGGdi36J6eSbIIpj5HKQI1jRdNyJzQIs2qJ_2YSyofEWcGCwkqjgC8P4_hjcQG-N2zfIbBt_Fk3vx&request_ab2=0&zoneid=6695749&js_build=iclick-v1.635.5-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fwww.stokourbeti.com%2Fkourbetitv%2Ftv1%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.5-auto&bs=d255bf72-a608-4b4a-9280-8b9d55118ee2&userId=99eae692aa464ba3b50600363cc2ae50&m=link
200 OK 1.8 kB URL GET HTTP/2 glaultoa.com/?rb=9nTX3mQUU9Z0_DX8JyMKlXdmgOkwzi6C-xxrjZQ6mnUKgAitD9XJS0ouIKfCq4LYWx5mirSf7TqE-be08hc1lsHec6-OM80EFhHbuEgbhuHEa1dtL0MU-iv3Di0sSrVSENLHXRrKBgOAtZ79E0hEZXONANv26DxcB58cGGdi36J6eSbIIpj5HKQI1jRdNyJzQIs2qJ_2YSyofEWcGCwkqjgC8P4_hjcQG-N2zfIbBt_Fk3vx&request_ab2=0&zoneid=6695749&js_build=iclick-v1.635.5-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fwww.stokourbeti.com%2Fkourbetitv%2Ftv1%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.5-auto&bs=d255bf72-a608-4b4a-9280-8b9d55118ee2&userId=99eae692aa464ba3b50600363cc2ae50&m=link
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectglaultoa.com
Fingerprint76:62:43:3F:4B:5F:3A:A9:C6:00:2D:6B:18:2F:1C:90:5D:34:A8:A0
ValiditySat, 02 Dec 2023 14:50:24 GMT - Fri, 01 Mar 2024 14:50:23 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1784), with no line terminators
Hash 534d3f9d78945a587f52211fb56abf21
a0a24120f6db1778a1042e6e6b014d8d26759e56
f2101d1c503b550241ab4912664a2872b081102faf48fcae03d12e987d6c01d1
GET /?rb=9nTX3mQUU9Z0_DX8JyMKlXdmgOkwzi6C-xxrjZQ6mnUKgAitD9XJS0ouIKfCq4LYWx5mirSf7TqE-be08hc1lsHec6-OM80EFhHbuEgbhuHEa1dtL0MU-iv3Di0sSrVSENLHXRrKBgOAtZ79E0hEZXONANv26DxcB58cGGdi36J6eSbIIpj5HKQI1jRdNyJzQIs2qJ_2YSyofEWcGCwkqjgC8P4_hjcQG-N2zfIbBt_Fk3vx&request_ab2=0&zoneid=6695749&js_build=iclick-v1.635.5-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fwww.stokourbeti.com%2Fkourbetitv%2Ftv1%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.5-auto&bs=d255bf72-a608-4b4a-9280-8b9d55118ee2&userId=99eae692aa464ba3b50600363cc2ae50&m=link HTTP/1.1
Host: glaultoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Cookie: OAID=99eae692aa464ba3b50600363cc2ae50; oaidts=1701717646
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/json
x-trace-id: 1c9d70e8a1802138c2bfc7c26cf56f99
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.stokourbeti.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=99eae692aa464ba3b50600363cc2ae50; expires=Tue, 03 Dec 2024 19:20:47 GMT; path=/; secure; SameSite=None
oaidts=1701717647; expires=Tue, 03 Dec 2024 19:20:47 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Mon, 11 Dec 2023 19:20:47 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: fd25aba494670df510234f62d9e088c4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 04 Dec 2023 19:20:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ehb%2FbEt1RAbu6A%2BmmYsDh50cyDcZdNTUf3OdFcaohy7iH9vraOwALHyUnamaQ4EeiX2QTZnf%2FnwpV%2FXzbQbyfWyt%2BY%2BJpBfqmRaJjYv0nL%2BFP8dHdGZYukf4rlpnupfCknx5bwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a19dd263ac-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
c.adsco.re/
200 OK 80 kB IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 04 Jan 2024 19:20:48 GMT
etag: W/"QbONdm6N+fFtme5WVlUGEw=="
cf-cache-status: HIT
age: 358726
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a71dce56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
200 OK 26 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 25456, version 1.0\012- data
Hash 4065d61a7ba7eb2602d2cbb54723e3de
7c6f159e263b1c1e88de91d6b745853fc7e46683
ce4714944663ab66446464e544e69808450bee9d0332659795eacea5751fc4f2
GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:48:53 GMT
expires: Thu, 28 Nov 2024 21:48:53 GMT
cache-control: public, max-age=31536000
age: 423113
last-modified: Wed, 13 Sep 2023 23:30:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mislaer.com/script/ut.js?cb=1701717652392
200 OK 82 kB URL GET HTTP/3 mislaer.com/script/ut.js?cb=1701717652392
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subjectmislaer.com
Fingerprint5C:74:73:8F:70:4B:78:40:12:6E:A9:CC:0D:90:97:F6:0E:BD:39:92
ValidityMon, 27 Nov 2023 02:13:00 GMT - Sun, 25 Feb 2024 02:12:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1701717652392 HTTP/1.1
Host: mislaer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPpMaiEQ1gdjwXlGmvtI3wlpCRLhkC3Z0tGExPXLAPIspXHZKgo8cQv9Seu7yhzYrHpoKtt7boeicRksBYLrabCvKwSwtdzi
x-goog-generation: 1701698737164870
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 82092
x-goog-hash: crc32c=2nkS8g==, md5=Ht/tgHkwwd6oGKwYwpkVTA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 04 Dec 2023 20:19:03 GMT
cache-control: public, max-age=14400
last-modified: Mon, 04 Dec 2023 14:05:37 GMT
etag: W/"1edfed807930c1dea818ac18c299154c"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K3nexd5JGjB88eNTWdERk%2FTi6Gme1yJSAywSBk9Q96z2EoCGXvqB68Y%2BIKTwD8der9IJsPq%2FAU5Ykq6JkBdC%2BNCssNFYrd44wKorXrZ28O0kvCHyRxca7ZmiVl6G4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8306689c18c956aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
lpgs.chatbro.com/g
200 OK 8 B IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 21f3c2e04049ba928409aade300f787e
bf5166de2cf3959b12850545b8964a2d66ddbad8
afca7375f8c3ef57b9b3fce2ac6bd665bcd082a8b673c210f11736e84965066e
POST /g HTTP/1.1
Host: lpgs.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 18
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: text/plain;charset=utf-8
cache-control: no-cache, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: https://www.stokourbeti.com
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B9V%2Fa5GQv6GPoHWpBRZomf74p1LIP5C9r%2B%2BBbc0WSEmzSDxkzzVVFfL%2BHCa0vRgJ%2FeM3sFWbTTizpOrX5ff8sYeNmJR9tmLkBXiLV8nKfpmf5HsVCcHaEuDynHD3GN%2BeJh01"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668b24efe23c5-LHR
alt-svc: h3=":443"; ma=86400
www.stokourbeti.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
200 OK 88 kB URL GET HTTP/3 www.stokourbeti.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type ASCII text, with very long lines (65447)
Hash ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: application/javascript
last-modified: Fri, 26 May 2023 11:33:36 GMT
etag: W/"64709910-155ba"
x-ray: p15931:0.001/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4017
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=avDcDgfD%2BT%2BTJlDDfjHq%2Fm%2Fv1fgfX8%2Btw2FLpBcZTeGKagBjjf7WwdnHdH70qRAQ19Ohhjitl%2B3BVZq2Id7m7ubTGToUUTD1j%2FxiSv3PqoJgPjDQwt2jSH%2FKK%2B%2FWjVBvX3b90KtA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bb6b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
glaultoa.com/5/6695749/?oo=1&js_build=iclick-v1.635.5-auto
200 OK 2.8 kB URL GET HTTP/2 glaultoa.com/5/6695749/?oo=1&js_build=iclick-v1.635.5-auto
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectglaultoa.com
Fingerprint76:62:43:3F:4B:5F:3A:A9:C6:00:2D:6B:18:2F:1C:90:5D:34:A8:A0
ValiditySat, 02 Dec 2023 14:50:24 GMT - Fri, 01 Mar 2024 14:50:23 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3014), with no line terminators
Hash 8a4e51b734429bcdb5de4ad9930c4ed8
1fd1ad461450a1579b0e4ad67dd761438b2178c3
6ec2487b7ef8863140347b4be267ad3518bc334e56bf5e924dbd4f2ecfde7bde
GET /5/6695749/?oo=1&js_build=iclick-v1.635.5-auto HTTP/1.1
Host: glaultoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: application/json
x-trace-id: 8bbdd02147658b9dbcf403fbbbc06d32
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.stokourbeti.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=99eae692aa464ba3b50600363cc2ae50; expires=Tue, 03 Dec 2024 19:20:46 GMT; path=/; secure; SameSite=None
oaidts=1701717646; expires=Tue, 03 Dec 2024 19:20:46 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=foothubhd.xyz&_ss=351waynufx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5cjl&_cb=_dtspv.c
200 OK 52 B URL GET HTTP/2 t.dtscout.com/pv/?_a=v&_h=foothubhd.xyz&_ss=351waynufx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5cjl&_cb=_dtspv.c
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGoogle Trust Services LLC
Subjectdtscout.com
FingerprintED:BC:CA:7A:78:18:22:D3:92:DE:9B:2B:FD:8B:46:45:52:B6:A6:40
ValidityMon, 20 Nov 2023 09:56:51 GMT - Sun, 18 Feb 2024 09:56:50 GMT
File type ASCII text, with no line terminators
Hash cc013265d9f8dbdfe2286454485a84c4
fb268a605a0eb5c9f79f41271d6e204244339233
6c445efee332120bc8bd5bca158a8444a4d76a6cdbd27b689d1744010a37e113
GET /pv/?_a=v&_h=foothubhd.xyz&_ss=351waynufx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5cjl&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Cookie: m=1; oa=1; df=1701717647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: application/javascript
x-t: 0.183
x-c: 0
expires: Mon, 04 Dec 2023 19:20:47 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0SYGdaNvCBTc138Bmz1Gn9GYZiBvBu1K2OL00Li2wC3FmiFYgsIRfDKNEYEIav%2BkUqhvOkUuB2j21bVYgSiRl7O5HjAoNM7xXFXsnXMQzFzrt7gN3UmIp9YGWw873cM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668a5a9f57722-ARN
content-encoding: br
X-Firefox-Spdy: h2
www.chatbro.com/embed.js?eyJlbWJlZENoYXRzUGFyYW1ldGVycyI6W3siZW5jb2RlZENoYXRJZCI6IjE4SmtTIn1dLCJsYW5nIjoiZW4tVVMiLCJuZWVkTG9hZENvZGUiOnRydWV9
200 OK 549 kB URL GET HTTP/2 www.chatbro.com/embed.js?eyJlbWJlZENoYXRzUGFyYW1ldGVycyI6W3siZW5jb2RlZENoYXRJZCI6IjE4SmtTIn1dLCJsYW5nIjoiZW4tVVMiLCJuZWVkTG9hZENvZGUiOnRydWV9
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
Size 549 kB (549355 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed.js?eyJlbWJlZENoYXRzUGFyYW1ldGVycyI6W3siZW5jb2RlZENoYXRJZCI6IjE4SmtTIn1dLCJsYW5nIjoiZW4tVVMiLCJuZWVkTG9hZENvZGUiOnRydWV9 HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: https://www.stokourbeti.com
access-control-allow-credentials: true
cache-control: public, max-age=31536000, s-maxage=200
content-encoding: gzip
cf-cache-status: HIT
age: 6391
last-modified: Mon, 04 Dec 2023 17:34:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MC958MmBtLX5uw9UcwLQl%2Bz8pVQf%2FFIACRPRifM4Ruvdd4A8Zzp%2FJGlzH%2FIkCqk5d9d2YqmVj3E6rH3V8VdpHycWpzvzSkRYP0tubPo1UCsg5QUv6IyPQN4L%2Fb3NnK3ufOA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a3c9dbd184-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mislaer.com/script/utils.js
200 OK 173 kB URL GET HTTP/2 mislaer.com/script/utils.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subjectmislaer.com
Fingerprint5C:74:73:8F:70:4B:78:40:12:6E:A9:CC:0D:90:97:F6:0E:BD:39:92
ValidityMon, 27 Nov 2023 02:13:00 GMT - Sun, 25 Feb 2024 02:12:59 GMT
Size 173 kB (172787 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/utils.js HTTP/1.1
Host: mislaer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPr4CmsSxkGHRBkn--vuzsUWqTxIVJ8RgbU9qwJKwQRUXLKu9fcFim9HQvfYhfUdfN4ww0s6ZWR15xwNQ5NcnUuz6vrs-XDu
x-goog-generation: 1701698751454949
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 172787
x-goog-hash: crc32c=7VegwA==, md5=OLoCSXZxwtgwzVewK+JFgg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 04 Dec 2023 20:19:16 GMT
cache-control: public, max-age=14400
last-modified: Mon, 04 Dec 2023 14:05:51 GMT
etag: W/"38ba02497671c2d830cd57b02be24582"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DBoIm0P10QLi2SpPAbBplY%2BLOrwFEff7EeSpl0w4WxO%2Bytea9F%2Bvn%2BIYCSkWgyxqW2%2BET9899%2BxvO4QML3a686Cj7pMptkO50J7foFtGthu7LxR8JCZ6uZVkK337Xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8306689a59941bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.stokourbeti.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1701711583
200 OK 7.0 kB URL GET HTTP/3 www.stokourbeti.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1701711583
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type ASCII text, with very long lines (7033), with no line terminators
Hash 9678fb09c70e1919e0c3aa7a4c87908d
6ee75ebc779f4107a7be5213573343a5b1e2cbf8
edce4821c3ca66dc0fbf352636952b45c5cd2b55118a60792ceb8ad9a5d1deff
GET /wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1701711583 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/css
last-modified: Mon, 04 Dec 2023 17:43:44 GMT
etag: W/"656e0fd0-1b75"
x-ray: p15931:0.000/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 5283
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=liGtS0ATNi2vVjvWzygeCJcQXxGXQrjXUL8VBLQJgXCQEn%2Bv%2BJFeLyp85MctqDhabRAA%2BdoUcQ9njqj%2FgiNvMd27dfu%2FDnYZ5JOYCRChxk10ejmYIzy2DL3BFkKVohycHADiqBg4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bb2b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.stokourbeti.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
200 OK 7.3 kB URL GET HTTP/3 www.stokourbeti.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type ASCII text, with very long lines (7330), with no line terminators
Hash 558ace32ffba816d0a603d4f811193e7
7f61bb02c34b43d49dd93866f0bf46ca8a9df3d0
b93f129499608756b8a09c599282a99e712fee5a34d68e879bd0426420fb072e
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_6695749=true; a=HMw7HAZ0FWvzg51zU3D9bUDUN5h5JRkI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FCDSqr9dTcqKcCQ7Nv%2FJmCwmtT8Q6IkOHqb53zTR1RtWYNMO49LSUSZirYqubqk95COlVMFgHNp2PMQaKUyCur3WVGrk8UtUfmHi9SmbStNeIBHv8TXaTUdOLGqyGdIWGSIHIGh2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668a80d8bb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
arvigorothan.com/tag.min.js
200 OK 81 kB URL GET HTTP/2 arvigorothan.com/tag.min.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subjectarvigorothan.com
FingerprintAC:1F:39:DE:94:70:43:89:E6:3A:0A:DC:3C:07:35:17:63:91:D3:18
ValidityThu, 19 Oct 2023 09:16:34 GMT - Wed, 17 Jan 2024 09:16:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash fb7eb4b07c3e717cad649d3afa99ca57
ba3a9cdd70a5f99c0ed8a032d79a08a6edb673d2
e6aa84f006f03b6a1cf7f3a082a3d7470943d3f29253cc4b0d1ee0f3e2cc76ee
GET /tag.min.js HTTP/1.1
Host: arvigorothan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 8bb703332af796b4d9470c27305a5500
cache-control: max-age=86400
last-modified: Sat, 02 Dec 2023 17:40:02 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 05 Dec 2023 03:21:12 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 57574
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4x3Vkrk4F%2Fu4h0qz51ZqbX4Jj%2BsnEkKQXkRnOTzVDAMk5k9huo%2BwgvrNM%2Ba%2B4V%2FLGMeMKKIzRHF7JPYviAJTcNxASV8zngjnZ%2F2pm2U21%2F%2Fj9JmN0BKqx4kIrutpXiScuirH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8306689a583c568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pubtrky.com/ut/hb.php?cb=0.9572555315304285&v=1
204 No Content 0 B URL POST HTTP/2 pubtrky.com/ut/hb.php?cb=0.9572555315304285&v=1
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subjectpubtrky.com
FingerprintA5:A1:14:4B:51:48:70:73:A4:B5:3C:89:63:1B:21:45:6C:F5:96:8E
ValidityTue, 21 Nov 2023 10:09:43 GMT - Mon, 19 Feb 2024 10:09:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.9572555315304285&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 744
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 04 Dec 2023 19:20:49 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BWRvV1i2RJT9D9NJ%2B2%2Fa93xQgLriCPaSgRyIUQejoT4VfXEUpMTA2PuWvZ38jlajKeteAk1nd90u2HFW%2F2hmM%2FRfWjZmnPhGzQolX9Hc%2FiA5btuzMt7eCuxrD0mFgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668a9e9d50b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.stokourbeti.com/kourbetitv/tv1
301 Moved Permanently 114 kB URL User Request GET HTTP/2 www.stokourbeti.com/kourbetitv/tv1
IP
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
Size 114 kB (113846 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kourbetitv/tv1 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Mon, 04 Dec 2023 19:20:45 GMT
content-type: text/html; charset=UTF-8
location: https://www.stokourbeti.com/kourbetitv/tv1/
x-redirect-by: WordPress
x-ray: p15931:0.300/wne32837:0.300/wn32837:0.300/wa32837:D=294198
vary: X-Forwarded-Proto,Accept-Encoding
referrer-policy: no-referrer-when-downgrade
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UMj3S2SI%2BeeRWvHKCc1qV8izQmD8p01yr%2Bqivw54BGE%2BjmzNG5ddL6aEjdcit69oLG7Yd87TL2ZTGjBHqRc7ZndZHiN0agtDUgDN8HZANcauP6CXQlDdT7ZnDMyWT9kaqLC9LKfb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668944e611c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
zplvv6poh8cc.s4.adsco.re/
200 OK 0 B URL POST HTTP/2 zplvv6poh8cc.s4.adsco.re/
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subject*.s4.adsco.re
Fingerprint64:CA:F8:23:A5:E5:7F:B7:B7:9E:AD:14:92:A0:E1:5C:12:BB:22:C1
ValidityTue, 03 Oct 2023 12:32:24 GMT - Mon, 01 Jan 2024 12:32:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: zplvv6poh8cc.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:49 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
youradexchange.com/script/suurl5.php?r=7046806&cbur=0.4860081514335779&cbiframe=1&cbWidth=1024&cbHeight=540&cbtitle=&cbpage=https%3A%2F%2Fwww.stokourbeti.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=acacdn.com&ts=1701717653715&srs=0bca06de7806dd47f1dad6ab8401e6bc&atv=38.4-sw-suv5
200 OK 951 B URL GET HTTP/2 youradexchange.com/script/suurl5.php?r=7046806&cbur=0.4860081514335779&cbiframe=1&cbWidth=1024&cbHeight=540&cbtitle=&cbpage=https%3A%2F%2Fwww.stokourbeti.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=acacdn.com&ts=1701717653715&srs=0bca06de7806dd47f1dad6ab8401e6bc&atv=38.4-sw-suv5
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGoogle Trust Services LLC
Subjectyouradexchange.com
FingerprintFD:52:FD:E8:62:0A:DE:66:86:28:19:39:64:21:57:5C:CB:8A:59:D9
ValidityTue, 17 Oct 2023 07:21:58 GMT - Mon, 15 Jan 2024 07:21:57 GMT
File type troff or preprocessor input, ASCII text, with very long lines (977), with no line terminators
Hash ddab9a5fe639aed829930de30be22eaa
c10d12e9309494e0e237e744e1525e5f757e94ea
ec040c9db35740e75f34e21dcb520a1c3583c305c102e1cb931526c41f4bbd24
GET /script/suurl5.php?r=7046806&cbur=0.4860081514335779&cbiframe=1&cbWidth=1024&cbHeight=540&cbtitle=&cbpage=https%3A%2F%2Fwww.stokourbeti.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=acacdn.com&ts=1701717653715&srs=0bca06de7806dd47f1dad6ab8401e6bc&atv=38.4-sw-suv5 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://foothubhd.xyz/
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g7VvONSzbG8QgQmghaioqIO8uoXlcHctmEFaO5lBvEGJJYHK7VLJu1jFNg%2F%2BoXg%2F7etxxhBJjnNPzJmQsecA1dkfzb3gUC80cVk5Z2%2Fj45gdt1YZgjntHCw%2B%2Ff%2FcgqFlS0vFdlw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668a6ad8b77ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=https%3A%2F%2Ffoothubhd.xyz%2Fcdn3%2Flinka.php&j=https%3A%2F%2Fwww.stokourbeti.com%2F
200 OK 2.1 kB URL GET HTTP/2 t.dtscout.com/i/?l=https%3A%2F%2Ffoothubhd.xyz%2Fcdn3%2Flinka.php&j=https%3A%2F%2Fwww.stokourbeti.com%2F
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGoogle Trust Services LLC
Subjectdtscout.com
FingerprintED:BC:CA:7A:78:18:22:D3:92:DE:9B:2B:FD:8B:46:45:52:B6:A6:40
ValidityMon, 20 Nov 2023 09:56:51 GMT - Sun, 18 Feb 2024 09:56:50 GMT
File type ASCII text, with very long lines (2163), with no line terminators
Hash 8811c1da7d7cd9a89cf1c9d88cf153c1
5dd7a95e6eee435a18d261757a4aa4aeea7ae472
0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Ffoothubhd.xyz%2Fcdn3%2Flinka.php&j=https%3A%2F%2Fwww.stokourbeti.com%2F HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Mon, 04-Dec-2023 20:44:07 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Mon, 04-Dec-2023 23:20:47 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1701717647; Domain=dtscout.com; Expires=Wed, 13-Mar-2024 19:20:47 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.235
expires: Mon, 04 Dec 2023 19:20:46 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3zmckQ069CuPErJ8mzjIJ83YoIUtDKpD%2Bj5xr%2BZRUSHVsQaJAFQczZULEA3TLrc7rTHzBw4duZZEUDYlBbwOwiKV%2FxYGpIaie6kjFDW%2F5G6neFlYsv3TVPb5GWUdFZk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668a14c9b7722-ARN
content-encoding: br
X-Firefox-Spdy: h2
acacdn.com/script/ut.js?cb=1701717653204
200 OK 82 kB URL GET HTTP/3 acacdn.com/script/ut.js?cb=1701717653204
IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerGoogle Trust Services LLC
Subjectacacdn.com
FingerprintA9:D8:CB:62:27:75:7B:F9:8D:A4:41:1D:37:D3:0B:52:45:40:83:EC
ValidityMon, 06 Nov 2023 04:04:26 GMT - Sun, 04 Feb 2024 04:04:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1701717653204 HTTP/1.1
Host: acacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPpb1NIrmqHsfmPa4uApi6nv9pyb0ytigj161Ma9-nszCScRvHfpTKMJ7e6Evm7Of35AB0cSug-ZIA
x-goog-generation: 1701698737164870
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 82092
x-goog-hash: crc32c=2nkS8g==, md5=Ht/tgHkwwd6oGKwYwpkVTA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 04 Dec 2023 19:17:13 GMT
cache-control: public, max-age=14400
last-modified: Mon, 04 Dec 2023 14:05:37 GMT
etag: W/"1edfed807930c1dea818ac18c299154c"
age: 381
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VQ0MjUJdpidQHu%2BRR4yekr80xETYXQSHCP8VU%2FbUZdCcxMJmeQm1u8cZBFTRgESF378krgrQPOPK1%2Bc5eiYh0cXnCk3zkvNxgdpEnzkjfszUzGmy0E3qnkLQmPUj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a2f8480b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
s52.chatango.com:8081/
101 Switching Protocols 0 B IP
Requested by https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: s52.chatango.com:8081
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://st.chatango.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fXY00Re9InL7raczlRX13A==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: UtLtWt9+fQ4OlUVFrP4mKaqpn3o=
www.stokourbeti.com/kourbetitv/tv1/
200 OK 114 kB URL User Request GET HTTP/2 www.stokourbeti.com/kourbetitv/tv1/
IP
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
Size 114 kB (113846 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kourbetitv/tv1/ HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/html; charset=UTF-8
x-ray: p15931:0.010/wne32837:0.000/wn32837:0.010/wa32837:D=5471
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Mon, 04 Dec 2023 17:40:09 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: max-age=3600, public
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lJoEHA28%2B85fmAbjMGlOe1sC0cv1cJjbN2J0ta060KDToWtLIpbcYp5j6Fuzw7j8JAohR%2BEcIXqmyklyISvQ1bH7XNoqgQasrnZxXGFf6%2FCCPYBY%2FSaAG2%2FSRK8s27KgGJttDEAo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306689769f81c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.stokourbeti.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 14 kB URL GET HTTP/3 www.stokourbeti.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: application/javascript
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
etag: W/"6482bd64-3509"
x-ray: p15931:0.000/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4017
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3g7BBC7QjWVBW6RueY%2FYg2fLCVs8uymbeX%2BCB1aWQCcsmFEmnU1yHsu4wrghih5bDdZOtIJ7wDH1vGKTj%2BYkEX3O8j8fAyKf5mG5vhsaziTt7lt36tqU3cHs5BXhDpWkSIAQbNeC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bb7b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
waust.at/d.js
200 OK 15 kB IP
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:3D:6E:A9:C7:6B:CD:4B:7B:04:51:4F:D1:D7:10:2D:12:92:F9:58
ValiditySun, 04 Jun 2023 00:00:00 GMT - Mon, 03 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (14706), with no line terminators
Hash 38cdedd658fa41770f607c0b117c1f82
3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4
951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:44 GMT
etag: W/"63c04130-3972"
expires: Tue, 05 Dec 2023 19:19:45 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 62
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ewG7FOZKZXNQtehJ0fY1rXXMiXWls9biYf6Q9O7mcAA0Il2KpvPaIg8vV7WKWv%2Fe0jD5nqvN29US3hHMkF5fWSgEcjTs1q9Ywima2upOOWGPLgYrl2S04rMU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8306689e8d2356aa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.stokourbeti.com/wp-includes/css/dist/block-library/style.min.css?ver=6.3.2
200 OK 104 kB URL GET HTTP/3 www.stokourbeti.com/wp-includes/css/dist/block-library/style.min.css?ver=6.3.2
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
Size 104 kB (104484 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3.2 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/css
last-modified: Wed, 19 Jul 2023 11:13:56 GMT
etag: W/"64b7c574-19824"
x-ray: p15931:0.001/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4017
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qIDGySwBkTTN1xK35q2wDp4xYqyknLuXnH8cNoqcWJWJbg2Lrwgns9FxX1JMC6xd7QcHxx2LpSlqK6jM9%2BeU%2BSWzafMhWsEKu3wCggsKymVAzH7wo7beJzUD6l7CbuN1pvy%2B6hLt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bafb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.cdn4ads.com/ripple.min.css
200 OK 35 kB URL GET HTTP/2 www.cdn4ads.com/ripple.min.css
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subject1037973644.rsc.cdn77.org
FingerprintB1:81:F4:3C:96:90:B9:6B:02:3D:1D:3F:3F:F7:D6:85:4E:30:79:F5
ValidityMon, 02 Oct 2023 18:57:40 GMT - Sun, 31 Dec 2023 18:57:39 GMT
File type HTML document, ASCII text, with very long lines (1568)
Hash baa125db3d5339a411d6aca10064d6b7
a8ede0c6269b42f88bc82ecb6c4752c6af06dea4
c7ccdd8e877e32df3e236121a8bb8aab6bb18a6deb2262691081ec6aa1c0afea
GET /ripple.min.css HTTP/1.1
Host: www.cdn4ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stokourbeti.com
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
expires: Fri, 08 Dec 2023 19:32:33 GMT
access-control-allow-origin: https://www.stokourbeti.com
link: <https://cdn4ads.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EgwBeX8tUAHXL1IBAAwB1GY4AQH3jp8CAA
x-77-nzt-ray: c1fb981922dae51e8e266e650916bd2d
x-accel-expires: @1702063953
x-accel-date: 1701631071
x-77-cache: HIT
x-77-age: 258493
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 86575
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
www.displayvertising.com/backbone-min.js
200 OK 35 kB URL GET HTTP/2 www.displayvertising.com/backbone-min.js
IP
ASN #60068 Datacamp Limited
Requested by https://foothubhd.xyz/cdn3/linka.php
Certificate IssuerLet's Encrypt
Subject1503693843.rsc.cdn77.org
Fingerprint03:4A:BA:DC:F7:E0:7D:3E:55:5A:BE:F9:70:6A:85:79:13:FF:AE:38
ValidityMon, 02 Oct 2023 18:58:38 GMT - Sun, 31 Dec 2023 18:58:37 GMT
File type HTML document, ASCII text, with very long lines (1568)
Hash 3935371bfb2e51f8cf254114cce6b757
a1030faabf5f52eb0511b84d180a789de4627ec7
21d1717ac5262b4d187374c494379c7639e3c94bf5e07caa0ddf2a8224fbbdd3
GET /backbone-min.js HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://foothubhd.xyz
DNT: 1
Connection: keep-alive
Referer: https://foothubhd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
expires: Fri, 08 Dec 2023 19:32:49 GMT
access-control-allow-origin: https://foothubhd.xyz
link: <https://displayvertising.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwwBuUwJDQHX0VgCAAwBuUwKAQH35pQBAAwB1GY4nAH39wMAAA
x-77-nzt-ray: c0a4cc28b3481f268f266e652bb25329
x-accel-expires: @1702063969
x-accel-date: 1701563838
x-77-cache: HIT
x-77-age: 258478
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 103654, 153809
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
www.stokourbeti.com/wp-content/uploads/2023/09/cropped-%CE%9A%CE%9F%CE%A5RBETI-WALL2-192x192.png
200 OK 50 kB URL GET HTTP/3 www.stokourbeti.com/wp-content/uploads/2023/09/cropped-%CE%9A%CE%9F%CE%A5RBETI-WALL2-192x192.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 9cc530505ec4f051c1b25da58ced335c
a633f191e6b041bc5562d07802fc36e17325092f
ebae7d9b55b3b35e112e6bcbe940024e95954b06532005518c32c3d774e2968b
GET /wp-content/uploads/2023/09/cropped-%CE%9A%CE%9F%CE%A5RBETI-WALL2-192x192.png HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_6695749=true; a=HMw7HAZ0FWvzg51zU3D9bUDUN5h5JRkI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:48 GMT
content-type: image/png
content-length: 49540
last-modified: Fri, 15 Sep 2023 21:17:31 GMT
etag: "6504c9eb-c184"
x-ray: p15931:0.000/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4511
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zFhKfc%2FVsZJkznv7Y6K6vHZtACR8NOU5vDVFZWwlhhpQdKxCeT7sOSmylPtFTuh4HhXvO6bZHXwci4Qth%2FFlswXpnjTblI3OZerSw0vym5o2ZmrV9tRwI69nHjlkEXbl%2BDB6FLz3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a5f974b517-OSL
alt-svc: h3=":443"; ma=86400
www.stokourbeti.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.23.1
200 OK 274 kB URL GET HTTP/3 www.stokourbeti.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.23.1
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
File type ASCII text, with very long lines (65467)
Size 274 kB (274307 bytes)
Hash 96896ebc5293989884f6cd4eb7188d73
bd3ec97f84961c97b895d00e5d9e060fde0ebf5f
033a80c98752135ba755fa9b3733169b45c7a56f4bf60b619228ed990258dc81
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.23.1 HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stokourbeti.com/kourbetitv/tv1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 08:44:29 GMT
etag: W/"6549f8ed-42f83"
x-ray: p15931:0.001/wne32837:0.000/wn32837:0.000/
cache-control: max-age=14400
cf-cache-status: HIT
age: 4270
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hw8XkHTQac6%2FkvTqaM2rRTcbd7DDP4%2BZN67YeMpI6QN7ZQzvu9OzxIggptFdsoeWl4HCcWwPtQzj%2FHikarNdDOGdVERfT89X1V6aJ7Xnpl1F5B%2FLhbV87%2BfoThQLAdUi30jk9H3p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668997bb9b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
c.adsco.re/
200 OK 80 kB IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerSectigo Limited
Subject*.adsco.re
Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (881)
Hash 41b38d766e8df9f16d99ee5656550613
4b040e742fafccbf1f9afa059258568e320fd9d8
65802711d89571b28699f3399d58f642a270d1e2bc5e155a8a0c73c94c66ec3a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:47 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 04 Jan 2024 19:20:47 GMT
etag: W/"QbONdm6N+fFtme5WVlUGEw=="
cf-cache-status: HIT
age: 358725
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668a3b83556a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.chatbro.com/images/no_connection.png
200 OK 1.6 kB URL GET HTTP/3 www.chatbro.com/images/no_connection.png
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectchatbro.com
Fingerprint6C:74:2D:5A:9B:B1:D3:54:64:9E:DD:24:85:A2:6A:D3:0E:75:E0:E6
ValiditySun, 05 Nov 2023 08:46:08 GMT - Sat, 03 Feb 2024 08:46:07 GMT
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash d5a40ac60610fe0573b63c4889b5dd63
e56b468930e949671397129e00b3e0815a1ac2c5
d026f555341e85649cd2edd6848b55b6cedfcca0c62bba5099e69b62ea713e40
GET /images/no_connection.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 04 Dec 2023 19:20:50 GMT
content-type: image/png
content-length: 1614
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-64e"
expires: Mon, 04 Dec 2023 19:21:34 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 556
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g38CVdmH07k3JoCrT5rsoCpAibw4AbSLNrHPvsd92wWfamsxKd%2B%2FFOcXHpyCUbANIGJwkzTh8sp1Vv7fFDLyvTPbKsOnfXcbSxGH4Qb2qs4nzMJeVutocaEUIz%2FebT8ilMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830668b22ec923c5-LHR
alt-svc: h3=":443"; ma=86400
foothubhd.xyz/cdn3/linka.php
200 OK 18 kB URL GET HTTP/2 foothubhd.xyz/cdn3/linka.php
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerGoogle Trust Services LLC
Subjectfoothubhd.xyz
Fingerprint42:3F:B8:D8:DD:8F:7A:95:F6:A9:0E:B8:54:B4:17:C6:FD:83:9F:E6
ValidityThu, 26 Oct 2023 00:04:11 GMT - Wed, 24 Jan 2024 00:04:10 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (10091)
Hash 868e2eab73c8f1f5fadecce653a4db63
caa6fb7f177dda794bbf3f764e2d9a1d610055c1
a4dbdf5d0b5eef5283493b9de455cf5f2e2ede2e338a0c3bfb1738e56ee1528f
GET /cdn3/linka.php HTTP/1.1
Host: foothubhd.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.stokourbeti.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 19:20:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dwt6dS9QpWEKha2v9lJaynAaqS2LbSwN80LWMX6K2HVQ79%2FkDCEXQiH90FAZcsMzOO5LO6OpgM5fHJ0DwueLMMjhwEY37JsrkcPO36CGFyDzxgGOMeTWs2NANiTsUHy5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306689c2ed156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.stokourbeti.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 7.3 kB URL GET HTTP/3 www.stokourbeti.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://www.stokourbeti.com/kourbetitv/tv1/
Certificate IssuerLet's Encrypt
Subjectstokourbeti.com
Fingerprint49:3C:44:46:26:05:3E:2B:26:BE:9A:5E:6E:EA:B3:5F:3E:F9:37:F8
ValiditySun, 05 Nov 2023 08:38:57 GMT - Sat, 03 Feb 2024 08:38:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: www.stokourbeti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_6695749=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Mon, 04 Dec 2023 19:20:47 GMT
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
access-control-allow-origin: *
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QxRutAbZ3gBgvt1KfZVpUDSbqoBNdV1eX%2B8Y9DqepNo8DkQ2HkyOSWlm6bBTj2rizA5QI86Rmafe7CrPeW6mFV21zTeGpXCG0lVjbsQHQzazAA%2F%2BpIkFK3dDYxU%2B%2B4%2Fn5FUyPh5O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830668a35cc5b517-OSL
alt-svc: h3=":443"; ma=86400
172.67.176.110
104.21.30.34
185.200.116.51
185.76.9.21
162.19.58.158
188.114.97.1
121.127.45.82
95.211.229.248
185.200.118.51
18.157.140.81
0.0.0.0