| watchseries.bar/wp-content/uploads/2024/02/cropped-logo.png | 104.21.33.106 | 200 OK | 3.2 kB |
URL GET HTTP/3watchseries.bar/wp-content/uploads/2024/02/cropped-logo.png IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typePNG image data, 88 x 30, 8-bit/color RGBA, non-interlaced Hash869065f827733ac329c83504bd2147ad 995a4142871b5bc77390fc572b7f8e38d9820325 551f345a7178c1a83f62137a29a3ec66121d7082fa1b125561ad90caa26036bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2024/02/cropped-logo.png HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: image/png
content-length: 3170
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 21 Feb 2024 16:39:21 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16892
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xi2qyJSElGld4uU9J%2BYJUVsP%2FfsvUWieEL2VaBnjymyvjs%2BcA1ovFU9helIsW83CDepVTcahqYzoKWB325Mc9vTq3F848kTmRFb7jdmNW%2FVhkJcDVS6s2l%2F%2BZuVTkEMng9c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc837ffd956a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js?ver=4.6.1 | 151.101.1.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js?ver=4.6.1 IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash90146f01d8a2028ed6f2c3d2fba4ac9b 0363cb58b7a7b60ef7fbf82b8bceb6305232501a 7e02c082fedfc821a8a51fe004dab6896dd928876a21ccac8675142c2e2f7b1f
GET /npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js?ver=4.6.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"14535-A2PLWLentg73+/gri862MFIyUBo"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 20295288
x-served-by: cache-fra-etou8220111-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23650
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/tooltipster@4.2.8/dist/css/tooltipster.bundle.min.css | 151.101.1.229 | 200 OK | 1.2 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/tooltipster@4.2.8/dist/css/tooltipster.bundle.min.css IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (6495), with no line terminators Hashb15ef24270546e5fe896d3ea387ea134 63910103e8cc5e4bdeb2c289cfbf41f89966ea5b 41ce2509fa9959868717986010e16b6334885fd46bc64d0d3c745a73ed3c41e4
GET /npm/tooltipster@4.2.8/dist/css/tooltipster.bundle.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.2.8
x-jsd-version-type: version
etag: W/"195f-Y5EBA+jMXkvessKJz79B+Jlm6ls"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 10081206
x-served-by: cache-fra-eddf8230079-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1160
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/css/line.min.css | 151.101.1.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/css/line.min.css IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (58549) Hashb382cd517faec045a8655e78f436c0c6 d5126c7508b86676fe0bbbe344dd80f1ed9904b8 fdd8bb12fe864aaa21ae943aff9e33400472292b150a85c2b7f79f3d82ab0b94
GET /npm/@iconscout/unicons@4.0.8/css/line.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.0.8
x-jsd-version-type: version
etag: W/"e60a-1RJsdQi4Znb+C7vjRN2A8e2ZBLg"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 8798551
x-served-by: cache-fra-eddf8230064-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10657
X-Firefox-Spdy: h2
|
|
| watchseries.bar/wp-content/themes/watchseries/assets/js/min/suggestions.min.js?ver=1.0.4 | 104.21.33.106 | 200 OK | 5.4 kB |
URL GET HTTP/3watchseries.bar/wp-content/themes/watchseries/assets/js/min/suggestions.min.js?ver=1.0.4 IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typeJavaScript source, ASCII text, with very long lines (315), with CRLF line terminators Hash5f00371102732ba3196dede46ca59fde 31626fe3442106dcc2bfea5924786d99ba712c49 7c5702822aa36d98aa6dffedae1731e28b38d00020203a237739e2fc9454fa39
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/watchseries/assets/js/min/suggestions.min.js?ver=1.0.4 HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 21 Feb 2024 16:20:17 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pcKMibXtANQp3dSEcu4h6fq6gDXxS9Kv%2B%2FtSSYHzA6UR4HkeEDYhphr9G%2BVdIWk6nSwPZ9gn4tM%2Bsjvcg%2FlATOwptxsuJuQsYfyBWD9jrVruB%2BBAkjPAMoq5jkYtZSlkqBw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8380fe256a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| watchseries.bar/wp-content/themes/watchseries/assets/img/intro.jpg | 104.21.33.106 | 200 OK | 199 kB |
URL GET HTTP/3watchseries.bar/wp-content/themes/watchseries/assets/img/intro.jpg IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x628, components 3 Size199 kB (199292 bytes) Hash2aa06e538e8eac35bd2852b977ecadd5 3854d4660785c7c308394ba274637e1735e3fb75 093ea0e62c8bf6ced1f1d1b39e4b0ec1546627bbb2308cf7d04517e01e9d4740
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/watchseries/assets/img/intro.jpg HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/wp-content/themes/watchseries/style.css?ver=1.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: image/jpeg
content-length: 199292
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 21 Feb 2024 16:20:17 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 15647
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kSQN3bGmqDsw%2FydgAvii1F4lzVdL55F9m6U2H%2BXasWpL5ZaBhByuRA58xiHz4ZegWWnzKgtmkQI%2BITa7Y79AQfavbXjdSxKXSBX%2BT6Mn5uIciNbZrXskjMn5X%2Bl1ZyAhvpY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83a7a5656a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/fonts/line/unicons-6.woff2 | 151.101.1.229 | 200 OK | 12 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/fonts/line/unicons-6.woff2 IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11672, version 1.0 Hash637c2ff7c2a4466d2cbca2b1c432c0f3 b2720f0be440c57cd704a1d72f7c9c42ea0039c8 8c688304a7221da399d75f9a684e8c9deb0ceabcb51701beac9ec9fd9e779833
GET /npm/@iconscout/unicons@4.0.8/fonts/line/unicons-6.woff2 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 11672
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
x-jsd-version: 4.0.8
x-jsd-version-type: version
etag: W/"2d98-snIPC+RAxXzXBKHXL3ycQuoAOcg"
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 2413631
x-served-by: cache-fra-etou8220141-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| watchseries.bar/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 104.21.33.106 | 200 OK | 17 kB |
URL GET HTTP/3watchseries.bar/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Fri, 09 Jun 2023 08:19:24 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iqtr2e9UPlBOW8gkQOGHOPQ3HqzQ6rbyHW%2FhhviLbRHAHbdukbFd7ZkK8PUO7T27JAYoaohJiOx4gCxGXBkKU%2B%2FAe0XvKVpGgFjWTPfBK82PBQAi7BcSGtSetmeZxCZdAN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8380fdf56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/fonts/line/unicons-7.woff2 | 151.101.1.229 | 200 OK | 13 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/fonts/line/unicons-7.woff2 IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13024, version 1.0 Hash9152bbfc42a523cf70fa32c748595d66 43df86b8a1dcd8202354db9d66538fd01e5300b0 f98a107f2d2fa90710b86b112f032ada90c00f7978de8734beafce756cbed3d5
GET /npm/@iconscout/unicons@4.0.8/fonts/line/unicons-7.woff2 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 13024
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
x-jsd-version: 4.0.8
x-jsd-version-type: version
etag: W/"32e0-Q9+GuKHc2CAjVNudZlOP0B5TALA"
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 2475362
x-served-by: cache-fra-etou8220024-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 | 142.250.74.67 | 200 OK | 8.0 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0 Hash72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:13:04 GMT
expires: Fri, 02 May 2025 15:13:04 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 197436
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 142.250.74.67 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 19:57:12 GMT
expires: Fri, 02 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 180388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| watchseries.bar/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 104.21.33.106 | 200 OK | 40 kB |
URL GET HTTP/3watchseries.bar/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Mon, 28 Aug 2023 19:44:24 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bOpUepqIxQst1or3uNlKEPeI%2BzUgX3%2BbJqysGmsZdQFf9MyAc3%2BXF%2BLg7YQrqRWPXruDjC3sQu0Gcx3TfzqIpjDRkC083%2Bs3F1fEa2qj%2Fdp910NQOpxcy8Pz%2Bc%2BZhq1bEQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8380fdd56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.displayvertising.com/cunderscore-min.css | 185.76.9.24 | 200 OK | 19 kB |
URL GET HTTP/2www.displayvertising.com/cunderscore-min.css IP185.76.9.24:443 ASN#60068 Datacamp Limited
CertificateIssuerLet's Encrypt Subject1503693843.rsc.cdn77.org FingerprintE0:AB:F4:B8:46:20:20:69:A4:B8:B3:D3:6A:7B:BF:68:86:D1:AB:D3 ValidityTue, 30 Apr 2024 06:35:35 GMT - Mon, 29 Jul 2024 06:35:34 GMT
File typegzip compressed data, from Unix Hash474c3431b2cb48fc263b7e7fa70571ef fad46c5bb1d79c4bd1f4c5d859d925c29390d54b 7717d82a5ce1d3e906cf57d7601619cca1c984ce60e879a7d6369e22918640cb
GET /cunderscore-min.css HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
popads-node: wb9
expires: Sat, 11 May 2024 00:17:40 GMT
access-control-allow-origin: https://watchseries.bar
link: <https://displayvertising.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwwBuUwJFAH3Hi0BAAwBuUwKEwH39QQAAAwB1GY4EQH3BQAAAA
x-77-nzt-ray: af585630ac58e431bcb03666b1a6ba20
x-accel-expires: @1715386660
x-accel-date: 1714783134
x-77-cache: HIT
x-77-age: 77086
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 77086
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| acscdn.com/script/atagv2.js | 188.114.96.1 | 200 OK | 34 kB |
URL GET HTTP/3acscdn.com/script/atagv2.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators Hash8596014d83ef263bd45605fae9bfd90c fa7ea82dadf0b5525972db680f6fb3e71f218732 df1bc2e6d0823acc709454f73db6d7bdf61b552da9659d4071c94506d4b194de
GET /script/atagv2.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: text/javascript
x-goog-generation: 1714389651932581
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100009
x-goog-hash: crc32c=g7vq4g==, md5=hZYBTYPvJjvUVgX66b/ZDA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPqpAQLnUFr_zMEPKiLcLh9sI160nWUrdIJb4Lb2Vekpnm1P3O0W1GgSxAjSD6UP9ag7nF6edNFtBw
expires: Sat, 04 May 2024 22:26:00 GMT
cache-control: public, max-age=3600
age: 1586
last-modified: Mon, 29 Apr 2024 11:20:52 GMT
etag: W/"8596014d83ef263bd45605fae9bfd90c"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQ6wFNFpu6Vmhxusbam95aBA%2BF7Xd4wP2xx3utcXMMvjI6%2FdYW5oGrR7DOf%2BtT764N51%2FbqLwp3k%2BFoJPpEg%2FeJ76%2B6aM4gizQ4J6HqMSDjfLnUIMb%2BrP3x%2FiNI%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83cdc0cb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| watchseries.bar/wp-content/uploads/2024/02/cropped-favicon-192x192.png | 104.21.33.106 | 200 OK | 7.2 kB |
URL GET HTTP/3watchseries.bar/wp-content/uploads/2024/02/cropped-favicon-192x192.png IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hashb5cee509a2a023d15e2ee0a9f60156cd 1322c012d21f8c69546e55424b6d06e13f401220 e80f2f12987035f6b9f9f02b9336c312d3f6a3982331171e37622ef02b463b9f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2024/02/cropped-favicon-192x192.png HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: image/png
content-length: 7175
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 21 Feb 2024 16:39:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g9HyHTFJa32tGh%2BKZjsTeFP8bSJtc1bA7KT4KvG9Cd4%2Bu5%2Bu1eNehFfBVGTXMFh7CBiPFFtBCzsOFLhSQT%2B7MUAiK%2FOA5cDVrmDmFWv9JXoB853sET87teBmP6yh2koD6mY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83d0c6156a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| pubtrky.com/ut/hb.php?cb=0.8500188152824626&v=1 | 172.67.188.110 | 204 No Content | 0 B |
URL POST HTTP/2pubtrky.com/ut/hb.php?cb=0.8500188152824626&v=1 IP172.67.188.110:443
CertificateIssuerGoogle Trust Services LLC Subjectpubtrky.com Fingerprint1F:C3:3C:5C:C7:6F:56:DF:E4:18:22:98:6F:C2:B3:96:B2:B4:A6:30 ValidityMon, 18 Mar 2024 09:15:33 GMT - Sun, 16 Jun 2024 09:15:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.8500188152824626&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 1071
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 May 2024 22:03:41 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7VB1y7V6m4OZIenrOU6QvctrHFlmHlkDtOvpcUASaUW5SU3%2BEX%2FvAtLk3sGbrh75VTThrMm86pw24UmG2Rst0yNrNr8viXEDCYTCOaqrtIDpvHkwvy%2FN%2FE%2B%2Ffqc9mA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc83d0bfab515-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 6.adsco.re:2087/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:2087
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://watchseries.bar
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc8418f2956af-OSL
alt-svc: h3=":2087"; ma=86400
X-Firefox-Spdy: h2
|
|
| 6.adsco.re/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:443
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://watchseries.bar
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc8418af8b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| urezzciouj7h.l4.adsco.re/ | 185.200.118.51 | 200 OK | 0 B |
URL POST HTTP/2urezzciouj7h.l4.adsco.re/ IP185.200.118.51:443
CertificateIssuerLet's Encrypt Subject*.l4.adsco.re FingerprintB2:51:02:63:F4:E6:E7:3A:98:79:B7:C5:F8:81:EC:E8:79:B9:BC:22 ValidityFri, 19 Apr 2024 09:12:52 GMT - Thu, 18 Jul 2024 09:12:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: urezzciouj7h.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 811 B |
IP162.252.214.5:443
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1020), with no line terminators Hash68122b94f4856d64b2ea9a9d28d269fd e6e9276e4a0339de1b63696162912238e590df9a bf559439282fc948aa47b5689eb8317e630fcf0c3db18bb1448c10d53a0ac786
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1718
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:03:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://watchseries.bar
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| 6.adsco.re/ | 104.17.166.186 | 200 OK | 0 B |
IP104.17.166.186:443
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc842c8225684-OSL
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/script/i.php?t=1&c=23632708&stamat=m%257C%252C%252CAiLqI2d7tGU3Bv_GH0dEdHP3xP.358%252C-VzRLlHTzkTcMVklOpE6yiogu9YHubsycZu4XwRxhGbuPz1xOt5oLilQ5-Cni-GQhRxjpBWMaUtNTa0abEkkmOhs2eQ2vbrg_7JHwBOXMcDHZJO18Uqwe5bMIq90ksS722okej3XftxCiK6RrEQX0KxlM-ieQKvbdQ3huLNSPzgtjqCazp6Hy9MXPpdIYbv_c9swULYutjzSbG4HZ3AFjYg9_eMcKiWh-ErXhDIe42G_78bbk2LxF_iXzz0OJgj75MTTdV5Qqhb0RjbIOwNkp7wiEll5BoZ44rwKjoS3zJxWmIMsXzQwqlbpVjTbTHhudpphY9QQellCN7b0TJPsEk9cpHXLgCxKldd5src6Z-0ccL5DPuzB7gK2BrHXaB3VPIfB1Hzaqo5GIhOTAyn0B_ru88ceXjJvWDbbxHYliJoCu9DkFp-r1CvCWxBOA9wn-EYl-Tl3Jcltkc9829yYVcuFs3pbDZIozWtfY-0mABjVSZLEa90jzkp3LZyQ2d3Fgh0v0GYtGtFI7hrOf30c9z1Vg7YOf9Jpzc9W8tdd-eUmK4q--_n2DTYaf3jmDcxuYr8uOCQXFOjln8yNcO3JqdYJiZVf3gAtOTtc2_wBuysboYa4kcWr0eeyM-C_-SaD9o4za1gnVmNAYj4NdkVdd20aJ7OK55Jjo1tb6oJFzG3AN-asfd8r2lT4p3eP1P2NUpk2gq17smfDUheyIpg4SUy7C3OOz6OsTP-EbY2PBIe7uAlQxqwN1zKqEUM6Pt5a&utsid=37f234662d2e9f4282f8a68161ecf7f4&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref= | 172.67.177.214 | 204 No Content | 0 B |
URL GET HTTP/3youradexchange.com/script/i.php?t=1&c=23632708&stamat=m%257C%252C%252CAiLqI2d7tGU3Bv_GH0dEdHP3xP.358%252C-VzRLlHTzkTcMVklOpE6yiogu9YHubsycZu4XwRxhGbuPz1xOt5oLilQ5-Cni-GQhRxjpBWMaUtNTa0abEkkmOhs2eQ2vbrg_7JHwBOXMcDHZJO18Uqwe5bMIq90ksS722okej3XftxCiK6RrEQX0KxlM-ieQKvbdQ3huLNSPzgtjqCazp6Hy9MXPpdIYbv_c9swULYutjzSbG4HZ3AFjYg9_eMcKiWh-ErXhDIe42G_78bbk2LxF_iXzz0OJgj75MTTdV5Qqhb0RjbIOwNkp7wiEll5BoZ44rwKjoS3zJxWmIMsXzQwqlbpVjTbTHhudpphY9QQellCN7b0TJPsEk9cpHXLgCxKldd5src6Z-0ccL5DPuzB7gK2BrHXaB3VPIfB1Hzaqo5GIhOTAyn0B_ru88ceXjJvWDbbxHYliJoCu9DkFp-r1CvCWxBOA9wn-EYl-Tl3Jcltkc9829yYVcuFs3pbDZIozWtfY-0mABjVSZLEa90jzkp3LZyQ2d3Fgh0v0GYtGtFI7hrOf30c9z1Vg7YOf9Jpzc9W8tdd-eUmK4q--_n2DTYaf3jmDcxuYr8uOCQXFOjln8yNcO3JqdYJiZVf3gAtOTtc2_wBuysboYa4kcWr0eeyM-C_-SaD9o4za1gnVmNAYj4NdkVdd20aJ7OK55Jjo1tb6oJFzG3AN-asfd8r2lT4p3eP1P2NUpk2gq17smfDUheyIpg4SUy7C3OOz6OsTP-EbY2PBIe7uAlQxqwN1zKqEUM6Pt5a&utsid=37f234662d2e9f4282f8a68161ecf7f4&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref= IP172.67.177.214:443
CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/i.php?t=1&c=23632708&stamat=m%257C%252C%252CAiLqI2d7tGU3Bv_GH0dEdHP3xP.358%252C-VzRLlHTzkTcMVklOpE6yiogu9YHubsycZu4XwRxhGbuPz1xOt5oLilQ5-Cni-GQhRxjpBWMaUtNTa0abEkkmOhs2eQ2vbrg_7JHwBOXMcDHZJO18Uqwe5bMIq90ksS722okej3XftxCiK6RrEQX0KxlM-ieQKvbdQ3huLNSPzgtjqCazp6Hy9MXPpdIYbv_c9swULYutjzSbG4HZ3AFjYg9_eMcKiWh-ErXhDIe42G_78bbk2LxF_iXzz0OJgj75MTTdV5Qqhb0RjbIOwNkp7wiEll5BoZ44rwKjoS3zJxWmIMsXzQwqlbpVjTbTHhudpphY9QQellCN7b0TJPsEk9cpHXLgCxKldd5src6Z-0ccL5DPuzB7gK2BrHXaB3VPIfB1Hzaqo5GIhOTAyn0B_ru88ceXjJvWDbbxHYliJoCu9DkFp-r1CvCWxBOA9wn-EYl-Tl3Jcltkc9829yYVcuFs3pbDZIozWtfY-0mABjVSZLEa90jzkp3LZyQ2d3Fgh0v0GYtGtFI7hrOf30c9z1Vg7YOf9Jpzc9W8tdd-eUmK4q--_n2DTYaf3jmDcxuYr8uOCQXFOjln8yNcO3JqdYJiZVf3gAtOTtc2_wBuysboYa4kcWr0eeyM-C_-SaD9o4za1gnVmNAYj4NdkVdd20aJ7OK55Jjo1tb6oJFzG3AN-asfd8r2lT4p3eP1P2NUpk2gq17smfDUheyIpg4SUy7C3OOz6OsTP-EbY2PBIe7uAlQxqwN1zKqEUM6Pt5a&utsid=37f234662d2e9f4282f8a68161ecf7f4&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sat, 04 May 2024 22:03:41 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4TzpknQmHhAUEUrKpzPGNMMvQRn8Kh%2BEGWbC9fFfMhio5XkLouAN1H5z0QtiPbFOAdEyRc9%2F1xlAMqq%2B8sibM5H8YOr5rAL5MOGnO4w2kaiOLTJdePxnbP39jBKqNYcoAAx6Zio%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8426a837131-OSL
alt-svc: h3=":443"; ma=86400
|
|
| urezzciouj7h.n4.adsco.re/ | 38.132.109.115 | 200 OK | 0 B |
URL POST HTTP/2urezzciouj7h.n4.adsco.re/ IP38.132.109.115:443
CertificateIssuerLet's Encrypt Subject*.n4.adsco.re Fingerprint45:6E:69:F7:75:1D:65:9E:20:3D:CF:CE:8B:F5:36:72:85:BD:76:EC ValidityFri, 19 Apr 2024 09:12:46 GMT - Thu, 18 Jul 2024 09:12:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: urezzciouj7h.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:42 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| crrepo.com/extban/338828820/creatives/23632708/fbdf81612062b1e570baf6accbc09126_8656.jpg | 104.21.233.200 | 200 OK | 46 kB |
URL GET HTTP/2crrepo.com/extban/338828820/creatives/23632708/fbdf81612062b1e570baf6accbc09126_8656.jpg IP104.21.233.200:443
CertificateIssuerGoogle Trust Services LLC Subjectcrrepo.com Fingerprint44:8B:BA:AA:80:2B:6C:39:BF:F9:EA:5D:F1:1E:6D:BF:47:FF:41:D3 ValidityFri, 03 May 2024 12:40:29 GMT - Thu, 01 Aug 2024 12:40:28 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 422x422, components 3 Hash9abda0bd852ee13bfb69800aa07e299f a9860d635f0bee5dfddfef2bfe0bd6230ce221ed 27da84dbd2c8c7968a298bbeee4b2a07e24168ebeaab6a5bc7b047157e17b0cf
GET /extban/338828820/creatives/23632708/fbdf81612062b1e570baf6accbc09126_8656.jpg HTTP/1.1
Host: crrepo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: image/jpeg
last-modified: Wed, 17 May 2023 09:28:31 GMT
etag: W/"64649e3f-aec5"
via: 1.1 google
cache-control: max-age=14400
cf-cache-status: HIT
age: 1263
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OtaJ4eQbgYU73pIa1SL0VZmctFQjKTfNWRtu414l7CfuIJuMYN5jBu3srBBZ3upSapOWPsjRro8um9kYyVyg04BhWzZ2x9P%2FTb6HZhptTe4jWuiXC5UfeqU%2BTIJ9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc8430d0852ee-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| go.bbrdbr.com/favicon.ico | 104.18.40.50 | 404 Not Found | 19 B |
URL GET HTTP/2go.bbrdbr.com/favicon.ico IP104.18.40.50:443
Requested bymoz-nullprincipal:{15fc34ec-020b-4240-8c3c-3df8951f3975}?https://watchseries.bar CertificateIssuerCloudflare, Inc. Subjectbbrdbr.com Fingerprint54:D2:62:A8:E8:91:19:F3:B4:1C:47:61:81:1B:D4:97:94:1B:26:9E ValidityFri, 26 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash595e88012a6521aae3e12cbebe76eb9e da3968197e7bf67aa45a77515b52ba2710c5fc34 b16e15764b8bc06c5c3f9f19bc8b99fa48e7894aa5a6ccdad65da49bbf564793
GET /favicon.ico HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sat, 04 May 2024 22:03:42 GMT
content-type: text/plain; charset=utf-8
content-length: 19
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVDEEFVkNrzLraWxMrBjXKv5aJex; SameSite=None; Secure; path=/; expires=Sun, 05-May-24 22:03:42 GMT; HttpOnly
server: cloudflare
cf-ray: 87ebc8469d1cb521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| urezzciouj7h.s4.adsco.re/ | 185.200.116.51 | 200 OK | 0 B |
URL POST HTTP/2urezzciouj7h.s4.adsco.re/ IP185.200.116.51:443
CertificateIssuerLet's Encrypt Subject*.s4.adsco.re Fingerprint6C:EA:F6:8F:57:34:25:F9:39:76:98:E0:61:B8:C8:86:AD:CC:68:0A ValidityFri, 19 Apr 2024 09:12:40 GMT - Thu, 18 Jul 2024 09:12:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: urezzciouj7h.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:43 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| em-content.zobj.net/thumbs/120/apple/354/winking-face_1f609.png | 104.16.124.108 | 200 OK | 17 kB |
URL GET HTTP/2em-content.zobj.net/thumbs/120/apple/354/winking-face_1f609.png IP104.16.124.108:443
CertificateIssuerGoogle Trust Services LLC Subjectzobj.net Fingerprint5D:B4:48:BA:A2:B2:2F:C0:3D:1A:D4:F9:92:30:BF:95:3A:38:9D:1E ValidityWed, 10 Apr 2024 00:15:02 GMT - Tue, 09 Jul 2024 00:15:01 GMT
File typePNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced Hashbf249006c4c86dd0f3f114ecd13063d4 647f0dab016a885be8968f0e39cd5cb613e0c087 c0cfafc99529c47dc375d2ddc7f49409d25f2128df9a1e53c0c02fa0f57d6873
GET /thumbs/120/apple/354/winking-face_1f609.png HTTP/1.1
Host: em-content.zobj.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:04:02 GMT
content-type: image/png
content-length: 16736
x-amz-id-2: ohMpVDiXdspDhmjRyPAEx1nD+aJQ7LHp8XBAnZC8Cn96+DCzZLTyMzLO43XCfiUmwoWw7RSH4j4=
x-amz-request-id: C2ZXNC46SAK8CRRX
last-modified: Tue, 21 Feb 2023 16:53:44 GMT
etag: "bf249006c4c86dd0f3f114ecd13063d4"
x-amz-server-side-encryption: AES256
x-amz-version-id: di0X4Kt8gfZHt_XckFVAcr27Nxxh65cP
cf-cache-status: HIT
age: 362056
expires: Sun, 05 May 2024 02:04:02 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc8c14a1256c6-OSL
X-Firefox-Spdy: h2
|
|
| em-content.zobj.net/thumbs/120/apple/354/winking-face-with-tongue_1f61c.png | 104.16.124.108 | | 19 kB |
URL GET em-content.zobj.net/thumbs/120/apple/354/winking-face-with-tongue_1f61c.png IP104.16.124.108:0
CertificateIssuerGoogle Trust Services LLC Subjectzobj.net Fingerprint5D:B4:48:BA:A2:B2:2F:C0:3D:1A:D4:F9:92:30:BF:95:3A:38:9D:1E ValidityWed, 10 Apr 2024 00:15:02 GMT - Tue, 09 Jul 2024 00:15:01 GMT
File typePNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced Hash330391b3b59337e996e611f5669407b7 cdebaa944083477daeecaa9a34847b3eb1829d81 30702448ca4991a4f89199e6ba4072548c1266ca8975d8f3e2e49f385a0306e6
GET /thumbs/120/apple/354/winking-face-with-tongue_1f61c.png HTTP/1.1
Host: em-content.zobj.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:04:02 GMT
content-type: image/png
content-length: 18772
x-amz-id-2: OvgC2Gc6ndDCiDSulBbkjuW3N5pebNcKYLwDJjoYUES8hxPHutaEKH6AIXDeFFUlJzPXQNPvGA0=
x-amz-request-id: 4BXG1N7FHN2XQBDK
last-modified: Tue, 21 Feb 2023 16:25:56 GMT
etag: "330391b3b59337e996e611f5669407b7"
x-amz-server-side-encryption: AES256
x-amz-version-id: IkqslMhKEXZwUkgfyBRv1xhUQKIOp78w
cf-cache-status: HIT
age: 352069
expires: Sun, 05 May 2024 02:04:02 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc8c14a1556c6-OSL
X-Firefox-Spdy: h2
|
|
| youradexchange.com/script/i.php?t=1&c=23650706&stamat=m%257C%252C%252CQhavIjaroGU3Bv_GH0dEdHP3xP.f32%252CkMWMRKbYDYcuYb1NtnzAGnz7U9luJK_lWaEs7nUp-pi1rc5GJ_g62aJBVlTr5Eu-UQCTT-d3fG-YrMLXnnmQni5hguSh4rmm2Q-Pdzvv24t8b3UlaNpS_l5rG4iZjEPhXZFWzNLf1gESG8qIgbpjls-WNTqq58OcZs59MGMNyX-7Dn70XgUIvhbsbdGABcSRviApz457-mE1K2es4QM0FdhOktexZrYKb6mozs2qrAHLj5HWlW-ZFmsuxjLytOyXmhW0fJ_G0iBzag6Lt_F9USdA8rfLe5_l_uNoqz2XMsgNNZ_I1Au0gxRnceyiJZo-z_ukfgXEtLqlvfbB0BhnaTBOJ5esCNwN-DJZn68JeZsiEAO-F54OREv5Y_G7Y5-XwYF-IIJHc5Zlbe0zz9uRypitAD81oaG8Y44VyT7CS7jYBUgMUAQMlgsxLsxCSB2G4u69FPICWn9swRd48GVTXYhyP0tO9s-V4PGIsvOMwYnsGlmfqImZkwR4khGe_KpYdwRqDvomh0jL7ewZc2MrgGq8UZaEKt7_QZImvY2m6EY25_pSNa4qhPcTJLnM-DhCUrRtM4PFlDopbeht-DPp-SSzvDv_p1Rbteyo3FGv5ogxfQ37GJDQ0LYbcWBrUJLIm-HcXFvJJ8OuuvwSp0eq2Mt4DbXD4DuyTkmAL3LrIobIfp3uwQ1n1MkvdsM9cs-hIVVi7iMBe2VjlRf4oKdSh--6dBOVZE-45opTHiyQaByBZAEFgrCHp9pCAs6483KS&utsid=37f234662d2e9f4282f8a68161ecf7f4&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref= | 172.67.177.214 | | 0 B |
URL GET youradexchange.com/script/i.php?t=1&c=23650706&stamat=m%257C%252C%252CQhavIjaroGU3Bv_GH0dEdHP3xP.f32%252CkMWMRKbYDYcuYb1NtnzAGnz7U9luJK_lWaEs7nUp-pi1rc5GJ_g62aJBVlTr5Eu-UQCTT-d3fG-YrMLXnnmQni5hguSh4rmm2Q-Pdzvv24t8b3UlaNpS_l5rG4iZjEPhXZFWzNLf1gESG8qIgbpjls-WNTqq58OcZs59MGMNyX-7Dn70XgUIvhbsbdGABcSRviApz457-mE1K2es4QM0FdhOktexZrYKb6mozs2qrAHLj5HWlW-ZFmsuxjLytOyXmhW0fJ_G0iBzag6Lt_F9USdA8rfLe5_l_uNoqz2XMsgNNZ_I1Au0gxRnceyiJZo-z_ukfgXEtLqlvfbB0BhnaTBOJ5esCNwN-DJZn68JeZsiEAO-F54OREv5Y_G7Y5-XwYF-IIJHc5Zlbe0zz9uRypitAD81oaG8Y44VyT7CS7jYBUgMUAQMlgsxLsxCSB2G4u69FPICWn9swRd48GVTXYhyP0tO9s-V4PGIsvOMwYnsGlmfqImZkwR4khGe_KpYdwRqDvomh0jL7ewZc2MrgGq8UZaEKt7_QZImvY2m6EY25_pSNa4qhPcTJLnM-DhCUrRtM4PFlDopbeht-DPp-SSzvDv_p1Rbteyo3FGv5ogxfQ37GJDQ0LYbcWBrUJLIm-HcXFvJJ8OuuvwSp0eq2Mt4DbXD4DuyTkmAL3LrIobIfp3uwQ1n1MkvdsM9cs-hIVVi7iMBe2VjlRf4oKdSh--6dBOVZE-45opTHiyQaByBZAEFgrCHp9pCAs6483KS&utsid=37f234662d2e9f4282f8a68161ecf7f4&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref= IP172.67.177.214:0
CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/i.php?t=1&c=23650706&stamat=m%257C%252C%252CQhavIjaroGU3Bv_GH0dEdHP3xP.f32%252CkMWMRKbYDYcuYb1NtnzAGnz7U9luJK_lWaEs7nUp-pi1rc5GJ_g62aJBVlTr5Eu-UQCTT-d3fG-YrMLXnnmQni5hguSh4rmm2Q-Pdzvv24t8b3UlaNpS_l5rG4iZjEPhXZFWzNLf1gESG8qIgbpjls-WNTqq58OcZs59MGMNyX-7Dn70XgUIvhbsbdGABcSRviApz457-mE1K2es4QM0FdhOktexZrYKb6mozs2qrAHLj5HWlW-ZFmsuxjLytOyXmhW0fJ_G0iBzag6Lt_F9USdA8rfLe5_l_uNoqz2XMsgNNZ_I1Au0gxRnceyiJZo-z_ukfgXEtLqlvfbB0BhnaTBOJ5esCNwN-DJZn68JeZsiEAO-F54OREv5Y_G7Y5-XwYF-IIJHc5Zlbe0zz9uRypitAD81oaG8Y44VyT7CS7jYBUgMUAQMlgsxLsxCSB2G4u69FPICWn9swRd48GVTXYhyP0tO9s-V4PGIsvOMwYnsGlmfqImZkwR4khGe_KpYdwRqDvomh0jL7ewZc2MrgGq8UZaEKt7_QZImvY2m6EY25_pSNa4qhPcTJLnM-DhCUrRtM4PFlDopbeht-DPp-SSzvDv_p1Rbteyo3FGv5ogxfQ37GJDQ0LYbcWBrUJLIm-HcXFvJJ8OuuvwSp0eq2Mt4DbXD4DuyTkmAL3LrIobIfp3uwQ1n1MkvdsM9cs-hIVVi7iMBe2VjlRf4oKdSh--6dBOVZE-45opTHiyQaByBZAEFgrCHp9pCAs6483KS&utsid=37f234662d2e9f4282f8a68161ecf7f4&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sat, 04 May 2024 22:04:02 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MN6ugJvIuccggTMpR1YAMv4bXWC9SRWI2GQFFrsmnbhs0musT2w0WitQUUEYLKblO8NmFCOpxNRojP0qh8ct%2FTUXmLhxYUwaIzCM1l9vm3Om8UCzKgBJAtAM443qjNf1OfsDP34%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8c0c9907131-OSL
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/ad/czcf.php?cz=xiul3gkyt9 | 172.67.177.214 | 200 OK | 891 B |
URL GET HTTP/2youradexchange.com/ad/czcf.php?cz=xiul3gkyt9 IP172.67.177.214:443
CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1042), with no line terminators Hash075e8258169b2a089b82b8c2e552b8e9 726d65cc7d9b886414f8024ce54130da966db18a 78b04c23ded43b8dc11f6a3cc0b865d936c5e3205914a96949dec38dea614d2f
GET /ad/czcf.php?cz=xiul3gkyt9 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://watchseries.bar/
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FzRr3V0t7nLvZpgY9kVYNVoe5QgXwOmVfT%2FyWMSQrwnU9rpk%2BFJ64Ck4cRxggyA5EUaPZhx8SJDYi6yX0QwoZE7vtYnepfc4qgWP5B8N425dAq3%2FBdiqqopKLbXEIBLconQygNE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc83aca2f5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4.adsco.re:2087/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/fonts/line/unicons-15.woff2 | 151.101.1.229 | 200 OK | 12 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/@iconscout/unicons@4.0.8/fonts/line/unicons-15.woff2 IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11964, version 1.0 Hash006180927ff7abffd944b998f7e90573 bba6c221886698d16b836e0e3693b041b1c57527 bf7ca84f2e2f1af2bc817e543d75e1c25521867bad8b6a88b055b5215abd88c2
GET /npm/@iconscout/unicons@4.0.8/fonts/line/unicons-15.woff2 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 11964
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
x-jsd-version: 4.0.8
x-jsd-version-type: version
etag: W/"2ebc-u6bCIYhmmNFrg24ONpOwQbHFdSc"
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 4025584
x-served-by: cache-fra-eddf8230034-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| acscdn.com/script/ut.js?cb=1714860220688 | 188.114.96.1 | 200 OK | 63 kB |
URL GET HTTP/3acscdn.com/script/ut.js?cb=1714860220688 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1714860220688 HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq4rLQfUzIb4PXABJF3kaL6QpNC2eEDt1dZIA_AICzJwRtEzQkHmfGBvBjJTgyllcLoFfCchk7ypw
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sat, 04 May 2024 22:33:33 GMT
cache-control: public, max-age=3600
age: 1389
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vDQexdIALwtcNUzTtCwKj8UXpQZGRqzMqvk7FqODWcpcl%2BCOwTPQdjs3ADHyXC5gjTOjwCweyJCSmHJ1gcQFoU%2FwHPai%2FOuk7Wq0lRCy9DvZRy5O1DBWVQsQO1eq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83b6a8fb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| displayvertising.com/ebglhqjgztu?fycWDHBT=BQLyAAAAAAAACZUAAuSD5NzBv9PU8FFwfcgSg5kOwpUPQfxy4NdutFvKHJ8Os75azFdyrv7S4toxL0N_Az6y0KjE2Pj_k24JjQQSfojZu7Z6BJk2jG_giXd1TEd8ijpr4SorCLzgt3sc1n2jEz_EFNDSGabUzgHZsexJj6O1KzQ9Yc_SlInL8SWZwQ45PhLekTNyc8BpZaLBTkHDcyXgSlc-N9jvn4G12iXE2npapPuRvI-4jT9aaHQmQUrMIuIciY8AjWKjLKu4o4ajgllLwxIt7ci8wYmxuHn6_5hIfZZCcjo1S4zV49wzYfJ8XScjAmaGq6ap9_nVtfQmSlsoi6zn4Fhl_5O03gC4Xh91xdjxX77aYw-Z1f8WHfD-_Dn-el69c6OByISQpPxrxXbmB6NMyK6dvquVrKawlHU_sHAvx0ZH5-tZfLIgqheEGDTVwUgkl4TFc6mCsRLrQYBqPe-mkUc6JnRios11Mkre9ss3ti0rfitYnYh5YgO8Nm4yGa7-ny4EZTyRyj-L_8PcFKhnIscftX4eFNGD9kXDC_7hgm6Z-nklONRaIrXpoa5kZkA06hVFWU9nG4z4zvkD299RZbNKlEUojQNFkPMamnUBOtbhdZ3HAdHMPSZv0GKCEaZFENZxFRBGSDivN2dZi01D4frSsTM9i4F_uAE0yxjQ5afYLXxxOejP8zehr3uFSx1o6RTe5qBS3r3k3diAaLS6wS8jT--1xLv0cpiPSk7b2Uwie5q5Z4HXn2J7QBrImukk_4Fj4kNKyvlwwlXJngsjQ2Mt9EdAmWiHwIGwz1mgIWqhCIv-HXFWNVt0SGNCdQuQ1D3L4lUavyxtdpHGwMoGalYQwiZqAqJPYRJXieSSiOjzsoXh_TNK61BaNWVw7kzyTZh6BGc-tYJshrVyMq5m79B6UaQOzKsSk90QjbKaPQK8Xix5BFxNgu7q-rOvpGC8Q05mfm9_hbvPiAiZKFcl8c7uOYGDjLki23S5Qxusy60Lxw3Pu7mwXvmB&CyBwdFAl=4&rUiDePhn=5078040&eFCIUmof=&rEMquyWk=0:1,0&QhtLUcwd=&oDyqskxG=&s=1280,1024,1,1280,1024,0 | 216.59.56.9 | 200 OK | 1.5 kB |
URL GET HTTP/2displayvertising.com/ebglhqjgztu?fycWDHBT=BQLyAAAAAAAACZUAAuSD5NzBv9PU8FFwfcgSg5kOwpUPQfxy4NdutFvKHJ8Os75azFdyrv7S4toxL0N_Az6y0KjE2Pj_k24JjQQSfojZu7Z6BJk2jG_giXd1TEd8ijpr4SorCLzgt3sc1n2jEz_EFNDSGabUzgHZsexJj6O1KzQ9Yc_SlInL8SWZwQ45PhLekTNyc8BpZaLBTkHDcyXgSlc-N9jvn4G12iXE2npapPuRvI-4jT9aaHQmQUrMIuIciY8AjWKjLKu4o4ajgllLwxIt7ci8wYmxuHn6_5hIfZZCcjo1S4zV49wzYfJ8XScjAmaGq6ap9_nVtfQmSlsoi6zn4Fhl_5O03gC4Xh91xdjxX77aYw-Z1f8WHfD-_Dn-el69c6OByISQpPxrxXbmB6NMyK6dvquVrKawlHU_sHAvx0ZH5-tZfLIgqheEGDTVwUgkl4TFc6mCsRLrQYBqPe-mkUc6JnRios11Mkre9ss3ti0rfitYnYh5YgO8Nm4yGa7-ny4EZTyRyj-L_8PcFKhnIscftX4eFNGD9kXDC_7hgm6Z-nklONRaIrXpoa5kZkA06hVFWU9nG4z4zvkD299RZbNKlEUojQNFkPMamnUBOtbhdZ3HAdHMPSZv0GKCEaZFENZxFRBGSDivN2dZi01D4frSsTM9i4F_uAE0yxjQ5afYLXxxOejP8zehr3uFSx1o6RTe5qBS3r3k3diAaLS6wS8jT--1xLv0cpiPSk7b2Uwie5q5Z4HXn2J7QBrImukk_4Fj4kNKyvlwwlXJngsjQ2Mt9EdAmWiHwIGwz1mgIWqhCIv-HXFWNVt0SGNCdQuQ1D3L4lUavyxtdpHGwMoGalYQwiZqAqJPYRJXieSSiOjzsoXh_TNK61BaNWVw7kzyTZh6BGc-tYJshrVyMq5m79B6UaQOzKsSk90QjbKaPQK8Xix5BFxNgu7q-rOvpGC8Q05mfm9_hbvPiAiZKFcl8c7uOYGDjLki23S5Qxusy60Lxw3Pu7mwXvmB&CyBwdFAl=4&rUiDePhn=5078040&eFCIUmof=&rEMquyWk=0:1,0&QhtLUcwd=&oDyqskxG=&s=1280,1024,1,1280,1024,0 IP216.59.56.9:443
CertificateIssuerSectigo Limited Subjectdisplayvertising.com FingerprintAD:50:CF:4F:03:26:91:93:74:1B:D5:8A:D0:EB:44:0D:13:A6:DF:96 ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1517), with no line terminators Hash1c47fe4e6e42f3bb9873fc65c858f312 8d3e5cd02134b3158429446327f374baf1df1764 cddb3dab971747f22204fda7cbcfdc33a228d0125c263de7ceec7ede99cd41d4
GET /ebglhqjgztu?fycWDHBT=BQLyAAAAAAAACZUAAuSD5NzBv9PU8FFwfcgSg5kOwpUPQfxy4NdutFvKHJ8Os75azFdyrv7S4toxL0N_Az6y0KjE2Pj_k24JjQQSfojZu7Z6BJk2jG_giXd1TEd8ijpr4SorCLzgt3sc1n2jEz_EFNDSGabUzgHZsexJj6O1KzQ9Yc_SlInL8SWZwQ45PhLekTNyc8BpZaLBTkHDcyXgSlc-N9jvn4G12iXE2npapPuRvI-4jT9aaHQmQUrMIuIciY8AjWKjLKu4o4ajgllLwxIt7ci8wYmxuHn6_5hIfZZCcjo1S4zV49wzYfJ8XScjAmaGq6ap9_nVtfQmSlsoi6zn4Fhl_5O03gC4Xh91xdjxX77aYw-Z1f8WHfD-_Dn-el69c6OByISQpPxrxXbmB6NMyK6dvquVrKawlHU_sHAvx0ZH5-tZfLIgqheEGDTVwUgkl4TFc6mCsRLrQYBqPe-mkUc6JnRios11Mkre9ss3ti0rfitYnYh5YgO8Nm4yGa7-ny4EZTyRyj-L_8PcFKhnIscftX4eFNGD9kXDC_7hgm6Z-nklONRaIrXpoa5kZkA06hVFWU9nG4z4zvkD299RZbNKlEUojQNFkPMamnUBOtbhdZ3HAdHMPSZv0GKCEaZFENZxFRBGSDivN2dZi01D4frSsTM9i4F_uAE0yxjQ5afYLXxxOejP8zehr3uFSx1o6RTe5qBS3r3k3diAaLS6wS8jT--1xLv0cpiPSk7b2Uwie5q5Z4HXn2J7QBrImukk_4Fj4kNKyvlwwlXJngsjQ2Mt9EdAmWiHwIGwz1mgIWqhCIv-HXFWNVt0SGNCdQuQ1D3L4lUavyxtdpHGwMoGalYQwiZqAqJPYRJXieSSiOjzsoXh_TNK61BaNWVw7kzyTZh6BGc-tYJshrVyMq5m79B6UaQOzKsSk90QjbKaPQK8Xix5BFxNgu7q-rOvpGC8Q05mfm9_hbvPiAiZKFcl8c7uOYGDjLki23S5Qxusy60Lxw3Pu7mwXvmB&CyBwdFAl=4&rUiDePhn=5078040&eFCIUmof=&rEMquyWk=0:1,0&QhtLUcwd=&oDyqskxG=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb4
access-control-allow-origin: *
asf: 6
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
content-type: application/javascript; charset=utf-8
set-cookie: PP_CV=yes; expires=Sat, 04 May 2024 23:03:42 GMT; Max-Age=3600
fraudcheck=754fd31b79f23ae5458bd8196cdc9e98; expires=Mon, 03 Jun 2024 22:03:42 GMT; Max-Age=2592000; path=/; domain=.popads.net
PopAds_CF_Pass=1; expires=Sun, 05 May 2024 04:03:42 GMT; Max-Age=21600
link: <https://go.bbrdbr.com>;rel=preconnect
content-length: 1105
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 22:03:42 GMT
X-Firefox-Spdy: h2
|
|
| acscdn.com/script/aclib.js | 188.114.96.1 | 200 OK | 126 kB |
URL GET HTTP/2acscdn.com/script/aclib.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
Size126 kB (125606 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: text/javascript
x-goog-generation: 1714389616107910
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 125606
x-goog-hash: crc32c=xTw75w==, md5=TCF5phnDVdTC7KGmT28/Bw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPq3WDRiywUXy1I9epsgjBrZr10_kxsxD8tygBTr-xkVVMzaGeOnPwLfQ_UPT0AwhViwE90
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 04 May 2024 21:52:18 GMT
cache-control: public, max-age=3600
age: 2050
last-modified: Mon, 29 Apr 2024 11:20:16 GMT
etag: W/"4c2179a619c355d4c2eca1a64f6f3f07"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z0PwO4VSPrk%2BC48h%2BtRlNJabMC4w%2FkedywZRDNyfVClaJoCXpWC7Q8qLlj9P67XEt8MtcPQ5ActftPRfbut71h79xqpJEPHFOarLa%2B%2Bf9VKbMZJqXH1yscGcmGmx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc8385da656c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4.adsco.re/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| youradexchange.com/script/push.php?r=8303318&ipp=1&mads=2&position=top&czid=xiul3gkyt9&aggr=3&atag=1&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=48.1&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&srs=37f234662d2e9f4282f8a68161ecf7f4&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits | 172.67.177.214 | 200 OK | 2.0 kB |
URL GET HTTP/3youradexchange.com/script/push.php?r=8303318&ipp=1&mads=2&position=top&czid=xiul3gkyt9&aggr=3&atag=1&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=48.1&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&srs=37f234662d2e9f4282f8a68161ecf7f4&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits IP172.67.177.214:443
CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2017), with no line terminators Hash7f204239c830f05082d42a048149a108 eca5f8fad37c87a5d0a7d6abb02d4ab3aec2f3b1 99a69a1410ab05effc9b9a45e486033a6ad594e0fface6ca7fa40052358c5d69
GET /script/push.php?r=8303318&ipp=1&mads=2&position=top&czid=xiul3gkyt9&aggr=3&atag=1&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=48.1&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&srs=37f234662d2e9f4282f8a68161ecf7f4&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://watchseries.bar/
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=errB32%2FVyfso69xxZdXRpGKiCQPy0GKv3EmPiw4D45CZyjz%2BT8vG3uqKt0CR1%2FzESd5YOVp9UDtnS66Bwdbqe9Lu8WRe2MIS7kpqZshejfZxN3ODveSGTUkdh1457YW4YZUM0NE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8413e3b56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.33.106 | 200 OK | 10 kB |
URL User Request GET HTTP/2IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:39 GMT
content-type: text/html
last-modified: Tue, 30 Apr 2024 16:29:48 GMT
vary: Accept-Encoding
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FZW61%2Fm%2FQEznek9cyxGWOlaThdTxod6SZKZWoIhoiDLLZAaGupsq%2BMklyO2lETbUpArsAEA5tj63DpwzA1M24hYMO%2FnzlvtnmPKFTofHJJSwhTboxl14tngOH7ZVfwG3yCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc83568e07130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| watchseries.bar/wp-content/themes/watchseries/style.css?ver=1.0.4 | 104.21.33.106 | 200 OK | 283 kB |
URL GET HTTP/3watchseries.bar/wp-content/themes/watchseries/style.css?ver=1.0.4 IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
Size283 kB (282747 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/watchseries/style.css?ver=1.0.4 HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 09 Mar 2024 17:27:08 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 16892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YmZUp%2BS%2BOuLSc4A4%2BaTXxSctJa995jULXE2%2Fjjk0HvkfdXg7XLLc4Jo8ERxgTC9HYCATDPznpLaRBVMLROoAy%2FoWL2NEG1HOsfaGp%2BmNoq4LYOCe0TqhaPLV4%2F3vqZDb8e4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc837ffd756a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 | 142.250.74.67 | 200 OK | 8.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8668, version 1.0 Hasha242ba0df3a128a2cab929a8c45d5056 d70e2c70b21cbb66cd883ae56e2dedacefd81c7c 50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
GET /s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 10:06:44 GMT
expires: Sat, 03 May 2025 10:06:44 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:54 GMT
content-type: font/woff2
age: 129416
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Tue, 04 Jun 2024 22:03:40 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 1779
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83bbfdf56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| chat4sexxx.com/video/slide3.mp4 | 0.0.0.0 | | 0 B |
URL GET chat4sexxx.com/video/slide3.mp4 IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/slide3.mp4 HTTP/1.1
Host: chat4sexxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
|
|
| acscdn.com/script/ippg.js | 188.114.96.1 | 200 OK | 106 kB |
URL GET HTTP/3acscdn.com/script/ippg.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
Size106 kB (106476 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ippg.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: text/javascript
x-goog-generation: 1714389816428258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 106476
x-goog-hash: crc32c=5tkeyg==, md5=biNKhMn5dr2tlMXG+AzH0A==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPpfVl-jZGGk4QiQqGFBmqJ7wsgOjG5GMJcdzFS_nVBCwJ59qjRK4wIpuvPlFRd92eSWZeYQ6bfLMA
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 04 May 2024 21:54:51 GMT
cache-control: public, max-age=3600
age: 2143
last-modified: Mon, 29 Apr 2024 11:23:36 GMT
etag: W/"6e234a84c9f976bdad94c5c6f80cc7d0"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y869FBgiuqZYaaLIVr3CmxWlMI%2FHFsyMrVWKIiiXClZy03c89fuHjMFjhYoWCyabpIosnR4R1lMeDc%2BzcKX7MrcyrM%2Fg2GsjZevx1HGk0qOUZoS%2FwbxCOSE64vYa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83f0dbeb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| c.adsco.re/ | 104.17.166.186 | 200 OK | 82 kB |
IP104.17.166.186:443
CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Tue, 04 Jun 2024 22:03:41 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 1780
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc840fe925684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/script/suurl5.php?r=8303322&atag=1&cbur=0.9401482063824801&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=WatchSeries%20%E2%80%93%20Unleash%20the%20Magic%20of%20Movies%2C%20Anytime%2C%20Anywhere&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&cbdescription=Explore%2C%20stream%2C%20and%20enjoy%20a%20vast%20collection%20of%20movies%20from%20the%20comfort%20of%20your%20own%20screen%2C%20Unleash%20the%20Magic%20of%20Movies%2C%20Anytime%2C%20Anywhere%20on%20WatchSeries&cbkeywords=&cbcdn=acscdn.com&ts=1714860221286&atv=48.1&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&srs=37f234662d2e9f4282f8a68161ecf7f4&aggr=3&czid=xiul3gkyt9&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&cap=0 | 172.67.177.214 | 200 OK | 1.2 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=8303322&atag=1&cbur=0.9401482063824801&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=WatchSeries%20%E2%80%93%20Unleash%20the%20Magic%20of%20Movies%2C%20Anytime%2C%20Anywhere&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&cbdescription=Explore%2C%20stream%2C%20and%20enjoy%20a%20vast%20collection%20of%20movies%20from%20the%20comfort%20of%20your%20own%20screen%2C%20Unleash%20the%20Magic%20of%20Movies%2C%20Anytime%2C%20Anywhere%20on%20WatchSeries&cbkeywords=&cbcdn=acscdn.com&ts=1714860221286&atv=48.1&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&srs=37f234662d2e9f4282f8a68161ecf7f4&aggr=3&czid=xiul3gkyt9&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&cap=0 IP172.67.177.214:443
CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1229), with no line terminators Hashe8993dfd8685858de71d7fa4faad5adb 152b1327c9d77775ec591fd377a845b84a593e84 eed813da19feae7f2c9b70d9e8c2212f4ac200608adadd3a47f570dae1134d3c
GET /script/suurl5.php?r=8303322&atag=1&cbur=0.9401482063824801&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=WatchSeries%20%E2%80%93%20Unleash%20the%20Magic%20of%20Movies%2C%20Anytime%2C%20Anywhere&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&cbdescription=Explore%2C%20stream%2C%20and%20enjoy%20a%20vast%20collection%20of%20movies%20from%20the%20comfort%20of%20your%20own%20screen%2C%20Unleash%20the%20Magic%20of%20Movies%2C%20Anytime%2C%20Anywhere%20on%20WatchSeries&cbkeywords=&cbcdn=acscdn.com&ts=1714860221286&atv=48.1&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&srs=37f234662d2e9f4282f8a68161ecf7f4&aggr=3&czid=xiul3gkyt9&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&cap=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://watchseries.bar/
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 22:03:41 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4fM%2FFmJK%2BRtTx3Fx%2FwMkwhguJsV44iVXHniOs4PPtnNCJORJdIMITm17UyawrQsuoIFgsIG0YMtXGoY6IdcDeTUJtkXha3p3xkj%2F2zpGKGzaZYbRTRcb4kWovJJGk56q0iAywPQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc83f1e595689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/swiper@5.4.4/css/swiper.min.css | 151.101.1.229 | 200 OK | 14 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/swiper@5.4.4/css/swiper.min.css IP151.101.1.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (13425) Hash773d8f074cf687b5607c41a7e5e3c3ef 0456b77b6ebd7c1af268f611923fea64d5a1770f 3f607be9c8cccb04ff271240354b48285f25377662bb326bad8930ac2903a2b9
GET /npm/swiper@5.4.4/css/swiper.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.4.4
x-jsd-version-type: version
etag: W/"356d-BFa3e269fBryaPYRkj/qZNWhdw8"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 22:03:40 GMT
age: 336778
x-served-by: cache-fra-etou8220056-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4292
X-Firefox-Spdy: h2
|
|
| youradexchange.com/script/push.php?r=8303318&ipp=1&mads=2&position=top&czid=xiul3gkyt9&aggr=3&atag=1&rbd=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=48.1&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&srs=37f234662d2e9f4282f8a68161ecf7f4&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits | 172.67.177.214 | 200 OK | 19 kB |
URL GET HTTP/3youradexchange.com/script/push.php?r=8303318&ipp=1&mads=2&position=top&czid=xiul3gkyt9&aggr=3&atag=1&rbd=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=48.1&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&srs=37f234662d2e9f4282f8a68161ecf7f4&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits IP172.67.177.214:443
CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
Hash9266191b74d3e4133e19a650a0baadb5 6ef316e269db5b30d7a3def819697b9196b43491 24a9fccbfe3ac31cf53d2748dcda9b9b416ca9238f19f2105f67bafb3f1f399d
GET /script/push.php?r=8303318&ipp=1&mads=2&position=top&czid=xiul3gkyt9&aggr=3&atag=1&rbd=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=48.1&cbpage=https%3A%2F%2Fwatchseries.bar%2F&cbref=&srs=37f234662d2e9f4282f8a68161ecf7f4&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://watchseries.bar/
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:04:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cMXhgHHZJvDZj5Zh%2FY02PE6%2BXZkxKFuxGzBHw2olv6hb08yO6VtKkQ0dBI0qztxMcIGJtIPu4zje77jejSuA%2Fe6OyZpPv5jIPOTGmNfJI8SH68AYnSvx3lJ1aPWdXYKX5PMOwcI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebc8bf58c656c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| chat4sexxx.com/images/img-1.jpg | 0.0.0.0 | | 0 B |
URL GET chat4sexxx.com/images/img-1.jpg IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/img-1.jpg HTTP/1.1
Host: chat4sexxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,900;1,400&display=swap | 142.250.74.106 | 200 OK | 5.5 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,900;1,400&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (5638), with no line terminators Hashc54d9de54c4d9cec63d3d26b42e8d061 d5e03ad4deddd9a7ca227da73e92237b560d0a57 2f94bffbdbfd7d78aba950245765c326689139b77a5e6910d24ed6a6439e2900
GET /css2?family=Poppins:ital,wght@0,300;0,400;0,500;0,600;0,700;0,900;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 22:03:40 GMT
date: Sat, 04 May 2024 22:03:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 | 142.250.74.67 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7840, version 1.0 Hash8d91ec1ca2d8b56640a47117e313a3e9 a9e9bafe64666f4595051a0e895b47a5fa39e67e 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://watchseries.bar
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 05:07:49 GMT
expires: Sat, 03 May 2025 05:07:49 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:02:55 GMT
content-type: font/woff2
age: 147351
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| watchseries.bar/wp-content/uploads/2024/02/cropped-favicon-32x32.png | 104.21.33.106 | 200 OK | 1.0 kB |
URL GET HTTP/3watchseries.bar/wp-content/uploads/2024/02/cropped-favicon-32x32.png IP104.21.33.106:443
CertificateIssuerGoogle Trust Services LLC Subjectwatchseries.bar Fingerprint39:1D:F7:46:BA:46:E8:50:83:5B:1E:1E:31:B3:3D:B8:67:57:AA:20 ValidityMon, 01 Apr 2024 20:37:12 GMT - Sun, 30 Jun 2024 20:37:11 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash8338091eaa87573ce6593b520d9905a9 a76ff9dcdebc32375e9f3f527b4c49ad04b5f2bb 085cfc9f7c51d0ed62c90c0f404b83793731d91b045ab5d6cba873684577ef53
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2024/02/cropped-favicon-32x32.png HTTP/1.1
Host: watchseries.bar
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://watchseries.bar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 22:03:40 GMT
content-type: image/png
content-length: 1044
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 21 Feb 2024 16:39:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 15783
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FtpLUv%2BomMWNCicy3oq7EzDq6I%2F%2BdBtqChwQ1tgDDYl06jeYrLKpW%2FU62izV7zP04l02kJTrhXAw9xkl%2BncSXCltN1AXMIR%2BALXdjQvsJrO5ljfG1RRKnd6CTw5BJHEuZDU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebc83d0c6256a9-OSL
alt-svc: h3=":443"; ma=86400
|
|