GET alm81sb0.com/js/bafsd.js
200 OK 14 kB IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash c2432aca90e92e0370d2ded2545eb1fa
8f1ae40f7dc9c4ccfcb91d04530a1f072e9d06eb
89c40275bddb7257d519bda010de1c4df70a30b5f84be325f2ae53168f276cb5
GET /js/bafsd.js HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Fri, 04 Oct 2024 05:52:43 GMT
vary: accept-encoding
expires: Thu, 12 Jun 2025 04:45:41 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=n%2F4VwOTPXdOkUYKsKKU6ZhkWx%2BIe2XkuwILlBu3ehDQz%2Fx%2BhH%2FmHtM8oMLIrImKbzbcm9NE3k3OKocvfiouNwLNVEno9AKTrwpc%3D"}]}
age: 174433
cf-cache-status: HIT
etag: W/"66ff82ab-358a"
content-encoding: br
cf-ray: 94bda841e936b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET alm81sb0.com/player/jw8/vast.js
200 OK 107 kB URL GET alm81sb0.com/player/jw8/vast.js
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 107 kB (107114 bytes)
Hash 3cd85ca1814c3fd976764bf6b83b989d
90e931622205c6adfbc75cfe681563a127580f05
2e4fe3d8b3565a3f8b5ec0ecfe0e5f26a756401b6847dd475327793da41897f5
GET /player/jw8/vast.js HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ySuw%2FEZLnZ2Z%2FIkZ5lMJZ6CGnC5YmCcFdQA3ydoEg9xYESSiONy6SCaWe6ykhis%2BMpuq0lJ6gmcwFT9W1VeRhOTdtukiz%2B76bQhYzEx9ZyRnEpJUYyddczuUFMgqMG4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 08 Sep 2022 10:34:42 GMT
etag: W/"6319c542-1a26a"
expires: Wed, 11 Jun 2025 20:18:46 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
age: 204848
cf-cache-status: HIT
content-encoding: br
cf-ray: 94bda8438f8db4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3740&min_rtt=591&rtt_var=2739&sent=119&recv=135&lost=0&retrans=0&sent_bytes=9553&recv_bytes=8365&delivery_rate=458657&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=57c35066daf09431&ts=523&inflight_dur=33&x=80"
GET videothumbs.me/84xnsfm20q9x0000.jpg
404 Not Found 0 B URL GET videothumbs.me/84xnsfm20q9x0000.jpg
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectvideothumbs.me
FingerprintB9:B4:8A:B0:ED:DA:7E:36:8C:CA:20:F8:25:8B:1F:49:B1:E5:91:87
ValidityMon, 12 May 2025 10:17:40 GMT - Sun, 10 Aug 2025 11:15:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /84xnsfm20q9x0000.jpg HTTP/1.1
Host: videothumbs.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IHQj9ZLqFAJ%2FXUa86ioOqeKxMw57B%2BMcr6TxhCGej5koLt1i6DU4KVTaxUVJ%2BELGlQnoQdUoKb4LbvUN4f6t1mtg3Qt6mnvB3K9Hjg%3D%3D"}]}
cache-control: max-age=31536000
cf-cache-status: MISS
vary: accept-encoding
content-encoding: br
cf-ray: 94bda847edd7712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET be7713.rcr82.waw05.cdn255.com/hls2/02/09100/9ga7uoz025vk_h/index-v1-a1.m3u8?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p=
200 OK 68 kB URL GET be7713.rcr82.waw05.cdn255.com/hls2/02/09100/9ga7uoz025vk_h/index-v1-a1.m3u8?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p=
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectbe7713.rcr82.waw05.cdn255.com
Fingerprint1D:1F:B8:9B:47:8D:3B:8F:AC:C4:80:1D:24:1B:B8:5F:7B:E1:D0:25
ValidityThu, 29 May 2025 10:19:12 GMT - Wed, 27 Aug 2025 10:19:11 GMT
Hash 121d5b2b1ee6495941b633ff155267ed
e0b80a64f94297f4ec937f1212fd886d8a9a88e0
a8c84fa1b81b36d2aa44c5df89c3033ba278b24b86f9646efd3fd3bbe28d2f19
GET /hls2/02/09100/9ga7uoz025vk_h/index-v1-a1.m3u8?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p= HTTP/1.1
Host: be7713.rcr82.waw05.cdn255.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jun 2025 05:12:56 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sat, 07 Jun 2025 05:12:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Tue, 10 Jun 2025 04:50:02 GMT
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: HIT
Content-Encoding: gzip
GET my.rtmark.net/gid.js
200 OK 65 B IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint61:93:FB:BF:25:C3:CE:7B:CB:69:5D:87:04:AA:ED:1B:35:8D:44:82
ValidityFri, 02 May 2025 11:10:51 GMT - Thu, 31 Jul 2025 12:10:47 GMT
Hash 79376a18249f28d99aefff319b77f9c2
82e999c9e9f663b3bcbac109ee75525223931c4a
8dd6837b12929cd2373d1f12ffc008f609fcaa05ccb4a03416ed23e0946881ab
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://alm81sb0.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0801e15afcef43fbe2c2f2e0d22113a0; expires=Sun, 07 Jun 2026 05:12:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 94bda84bf93b569f-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
OPTIONS seethaivewhupt.net/wrr?z=9254418&p_rid=de8aec81-18c6-4816-a406-a2633855e400&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik=&dmn=&userId=0801e15afcef43fbe2c2f2e0d22113a0
204 No Content 0 B URL OPTIONS seethaivewhupt.net/wrr?z=9254418&p_rid=de8aec81-18c6-4816-a406-a2633855e400&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik=&dmn=&userId=0801e15afcef43fbe2c2f2e0d22113a0
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectseethaivewhupt.net
Fingerprint1C:CA:C8:AD:41:4D:56:5B:18:68:6B:E1:1D:CA:19:67:BC:3B:3D:A8
ValidityFri, 06 Jun 2025 12:17:15 GMT - Thu, 04 Sep 2025 12:17:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /wrr?z=9254418&p_rid=de8aec81-18c6-4816-a406-a2633855e400&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik=&dmn=&userId=0801e15afcef43fbe2c2f2e0d22113a0 HTTP/1.1
Host: seethaivewhupt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://alm81sb0.com/
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sat, 07 Jun 2025 05:13:06 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://alm81sb0.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
GET alm81sb0.com/css/main.css?v=4
200 OK 49 kB URL GET alm81sb0.com/css/main.css?v=4
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type assembler source, Unicode text, UTF-8 text
Hash 5a72a30cb5e2721cf7e36ebd9846a4f6
c03db81b75b19f829201db0d01d66ef189b8180a
b0341644a22e09291520c4c51eac70ed71928ee3066f40fcff257c582afac3b1
GET /css/main.css?v=4 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Thu, 26 Sep 2024 18:06:54 GMT
vary: accept-encoding
expires: Fri, 13 Jun 2025 01:46:20 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Jm5FR%2FT5fPKv5siqDRbip%2By%2Ft%2FPZZwjkZSJDtHWASe5w3D8dvqBesEF9n15Es%2F3F%2F5Fr%2FpsYtQ3jtoWGOVMEoXjWhaq%2B7fj1mYc%3D"}]}
age: 98794
cf-cache-status: HIT
etag: W/"66f5a2be-c03c"
content-encoding: br
cf-ray: 94bda841d929b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET alm81sb0.com/js/jquery.js
200 OK 90 kB URL GET alm81sb0.com/js/jquery.js
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /js/jquery.js HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
vary: accept-encoding
expires: Thu, 12 Jun 2025 04:40:28 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KV%2BV55cxkx2fX1a5Z6FLXtLO4Pl4NtgSOtaA4SvwTBN%2B0pP4prbIx%2BnQ4b6wxQ%2BFSCOQPZOM2%2Fy6HwTC2HMBbDhN6nXW73OEajI%3D"}]}
age: 174746
cf-cache-status: HIT
etag: W/"603e8adc-15d9d"
content-encoding: br
cf-ray: 94bda841d92ab4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET alm81sb0.com/adcgi?id=22612764
404 Not Found 153 B URL GET alm81sb0.com/adcgi?id=22612764
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325
GET /adcgi?id=22612764 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 07 Jun 2025 05:12:57 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dU6cvWrIt9I4PKaNPkLZBnwlFKWllpBSKtG0yWYwR0MF1VdcXW2ufz9ILPAvIfB19q8EC5jVrPveS979ri5Z1kK8E32D0LjeTxAQtJffvIndGc67XBeoUoS8Kx%2BVAis%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94bda84bffa6b4f1-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1446&min_rtt=591&rtt_var=555&sent=385&recv=164&lost=0&retrans=1&sent_bytes=294493&recv_bytes=12462&delivery_rate=27832126&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=57c35066daf09431&ts=2009&inflight_dur=127&x=80"
GET ixykx.com/?wy=0&wasm=-1&cf=0&pnt=0&wh=1024&wiw=1280&sw=1280&vsbl=true&id=9254418&fs=0&pnrc=0&wx=0&sh=1024&sah=1024&js_build=iclick-v1.1456.0&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik%3D&cw=1280&wih=1024&jsp=1&ww=1280&np=1&drf=&pl=https%3A%2F%2Falm81sb0.com%2Fbkg%2F84xnsfm20q9x%3Fc1_file%3Dhttps%3A%2F%2Fa.staticfilcdn.fun%2Fuser26454%2Fsubtitles%2Fv27%2F683c3114e8eed.vtt%26c1_label%3DEnglish%26ref%3Dpac77abcmon4f4181b8a3d72b.unrepeated25.store&tt=3&wfc=1&nb=1&wgl=llvmpipe&js_build=iclick-v1.1456.0&navlng=en-US&pt=0&nw=1&tb=false&ng=0&ix=0&bto=0&btz=UTC&bs=de8aec81-18c6-4816-a406-a2633855e400&userId=0801e15afcef43fbe2c2f2e0d22113a0&m=link
202 Accepted 0 B URL GET ixykx.com/?wy=0&wasm=-1&cf=0&pnt=0&wh=1024&wiw=1280&sw=1280&vsbl=true&id=9254418&fs=0&pnrc=0&wx=0&sh=1024&sah=1024&js_build=iclick-v1.1456.0&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik%3D&cw=1280&wih=1024&jsp=1&ww=1280&np=1&drf=&pl=https%3A%2F%2Falm81sb0.com%2Fbkg%2F84xnsfm20q9x%3Fc1_file%3Dhttps%3A%2F%2Fa.staticfilcdn.fun%2Fuser26454%2Fsubtitles%2Fv27%2F683c3114e8eed.vtt%26c1_label%3DEnglish%26ref%3Dpac77abcmon4f4181b8a3d72b.unrepeated25.store&tt=3&wfc=1&nb=1&wgl=llvmpipe&js_build=iclick-v1.1456.0&navlng=en-US&pt=0&nw=1&tb=false&ng=0&ix=0&bto=0&btz=UTC&bs=de8aec81-18c6-4816-a406-a2633855e400&userId=0801e15afcef43fbe2c2f2e0d22113a0&m=link
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectixykx.com
Fingerprint0D:0A:77:D3:F9:3A:7F:DA:6C:66:BE:D7:87:9E:55:B7:40:FD:C7:E5
ValidityWed, 04 Jun 2025 10:38:15 GMT - Tue, 02 Sep 2025 10:38:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?wy=0&wasm=-1&cf=0&pnt=0&wh=1024&wiw=1280&sw=1280&vsbl=true&id=9254418&fs=0&pnrc=0&wx=0&sh=1024&sah=1024&js_build=iclick-v1.1456.0&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik%3D&cw=1280&wih=1024&jsp=1&ww=1280&np=1&drf=&pl=https%3A%2F%2Falm81sb0.com%2Fbkg%2F84xnsfm20q9x%3Fc1_file%3Dhttps%3A%2F%2Fa.staticfilcdn.fun%2Fuser26454%2Fsubtitles%2Fv27%2F683c3114e8eed.vtt%26c1_label%3DEnglish%26ref%3Dpac77abcmon4f4181b8a3d72b.unrepeated25.store&tt=3&wfc=1&nb=1&wgl=llvmpipe&js_build=iclick-v1.1456.0&navlng=en-US&pt=0&nw=1&tb=false&ng=0&ix=0&bto=0&btz=UTC&bs=de8aec81-18c6-4816-a406-a2633855e400&userId=0801e15afcef43fbe2c2f2e0d22113a0&m=link HTTP/1.1
Host: ixykx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alm81sb0.com/
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
server: nginx
date: Sat, 07 Jun 2025 05:13:06 GMT
content-length: 0
x-trace-id: b66df3a055c8c7acb2a1d1394cc380a5
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://alm81sb0.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0801e15afcef43fbe2c2f2e0d22113a0; expires=Sun, 07 Jun 2026 05:13:06 GMT; path=/; secure; SameSite=None
oaidts=1749273186; expires=Sun, 07 Jun 2026 05:13:06 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 14 Jun 2025 05:13:06 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
GET alm81sb0.com/player/jw8_26/jwplayer.js?v=5.0.2
200 OK 111 kB URL GET alm81sb0.com/player/jw8_26/jwplayer.js?v=5.0.2
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65511)
Size 111 kB (111441 bytes)
Hash f91de142eed44442bad231961488c5d0
ea6c79968011a5b59e444d792f7ab048a1f7e31d
b3031ee0f2674c203fe1400df12a96148c4bed344553fc9063c3846ba8466295
GET /player/jw8_26/jwplayer.js?v=5.0.2 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Fri, 05 Apr 2024 14:58:43 GMT
vary: accept-encoding
expires: Wed, 11 Jun 2025 20:18:21 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5wBkkRJ9ZY%2FSRoQdLcbogLU2NiNRFo1Udol1EuJyAAISn8Kv8iAPFhWzLVmkI82dL3q2vW8kv159umpz%2B%2BySEHat65nW%2FqzRI40%3D"}]}
age: 204873
cf-cache-status: HIT
etag: W/"661011a3-1b351"
content-encoding: br
cf-ray: 94bda841e93bb4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST ccg90.com/5/9254410/?abt_opts=1&js_build=iclick-v1.1456.0&userId=0801e15afcef43fbe2c2f2e0d22113a0&dmn=ccg90.com&tt=2&ix=0
204 No Content 0 B URL POST ccg90.com/5/9254410/?abt_opts=1&js_build=iclick-v1.1456.0&userId=0801e15afcef43fbe2c2f2e0d22113a0&dmn=ccg90.com&tt=2&ix=0
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectccg90.com
Fingerprint56:09:8B:A2:B0:CC:2D:94:BB:34:A2:E9:A2:FD:C7:53:D9:F4:20:83
ValidityWed, 23 Apr 2025 09:55:55 GMT - Tue, 22 Jul 2025 09:55:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /5/9254410/?abt_opts=1&js_build=iclick-v1.1456.0&userId=0801e15afcef43fbe2c2f2e0d22113a0&dmn=ccg90.com&tt=2&ix=0 HTTP/1.1
Host: ccg90.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2944
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Cookie: OAID=0081e1e935304be0e737b367806861a0; oaidts=1749273176
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sat, 07 Jun 2025 05:12:57 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://alm81sb0.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
GET alm81sb0.com/dl?b=get_slides&length=3289&url=https://videothumbs.me/84xnsfm20q9x0000.jpg
200 OK 9.6 kB URL GET alm81sb0.com/dl?b=get_slides&length=3289&url=https://videothumbs.me/84xnsfm20q9x0000.jpg
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type WebVTT subtitles, ASCII text
Hash 3c1442633f424762c2ce4fed8a92777f
16780debd44661467f68580ae1fc6ca43a9f41ed
8be47b67e212180790c5c3735519e2be9b6fa6c73e8665fbdc40bcc0dccde77d
GET /dl?b=get_slides&length=3289&url=https://videothumbs.me/84xnsfm20q9x0000.jpg HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: text/vtt
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AOqsPDw1FunyQoClQ7JrE7Dm4YKwe74fEfVlMFrfZb%2FqxwiyrQXZ24aBM9%2BBIfYPgZ2ZTW9BBOwq%2FNs3QLBIesnFyw%2BQN81ML1ErZRF1k%2FWFehdXnf0B1Ny179QmENk%3D"}],"group":"cf-nel","max_age":604800}
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-store
cf-cache-status: DYNAMIC
cf-ray: 94bda8463f9ab4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1465&min_rtt=591&rtt_var=905&sent=371&recv=160&lost=0&retrans=1&sent_bytes=281014&recv_bytes=11623&delivery_rate=27832126&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=57c35066daf09431&ts=1142&inflight_dur=115&x=80"
GET be7713.rcr82.waw05.cdn255.com/hls2/02/09100/9ga7uoz025vk_h/seg-1-v1-a1.ts?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p=
200 OK 737 kB URL GET be7713.rcr82.waw05.cdn255.com/hls2/02/09100/9ga7uoz025vk_h/seg-1-v1-a1.ts?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p=
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectbe7713.rcr82.waw05.cdn255.com
Fingerprint1D:1F:B8:9B:47:8D:3B:8F:AC:C4:80:1D:24:1B:B8:5F:7B:E1:D0:25
ValidityThu, 29 May 2025 10:19:12 GMT - Wed, 27 Aug 2025 10:19:11 GMT
File type MPEG transport stream data
Size 737 kB (737336 bytes)
Hash eadcbb33a8181f58d2600dd227e73649
2bca52d5cd0393a02d29a5353eaa7e74ee63776e
c6c7d3b39068ef1306483e6c50219a2c628ab148afd189a61c4edcab33466c6d
GET /hls2/02/09100/9ga7uoz025vk_h/seg-1-v1-a1.ts?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p= HTTP/1.1
Host: be7713.rcr82.waw05.cdn255.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jun 2025 05:12:56 GMT
Content-Type: video/MP2T
Content-Length: 737336
Connection: keep-alive
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Expires: Tue, 10 Jun 2025 04:59:19 GMT
ETag: "5f693e80-b4038"
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: HIT
Accept-Ranges: bytes
GET alm81sb0.com/js/xupload.js?v=3
200 OK 11 kB URL GET alm81sb0.com/js/xupload.js?v=3
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text
Hash 200f7636e884860eed563210f5125c16
3312a1318afed0df1fa4a93cac2016165c651f28
01cd57ece4bf51c9db1a880a36145f8bda86634cf6b0cb69e6f9e7f187c107bd
GET /js/xupload.js?v=3 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Thu, 27 Mar 2025 07:57:44 GMT
vary: accept-encoding
expires: Thu, 12 Jun 2025 16:37:48 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RrSHtvwHMHsq7yqwHnRQtWp3kXTxwLQXtP5u%2FAOfTNyeqOMqQ3PQ9fy6FEV3p%2BXBwv7eVydmej5gB3FimX4W2esiKk03Ok8Fa5g%3D"}]}
age: 131707
cf-cache-status: HIT
etag: W/"67e504f8-2b52"
content-encoding: br
cf-ray: 94bda841d92bb4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET alm81sb0.com/player/jw8_26/provider.hlsjs.js?v=2
200 OK 423 kB URL GET alm81sb0.com/player/jw8_26/provider.hlsjs.js?v=2
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (65143)
Size 423 kB (422959 bytes)
Hash 0f95e38aa7bb0943693b51bd6a7deed0
26c89f76894108f76ad23af32ecc6b1e708993ba
1b1263b7061aaca7fe0b69168b16cb2401a7fe2ada08ccfdd373ee06c7d125b1
GET /player/jw8_26/provider.hlsjs.js?v=2 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CDOgcXYQqeWYcO6fjBnv4OvBkDqSWYf8IAPu%2FJpQcCpqC2iG800%2FvQpba7ta6TODXnmIx2zoqoePjF3jSZ6Wzds8LKiMUuOzZ9gNINu1VBuh4HzDXZcDGkQmWEDIAOQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 05 Apr 2024 14:57:50 GMT
etag: W/"6610116e-6742f"
expires: Wed, 11 Jun 2025 20:18:21 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
age: 204873
cf-cache-status: HIT
content-encoding: br
cf-ray: 94bda8442f95b4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3012&min_rtt=591&rtt_var=2761&sent=224&recv=146&lost=0&retrans=1&sent_bytes=121211&recv_bytes=9902&delivery_rate=10332379&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=57c35066daf09431&ts=622&inflight_dur=77&x=80"
GET alm81sb0.com/player/jw8_26/polyfills.webvtt.js?v=2
200 OK 11 kB URL GET alm81sb0.com/player/jw8_26/polyfills.webvtt.js?v=2
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (10446)
Hash fc0d51af099f1379a409b4c960e5b40a
c41d9034712a4f11875d8381788d6f282393b2b4
54b5ae4cdc7dfdc86bccb9cc8423fcce7753a05cdcb4178b4d042a9ba6ccea50
GET /player/jw8_26/polyfills.webvtt.js?v=2 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIZ%2BxOHZJVfNtJ1NO0cVEuVd4eNai3%2BzRRIKM3R8Arqx9KGPLF3R4VDWACURmanXABny03yXhD5BsTsyLf1vUrpBPelDrE26f2QN3xVzBuiiBmaGDTnQmpfektK6BFI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Apr 2024 09:09:34 GMT
etag: W/"660d1cce-2a5c"
expires: Wed, 11 Jun 2025 20:18:22 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
age: 204873
cf-cache-status: HIT
content-encoding: br
cf-ray: 94bda845ff99b4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1517&min_rtt=591&rtt_var=1067&sent=364&recv=158&lost=0&retrans=1&sent_bytes=275567&recv_bytes=11168&delivery_rate=27832126&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=57c35066daf09431&ts=917&inflight_dur=113&x=80"
HEAD nuirajiqyxbh.com/
200 OK 0 B IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectnuirajiqyxbh.com
Fingerprint6E:62:DC:7A:56:40:A0:10:7D:03:C3:3E:60:8C:20:E6:35:2A:B2:35
ValidityFri, 06 Jun 2025 11:21:37 GMT - Thu, 04 Sep 2025 11:21:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
HEAD / HTTP/1.1
Host: nuirajiqyxbh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: text/html
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: text/html
x-t70r75a30c56e45-71i20d55: 00000000000000000000000000000000
vary: Accept-Encoding, Origin
access-control-allow-origin: https://alm81sb0.com
access-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname
access-control-allow-credentials: true
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
timing-allow-origin: *
x-application-key: h29tlNhefD4oqggbyv4bs
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
GET seethaivewhupt.net/
200 OK 113 kB IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectseethaivewhupt.net
Fingerprint1C:CA:C8:AD:41:4D:56:5B:18:68:6B:E1:1D:CA:19:67:BC:3B:3D:A8
ValidityFri, 06 Jun 2025 12:17:15 GMT - Thu, 04 Sep 2025 12:17:14 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 113 kB (112768 bytes)
Hash 73154ba1cb5cbe9a12a9464748099424
b72603bb0600ff5ce3ffb8ce1c54bdfd48d31a5c
68b6f801a6efb042c57785835ebee5fd783f18fa7d3cb74cd192cabb95ec7128
GET / HTTP/1.1
Host: seethaivewhupt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Favicon: 9254418
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jun 2025 05:13:05 GMT
content-type: application/javascript
x-trace-id: ee84810853ef3749ceb6505df2092a61
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://alm81sb0.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0081e1fa00094956fada8874071dc7a4; expires=Sun, 07 Jun 2026 05:13:05 GMT; path=/; secure; SameSite=None
oaidts=1749273185; expires=Sun, 07 Jun 2026 05:13:05 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
GET alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
200 OK 38 kB URL User Request GET alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
IP
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (28019)
Hash 73ba83a1609056add009703f70a72f91
437e989a38144733c80dfbd604174ea56b87f2f6
a0bd71d4b399cf279f4a6ad00f6593de300c191121a15573d798de72f21f7a7c
GET /bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:54 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Fri, 06 Jun 2025 05:12:54 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=C83wjeLGcWDbK7sr%2BSBPs%2BzjvCnL9OGGpgzJq5nOlIhZ0V%2FfX4bNO7FfQGKtl3Bn3KmYUUYWXiWQBM6njSIjkFkXUmGvVXhGcro%3D"}]}
content-encoding: br
set-cookie: lang=1; HttpOnly; Path=/; Domain=alm81sb0.com
cf-ray: 94bda83ddec4b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET alm81sb0.com/assets/css/jw8-theme.css?v=3.0.6
200 OK 25 kB URL GET alm81sb0.com/assets/css/jw8-theme.css?v=3.0.6
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type ASCII text, with very long lines (938), with CRLF line terminators
Hash 218f1af32c959506efe281f39309d9a5
948fbcdba4275e13fc3e469a04df2d727aabdf4a
5425c5e4dfa36e386ee465a9fe20f61290bcd377fe3fd950164c5c6e16301593
GET /assets/css/jw8-theme.css?v=3.0.6 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KaWW6PFOOHg0xZ%2BBdjDnMOobodNhRIZmGpM5bsCLm4HQUQOA60ocSF8VR%2BYkvVd23By0ahVJWDg4N4kxMWOREMZlHUwxfdNk843Pvjx6ZUw0IKwk16qnhh6O2StAt5s%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Apr 2024 15:50:39 GMT
etag: W/"660d7acf-62a2"
expires: Wed, 11 Jun 2025 20:18:21 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
age: 204873
cf-cache-status: HIT
content-encoding: br
cf-ray: 94bda8442f94b4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3237&min_rtt=591&rtt_var=3082&sent=201&recv=145&lost=0&retrans=1&sent_bytes=97211&recv_bytes=9858&delivery_rate=10186873&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=57c35066daf09431&ts=621&inflight_dur=75&x=80"
GET alm81sb0.com/favicon.ico
404 Not Found 153 B IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325
GET /favicon.ico HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qP1ep4vuQm1HTAG0%2FLSJzdFBMY9gOAtaQTn12i2qW4kQS6v1aHcDTqETkznP4%2BrI7s072%2F9%2FwDMEQQL4izsqVIStn%2FDHH3GJE27G30uaIG1DB8SrxMZaqcwYZYUg2vM%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 94bda8450f98b4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1573&min_rtt=591&rtt_var=1273&sent=360&recv=156&lost=0&retrans=1&sent_bytes=274737&recv_bytes=10737&delivery_rate=27832126&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=57c35066daf09431&ts=860&inflight_dur=111&x=80"
GET alm81sb0.com/js/jquery.cookie.js
200 OK 4.3 kB URL GET alm81sb0.com/js/jquery.cookie.js
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
Hash ae0c2c5d8f01f7d35bb698bb618a62f7
63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20
75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc
GET /js/jquery.cookie.js HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 31 May 2011 12:53:56 GMT
vary: accept-encoding
expires: Wed, 11 Jun 2025 19:23:09 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8igTDH7BJsVlFMkQEFkp1YNLEPyNFnijFg6ewnGsGb9OO48eZuVnf0xW%2FedxJMNN%2FdzUWjOjS1LtUQc%2FTphMeWQ%2B3MRRb1HR%2FEM%3D"}]}
age: 208185
cf-cache-status: HIT
etag: W/"4de4e4e4-10eb"
content-encoding: br
cf-ray: 94bda841e92cb4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET alm81sb0.com/js/dnsads.js?dfp=1&ad_code=2&adsrc=3
200 OK 38 B URL GET alm81sb0.com/js/dnsads.js?dfp=1&ad_code=2&adsrc=3
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type ASCII text, with CRLF line terminators
Hash 99eccae6afa72c589ae54b5c3890282a
0f102f8f5b556635de65d16cf70fa8269c6761b4
b74a58316385de04b054737776e71c160cd60d2d01b5440b32c21651fb0ab8d3
GET /js/dnsads.js?dfp=1&ad_code=2&adsrc=3 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Mon, 13 Sep 2021 15:50:14 GMT
vary: accept-encoding
expires: Wed, 11 Jun 2025 23:12:27 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IgE7bv9My9MT%2FrZK9Cos1YFENXQc7nCy1000DBqLgjjfVztuno8I5WSATvFiERK98WHpRHqkvH0g%2FQbADh6KzGCzbv5GuQOcBWc%3D"}]}
age: 194428
cf-cache-status: HIT
etag: W/"613f7336-26"
content-encoding: br
cf-ray: 94bda841e941b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
HEAD alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
200 OK 0 B URL HEAD alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: file_id=45514495; aff=14349; ref_url=pac77abcmon4f4181b8a3d72b.unrepeated25.store; lang=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: text/html; charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4kLe4X%2BIJJCPn8wtOZ7xJ%2BTxYfog4cNOMVd5WsWcWQp7fo8BiOEFnYpNTOTLMInXDQF9isQYkyvDM9pD1TMPDIIgGUHoxRW0YeFeaGrtTE2hXkK5HO%2FnRg9zDtd19ms%3D"}],"group":"cf-nel","max_age":604800}
expires: Fri, 06 Jun 2025 05:12:55 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94bda842ff87b4f1-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1688&min_rtt=591&rtt_var=1390&sent=358&recv=154&lost=0&retrans=1&sent_bytes=274057&recv_bytes=10294&delivery_rate=27832126&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=57c35066daf09431&ts=739&inflight_dur=87&x=80"
GET alm81sb0.com/player/jw8_26/jwplayer.core.controls.js?v=2
200 OK 327 kB URL GET alm81sb0.com/player/jw8_26/jwplayer.core.controls.js?v=2
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (65143)
Size 327 kB (326903 bytes)
Hash fee77850b6b254569cf03f43a4dfdde4
35841d306d3404fbef6825371ffdbcd992ade913
50b22ddf7e9cf49716e33660cc9de3c2bbf3cb90f203d8af93810f8f97bdee3f
GET /player/jw8_26/jwplayer.core.controls.js?v=2 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kmNeiAgTHVM2vkbx%2FeO3LodC4ZIx1hljMP8qoLwW0%2B1wQXqSGBnPvt99c6qHeYFb8yXGJR40v12Kd3v%2FBDRwACIMBuVb4ZgYxVO%2Fo0AMlpozCCaO72OoInUTVVpxRe4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Apr 2024 09:09:34 GMT
etag: W/"660d1cce-4fcf7"
expires: Wed, 11 Jun 2025 20:18:21 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
age: 204873
cf-cache-status: HIT
content-encoding: br
cf-ray: 94bda8441f92b4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4565&min_rtt=591&rtt_var=4223&sent=154&recv=141&lost=0&retrans=1&sent_bytes=44766&recv_bytes=9682&delivery_rate=3984436&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=24000&unsent_bytes=0&cid=57c35066daf09431&ts=616&inflight_dur=71&x=80"
OPTIONS seethaivewhupt.net/
200 OK 8 B IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectseethaivewhupt.net
Fingerprint1C:CA:C8:AD:41:4D:56:5B:18:68:6B:E1:1D:CA:19:67:BC:3B:3D:A8
ValidityFri, 06 Jun 2025 12:17:15 GMT - Thu, 04 Sep 2025 12:17:14 GMT
File type ASCII text, with no line terminators
Hash 3bbbac058fc4ed9e8078f0318d31d9fa
fb3f78865eac1bdd3406f00b9cae5c6cdf6211b8
3938c63e8b782001c4b451b439634c1380b1e262d919e11ba7374862835d83e4
OPTIONS / HTTP/1.1
Host: seethaivewhupt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: favicon
Referer: https://alm81sb0.com/
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jun 2025 05:13:05 GMT
content-type: application/octet-stream
content-length: 8
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, favicon
X-Firefox-Spdy: h2
POST seethaivewhupt.net/wrr?z=9254418&p_rid=de8aec81-18c6-4816-a406-a2633855e400&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik=&dmn=&userId=0801e15afcef43fbe2c2f2e0d22113a0
204 No Content 0 B URL POST seethaivewhupt.net/wrr?z=9254418&p_rid=de8aec81-18c6-4816-a406-a2633855e400&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik=&dmn=&userId=0801e15afcef43fbe2c2f2e0d22113a0
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectseethaivewhupt.net
Fingerprint1C:CA:C8:AD:41:4D:56:5B:18:68:6B:E1:1D:CA:19:67:BC:3B:3D:A8
ValidityFri, 06 Jun 2025 12:17:15 GMT - Thu, 04 Sep 2025 12:17:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wrr?z=9254418&p_rid=de8aec81-18c6-4816-a406-a2633855e400&rb=LE-W8-UkLSloStPXGchT-GM9a9UZdaNKFWaT4jgkl8NIx7kHADOOxmQR1hohJZhsYKyC_4olUh3zArfOfZ1ymF05qyOjBIwSPH4ExUFcwKsciRZwfCs-y4eBzCZzondNGcLDJ21FmkzoTgApC6BxtlGpI46aLNd9XiOl5jiONhv65bxnu58zCCZRXiFR-0uLJwmI7PsIDc3YlX173Jx47KFMOkQzuR1QFjgdf754NLJXFZN5w87kXyn3hDVsmUUCvRfnUDwyIBwajfb5ez6Wz28B2kOTOMjA00WFcBz3Wik=&dmn=&userId=0801e15afcef43fbe2c2f2e0d22113a0 HTTP/1.1
Host: seethaivewhupt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alm81sb0.com/
content-type: application/json
Content-Length: 2944
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sat, 07 Jun 2025 05:13:06 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://alm81sb0.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
HEAD nuirajiqyxbh.com/
200 OK 0 B IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectnuirajiqyxbh.com
Fingerprint6E:62:DC:7A:56:40:A0:10:7D:03:C3:3E:60:8C:20:E6:35:2A:B2:35
ValidityFri, 06 Jun 2025 11:21:37 GMT - Thu, 04 Sep 2025 11:21:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
HEAD / HTTP/1.1
Host: nuirajiqyxbh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jun 2025 05:13:05 GMT
content-type: text/html
x-t92r37a7c19e84-15i4d52: 00000000000000000000000000000000
vary: Accept-Encoding, Origin
access-control-allow-origin: https://alm81sb0.com
access-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname
access-control-allow-credentials: true
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
timing-allow-origin: *
x-application-key: xoifnazcefm4tfAsoxA481i1ua9r9w
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
GET alm81sb0.com/js/ls.js
200 OK 2.1 kB IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (2063), with no line terminators
Hash f6784d7271569579cbc7e508fddb3fbb
61be0722316952e865893972791486e26961cdda
96f2f3c87be4a0582def1b5e1e9e19aa0529adb7fd9277cede56c1eefd906d01
GET /js/ls.js HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:55 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 14 Feb 2023 11:28:54 GMT
vary: accept-encoding
expires: Thu, 12 Jun 2025 04:45:41 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TLRksiMrvdG%2BvoVfTRkqZx7lvouTy%2FbzG1iF89GJOjCVkatpkos1XoVqy98CvVL0Xjoefh0wo70UQgsXC%2FvuGJlIsnKZcW4DhdA%3D"}]}
age: 174434
cf-cache-status: HIT
etag: W/"63eb7076-80f"
content-encoding: br
cf-ray: 94bda841e92fb4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
OPTIONS nuirajiqyxbh.com/
200 OK 0 B IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectnuirajiqyxbh.com
Fingerprint6E:62:DC:7A:56:40:A0:10:7D:03:C3:3E:60:8C:20:E6:35:2A:B2:35
ValidityFri, 06 Jun 2025 11:21:37 GMT - Thu, 04 Sep 2025 11:21:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS / HTTP/1.1
Host: nuirajiqyxbh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: HEAD
Access-Control-Request-Headers: content-type
Referer: https://alm81sb0.com/
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://alm81sb0.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
GET a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt
200 OK 51 kB URL GET a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectstaticfilcdn.fun
Fingerprint1F:23:A8:A2:06:6B:42:26:56:3A:5D:CE:88:2E:E6:63:25:E5:F3:D7
ValiditySat, 26 Apr 2025 07:40:36 GMT - Fri, 25 Jul 2025 08:38:17 GMT
File type WebVTT subtitles, ASCII text, with CRLF line terminators
Hash 7f792ee59accab718b2816612564094f
37c279728cad5da89a035ceda56eab576c14d583
598c680ec31fc2caea98243a8b57d5c41eb3bd4c2bada1380732de68e26d94da
GET /user26454/subtitles/v27/683c3114e8eed.vtt HTTP/1.1
Host: a.staticfilcdn.fun
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: text/vtt; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-frame-options: SAMEORIGIN
vary: X-Requested-With
access-control-allow-methods: *
x-powered-by: NSA
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
content-description: File Transfer
access-control-allow-origin: *
cache-control: max-age=3600000
expires: Sun, 13 Jul 2025 02:53:30 GMT
content-disposition: attachment; filename="683c3114e8eed.vtt"; filename*=utf-8''683c3114e8eed.vtt
x-cache-status: HIT
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6vbPZHFMfkQ6905tw3SUO7KiVHSNz0QPLYmbdgi5isD4i%2F8ZkQ7YoQi5ISEkfMu8RlSdZ%2B3cLjybsfAbbKNDqMd%2F8L%2B0H82GmVFFRmh2VKI%3D"}]}
cf-ray: 94bda8468e2f712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET videothumbs.me/84xnsfm20q9x.jpg
200 OK 14 kB URL GET videothumbs.me/84xnsfm20q9x.jpg
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectvideothumbs.me
FingerprintB9:B4:8A:B0:ED:DA:7E:36:8C:CA:20:F8:25:8B:1F:49:B1:E5:91:87
ValidityMon, 12 May 2025 10:17:40 GMT - Sun, 10 Aug 2025 11:15:40 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.32.100", baseline, precision 8, 720x405, components 3
Hash 1edd55908cbc240934d0ebc01739817b
1f038fce96f14b346ff21f47e4e90904b431dcbb
2eda966b93843c2637f1e0432faca5a394873b2fb19e3cced3d3520d0541ef42
GET /84xnsfm20q9x.jpg HTTP/1.1
Host: videothumbs.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: image/jpeg
content-length: 14410
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Sun, 01 Jun 2025 04:12:14 GMT
etag: "683bd31e-384a"
expires: Fri, 20 Jun 2025 23:05:18 GMT
cache-control: max-age=31536000
accept-ranges: bytes
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=k5FxpSbh%2F6Ax9c29W6hwF8TLQBl0L86SUdik49%2F40PsjQF6f5Jq6jjG5SNQSHTxPwhjx4%2B0K5da2qETgj%2F2upv4hm%2Fp62yrZBng%2BaQ%3D%3D"}]}
cf-ray: 94bda8478daa712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET be7713.rcr82.waw05.cdn255.com/hls2/02/09100/9ga7uoz025vk_h/master.m3u8?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p=
200 OK 633 B URL GET be7713.rcr82.waw05.cdn255.com/hls2/02/09100/9ga7uoz025vk_h/master.m3u8?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p=
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectbe7713.rcr82.waw05.cdn255.com
Fingerprint1D:1F:B8:9B:47:8D:3B:8F:AC:C4:80:1D:24:1B:B8:5F:7B:E1:D0:25
ValidityThu, 29 May 2025 10:19:12 GMT - Wed, 27 Aug 2025 10:19:11 GMT
Hash 8d4689c432fbe246236758ecc5c6158e
3f5018a4ddcda40953179f6762b8f561c0911244
cf0939001a998290475454092544c29da8f1b3b4173fb0569e1e64a337a4bce8
GET /hls2/02/09100/9ga7uoz025vk_h/master.m3u8?t=tdgvdiJ_RFdOLvLWp_C9zQv86x8dTaS7DxIwN5tPs3E&s=1749273174&e=10800&f=45514495&srv=1050&asn=50304&sp=4000&p= HTTP/1.1
Host: be7713.rcr82.waw05.cdn255.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alm81sb0.com
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jun 2025 05:12:56 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sat, 07 Jun 2025 05:12:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Tue, 10 Jun 2025 04:26:44 GMT
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: HIT
Content-Encoding: gzip
GET alm81sb0.com/player/jw8_26/vttparser.js?v=2
200 OK 4.8 kB URL GET alm81sb0.com/player/jw8_26/vttparser.js?v=2
IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerGoogle Trust Services
Subjectalm81sb0.com
FingerprintB4:11:9D:0A:19:BD:DD:98:EC:36:F8:37:FE:45:4B:EF:48:1B:6F:7A
ValidityFri, 25 Apr 2025 04:04:27 GMT - Thu, 24 Jul 2025 05:03:09 GMT
File type JavaScript source, ASCII text, with very long lines (4403)
Hash 17a836e7bf481f0eed908352bd26e21f
0b2a5ea3791cce787ebc988f311e0f3e96046b69
aee933f4756e9667ffd081f14a1f0d55ddf024ea0815a96676b7a4e8afa50879
GET /player/jw8_26/vttparser.js?v=2 HTTP/1.1
Host: alm81sb0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OQ3jx9ldWx%2BmP2hoRh5k8vZBi35CXfKw0O5JQOPGLY6PIUGuFCxtFopC88oNNX3dRJkO770Dez0Ih5RcXlIeeb6SkRHl5pXjJI39vDteqC%2BDAJx9uAckbUeM%2BsT%2FzcY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 03 Apr 2024 09:09:34 GMT
etag: W/"660d1cce-12bc"
expires: Sat, 14 Jun 2025 05:12:56 GMT
cache-control: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: MISS
content-encoding: br
cf-ray: 94bda847af9db4f1-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1467&min_rtt=591&rtt_var=684&sent=381&recv=162&lost=0&retrans=1&sent_bytes=291523&recv_bytes=12049&delivery_rate=27832126&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=57c35066daf09431&ts=1367&inflight_dur=124&x=80"
GET ccg90.com/5/9254410
200 OK 108 kB IP
Requested by https://alm81sb0.com/bkg/84xnsfm20q9x?c1_file=https://a.staticfilcdn.fun/user26454/subtitles/v27/683c3114e8eed.vtt&c1_label=English&ref=pac77abcmon4f4181b8a3d72b.unrepeated25.store
Certificate IssuerLet's Encrypt
Subjectccg90.com
Fingerprint56:09:8B:A2:B0:CC:2D:94:BB:34:A2:E9:A2:FD:C7:53:D9:F4:20:83
ValidityWed, 23 Apr 2025 09:55:55 GMT - Tue, 22 Jul 2025 09:55:54 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 108 kB (107654 bytes)
Hash 82c0e0d831815240af25161344b3a15a
1c9656222ae78529f754048a3c1545aea4848ab1
c08cbb9f7ece608bf47ab5d024ff03ddb7b7f6651894efd164e98fd49cdbd136
GET /5/9254410 HTTP/1.1
Host: ccg90.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alm81sb0.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jun 2025 05:12:56 GMT
content-type: application/javascript
x-trace-id: 77f47b86068f5531ef20084a0f7b5e27
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0081e1e935304be0e737b367806861a0; expires=Sun, 07 Jun 2026 05:12:56 GMT; path=/; secure; SameSite=None
oaidts=1749273176; expires=Sun, 07 Jun 2026 05:12:56 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
104.21.96.1
185.248.170.13
139.45.195.9