Report - www.gitb.org/watch/

Report Overview

Submitted URL
www.gitb.org/watch/
IP
45.143.99.2
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi
Submitted
2024-05-07 19:38:30
Access
public
Website Title
(1) New Message!
Final URL
gitb.org/watch/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-06	338 B	942 B	3.164.222.26
pl22839066.profitablegatecpm.com	unknown	unknown	No data	No data	444 B	31 kB	192.243.59.13
dividetribute.com	unknown	unknown	No data	No data	2.8 kB	22 kB	172.240.108.76
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-07	403 B	31 kB	172.67.180.87
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-05-06	3.1 kB	70 kB	188.114.96.1
meetingrailroad.com	unknown	unknown	No data	No data	10 kB	19 kB	172.240.108.76
gitb.org	unknown	unknown	No data	No data	4.0 kB	130 kB	45.143.99.2
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-06	906 B	706 B	18.192.70.27
harassmentgrowl.com	unknown	unknown	No data	No data	478 B	467 B	172.240.253.132
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-05-07	2.3 kB	872 kB	45.133.44.9
cdn.barscreative1.com	25648	2021-09-08	2021-09-16	2024-05-06	952 B	6.7 kB	45.133.44.4
www.gitb.org	unknown	unknown	No data	No data	473 B	456 B	45.143.99.2
www.topcreativeformat.com	unknown	2023-11-21	2023-11-22	2024-05-07	1.3 kB	38 kB	172.240.253.132
restlessidea.com	unknown	unknown	No data	No data	2.3 kB	6.0 kB	192.243.59.13
ordinarilycomedyunload.com	unknown	unknown	No data	No data	2.8 kB	38 kB	172.240.108.76
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-05-06	2.2 kB	1.3 kB	192.243.61.227
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-07	2.1 kB	66 kB	216.58.207.227
horsesbarium.com	unknown	2024-02-08	2024-02-08	2024-03-16	407 B	1.5 kB	23.109.170.115
pl22839067.profitablegatecpm.com	unknown	unknown	No data	No data	444 B	16 kB	192.243.59.12
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-05-06	407 B	327 B	192.243.59.13
footprintsfurnish.com	unknown	2024-05-06	2024-05-07	2024-05-07	4.9 kB	9.4 kB	172.240.108.84
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	836 B	15 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	horsesbarium.com	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	profitablegatecpm.com	Sinkholed
2024-05-07	medium	profitablegatecpm.com	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	gitb.org	Sinkholed
2024-05-07	medium	unseenreport.com	Sinkholed
2024-05-07	medium	unseenreport.com	Sinkholed
2024-05-07	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (35)

	URL	Size	First Seen	Last Seen
	unknown	196 B	2024-05-03	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 17:17:35 Last Seen2024-05-18 22:46:41 Times Seen4 Hash 1e7e5bd56908b695c6d1c57af8798de6 f8ae4d6cbc4aea6744172c6951decf456f1cf175 de22140c3eedeb6fa70e8b0c5da85114e8be4e404dbf2cdd92189a4e34503a1a Loading...

	gitb.org/watch/	3.2 kB	2024-05-01	2024-05-07
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-07 21:38:37 Times Seen4 Hash 14f98528b44fae0366c62a06a09f5b51 a873413f3e9cea0077bc983ab60bc4f2a0ec4bc1 3aeb63dd5573fa6fd540c5c738a21d6f2aa563584898c868fef503145e64b0cf Loading...

	www.topcreativeformat.com/de99a652586bb57820d519c7eb88870f/invoke.js	31 kB	2024-05-07	2024-05-07
Pretty URL www.topcreativeformat.com/de99a652586bb57820d519c7eb88870f/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:38 Times Seen2 Hash 8c535772b17cab1c609576f1db1d2425 1424d1fce1f760e611e1d30d8e2dd38c97fbd3ff d891967efe475e1a08c75f3b515b2fcf7f2ae4f6a919ed3f1dd42802abd81aed Loading...

	gitb.org/watch/	288 B	2024-05-01	2024-05-18
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 488c586d0a39ceb0f38da9160a2db288 1e41de847684798fbd4b6d2e0b5a89772f6f67f1 e40a0fa0f4c1790a73d39088f8d6d76a73e9635f3ff2357621c08b2178aff8c3 Loading...

	ordinarilycomedyunload.com/83/a3/3a/83a33a5a615df631eb83b1d0411b72fe.js	84 kB	2024-05-07	2024-05-07
Pretty URL ordinarilycomedyunload.com/83/a3/3a/83a33a5a615df631eb83b1d0411b72fe.js IP 172.240.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:38 Times Seen2 Hash 552c32a28178d8683d8da30b1b148e51 0991a29c7ff896a8fe6dffa9a58896ffe7f6aadb 42efc3c076bab25eb792f59f639b97ec35a6b7a6781b346e7990abe43aa8173f Loading...

	unknown	3.4 kB	2024-05-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:37 Times Seen1 Hash 685ded74306c53529cba35cf1a002ae4 ea379c3ce8986381bcaa253a04505147b2551748 4f5c2f5bcd1383fabeb9ec917595574097144708b52052d35954f7c1379b5edb Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-19
Pretty URL capaciousdrewreligion.com/advertisers.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-19 16:59:08 Times Seen37835019 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	564 B	2024-05-01	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 12:30:02 Last Seen2024-05-07 21:38:37 Times Seen2 Hash 069d0c5a4d9c4fa3550812595f219026 c5d686fd8634156a523eba269406f7c4e6ac4e4a 68df4d42693692f4370fb0067d5981f43c2707836edc43dccf8efe5f34ce7cc0 Loading...

	gitb.org/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2	19 kB	2024-03-13	2024-05-19
Pretty URL gitb.org/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02:37 Last Seen2024-05-19 16:13:44 Times Seen5327 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	gitb.org/watch/	287 B	2024-05-01	2024-05-18
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 9c1a01676615eb2722f319776fda5176 8ae919cb18a5b28c9650b12c2bc90e4055a92641 c3c21924206f5f4348fc3d62cda7b09bc714ac3c86a0bc87a8c51e27d47a8c0e Loading...

	www.topcreativeformat.com/ba160ebdb7ae4c2d376f0f8dc238ac96/invoke.js	31 kB	2024-05-07	2024-05-07
Pretty URL www.topcreativeformat.com/ba160ebdb7ae4c2d376f0f8dc238ac96/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:38 Times Seen2 Hash bf6331ba70f76aac9ef1241e2ffe4350 c8bba9716139354d0a8f7db64854ba79ec07f85b c400c8aa2ebc5c1b9ef7ef0f40295568d2bb21e8575a36f355539bca6ee93869 Loading...

	dividetribute.com/93/14/a1/9314a111a083adac7140c7787c32a705.js	44 kB	2024-05-07	2024-05-07
Pretty URL dividetribute.com/93/14/a1/9314a111a083adac7140c7787c32a705.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:38 Times Seen2 Hash b582e9b4f6f726b3326dcc9e340ed22e cc0da52d4dfe771195835d2a516cbffa41dcf79e 9e1b7d3eeed23f750ae8ee5d12f1dc061ddeb041ca7606844f62ea079345df17 Loading...

	www.topcreativeformat.com/8d05a934261dd9e2aebbdaa40a9c68c4/invoke.js	31 kB	2024-05-07	2024-05-07
Pretty URL www.topcreativeformat.com/8d05a934261dd9e2aebbdaa40a9c68c4/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:38 Times Seen2 Hash 2f4d963d8bc02009319d1adff467bdaf e37f1bfca5dab5ec9c73216afd7377b994c27eb9 3ff8696de4c60f2669ae14c3581b29817efeac6ce885ba31d0d6d6724a1d0f6b Loading...

	gitb.org/watch/	287 B	2024-05-01	2024-05-18
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 2c402a7fb2778aa97c60c588c1780dee 1ea8971c15cf9ec6dea86a974ac0772269ecba32 a127dcb88f7f70ca6408fc81a2adc597d23ea174ed8454a5e3322816ee6f3e31 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 172.67.180.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	unknown	3.8 kB	2024-05-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:37 Times Seen1 Hash aa2fa7eb70f3824f1b136192d46f1146 d634ec0ed505a4a50c0de56e45e9f036f8d77974 087fe76f0245d297a28f667205ab334aab78370f8e388c1b2ba85c6d971a4a00 Loading...

	cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js	90 kB	2023-03-07	2024-05-19
Pretty URL cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:00 Last Seen2024-05-19 16:56:36 Times Seen4198 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	unknown	564 B	2024-05-01	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-07 21:38:37 Times Seen2 Hash 362afb5b86f7347930d7fb67adf6d686 ef54a817841de6d01189317a3d4e4817e0c3b249 161d3ebd6a399f22d3b0f2739cd47bce5319f03a0fa908c4208d6881033cfbf5 Loading...

	pl22839067.profitablegatecpm.com/88/5f/b4/885fb415a08e7d05b93f88ca77ad22cc.js	44 kB	2024-05-07	2024-05-07
Pretty URL pl22839067.profitablegatecpm.com/88/5f/b4/885fb415a08e7d05b93f88ca77ad22cc.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:37 Last Seen2024-05-07 21:38:38 Times Seen2 Hash 90140a89e16d2f042a6bcc2e121120cd a30d9cb4ca06771134367c95a4f17ef25c564464 6b532198f8d26e8d78fc9523214d18a1378a6418fc7fa28fce1ab34bfb7161f2 Loading...

	pl22839066.profitablegatecpm.com/19/c3/3b/19c33ba37280f60914e325fce07da677.js	84 kB	2024-05-07	2024-05-07
Pretty URL pl22839066.profitablegatecpm.com/19/c3/3b/19c33ba37280f60914e325fce07da677.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:38 Last Seen2024-05-07 21:38:38 Times Seen2 Hash 664f53a545ade24d158a212ae46bcebe ef8e60423f4da69b7b23711bf1053b097e46e3d8 807aa317ae7e4495da9282d5bc47e607e8181f1c51dcc1d5811761bc67a7b405 Loading...

	gitb.org/watch/	260 B	2023-03-07	2024-05-19
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-19 13:37:36 Times Seen2610 Hash 9b78b28b396646badfc6017235ee4be9 18103240bf0cb760cdf7febc628b56b8fca44319 215f517010a20f2f4c55d34dd3c574568bd0fb83662f0b915ddb6561f97c3904 Loading...

	gitb.org/watch/	127 B	2023-03-07	2024-05-19
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-19 13:37:36 Times Seen1645 Hash e891393f0be3a6ffaa3923b307180e7e bc0a7332b9846a5762a71b9b9811c1a8b19df194 2d1778345d3607ceb641cc5f21b0a2c045fa70052361ac91a17c39b2c9d96f71 Loading...

	gitb.org/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0	7.0 kB	2024-02-06	2024-05-19
Pretty URL gitb.org/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-06 20:30:22 Last Seen2024-05-19 13:37:37 Times Seen211 Hash 70bb4fab119eb133cae33105b69f65cb 0c78a77e06be020674ca82d28b02a712615f7b35 395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936 Loading...

	unknown	145 B	2024-05-01	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-18 22:46:41 Times Seen5 Hash c7846a4028ac8ca04437977f2f3cf944 92694638d5cc904ade8d5b84350e295e8792648d b7157b0026148ffe37b4fbc5f1b00ce29979187c89d2bb33fbc3639378b1b3c2 Loading...

	unknown	145 B	2024-05-01	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 5f03d72e93861c5fae37dcad2acc887a a9686464f01ef46343bc3c6d6dcd5e00ea72b333 709c9325536330ba4f6368664dc165e45e03346dbc1b7839fca4492f30c84978 Loading...

	unknown	145 B	2024-05-01	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 12:30:01 Last Seen2024-05-18 22:46:41 Times Seen5 Hash c96667453bf9984193543fd0bb70c107 574015df56541caf055a850c5bafcccf40c61ef6 93ba06a8b3c827492c0cdad11dee72fc96935dc6e5420ac1bd85c422e337622a Loading...

	gitb.org/watch/	82 kB	2023-11-02	2024-05-18
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-02 02:45:19 Last Seen2024-05-18 22:46:41 Times Seen446 Hash 8c0a7d3594f81dc58a669cfa13186a62 39d562d07f0444eb871e3cfe355bbb1b21cb8ccc ea0a1f06ec24432f09707d9f748f1bf059b5203a1af5a8560e0faf0cdef5e5e7 Loading...

	gitb.org/watch/	424 B	2024-05-01	2024-05-18
Pretty URL gitb.org/watch/ IP 45.143.99.2 ASN #207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 12:30:02 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 67812ca09f377412e6ba09899f69da5d c6182bd325582cff1f434b2caef307147edd4afa cd9a4e1fdfe06122d9ae111623c86e8a92c16af30586b974ce266d15fb6be26b Loading...

	unknown	3.7 kB	2024-05-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:38:38 Last Seen2024-05-07 21:38:38 Times Seen1 Hash 4746d26be30c8ae601c851cea064fb99 f42b605b2cfd97821247ebf672befe66353d2632 41aaa1ab4311a97a1b54d4e43cb9bba60b2da237b9945e5cf43b603220d746f5 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 95cbf45f5a802e517f85f548e94a7d7b	2.1 kB	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 21:38:38 Last Seen2024-05-07 21:38:38 Times Seen1 Hash 95cbf45f5a802e517f85f548e94a7d7b 0613e9b849f0d1826112fe92c123a9e2286a330d 178144f535078c8925545152e77845f1e0a0da26ee3a7d79f884e74274500a4d Loading...

	#2 Eval - 86e33ffbfb7a6025aed821c0db5bb31a	2.1 kB	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 21:38:38 Last Seen2024-05-07 21:38:38 Times Seen1 Hash 86e33ffbfb7a6025aed821c0db5bb31a 0fb4ba5ef1a43b71c125d62dc443feba8ab76c23 277c7987e0ec85d3c83301ab22b26c88e53563c073cb50face2548e90a35f483 Loading...

	#3 Eval - b67970616554076dbd960307c49bda32	2.1 kB	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 21:38:38 Last Seen2024-05-07 21:38:38 Times Seen1 Hash b67970616554076dbd960307c49bda32 dcd3a121b42a81bda90d67e3e0bd2c4b85904715 4b4138c765b3bffcbcb9855eb2d320d6fef42f788c21cbd4273e45886df2aae5 Loading...

		Size	First Seen	Last Seen
	#1 Write - 8e17a2eb89c8123a96abd38a7de3439c	117 B	2024-05-01	2024-05-18
Pretty Observations First Seen2024-05-01 12:30:02 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 8e17a2eb89c8123a96abd38a7de3439c 0636c89a547113e7d136807ffba7f3a73d669e12 f4593b3c53093628a1c68fd1876cd5466e5b1b373affd4bdb090069985ebb820 Loading...

	#2 Write - cf4ae6e517237eba422afe094033f896	117 B	2024-05-01	2024-05-18
Pretty Observations First Seen2024-05-01 12:30:02 Last Seen2024-05-18 22:46:41 Times Seen5 Hash cf4ae6e517237eba422afe094033f896 f582c75a28124b4616645c50ffec7a1548fd329e 235d1e8dc50b36ca537f5ce97d528da3638df60b07131434177c5dad4c263813 Loading...

	#3 Write - 1467583edd65427c79c2e5b595c0604e	117 B	2024-05-01	2024-05-18
Pretty Observations First Seen2024-05-01 12:30:02 Last Seen2024-05-18 22:46:41 Times Seen5 Hash 1467583edd65427c79c2e5b595c0604e 8f99582fcf0280ad52f491ddea9cd248221bcda0 e0665c930d41f1534e8a25566101db94e849231baf3f3ffadc7d2207cdcb722c Loading...

HTTP Transactions (68)

URL IP Response Size

www.gitb.org/watch/

45.143.99.2

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.gitb.org/watch/
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch/ HTTP/1.1
Host: www.gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
x-powered-by: PHP/8.0.30
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
x-redirect-by: WordPress
location: https://gitb.org/watch/
content-length: 0
date: Tue, 07 May 2024 19:38:02 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

gitb.org/watch/

45.143.99.2

200 OK

35 kB

URL User Request GET HTTP/2
gitb.org/watch/
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
HTML document, ASCII text, with very long lines (9779), with CRLF, LF line terminators
Size
35 kB (34739 bytes)
Hash
913f4c5d046be0f64d2d829caf99324f
e8f4167f9958bc19e110e2a6a4ec71fd9379950b
ac2e89850f0bdf78e13af41d2a9584cd87e6bf6cfd6c200b1d50f5c6fc5dbdb7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch/ HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/8.0.30
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://gitb.org/wp-json/>; rel="https://api.w.org/", <https://gitb.org/wp-json/wp/v2/pages/46>; rel="alternate"; type="application/json", <https://gitb.org/?p=46>; rel=shortlink
content-length: 34739
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 19:38:03 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

gitb.org/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2

45.143.99.2

200 OK

13 kB

URL GET HTTP/3
gitb.org/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
ASCII text, with very long lines (59701)
Size
13 kB (12823 bytes)
Hash
51a8390b47aa0582cf2d9c96c5addee2
b16a640874025d085c38119a1a02a3460f83f2de
98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 19:36:19 GMT
content-type: text/css
last-modified: Wed, 03 Apr 2024 03:55:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12823
date: Tue, 07 May 2024 19:36:19 GMT
server: LiteSpeed

gitb.org/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0

45.143.99.2

200 OK

4.1 kB

URL GET HTTP/3
gitb.org/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
ASCII text, with very long lines (19564), with no line terminators
Size
4.1 kB (4101 bytes)
Hash
867585929ee8b21749cdefa675d9aa11
afbd7bc967068d4e804641f4b1df78ab37417144
bc3b2c1e618a27e485095a3c0db20da5ba2fbfaf3b872ccd6ca35cb19eb37b5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0 HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 19:36:19 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 13:10:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4101
date: Tue, 07 May 2024 19:36:19 GMT
server: LiteSpeed

horsesbarium.com/rKTFx7jGjHxVjHTwe/78310

23.109.170.115

200 OK

20 B

URL GET HTTP/1.1
horsesbarium.com/rKTFx7jGjHxVjHTwe/78310
IP
23.109.170.115:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjecthorsesbarium.com
FingerprintD9:1A:A3:A0:DD:7A:F5:7E:43:5E:3A:F3:AC:24:0A:E2:1F:22:6D:2D
ValidityWed, 17 Apr 2024 23:51:51 GMT - Tue, 16 Jul 2024 23:51:50 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rKTFx7jGjHxVjHTwe/78310 HTTP/1.1
Host: horsesbarium.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 19:38:04 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Wed, 08-May-2024 19:38:04 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Wed, 08-May-2024 19:38:04 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

gitb.org/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0

45.143.99.2

200 OK

1.5 kB

URL GET HTTP/3
gitb.org/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
JavaScript source, ASCII text, with very long lines (6957), with no line terminators
Size
1.5 kB (1460 bytes)
Hash
70bb4fab119eb133cae33105b69f65cb
0c78a77e06be020674ca82d28b02a712615f7b35
395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 19:38:03 GMT
content-type: application/javascript
last-modified: Wed, 28 Feb 2024 13:10:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1460
date: Tue, 07 May 2024 19:38:03 GMT
server: LiteSpeed

gitb.org/wp-content/uploads/2024/03/tg.png

45.143.99.2

200 OK

29 kB

URL GET HTTP/3
gitb.org/wp-content/uploads/2024/03/tg.png
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
PNG image data, 768 x 181, 8-bit/color RGBA, non-interlaced
Size
29 kB (28931 bytes)
Hash
860908cfa697542ec3589fc43c01f701
c229b515d6d48b51d6268c2a26877c6b1fc94b68
c1373a3e5458cb3fc4330c8bf2efaab4a07b61f178abdcc25ee860f95d9729dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/03/tg.png HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 19:38:03 GMT
content-type: image/png
last-modified: Fri, 15 Mar 2024 20:57:28 GMT
accept-ranges: bytes
content-length: 28931
date: Tue, 07 May 2024 19:38:03 GMT
server: LiteSpeed

gitb.org/wp-content/uploads/2024/03/wt.png

45.143.99.2

200 OK

41 kB

URL GET HTTP/3
gitb.org/wp-content/uploads/2024/03/wt.png
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
PNG image data, 638 x 132, 8-bit/color RGBA, non-interlaced
Size
41 kB (40681 bytes)
Hash
72c98029656799c7d50a16b39f9c835c
9e132d96504f00590071d18684a7ea87fb670b7e
0e0fe415c4ab45357ecd15108b8bab0b24cf8878dba58e579e429c9b2d4b1fb6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2024/03/wt.png HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 19:38:03 GMT
content-type: image/png
last-modified: Fri, 15 Mar 2024 20:58:51 GMT
accept-ranges: bytes
content-length: 40681
date: Tue, 07 May 2024 19:38:03 GMT
server: LiteSpeed

www.topcreativeformat.com/8d05a934261dd9e2aebbdaa40a9c68c4/invoke.js

172.240.253.132

200 OK

12 kB

URL GET HTTP/1.1
www.topcreativeformat.com/8d05a934261dd9e2aebbdaa40a9c68c4/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjecttopcreativeformat.com
Fingerprint6D:98:D9:61:FC:CF:D9:8C:FE:5E:1C:15:5A:A5:F2:28:38:04:A4:A4
ValidityWed, 20 Mar 2024 07:51:41 GMT - Tue, 18 Jun 2024 07:51:40 GMT

File type
JavaScript source, ASCII text, with very long lines (31288), with no line terminators
Size
12 kB (11827 bytes)
Hash
2f4d963d8bc02009319d1adff467bdaf
e37f1bfca5dab5ec9c73216afd7377b994c27eb9
3ff8696de4c60f2669ae14c3581b29817efeac6ce885ba31d0d6d6724a1d0f6b

HTTP Headers

GET /8d05a934261dd9e2aebbdaa40a9c68c4/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d6404df02af403e196c0ce5584f3d331
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pl22839067.profitablegatecpm.com/88/5f/b4/885fb415a08e7d05b93f88ca77ad22cc.js

192.243.59.12

200 OK

16 kB

URL GET HTTP/1.1
pl22839067.profitablegatecpm.com/88/5f/b4/885fb415a08e7d05b93f88ca77ad22cc.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectprofitablegatecpm.com
Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30
ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT

File type
JavaScript source, ASCII text, with very long lines (44040), with no line terminators
Size
16 kB (15785 bytes)
Hash
90140a89e16d2f042a6bcc2e121120cd
a30d9cb4ca06771134367c95a4f17ef25c564464
6b532198f8d26e8d78fc9523214d18a1378a6418fc7fa28fce1ab34bfb7161f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /88/5f/b4/885fb415a08e7d05b93f88ca77ad22cc.js HTTP/1.1
Host: pl22839067.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a94f8b77bc9e50d2790672a014f8c0b4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.r2m03.amazontrust.com/

3.164.222.26

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
3.164.222.26:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
3a1e61864f6877260287982fa7e36085
6d426b2327915af4f120ff6b18ebd20ed03c2a2b
9ee2ee3f0b60937becb4aa057c348332dd277e32b268f5c0ea260c0d2a2af498

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 19:38:05 GMT
Last-Modified: Tue, 07 May 2024 18:43:33 GMT
Server: ECAcc (ska/F7A2)
X-Cache: Miss from cloudfront
Via: 1.1 5d83ff4fc3f1b992abe457ff43255c0a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: 3iY1L7_CH0JkXPEAgGB03kYadOZ8n2Q3NRpMDC5jvTGhb4erJtL6Mg==
Age: 3273

pl22839066.profitablegatecpm.com/19/c3/3b/19c33ba37280f60914e325fce07da677.js

192.243.59.13

200 OK

31 kB

URL GET HTTP/1.1
pl22839066.profitablegatecpm.com/19/c3/3b/19c33ba37280f60914e325fce07da677.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectprofitablegatecpm.com
Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30
ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30591 bytes)
Hash
664f53a545ade24d158a212ae46bcebe
ef8e60423f4da69b7b23711bf1053b097e46e3d8
807aa317ae7e4495da9282d5bc47e607e8181f1c51dcc1d5811761bc67a7b405

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /19/c3/3b/19c33ba37280f60914e325fce07da677.js HTTP/1.1
Host: pl22839066.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 15cf7da15be0b96e8a0f4737296e3da4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.topcreativeformat.com/ba160ebdb7ae4c2d376f0f8dc238ac96/invoke.js

172.240.253.132

200 OK

12 kB

URL GET HTTP/1.1
www.topcreativeformat.com/ba160ebdb7ae4c2d376f0f8dc238ac96/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjecttopcreativeformat.com
Fingerprint6D:98:D9:61:FC:CF:D9:8C:FE:5E:1C:15:5A:A5:F2:28:38:04:A4:A4
ValidityWed, 20 Mar 2024 07:51:41 GMT - Tue, 18 Jun 2024 07:51:40 GMT

File type
JavaScript source, ASCII text, with very long lines (31250), with no line terminators
Size
12 kB (11806 bytes)
Hash
bf6331ba70f76aac9ef1241e2ffe4350
c8bba9716139354d0a8f7db64854ba79ec07f85b
c400c8aa2ebc5c1b9ef7ef0f40295568d2bb21e8575a36f355539bca6ee93869

HTTP Headers

GET /ba160ebdb7ae4c2d376f0f8dc238ac96/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c34a57a2d4b6974d92ace80af3c101b7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

18.192.70.27

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.192.70.27:443
ASN
#16509 AMAZON-02

Requested by
https://gitb.org/watch/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
a9a49153cba2b840b58f247977e69f68
fbfaece8db8ea8ab94d0d9f49ad6b3a023312de0
80085bad25b2af3bd137650baf8bde9c14ff1c68acbefb60d1f08ff23b59be1e

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://gitb.org
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; expires=Fri, 05 May 2034 19:38:05 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.192.70.27

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.192.70.27:443
ASN
#16509 AMAZON-02

Requested by
https://gitb.org/watch/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
a9a49153cba2b840b58f247977e69f68
fbfaece8db8ea8ab94d0d9f49ad6b3a023312de0
80085bad25b2af3bd137650baf8bde9c14ff1c68acbefb60d1f08ff23b59be1e

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://gitb.org
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

www.topcreativeformat.com/de99a652586bb57820d519c7eb88870f/invoke.js

172.240.253.132

200 OK

12 kB

URL GET HTTP/1.1
www.topcreativeformat.com/de99a652586bb57820d519c7eb88870f/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjecttopcreativeformat.com
Fingerprint6D:98:D9:61:FC:CF:D9:8C:FE:5E:1C:15:5A:A5:F2:28:38:04:A4:A4
ValidityWed, 20 Mar 2024 07:51:41 GMT - Tue, 18 Jun 2024 07:51:40 GMT

File type
JavaScript source, ASCII text, with very long lines (31311), with no line terminators
Size
12 kB (11839 bytes)
Hash
8c535772b17cab1c609576f1db1d2425
1424d1fce1f760e611e1d30d8e2dd38c97fbd3ff
d891967efe475e1a08c75f3b515b2fcf7f2ae4f6a919ed3f1dd42802abd81aed

HTTP Headers

GET /de99a652586bb57820d519c7eb88870f/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4dae8ca9106d7fbce6168aaa66a51a55
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

gitb.org/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2

45.143.99.2

200 OK

4.0 kB

URL GET HTTP/3
gitb.org/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
4.0 kB (4037 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 19:38:04 GMT
content-type: application/javascript
last-modified: Wed, 03 Apr 2024 03:55:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4037
date: Tue, 07 May 2024 19:38:04 GMT
server: LiteSpeed

dividetribute.com/watch.1623799213216.js?key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

172.240.108.76

307 Temporary Redirect

0 B

URL GET HTTP/1.1
dividetribute.com/watch.1623799213216.js?key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectdividetribute.com
Fingerprint30:E5:4B:5E:DA:82:06:08:07:00:D4:B5:15:81:46:C4:46:04:EB:00
ValidityMon, 06 May 2024 08:01:59 GMT - Sun, 04 Aug 2024 08:01:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.1623799213216.js?key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: dividetribute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Location: https://dividetribute.com/watch.1623799213216.js?dev=e&key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ec4d406268ff089871a76152d5b11b465e4571f8b83489a73d3de03402e5f4b64f97ce5883640e3a95fea7e9bdc91802107d26fcd8558671bd94fe79033ac1ab4879dd034fac9579486953269d7d919e123315044c48f349f35b7b996efe7d853a&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
Set-Cookie: u_pl=22697098; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.0TfA4OEg3zE5s3kkN_1370hMBPO_Ng6PBLWjWxIn2tk; expires=Tue, 07 May 2024 19:39:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c2760daf4f15aa1ce80ef3ccac899c6
Strict-Transport-Security: max-age=0; includeSubdomains

dividetribute.com/watch.1623799213216.js?dev=e&key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ec4d406268ff089871a76152d5b11b465e4571f8b83489a73d3de03402e5f4b64f97ce5883640e3a95fea7e9bdc91802107d26fcd8558671bd94fe79033ac1ab4879dd034fac9579486953269d7d919e123315044c48f349f35b7b996efe7d853a&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

172.240.108.76

200 OK

2.0 kB

URL GET HTTP/1.1
dividetribute.com/watch.1623799213216.js?dev=e&key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ec4d406268ff089871a76152d5b11b465e4571f8b83489a73d3de03402e5f4b64f97ce5883640e3a95fea7e9bdc91802107d26fcd8558671bd94fe79033ac1ab4879dd034fac9579486953269d7d919e123315044c48f349f35b7b996efe7d853a&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectdividetribute.com
Fingerprint30:E5:4B:5E:DA:82:06:08:07:00:D4:B5:15:81:46:C4:46:04:EB:00
ValidityMon, 06 May 2024 08:01:59 GMT - Sun, 04 Aug 2024 08:01:58 GMT

File type
JavaScript source, ASCII text, with very long lines (2534)
Size
2.0 kB (2042 bytes)
Hash
4670894ac90b66c1ecbcd27b89ed6e41
cbd2555cf2b5cd308225789ea8afb77abbb30b28
5200ca0760dd0408d5d0923d18e0777dea909beefe34cc69bf97a4b927baee89

HTTP Headers

GET /watch.1623799213216.js?dev=e&key=8d05a934261dd9e2aebbdaa40a9c68c4&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ec4d406268ff089871a76152d5b11b465e4571f8b83489a73d3de03402e5f4b64f97ce5883640e3a95fea7e9bdc91802107d26fcd8558671bd94fe79033ac1ab4879dd034fac9579486953269d7d919e123315044c48f349f35b7b996efe7d853a&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: dividetribute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
Referer: https://gitb.org/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22697098; ain=eyJhbGciOiJIUzI1NiJ9.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.0TfA4OEg3zE5s3kkN_1370hMBPO_Ng6PBLWjWxIn2tk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; expires=Tue, 14 May 2024 19:38:05 GMT; secure; SameSite=None
iprc263b3ca3479e83cb6ebc944810716651=5191363; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cb308174be1338098dc818e699cff535
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

dividetribute.com/93/14/a1/9314a111a083adac7140c7787c32a705.js

192.243.59.12

200 OK

16 kB

URL GET HTTP/1.1
dividetribute.com/93/14/a1/9314a111a083adac7140c7787c32a705.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectdividetribute.com
Fingerprint30:E5:4B:5E:DA:82:06:08:07:00:D4:B5:15:81:46:C4:46:04:EB:00
ValidityMon, 06 May 2024 08:01:59 GMT - Sun, 04 Aug 2024 08:01:58 GMT

File type
JavaScript source, ASCII text, with very long lines (44034), with no line terminators
Size
16 kB (15796 bytes)
Hash
b582e9b4f6f726b3326dcc9e340ed22e
cc0da52d4dfe771195835d2a516cbffa41dcf79e
9e1b7d3eeed23f750ae8ee5d12f1dc061ddeb041ca7606844f62ea079345df17

HTTP Headers

GET /93/14/a1/9314a111a083adac7140c7787c32a705.js HTTP/1.1
Host: dividetribute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c571271cd014e4ae4a5be3074cd13fe2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

restlessidea.com/watch.1273272827322.js?key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

192.243.59.13

307 Temporary Redirect

0 B

URL GET HTTP/1.1
restlessidea.com/watch.1273272827322.js?key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectrestlessidea.com
FingerprintF1:1A:4C:F2:E9:86:B0:2E:A7:9E:26:57:D2:56:53:84:4B:25:CA:CD
ValidityMon, 06 May 2024 08:16:28 GMT - Sun, 04 Aug 2024 08:16:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.1273272827322.js?key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: restlessidea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Location: https://restlessidea.com/watch.1273272827322.js?dev=e&key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=2878e026819e01f93aae32d1bcf52d353cbdbc1cf897aa2683dc81572127388356bb93664c4e2ce85145edd6ca2ae57c7254b9c064870491526bc5e1575f043aa014f56c3d5426f4b10e62627e552baaab1b5c77150e5dc50a2a9f90fab978&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
Set-Cookie: u_pl=22697095; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.ykwE0FEQJrEVSF1Qd24HiHfXFrdFKmaPjmVC0iA_IMk; expires=Tue, 07 May 2024 19:39:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: efaf18b7f840289eab7848726ca1436e
Strict-Transport-Security: max-age=0; includeSubdomains

ordinarilycomedyunload.com/watch.517560403555.js?key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

172.240.108.76

307 Temporary Redirect

0 B

URL GET HTTP/1.1
ordinarilycomedyunload.com/watch.517560403555.js?key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectordinarilycomedyunload.com
Fingerprint8D:E4:86:FE:64:2D:A9:90:AA:48:55:A7:46:FE:A4:10:55:AD:30:2A
ValidityMon, 06 May 2024 08:14:09 GMT - Sun, 04 Aug 2024 08:14:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.517560403555.js?key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&tz=0&dev=e&res=14.2071&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: ordinarilycomedyunload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Location: https://ordinarilycomedyunload.com/watch.517560403555.js?dev=e&key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ff4bc92325e3ed03273a3816929d7705e078ab35883f438f4d9a022a7fb0f19ad9e495b1a231c76c8c84a2d16ea2bef4a12a24e747d056a64cfb46c996dd76faa600e270f87e94ce8819b01816f4bc6d36f04bde4ed73286f000fe39f7507f&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
Set-Cookie: u_pl=22697121; expires=Wed, 08 May 2024 19:38:05 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.veABEwj16ekT8JQSkYSE7AeLPfjjv7NWIMVD7wyDQBY; expires=Tue, 07 May 2024 19:39:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 687508a68d852c3431919f3a86bffc62
Strict-Transport-Security: max-age=0; includeSubdomains

harassmentgrowl.com/pixel/purst?dl=0&th=0&sc=0&rs=3091&rd=3091&fd=933&bv=24.5.6485&tmpl=70

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
harassmentgrowl.com/pixel/purst?dl=0&th=0&sc=0&rs=3091&rd=3091&fd=933&bv=24.5.6485&tmpl=70
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectharassmentgrowl.com
FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A
ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=3091&rd=3091&fd=933&bv=24.5.6485&tmpl=70 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

ordinarilycomedyunload.com/83/a3/3a/83a33a5a615df631eb83b1d0411b72fe.js

172.240.108.76

200 OK

30 kB

URL GET HTTP/1.1
ordinarilycomedyunload.com/83/a3/3a/83a33a5a615df631eb83b1d0411b72fe.js
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectordinarilycomedyunload.com
Fingerprint8D:E4:86:FE:64:2D:A9:90:AA:48:55:A7:46:FE:A4:10:55:AD:30:2A
ValidityMon, 06 May 2024 08:14:09 GMT - Sun, 04 Aug 2024 08:14:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30385 bytes)
Hash
552c32a28178d8683d8da30b1b148e51
0991a29c7ff896a8fe6dffa9a58896ffe7f6aadb
42efc3c076bab25eb792f59f639b97ec35a6b7a6781b346e7990abe43aa8173f

HTTP Headers

GET /83/a3/3a/83a33a5a615df631eb83b1d0411b72fe.js HTTP/1.1
Host: ordinarilycomedyunload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7d358b46fbe3fe64dbacf8272ac0b24d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

capaciousdrewreligion.com/advertisers.js

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
FingerprintBB:9C:12:88:24:43:D4:47:71:3F:F0:A4:BB:E1:85:65:CE:E7:92:E4
ValidityMon, 06 May 2024 02:35:23 GMT - Sun, 04 Aug 2024 02:35:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:06 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: edfbb10a5d6bda719511f4719e990c87
Strict-Transport-Security: max-age=0; includeSubdomains

restlessidea.com/watch.1273272827322.js?dev=e&key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=2878e026819e01f93aae32d1bcf52d353cbdbc1cf897aa2683dc81572127388356bb93664c4e2ce85145edd6ca2ae57c7254b9c064870491526bc5e1575f043aa014f56c3d5426f4b10e62627e552baaab1b5c77150e5dc50a2a9f90fab978&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

192.243.59.13

200 OK

2.4 kB

URL GET HTTP/1.1
restlessidea.com/watch.1273272827322.js?dev=e&key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=2878e026819e01f93aae32d1bcf52d353cbdbc1cf897aa2683dc81572127388356bb93664c4e2ce85145edd6ca2ae57c7254b9c064870491526bc5e1575f043aa014f56c3d5426f4b10e62627e552baaab1b5c77150e5dc50a2a9f90fab978&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectrestlessidea.com
FingerprintF1:1A:4C:F2:E9:86:B0:2E:A7:9E:26:57:D2:56:53:84:4B:25:CA:CD
ValidityMon, 06 May 2024 08:16:28 GMT - Sun, 04 Aug 2024 08:16:27 GMT

File type
JavaScript source, ASCII text, with very long lines (3115)
Size
2.4 kB (2444 bytes)
Hash
6c6ab2f625bac71c3aa9ce4b185bf23a
534167f0c6bc8f5f8049abfb7d32e077eda2f91f
af55f5c3af9fb51de6daa8fa501c31ef823efacfba3c2209e756178732b8fe38

HTTP Headers

GET /watch.1273272827322.js?dev=e&key=ba160ebdb7ae4c2d376f0f8dc238ac96&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=2878e026819e01f93aae32d1bcf52d353cbdbc1cf897aa2683dc81572127388356bb93664c4e2ce85145edd6ca2ae57c7254b9c064870491526bc5e1575f043aa014f56c3d5426f4b10e62627e552baaab1b5c77150e5dc50a2a9f90fab978&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: restlessidea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
Referer: https://gitb.org/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22697095; ain=eyJhbGciOiJIUzI1NiJ9.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.ykwE0FEQJrEVSF1Qd24HiHfXFrdFKmaPjmVC0iA_IMk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:06 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; expires=Tue, 14 May 2024 19:38:06 GMT; secure; SameSite=None
iprce820715b79ca23d2ee7a44100cb8c0a0=3569683; expires=Tue, 07 May 2024 23:38:06 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
pdhtkv27=true; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uncs27=1; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8d5924b1f33c5a1603e1f476d0336033
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

200 OK

30 kB

URL GET HTTP/3
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
30 kB (29803 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:05 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 6907bec8b8b1e966a2e16c3ddd724603
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 07 May 2024 19:38:05 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N5qlJ%2Bha5YH1w47BW9P5eAj%2F3ydXgTQK4921Eojwe1znrSS3lUTzBA00%2BxPSZQbYp3eurWYg1GGhz4Kh0pBPZQAqqnoi6209SMIQuOm7gvhx%2BaayuzCfuIb%2ByrnhWJtUJoQQbWemx0Sz63CG39RvLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab183bff5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/7b/eb/7d/7beb7d5e82c0d2fbfd71d9cbf5b969b7/1711620618.mp4

45.133.44.9

200 OK

655 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/7b/eb/7d/7beb7d5e82c0d2fbfd71d9cbf5b969b7/1711620618.mp4
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
655 kB (655007 bytes)
Hash
64511630475425ab2642b11927e3c174
8d74f2ca858ccf2c95fec517a670e62731d60880
95825df13f6eb19c869bd3b4ba602087fdca795b459f71ee59ca3347029f7594

HTTP Headers

GET /cti/7b/eb/7d/7beb7d5e82c0d2fbfd71d9cbf5b969b7/1711620618.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:06 GMT
content-type: video/mp4
content-length: 655007
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:10:26 GMT
etag: "66054212-9fe9f"
expires: Thu, 09 May 2024 19:38:06 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

gitb.org/favicon.ico

45.143.99.2

404 Not Found

1.2 kB

URL GET HTTP/3
gitb.org/favicon.ico
IP
45.143.99.2:443
ASN
#207279 Markahost Telekomunikasyon Ve Ticaret Limited Sirketi

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectgitb.org
Fingerprint0A:4B:6D:02:A6:3F:74:A9:11:CC:FC:4D:C6:87:81:EE:4A:96:AA:B3
ValidityMon, 22 Apr 2024 18:55:18 GMT - Sun, 21 Jul 2024 18:55:17 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: gitb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/watch/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1; sb_main_885fb415a08e7d05b93f88ca77ad22cc=1; sb_count_885fb415a08e7d05b93f88ca77ad22cc=1; pp_main_19c33ba37280f60914e325fce07da677=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Tue, 07 May 2024 19:38:05 GMT
server: LiteSpeed

cdn.cloudimagesb.com/cti/a7/81/a3/a781a3f5b0f5e23bdd2dd0518e7f7682/1658915583.png

45.133.44.9

200 OK

59 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/a7/81/a3/a781a3f5b0f5e23bdd2dd0518e7f7682/1658915583.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced
Size
59 kB (59343 bytes)
Hash
a8d87e991a22e21fd415f8484a2c798d
512ec0da7b33b71c73453271860fae0a0e23c627
a26bd031fca0ac99e2ee032b81812e714bb94834b7ca304fbdf2aafd5c192045

HTTP Headers

GET /cti/a7/81/a3/a781a3f5b0f5e23bdd2dd0518e7f7682/1658915583.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:06 GMT
content-type: image/png
content-length: 59343
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 09:53:11 GMT
etag: "62e10b07-e7cf"
expires: Thu, 09 May 2024 19:38:06 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/f4/fb/dc/f4fbdc5d9ba5253fa0dedf664df7c2dd/1708592949.jpg

45.133.44.9

200 OK

22 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/f4/fb/dc/f4fbdc5d9ba5253fa0dedf664df7c2dd/1708592949.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
JPEG image data, baseline, precision 8, 320x50, components 3
Size
22 kB (22343 bytes)
Hash
a01ea9bd65f2a7a6b8433ca3fd5759c6
d90a6ad268bc21e68e17a49edd24725a49ae2b71
bf1aeb3de6c03c7f0910980f366d36abf33345acda5f50630fc3d915815b0748

HTTP Headers

GET /cti/f4/fb/dc/f4fbdc5d9ba5253fa0dedf664df7c2dd/1708592949.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:06 GMT
content-type: image/jpeg
content-length: 22343
server: nginx/1.21.6
last-modified: Thu, 22 Feb 2024 09:09:17 GMT
etag: "65d70f3d-5747"
expires: Thu, 09 May 2024 19:38:06 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

footprintsfurnish.com/sbar.json?key=885fb415a08e7d05b93f88ca77ad22cc&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

172.240.108.84

200 OK

6.2 kB

URL GET HTTP/1.1
footprintsfurnish.com/sbar.json?key=885fb415a08e7d05b93f88ca77ad22cc&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectfootprintsfurnish.com
FingerprintC0:7D:8B:CA:31:11:00:D0:03:02:79:93:9F:DE:2E:1C:76:8D:3D:72
ValidityMon, 06 May 2024 08:04:59 GMT - Sun, 04 Aug 2024 08:04:58 GMT

File type
JSON text data
Size
6.2 kB (6154 bytes)
Hash
e3cdecee070b1a456bb79fa3e07e0b54
79d371b1ce460fe27d701c7c0a21ff4b91de2d10
883645db3d4ce12356d756be0576686bc73ea0aa09161c8e5696f2948b7cc741

HTTP Headers

GET /sbar.json?key=885fb415a08e7d05b93f88ca77ad22cc&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: footprintsfurnish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:06 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22738568; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; expires=Tue, 14 May 2024 19:38:06 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
slec885fb415a08e7d05b93f88ca77ad22cc=[5212671,5212672]; expires=Tue, 07 May 2024 19:38:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e368013b729027b209d475105da59ccb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

footprintsfurnish.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzubmwR%2FsSVHmoKCymXT3%2FOie3YMYYyQYN%2BuuonhQqruqJ2Wqu5qqrulJLgYDGj0N%2FgWdb5KNPxbRP8BFJwseFoSMpxzMzbsg5KrMODj6oHjv1fcKvu979cmhvSA%2BLD1ffUPtCinpcqvu1p5%2F1%2FNu1DZEZvu1ftj%2BoN28UdO965123X2h9hqPt9Wy73qu67lebU1onqj%2B8gSEyO91vHrHrTf9utdqoq%2F%2F3xvrwFAHrHdBnoBg48UHzlWIeIQs%2FW6Vm%2B1C5ddeTa2khdLosZO3s%2B1MlRnSeZloB0l2MpuGMmdr96Gy4yldqN6%2Fg5EYE%2Bfn%2B4iykxlJRL2jKc9IgmeI2CMoeyNwOYKgI8RqH4KdESBmuLmJLL17U%2BmS7vyD0gk6JouXf0KUY7L421Vk6bcrUvRrd5S0hVCZQT%2BpIPojiO4IuT1FsbsAUZ4iLj6GYL%2BQ5csNZOnRppEKgp0%2FSxsJ9wMaLHmdxF9qctpYCn2%2FteRHfph0Gk3f5e7UICFGEMkIkg9AjQM7OcKBTRzY3EHKzmux53mBy2Lqhp04brCAR23mejRIPOq57RA2nmgYoMgHiOUAsd5DrvewLQbQ9keYrQqGLcIUY%2BK8%2BRF6rELJCUpDUFKCUhCUBUHZq46ZNL6p7jJpbOTNsj%2FLjWqoiu4hPVZFl2cEVA%2BgWXWYX5DHJyY6710eYJuf18KwlURNr0XdkAfMbUWdRhKGMQ0Cynw%2FjmFEBWEWppJ3xZgEf3yKXIzJkzvPIaKnMPIUsXgM1D4NWlagWxV2sy%2B7oojqSnfBVIW8WESx4xzKC%2FLUdIWbn%2F0FHj986dfGNBDrCrmu8KF4QNCVB8PbqiRHt1VpyPebeSFSsUsn671T0IJf%2Bfp1vlMqzdZXzeCrl%2BMJMCnvvcVNsUEzJrKuId%2BsCMa4XlM65uSHdfMOj25Zs7VidWbzjVuvrK2nuebGCJWNQMXZykTGmDz604vTf3vt%2Fd8h9AjaVkjtQzILCHWKON%2BDyefsjSLQcj4T5Q5KWw21H80vpSCQfN7TqIL5Tx%2FN66Gmk9dUVIfmAF29AFrsI0sr9HSFnqxA5QDGXhkWuZ7TiOTCMJJ64SiSWn4xNXlMNj8nMOK8FjQaLm13Wl4QUB5ETT9M2h6j1G%2B2%2FXabNlCYcXJ9%2F5m%2FAQAA%2F%2F8BAAD%2F%2Fx9XCpGRBAAA

172.240.108.84

200 OK

7 B

URL GET HTTP/1.1
footprintsfurnish.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzubmwR%2FsSVHmoKCymXT3%2FOie3YMYYyQYN%2BuuonhQqruqJ2Wqu5qqrulJLgYDGj0N%2FgWdb5KNPxbRP8BFJwseFoSMpxzMzbsg5KrMODj6oHjv1fcKvu979cmhvSA%2BLD1ffUPtCinpcqvu1p5%2F1%2FNu1DZEZvu1ftj%2BoN28UdO965123X2h9hqPt9Wy73qu67lebU1onqj%2B8gSEyO91vHrHrTf9utdqoq%2F%2F3xvrwFAHrHdBnoBg48UHzlWIeIQs%2FW6Vm%2B1C5ddeTa2khdLosZO3s%2B1MlRnSeZloB0l2MpuGMmdr96Gy4yldqN6%2Fg5EYE%2Bfn%2B4iykxlJRL2jKc9IgmeI2CMoeyNwOYKgI8RqH4KdESBmuLmJLL17U%2BmS7vyD0gk6JouXf0KUY7L421Vk6bcrUvRrd5S0hVCZQT%2BpIPojiO4IuT1FsbsAUZ4iLj6GYL%2BQ5csNZOnRppEKgp0%2FSxsJ9wMaLHmdxF9qctpYCn2%2FteRHfph0Gk3f5e7UICFGEMkIkg9AjQM7OcKBTRzY3EHKzmux53mBy2Lqhp04brCAR23mejRIPOq57RA2nmgYoMgHiOUAsd5DrvewLQbQ9keYrQqGLcIUY%2BK8%2BRF6rELJCUpDUFKCUhCUBUHZq46ZNL6p7jJpbOTNsj%2FLjWqoiu4hPVZFl2cEVA%2BgWXWYX5DHJyY6710eYJuf18KwlURNr0XdkAfMbUWdRhKGMQ0Cynw%2FjmFEBWEWppJ3xZgEf3yKXIzJkzvPIaKnMPIUsXgM1D4NWlagWxV2sy%2B7oojqSnfBVIW8WESx4xzKC%2FLUdIWbn%2F0FHj986dfGNBDrCrmu8KF4QNCVB8PbqiRHt1VpyPebeSFSsUsn671T0IJf%2Bfp1vlMqzdZXzeCrl%2BMJMCnvvcVNsUEzJrKuId%2BsCMa4XlM65uSHdfMOj25Zs7VidWbzjVuvrK2nuebGCJWNQMXZykTGmDz604vTf3vt%2Fd8h9AjaVkjtQzILCHWKON%2BDyefsjSLQcj4T5Q5KWw21H80vpSCQfN7TqIL5Tx%2FN66Gmk9dUVIfmAF29AFrsI0sr9HSFnqxA5QDGXhkWuZ7TiOTCMJJ64SiSWn4xNXlMNj8nMOK8FjQaLm13Wl4QUB5ETT9M2h6j1G%2B2%2FXabNlCYcXJ9%2F5m%2FAQAA%2F%2F8BAAD%2F%2Fx9XCpGRBAAA
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectfootprintsfurnish.com
FingerprintC0:7D:8B:CA:31:11:00:D0:03:02:79:93:9F:DE:2E:1C:76:8D:3D:72
ValidityMon, 06 May 2024 08:04:59 GMT - Sun, 04 Aug 2024 08:04:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzubmwR%2FsSVHmoKCymXT3%2FOie3YMYYyQYN%2BuuonhQqruqJ2Wqu5qqrulJLgYDGj0N%2FgWdb5KNPxbRP8BFJwseFoSMpxzMzbsg5KrMODj6oHjv1fcKvu979cmhvSA%2BLD1ffUPtCinpcqvu1p5%2F1%2FNu1DZEZvu1ftj%2BoN28UdO965123X2h9hqPt9Wy73qu67lebU1onqj%2B8gSEyO91vHrHrTf9utdqoq%2F%2F3xvrwFAHrHdBnoBg48UHzlWIeIQs%2FW6Vm%2B1C5ddeTa2khdLosZO3s%2B1MlRnSeZloB0l2MpuGMmdr96Gy4yldqN6%2Fg5EYE%2Bfn%2B4iykxlJRL2jKc9IgmeI2CMoeyNwOYKgI8RqH4KdESBmuLmJLL17U%2BmS7vyD0gk6JouXf0KUY7L421Vk6bcrUvRrd5S0hVCZQT%2BpIPojiO4IuT1FsbsAUZ4iLj6GYL%2BQ5csNZOnRppEKgp0%2FSxsJ9wMaLHmdxF9qctpYCn2%2FteRHfph0Gk3f5e7UICFGEMkIkg9AjQM7OcKBTRzY3EHKzmux53mBy2Lqhp04brCAR23mejRIPOq57RA2nmgYoMgHiOUAsd5DrvewLQbQ9keYrQqGLcIUY%2BK8%2BRF6rELJCUpDUFKCUhCUBUHZq46ZNL6p7jJpbOTNsj%2FLjWqoiu4hPVZFl2cEVA%2BgWXWYX5DHJyY6710eYJuf18KwlURNr0XdkAfMbUWdRhKGMQ0Cynw%2FjmFEBWEWppJ3xZgEf3yKXIzJkzvPIaKnMPIUsXgM1D4NWlagWxV2sy%2B7oojqSnfBVIW8WESx4xzKC%2FLUdIWbn%2F0FHj986dfGNBDrCrmu8KF4QNCVB8PbqiRHt1VpyPebeSFSsUsn671T0IJf%2Bfp1vlMqzdZXzeCrl%2BMJMCnvvcVNsUEzJrKuId%2BsCMa4XlM65uSHdfMOj25Zs7VidWbzjVuvrK2nuebGCJWNQMXZykTGmDz604vTf3vt%2Fd8h9AjaVkjtQzILCHWKON%2BDyefsjSLQcj4T5Q5KWw21H80vpSCQfN7TqIL5Tx%2FN66Gmk9dUVIfmAF29AFrsI0sr9HSFnqxA5QDGXhkWuZ7TiOTCMJJ64SiSWn4xNXlMNj8nMOK8FjQaLm13Wl4QUB5ETT9M2h6j1G%2B2%2FXabNlCYcXJ9%2F5m%2FAQAA%2F%2F8BAAD%2F%2Fx9XCpGRBAAA HTTP/1.1
Host: footprintsfurnish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22738568; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec885fb415a08e7d05b93f88ca77ad22cc=[5212671,5212672]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:06 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f0b422f784267e4eddebd47dc970ed8f
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (5982 bytes)
Hash
c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd

HTTP Headers

GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:38:07 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 608383
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hSpZH%2F%2FKU32Y0%2Fh6mJJXfsUrm5HQY5ufVYI3hmpH%2Bw4q4dh0VzHCaV482mxJwVzo2xGwtFKQVDpAsOT2GPJwL%2FHDrMccw6BuSb41yJGZJpldg4ZU5pxlolXXUnc8%2FtupnG73RuogEv%2FV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab229fc55693-OSL
alt-svc: h3=":443"; ma=86400

cdn.cloudimagesb.com/si/05/df/df/05dfdf1479fcdecf5cb0e1650af9d701/1712888890.png

45.133.44.9

200 OK

70 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/05/df/df/05dfdf1479fcdecf5cb0e1650af9d701/1712888890.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
70 kB (70321 bytes)
Hash
20e13b789cc58d0f36883ae6c91f2ca7
0a2801895b47935784acb30402525622743c3597
fbfb120ee38444011a9b1ac38721af490f157798ef489450595395603bce8f78

HTTP Headers

GET /si/05/df/df/05dfdf1479fcdecf5cb0e1650af9d701/1712888890.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:07 GMT
content-type: image/png
content-length: 70321
server: nginx/1.21.6
last-modified: Fri, 12 Apr 2024 02:28:18 GMT
etag: "66189c42-112b1"
expires: Thu, 09 May 2024 19:38:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=885fb415a08e7d05b93f88ca77ad22cc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=885fb415a08e7d05b93f88ca77ad22cc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=885fb415a08e7d05b93f88ca77ad22cc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e62fc050adbd5197ab1fcba1b50da843
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=9314a111a083adac7140c7787c32a705&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=9314a111a083adac7140c7787c32a705&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=9314a111a083adac7140c7787c32a705&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 69ef61b033035b3b36180f8292cf626c
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=19c33ba37280f60914e325fce07da677&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=19c33ba37280f60914e325fce07da677&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=19c33ba37280f60914e325fce07da677&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ef445880f970242f20a043b3e04bbf3e
Strict-Transport-Security: max-age=0; includeSubdomains

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=111

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=111
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=111 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=93

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=93
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=93 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
6.0 kB (6049 bytes)
Hash
fc638645a938f69e69360c75335ffd1a
143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4
7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90

HTTP Headers

GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:07 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 600120
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1D3YpbeHDSR3zhhKfEShkl0P4ojiWUEeV63PnXRJ%2Fs3EN0Ma0GPWFH9YWh4vKs84JstfGfifxMebXl8cYZsyOUFInraP8HqcElQeOruYluEAOhlrnwVbcxSNz7fIhPj4xmHpBuV1h9q%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab221ca956c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 495787
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

footprintsfurnish.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzubmwR%2FsSVHmoKCymXT3zGR6dg9ijJFg3Ky7iuJBqV89KVPd1VR1T09yMRjQ6GnwL%2Bh8k2z8sYj%2BAS46WfCwIGQ85WBu3gUhV2XG4OiD4r1X3yv4vu%2FVJwfFOQlR0LOVN8yO0poutup%2B7fl3g%2BBGbV2lRb%2FWj5Y%2BWGreqNne9c5S3X%2Bh9prkW2Yx9APfD%2FygtqqsjE1%2FcQJCZfc6Qb3j15thPWg10bf%2F713hwVEPondOnoAS4%2FkH3lUoPkKafLci3VZusmuvJoWmubHoieO3063UlCmSWRlbD3F6fDkN405X78OkR1O6ML1%2FB5kaE%2B%2Fn%2B2Dp8SVJsN7hlCfTkCmYeARlbwSpR1B0BG72oMQpAbjAzQ2kyd2bxpZ0%2Bx%2BUTtAxmb%2F4E6ock%2FnfriJNvl3Wql%2B7Y3SRK5M69OMKqj%2BC6o6QFSfId%2BagyhPw%2FGMo8QtZvFhHmhxuOG2gxNmztBHLsE3bC0EnDheakjYWojBsLYQsjOJOoxn60p8apNQIKh5BywGo81BMjvJQxB6KzEMizmo8CIK2Lzj1ow7nDdGWbEn4AW3HAQ38pQgFn2gYIM8G4HoAbneR2V1sqQFs8SPcZgUn5uHyMfHe%2FAg9UaGUBKUjKClBqQjKnKDsVUdCu9BVd4V2BQsuc3iZG9XQ5N0DemTyrkwJqB3AiuogOyePT0z03rvYx5Y8q0VRK2bNoEX9SLaF32KdRhxFnLbbVIQh53CqgnJzU8k7akzaf3yKTI3Jk9vPgdETOH0Crh4DLZ4GLSvQzQo76ZddlbO6sV0IUyHL55Fvewf6nDw1XeHGZ39B8ocv%2FdqYBritkNkKH6oHBF29P7xtSnJ425SOfL%2BR5SpRO3Sy3js5zeWVr1%2BX26WxYm3FDb56mU%2BASXnvLenydZoKlXYd%2BWZZCSHtqrFckh%2FW3DuS3Src5nJh0yJbv%2FXK6lqSWemcMukIVJ0uT2SMyaM%2FvTj9t9fe%2Fx3KjmCLCknxkFwGlDkBz3bhshl7Zwisns2wzENZVEMbstmlVgRaznrKKrj%2F9GxWDy2dvKaqOnD76No50HwPaVKhZyv0dAWqB3DFlWGe2RkNpueGTNu5Q6at%2FmJq8phsfE7g1Fmt4Ys2k7FsM9lsNWPJBWu1mM9jzhoiijhyN46v7z3zNwAAAP%2F%2FAQAA%2F%2F%2Bfg995kQQAAA%3D%3D

172.240.108.84

200 OK

7 B

URL GET HTTP/1.1
footprintsfurnish.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzubmwR%2FsSVHmoKCymXT3zGR6dg9ijJFg3Ky7iuJBqV89KVPd1VR1T09yMRjQ6GnwL%2Bh8k2z8sYj%2BAS46WfCwIGQ85WBu3gUhV2XG4OiD4r1X3yv4vu%2FVJwfFOQlR0LOVN8yO0poutup%2B7fl3g%2BBGbV2lRb%2FWj5Y%2BWGreqNne9c5S3X%2Bh9prkW2Yx9APfD%2FygtqqsjE1%2FcQJCZfc6Qb3j15thPWg10bf%2F713hwVEPondOnoAS4%2FkH3lUoPkKafLci3VZusmuvJoWmubHoieO3063UlCmSWRlbD3F6fDkN405X78OkR1O6ML1%2FB5kaE%2B%2Fn%2B2Dp8SVJsN7hlCfTkCmYeARlbwSpR1B0BG72oMQpAbjAzQ2kyd2bxpZ0%2Bx%2BUTtAxmb%2F4E6ock%2FnfriJNvl3Wql%2B7Y3SRK5M69OMKqj%2BC6o6QFSfId%2BagyhPw%2FGMo8QtZvFhHmhxuOG2gxNmztBHLsE3bC0EnDheakjYWojBsLYQsjOJOoxn60p8apNQIKh5BywGo81BMjvJQxB6KzEMizmo8CIK2Lzj1ow7nDdGWbEn4AW3HAQ38pQgFn2gYIM8G4HoAbneR2V1sqQFs8SPcZgUn5uHyMfHe%2FAg9UaGUBKUjKClBqQjKnKDsVUdCu9BVd4V2BQsuc3iZG9XQ5N0DemTyrkwJqB3AiuogOyePT0z03rvYx5Y8q0VRK2bNoEX9SLaF32KdRhxFnLbbVIQh53CqgnJzU8k7akzaf3yKTI3Jk9vPgdETOH0Crh4DLZ4GLSvQzQo76ZddlbO6sV0IUyHL55Fvewf6nDw1XeHGZ39B8ocv%2FdqYBritkNkKH6oHBF29P7xtSnJ425SOfL%2BR5SpRO3Sy3js5zeWVr1%2BX26WxYm3FDb56mU%2BASXnvLenydZoKlXYd%2BWZZCSHtqrFckh%2FW3DuS3Src5nJh0yJbv%2FXK6lqSWemcMukIVJ0uT2SMyaM%2FvTj9t9fe%2Fx3KjmCLCknxkFwGlDkBz3bhshl7Zwisns2wzENZVEMbstmlVgRaznrKKrj%2F9GxWDy2dvKaqOnD76No50HwPaVKhZyv0dAWqB3DFlWGe2RkNpueGTNu5Q6at%2FmJq8phsfE7g1Fmt4Ys2k7FsM9lsNWPJBWu1mM9jzhoiijhyN46v7z3zNwAAAP%2F%2FAQAA%2F%2F%2Bfg995kQQAAA%3D%3D
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectfootprintsfurnish.com
FingerprintC0:7D:8B:CA:31:11:00:D0:03:02:79:93:9F:DE:2E:1C:76:8D:3D:72
ValidityMon, 06 May 2024 08:04:59 GMT - Sun, 04 Aug 2024 08:04:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzubmwR%2FsSVHmoKCymXT3zGR6dg9ijJFg3Ky7iuJBqV89KVPd1VR1T09yMRjQ6GnwL%2Bh8k2z8sYj%2BAS46WfCwIGQ85WBu3gUhV2XG4OiD4r1X3yv4vu%2FVJwfFOQlR0LOVN8yO0poutup%2B7fl3g%2BBGbV2lRb%2FWj5Y%2BWGreqNne9c5S3X%2Bh9prkW2Yx9APfD%2FygtqqsjE1%2FcQJCZfc6Qb3j15thPWg10bf%2F713hwVEPondOnoAS4%2FkH3lUoPkKafLci3VZusmuvJoWmubHoieO3063UlCmSWRlbD3F6fDkN405X78OkR1O6ML1%2FB5kaE%2B%2Fn%2B2Dp8SVJsN7hlCfTkCmYeARlbwSpR1B0BG72oMQpAbjAzQ2kyd2bxpZ0%2Bx%2BUTtAxmb%2F4E6ock%2FnfriJNvl3Wql%2B7Y3SRK5M69OMKqj%2BC6o6QFSfId%2BagyhPw%2FGMo8QtZvFhHmhxuOG2gxNmztBHLsE3bC0EnDheakjYWojBsLYQsjOJOoxn60p8apNQIKh5BywGo81BMjvJQxB6KzEMizmo8CIK2Lzj1ow7nDdGWbEn4AW3HAQ38pQgFn2gYIM8G4HoAbneR2V1sqQFs8SPcZgUn5uHyMfHe%2FAg9UaGUBKUjKClBqQjKnKDsVUdCu9BVd4V2BQsuc3iZG9XQ5N0DemTyrkwJqB3AiuogOyePT0z03rvYx5Y8q0VRK2bNoEX9SLaF32KdRhxFnLbbVIQh53CqgnJzU8k7akzaf3yKTI3Jk9vPgdETOH0Crh4DLZ4GLSvQzQo76ZddlbO6sV0IUyHL55Fvewf6nDw1XeHGZ39B8ocv%2FdqYBritkNkKH6oHBF29P7xtSnJ425SOfL%2BR5SpRO3Sy3js5zeWVr1%2BX26WxYm3FDb56mU%2BASXnvLenydZoKlXYd%2BWZZCSHtqrFckh%2FW3DuS3Src5nJh0yJbv%2FXK6lqSWemcMukIVJ0uT2SMyaM%2FvTj9t9fe%2Fx3KjmCLCknxkFwGlDkBz3bhshl7Zwisns2wzENZVEMbstmlVgRaznrKKrj%2F9GxWDy2dvKaqOnD76No50HwPaVKhZyv0dAWqB3DFlWGe2RkNpueGTNu5Q6at%2FmJq8phsfE7g1Fmt4Ys2k7FsM9lsNWPJBWu1mM9jzhoiijhyN46v7z3zNwAAAP%2F%2FAQAA%2F%2F%2Bfg995kQQAAA%3D%3D HTTP/1.1
Host: footprintsfurnish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22738568; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec885fb415a08e7d05b93f88ca77ad22cc=[5212671,5212672]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3bf9a929e58e0c47c0c64d9ef05ea558
Strict-Transport-Security: max-age=0; includeSubdomains

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=84

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=84
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=84 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 295770
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js

188.114.96.1

200 OK

183 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
183 B (183 bytes)
Hash
4f5f05ab032dd8fc0db448fcf51a35e2
78f94f93fdb792d95ea3ac293ac1b8e3bc13d609
7fd8e9c0e5ca0c7123954a109fa8b7e8368c7e1262880925e2ac7b8c877a9e38

HTTP Headers

GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:38:07 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 437987
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qT01xegTxBStuuVn1Bq6rB6KNDOK83kKmnp4H1WyrLHHC4M2iwNGbgg%2Fw4p0aJgiPDaKBejfABO%2FvPCd20KpbUlBLmuDLc9EfDWXWO%2BlO6EHA8PLZ7emEmiXvC9LxDrlURWwLpSLv13h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab2308b65693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

footprintsfurnish.com/pixel/sbs?c=1

172.240.108.84

200 OK

0 B

URL GET HTTP/1.1
footprintsfurnish.com/pixel/sbs?c=1
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectfootprintsfurnish.com
FingerprintC0:7D:8B:CA:31:11:00:D0:03:02:79:93:9F:DE:2E:1C:76:8D:3D:72
ValidityMon, 06 May 2024 08:04:59 GMT - Sun, 04 Aug 2024 08:04:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: footprintsfurnish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22738568; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec885fb415a08e7d05b93f88ca77ad22cc=[5212671,5212672]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js

188.114.96.1

200 OK

40 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
40 kB (40053 bytes)
Hash
561acb3e541133bbdd2c0c19f8ee35a1
ffd1353cf3f77d25f801c84d8208613eb0d3d548
9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc

HTTP Headers

GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:38:07 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 616831
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qB7gzb%2FxL4oV7owTcsSNNvVzq4dtOnfQ40s%2FODaDxFxG9kWLfIdZsq8zNUBWxlUCRe2LI%2FdfWAJ1ind1Y%2FxPjtJBM2eOx8OekEnOvAWuTdiK%2Fa5LfwBE9Xna%2BHxNqlDpYkT0DfOxF3lt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab229fea5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

meetingrailroad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitzsaTB3%2BwJ0WYg8Iqm0lX92R6ZvewGNfIYtysu4riQanuqp4tU93VVPWPSU7BgC6eBv%2BCzptks%2Boi%2Bge46GRBISBmxEMO5uhZEPaqzDg4%2BkHz%2FXhfw3vvq4%2F3ijPioWCnV9%2FQ21IptrzSdBsX3qX0cmNdpkW%2F0e%2B0P2i3LjdMeanbbrovNl4T0aZe9lzqutSljTVpRKz7yxMQMrvfpc2u22x5TbrSQt%2F8v7eFA8sc8PKMPA3Jx4sPnfOQ0Qhp8vVVYTdznV18NSkUy7VByQ%2FfTjdTXaVI5mVsHMTp4Wwb2p6sPYBOD6Z0oct%2FF0M5Js4PDxCmhzOSCMv9Kc9QQaQI%2BeOoyhGEGkGyESK9C8lPCBBxXN9Amty9rk3Ftv5B2QQdk8VHf0JWY7L423mkyVerSvYbt7QqcqlTi35cQ%2FZHkL0RsuII%2BfYCZHWEKP8Ikv9Elh%2BtI032N6zSkPz0eebHwgtYsES7sbfUEsxf6njeypIXep2467c8V7hTg6QcQcYjKDEAsw6KyScdFLGDInOQ8NNGRCkNXB4xt9ONIp8HImxzl7Igpoy67Q6KaKJhgDwbIFIDRGYHmdnBphzAFN%2FB3q5h%2BWOw%2BZg4b5YoeY1KEFSWoGIElSSocoKqrA%2B4sp6t73Jli5DOsjfLfj3UeW%2BPHei8J1ICZgYwvN7LzshTExOd9369h01x2uj6tMUopczt%2BIyzKKAtNwqCThD5HgvcFVhZQ9qFqeRtOSbBH58gk2PyzNYLCNkRrDpCJJ8EK54Dq2qw2zW203s9mYdNbXrgukaWLyLfcvbUGXl2esKNTwlEdHzlF38aiEyNzNT4UD4k6Kk7w5u6Ivs3dWXJNxtZLhO5zSbnvZWzXJz74nWxVWnDr121g89fjibApLz%2FlrD5Oku5THuWfLkqORdmTZtIkG%2Bv2XdEeKOwt1cLkxbZ%2Bo1X1q4lmRHWSp2OwOTJ6kTGmDzx%2FUvTd3vx%2Fd8hzQimqJEUx2QWkPoIUbYDmx1f%2BXk2s5rAqPlOmDmoinpovHA%2BVJJAiXnPwhr2P304r4eGTf5mst6zd9AzC2D5LtKkRmlqlKoGUwPY4twwz8zcxFAtDENlFvZDZdRnU5PHZPXHv2DlaSPwfZe1uys0CJgIwpbXiduUM%2Ba12l67zXzkdhxf2r3wNwAAAP%2F%2FAQAA%2F%2F%2BrPOGvkQQAAA%3D%3D

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
meetingrailroad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitzsaTB3%2BwJ0WYg8Iqm0lX92R6ZvewGNfIYtysu4riQanuqp4tU93VVPWPSU7BgC6eBv%2BCzptks%2Boi%2Bge46GRBISBmxEMO5uhZEPaqzDg4%2BkHz%2FXhfw3vvq4%2F3ijPioWCnV9%2FQ21IptrzSdBsX3qX0cmNdpkW%2F0e%2B0P2i3LjdMeanbbrovNl4T0aZe9lzqutSljTVpRKz7yxMQMrvfpc2u22x5TbrSQt%2F8v7eFA8sc8PKMPA3Jx4sPnfOQ0Qhp8vVVYTdznV18NSkUy7VByQ%2FfTjdTXaVI5mVsHMTp4Wwb2p6sPYBOD6Z0oct%2FF0M5Js4PDxCmhzOSCMv9Kc9QQaQI%2BeOoyhGEGkGyESK9C8lPCBBxXN9Amty9rk3Ftv5B2QQdk8VHf0JWY7L423mkyVerSvYbt7QqcqlTi35cQ%2FZHkL0RsuII%2BfYCZHWEKP8Ikv9Elh%2BtI032N6zSkPz0eebHwgtYsES7sbfUEsxf6njeypIXep2467c8V7hTg6QcQcYjKDEAsw6KyScdFLGDInOQ8NNGRCkNXB4xt9ONIp8HImxzl7Igpoy67Q6KaKJhgDwbIFIDRGYHmdnBphzAFN%2FB3q5h%2BWOw%2BZg4b5YoeY1KEFSWoGIElSSocoKqrA%2B4sp6t73Jli5DOsjfLfj3UeW%2BPHei8J1ICZgYwvN7LzshTExOd9369h01x2uj6tMUopczt%2BIyzKKAtNwqCThD5HgvcFVhZQ9qFqeRtOSbBH58gk2PyzNYLCNkRrDpCJJ8EK54Dq2qw2zW203s9mYdNbXrgukaWLyLfcvbUGXl2esKNTwlEdHzlF38aiEyNzNT4UD4k6Kk7w5u6Ivs3dWXJNxtZLhO5zSbnvZWzXJz74nWxVWnDr121g89fjibApLz%2FlrD5Oku5THuWfLkqORdmTZtIkG%2Bv2XdEeKOwt1cLkxbZ%2Bo1X1q4lmRHWSp2OwOTJ6kTGmDzx%2FUvTd3vx%2Fd8hzQimqJEUx2QWkPoIUbYDmx1f%2BXk2s5rAqPlOmDmoinpovHA%2BVJJAiXnPwhr2P304r4eGTf5mst6zd9AzC2D5LtKkRmlqlKoGUwPY4twwz8zcxFAtDENlFvZDZdRnU5PHZPXHv2DlaSPwfZe1uys0CJgIwpbXiduUM%2Ba12l67zXzkdhxf2r3wNwAAAP%2F%2FAQAA%2F%2F%2BrPOGvkQQAAA%3D%3D
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitzsaTB3%2BwJ0WYg8Iqm0lX92R6ZvewGNfIYtysu4riQanuqp4tU93VVPWPSU7BgC6eBv%2BCzptks%2Boi%2Bge46GRBISBmxEMO5uhZEPaqzDg4%2BkHz%2FXhfw3vvq4%2F3ijPioWCnV9%2FQ21IptrzSdBsX3qX0cmNdpkW%2F0e%2B0P2i3LjdMeanbbrovNl4T0aZe9lzqutSljTVpRKz7yxMQMrvfpc2u22x5TbrSQt%2F8v7eFA8sc8PKMPA3Jx4sPnfOQ0Qhp8vVVYTdznV18NSkUy7VByQ%2FfTjdTXaVI5mVsHMTp4Wwb2p6sPYBOD6Z0oct%2FF0M5Js4PDxCmhzOSCMv9Kc9QQaQI%2BeOoyhGEGkGyESK9C8lPCBBxXN9Amty9rk3Ftv5B2QQdk8VHf0JWY7L423mkyVerSvYbt7QqcqlTi35cQ%2FZHkL0RsuII%2BfYCZHWEKP8Ikv9Elh%2BtI032N6zSkPz0eebHwgtYsES7sbfUEsxf6njeypIXep2467c8V7hTg6QcQcYjKDEAsw6KyScdFLGDInOQ8NNGRCkNXB4xt9ONIp8HImxzl7Igpoy67Q6KaKJhgDwbIFIDRGYHmdnBphzAFN%2FB3q5h%2BWOw%2BZg4b5YoeY1KEFSWoGIElSSocoKqrA%2B4sp6t73Jli5DOsjfLfj3UeW%2BPHei8J1ICZgYwvN7LzshTExOd9369h01x2uj6tMUopczt%2BIyzKKAtNwqCThD5HgvcFVhZQ9qFqeRtOSbBH58gk2PyzNYLCNkRrDpCJJ8EK54Dq2qw2zW203s9mYdNbXrgukaWLyLfcvbUGXl2esKNTwlEdHzlF38aiEyNzNT4UD4k6Kk7w5u6Ivs3dWXJNxtZLhO5zSbnvZWzXJz74nWxVWnDr121g89fjibApLz%2FlrD5Oku5THuWfLkqORdmTZtIkG%2Bv2XdEeKOwt1cLkxbZ%2Bo1X1q4lmRHWSp2OwOTJ6kTGmDzx%2FUvTd3vx%2Fd8hzQimqJEUx2QWkPoIUbYDmx1f%2BXk2s5rAqPlOmDmoinpovHA%2BVJJAiXnPwhr2P304r4eGTf5mst6zd9AzC2D5LtKkRmlqlKoGUwPY4twwz8zcxFAtDENlFvZDZdRnU5PHZPXHv2DlaSPwfZe1uys0CJgIwpbXiduUM%2Ba12l67zXzkdhxf2r3wNwAAAP%2F%2FAQAA%2F%2F%2BrPOGvkQQAAA%3D%3D HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1c49c08beccd9c5ac91e9b53f1b8fd50
Strict-Transport-Security: max-age=0; includeSubdomains

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=111

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=111
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=111 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (5982 bytes)
Hash
c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd

HTTP Headers

GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:38:16 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 608392
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PibpUKJEdK7Batgg7UVU9M%2F7%2FM5Qqqa8eCMDMgjC0ueqnmluYVTZXdbPGy9NroCvtIIahwZ9Abkeq%2FqXlJo40bV6kU2roLMhQcN5w51rwk2dYNK%2BWpzA%2BZYVZJaXvdjeHDYmoUNE4rl3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab5ceb2e5693-OSL
alt-svc: h3=":443"; ma=86400

cdn.cloudimagesb.com/si/1a/05/5b/1a055b345100cec477bd93c769d04408/1712888919.png

45.133.44.9

200 OK

64 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/1a/05/5b/1a055b345100cec477bd93c769d04408/1712888919.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
64 kB (63660 bytes)
Hash
8d7188516294c1f6b26ddea4a6bdf25e
38c57e26ced55025c7cbdf90e23c345112034be4
59387b16fbf06a1fbf81c300bae1574910151aa7161298ee6007a4bb0099186b

HTTP Headers

GET /si/1a/05/5b/1a055b345100cec477bd93c769d04408/1712888919.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:16 GMT
content-type: image/png
content-length: 63660
server: nginx/1.21.6
last-modified: Fri, 12 Apr 2024 02:28:47 GMT
etag: "66189c5f-f8ac"
expires: Thu, 09 May 2024 19:38:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=93

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=93
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=93 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=84

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=84
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=84 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css

188.114.96.1

200 OK

1.1 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
1.1 kB (1053 bytes)
Hash
630f303dfe147dec2c4a226287393b69
3e9f8270b84e09595181bd55de6785a89f53ba10
967d085a33a12064d83cb38f582c3e418e021a2d523dd9597bb75dc00589fec7

HTTP Headers

GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:38:16 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 437996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5elGBBtzMLL2iWcthKh36APQzHktOq99mCQx3TCJaY1%2B0Qvqt1MLY0shhEyDXOrj6gW1l72mEE6PNikRdegQDyEdDoMM2xIPMLKORwbXvvtkFhr86iepPliAW8dC2pTyivVXC5oqr0lk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab5c49ef5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 295779
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 495796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

meetingrailroad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWtcVRg%2BN40rF37QlSLMQqFKM7n3zkzuTLsoxhopxqa2iuJCOV93esyZey7n3I9JVsGAFleDv%2BDmmaSpWkR%2FgEUnBYWAmBEXWZila0HoVplxcPSFy%2FvxvBee53nPx3v5GQmR09Orb5htpTVdbtX92oV3g%2BBybV0leb%2FWb698sNK8XLPFpc5K3X%2Bx9prkm2Y59APfD%2FygtqasjE1%2FeQJCpfc7Qb3j15thPWg10bf%2F713uwVEPojgjT0OJ8eJD7zwUHyHpfX1Vus3MpBdf7eWaZsaiEIdvJ5uJKRP05mVsPcTJ4Wwbxp2sPYBJDqZ0YYp%2FF5kaE%2B%2BHB2DJ4YwkWLE%2F5ck0ZAImHkdZjCD1CIqOwM0ulDghABe4voGkd%2Fe6sSXd%2BgelE3RMFh%2F9CVWOyeJv55H0vlrVql%2B7ZXSeKZM49OMKqj%2BC6o6Q5kfIthegyiPw7CMo8RNZfrSOpLe%2F4bSBEqfP00Ysw4hGS0EnDpeakjaW2mHYWgpZ2I47jWboS39qkFIjqHgELQegzkM%2B%2BZSHPPaQpx564rTGgyCIfMGp3%2B5w3hCRZCvCD2gUBzTwV9rI%2BUTDAFk6ANcDcLuD1O5gUw1g8%2B%2Fgbldw4jG4bEy8NwsUokIpCUpHUFKCUhGUGUFZVAdCu9BVd4V2OQtmOZzlRjU0WXePHpisKxMCagewotpLz8hTExO99369h015Wus0giYNgoD67QYVlEdB0%2BdR1I54I6SR34JTFZRbmEreVmMS%2FfEJUjUmz2y9AEaP4PQRuHoSNH8OtKxAb1fYTu51VcbqxnYhTIU0W0S25e3pM%2FLs9IQbnxJIfnzll8Y0wG2F1Fb4UD0k6Oo7w5umJPs3TenINxtppnpqm07OeyujmTz3xetyqzRWXLvqBp%2B%2FzCfApLz%2FlnTZOk2ESrqOfLmqhJB2zVguybfX3DuS3cjd7dXcJnm6fuOVtWu91ErnlElGoOpkdSJjTJ74%2FqXpu734%2Fu9QdgSbV%2Bjlx2QWUOYIPN2BS4%2Bv%2FDybOUNg9XyHpR7KvBrakM2HWhFoOe8pq%2BD%2B07N5PbR08jdV1Z67g65dAM12kfQqFLZCoStQPYDLzw2z1M5NZHphyLRd2Gfa6s%2BmJo%2FJ6o9%2FwanTWsMXEZOxjJhstpqx5IK1WsznMWcN0W5zZG4cX9q98DcAAAD%2F%2FwEAAP%2F%2FK%2Bg0R5EEAAA%3D

172.240.108.76

200 OK

7 B

URL GET HTTP/1.1
meetingrailroad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWtcVRg%2BN40rF37QlSLMQqFKM7n3zkzuTLsoxhopxqa2iuJCOV93esyZey7n3I9JVsGAFleDv%2BDmmaSpWkR%2FgEUnBYWAmBEXWZila0HoVplxcPSFy%2FvxvBee53nPx3v5GQmR09Orb5htpTVdbtX92oV3g%2BBybV0leb%2FWb698sNK8XLPFpc5K3X%2Bx9prkm2Y59APfD%2FygtqasjE1%2FeQJCpfc7Qb3j15thPWg10bf%2F713uwVEPojgjT0OJ8eJD7zwUHyHpfX1Vus3MpBdf7eWaZsaiEIdvJ5uJKRP05mVsPcTJ4Wwbxp2sPYBJDqZ0YYp%2FF5kaE%2B%2BHB2DJ4YwkWLE%2F5ck0ZAImHkdZjCD1CIqOwM0ulDghABe4voGkd%2Fe6sSXd%2BgelE3RMFh%2F9CVWOyeJv55H0vlrVql%2B7ZXSeKZM49OMKqj%2BC6o6Q5kfIthegyiPw7CMo8RNZfrSOpLe%2F4bSBEqfP00Ysw4hGS0EnDpeakjaW2mHYWgpZ2I47jWboS39qkFIjqHgELQegzkM%2B%2BZSHPPaQpx564rTGgyCIfMGp3%2B5w3hCRZCvCD2gUBzTwV9rI%2BUTDAFk6ANcDcLuD1O5gUw1g8%2B%2Fgbldw4jG4bEy8NwsUokIpCUpHUFKCUhGUGUFZVAdCu9BVd4V2OQtmOZzlRjU0WXePHpisKxMCagewotpLz8hTExO99369h015Wus0giYNgoD67QYVlEdB0%2BdR1I54I6SR34JTFZRbmEreVmMS%2FfEJUjUmz2y9AEaP4PQRuHoSNH8OtKxAb1fYTu51VcbqxnYhTIU0W0S25e3pM%2FLs9IQbnxJIfnzll8Y0wG2F1Fb4UD0k6Oo7w5umJPs3TenINxtppnpqm07OeyujmTz3xetyqzRWXLvqBp%2B%2FzCfApLz%2FlnTZOk2ESrqOfLmqhJB2zVguybfX3DuS3cjd7dXcJnm6fuOVtWu91ErnlElGoOpkdSJjTJ74%2FqXpu734%2Fu9QdgSbV%2Bjlx2QWUOYIPN2BS4%2Bv%2FDybOUNg9XyHpR7KvBrakM2HWhFoOe8pq%2BD%2B07N5PbR08jdV1Z67g65dAM12kfQqFLZCoStQPYDLzw2z1M5NZHphyLRd2Gfa6s%2BmJo%2FJ6o9%2FwanTWsMXEZOxjJhstpqx5IK1WsznMWcN0W5zZG4cX9q98DcAAAD%2F%2FwEAAP%2F%2FK%2Bg0R5EEAAA%3D
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWtcVRg%2BN40rF37QlSLMQqFKM7n3zkzuTLsoxhopxqa2iuJCOV93esyZey7n3I9JVsGAFleDv%2BDmmaSpWkR%2FgEUnBYWAmBEXWZila0HoVplxcPSFy%2FvxvBee53nPx3v5GQmR09Orb5htpTVdbtX92oV3g%2BBybV0leb%2FWb698sNK8XLPFpc5K3X%2Bx9prkm2Y59APfD%2FygtqasjE1%2FeQJCpfc7Qb3j15thPWg10bf%2F713uwVEPojgjT0OJ8eJD7zwUHyHpfX1Vus3MpBdf7eWaZsaiEIdvJ5uJKRP05mVsPcTJ4Wwbxp2sPYBJDqZ0YYp%2FF5kaE%2B%2BHB2DJ4YwkWLE%2F5ck0ZAImHkdZjCD1CIqOwM0ulDghABe4voGkd%2Fe6sSXd%2BgelE3RMFh%2F9CVWOyeJv55H0vlrVql%2B7ZXSeKZM49OMKqj%2BC6o6Q5kfIthegyiPw7CMo8RNZfrSOpLe%2F4bSBEqfP00Ysw4hGS0EnDpeakjaW2mHYWgpZ2I47jWboS39qkFIjqHgELQegzkM%2B%2BZSHPPaQpx564rTGgyCIfMGp3%2B5w3hCRZCvCD2gUBzTwV9rI%2BUTDAFk6ANcDcLuD1O5gUw1g8%2B%2Fgbldw4jG4bEy8NwsUokIpCUpHUFKCUhGUGUFZVAdCu9BVd4V2OQtmOZzlRjU0WXePHpisKxMCagewotpLz8hTExO99369h015Wus0giYNgoD67QYVlEdB0%2BdR1I54I6SR34JTFZRbmEreVmMS%2FfEJUjUmz2y9AEaP4PQRuHoSNH8OtKxAb1fYTu51VcbqxnYhTIU0W0S25e3pM%2FLs9IQbnxJIfnzll8Y0wG2F1Fb4UD0k6Oo7w5umJPs3TenINxtppnpqm07OeyujmTz3xetyqzRWXLvqBp%2B%2FzCfApLz%2FlnTZOk2ESrqOfLmqhJB2zVguybfX3DuS3cjd7dXcJnm6fuOVtWu91ErnlElGoOpkdSJjTJ74%2FqXpu734%2Fu9QdgSbV%2Bjlx2QWUOYIPN2BS4%2Bv%2FDybOUNg9XyHpR7KvBrakM2HWhFoOe8pq%2BD%2B07N5PbR08jdV1Z67g65dAM12kfQqFLZCoStQPYDLzw2z1M5NZHphyLRd2Gfa6s%2BmJo%2FJ6o9%2FwanTWsMXEZOxjJhstpqx5IK1WsznMWcN0W5zZG4cX9q98DcAAAD%2F%2FwEAAP%2F%2FK%2Bg0R5EEAAA%3D HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 33ee7819f51badb7cd6d0159651fa77f
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css

188.114.96.1

200 OK

5.6 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
5.6 kB (5577 bytes)
Hash
fc638645a938f69e69360c75335ffd1a
143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4
7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90

HTTP Headers

GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:38:16 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 600129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pKWMcxke6hfNrKFX9urjbRYpeRE3%2BaBtICyE2gODduA23fyXzUz0GyUVv4fCiWNz0HjHIlcnJzum07rk68jGzcJvd%2FE%2FMW%2FP%2BF3jERTmJ%2F4tjUhERMr5OKTfGy4%2FtxeH%2F%2Be7SclIUyMN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803ab5c59fd5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ordinarilycomedyunload.com/watch.517560403555.js?dev=e&key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ff4bc92325e3ed03273a3816929d7705e078ab35883f438f4d9a022a7fb0f19ad9e495b1a231c76c8c84a2d16ea2bef4a12a24e747d056a64cfb46c996dd76faa600e270f87e94ce8819b01816f4bc6d36f04bde4ed73286f000fe39f7507f&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

172.240.108.76

200 OK

3.8 kB

URL GET HTTP/1.1
ordinarilycomedyunload.com/watch.517560403555.js?dev=e&key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ff4bc92325e3ed03273a3816929d7705e078ab35883f438f4d9a022a7fb0f19ad9e495b1a231c76c8c84a2d16ea2bef4a12a24e747d056a64cfb46c996dd76faa600e270f87e94ce8819b01816f4bc6d36f04bde4ed73286f000fe39f7507f&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectordinarilycomedyunload.com
Fingerprint8D:E4:86:FE:64:2D:A9:90:AA:48:55:A7:46:FE:A4:10:55:AD:30:2A
ValidityMon, 06 May 2024 08:14:09 GMT - Sun, 04 Aug 2024 08:14:08 GMT

File type
JavaScript source, ASCII text, with very long lines (3834), with no line terminators
Size
3.8 kB (3806 bytes)
Hash
0d4dd3c7643739c5e7534b4371fa127b
ce051e91795eb567727f619b84def2a3377c69d2
4ab57b0fdb85bb1228555cac31f7c4fd6e28aa7c8fa06aa6166643aff0626f23

HTTP Headers

GET /watch.517560403555.js?dev=e&key=de99a652586bb57820d519c7eb88870f&kw=%5B%5D&pst=1715110745&refer=https%3A%2F%2Fgitb.org%2Fwatch%2F&res=14.2071&rmtc=t&shu=ff4bc92325e3ed03273a3816929d7705e078ab35883f438f4d9a022a7fb0f19ad9e495b1a231c76c8c84a2d16ea2bef4a12a24e747d056a64cfb46c996dd76faa600e270f87e94ce8819b01816f4bc6d36f04bde4ed73286f000fe39f7507f&tz=0&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: ordinarilycomedyunload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
Referer: https://gitb.org/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22697121; ain=eyJhbGciOiJIUzI1NiJ9.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.veABEwj16ekT8JQSkYSE7AeLPfjjv7NWIMVD7wyDQBY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:06 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; expires=Tue, 14 May 2024 19:38:06 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
pdhtkv32=true; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
uncs32=1; expires=Wed, 08 May 2024 19:38:06 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c92ea6ed62affc9410b849e6b67b63d7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html

45.133.44.4

200 OK

3.0 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT

File type
HTML document, ASCII text, with very long lines (3229), with no line terminators
Size
3.0 kB (2977 bytes)
Hash
0b579b1f5697d55d3bc0856975d08243
e68a8e8bc08f86086744aba736df40ca7bea6d01
8ac4909eb5c0efc3278c66a43990535925fb271226f96261415df027fe40cb0c

HTTP Headers

GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:16 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 07 May 2024 20:38:16 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.74

200 OK

7.0 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 19:38:16 GMT
date: Tue, 07 May 2024 19:38:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

meetingrailroad.com/sbar.json?key=9314a111a083adac7140c7787c32a705&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1

172.240.108.76

200 OK

12 kB

URL GET HTTP/1.1
meetingrailroad.com/sbar.json?key=9314a111a083adac7140c7787c32a705&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
12 kB (12261 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sbar.json?key=9314a111a083adac7140c7787c32a705&uuid=a3fe27a7-19f2-4ea3-8225-2b28f93420e0%3A1%3A1 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://gitb.org
Access-Control-Allow-Origin: https://gitb.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22730152; expires=Wed, 08 May 2024 19:38:16 GMT; secure; SameSite=None
uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; expires=Tue, 14 May 2024 19:38:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:38:16 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:38:16 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 08 May 2024 19:38:16 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 08 May 2024 19:38:16 GMT; secure; SameSite=None
slec9314a111a083adac7140c7787c32a705=[5212672,4376831]; expires=Tue, 07 May 2024 19:38:21 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 876fede455e0a441ab10af801283931a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html

45.133.44.4

200 OK

3.0 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT

File type
HTML document, ASCII text, with very long lines (3229), with no line terminators
Size
3.0 kB (2977 bytes)
Hash
0b579b1f5697d55d3bc0856975d08243
e68a8e8bc08f86086744aba736df40ca7bea6d01
8ac4909eb5c0efc3278c66a43990535925fb271226f96261415df027fe40cb0c

HTTP Headers

GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gitb.org
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:38:06 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 07 May 2024 20:38:06 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=18

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=18
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=18 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=18

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=18
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=18 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

meetingrailroad.com/pixel/sbs?c=1

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
meetingrailroad.com/pixel/sbs?c=1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://gitb.org/watch/
Certificate
IssuerLet's Encrypt
Subjectmeetingrailroad.com
Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1
ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gitb.org/
Cookie: u_pl=22730152; uid_id2=a3fe27a7-19f2-4ea3-8225-2b28f93420e0:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9314a111a083adac7140c7787c32a705=[5212672,4376831]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.74

200 OK

7.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://gitb.org/watch/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 19:38:07 GMT
date: Tue, 07 May 2024 19:38:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (35)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash