www.navybeer.sa.com/uwsxxbbofa/ljggi875823hfbas/TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
172.67.223.131200 OK 506 B URL HTTP/1.1 www.navybeer.sa.com/uwsxxbbofa/ljggi875823hfbas/TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 09b0b533d3268619f73cb4f9213c4d33
888e4d86e56ffecd9bb99458c600194135eaac83
7431073bfbd54507d551eadf8ec87438998301eb92a6566e2c0d6348df97a2f0
Analyzer Verdict Alert quad9 Sinkholed
GET /uwsxxbbofa/ljggi875823hfbas/TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2FDKv%2Fyucrk6htGDYaX2bswpdNqV0bvSKXk5rohbvSynbyUl7HNLvOXE5DFrn9hnKavPeaOZbBIr7qK%2FwbhTZflM0eOPImpo%2F4QIF%2F7%2FSQ%2FQeV2xZnt9MoyQVKM6RWJHoydpShNb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74df6f04cee9b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 02:13:30 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QEevs2elHnQSrPhpc29uodl2D8d8f0tWTO8G0Oq0S0XH2msnrBAVVQ==
Age: 1590
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4184
Expires: Wed, 21 Sep 2022 03:49:44 GMT
Date: Wed, 21 Sep 2022 02:40:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZyiwIaOUVnL8eq29VwQ8-3d-tkdKOPDGi0vCNN9T-5-8QR7P8EmfUQ==
age: 79488
X-Firefox-Spdy: h2
www.navybeer.sa.com/jquery-1.11.0.min.js
172.67.223.131200 OK 33 kB URL HTTP/1.1 www.navybeer.sa.com/jquery-1.11.0.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (32341)
Hash 95fe3f4dd117c33f6015e1c3d6df1d0d
d5b8856932d1ea63f51824de0bb50670d2e960bc
e6945ac3f1927f242a9fd7a5cf67720f7763888127a7427eb24ffc52019d4b16
Analyzer Verdict Alert quad9 Sinkholed
GET /jquery-1.11.0.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/uwsxxbbofa/ljggi875823hfbas/TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 01 Aug 2022 19:03:39 GMT
ETag: W/"62e8238b-1787d"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5054
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7S8NNoV3x7sEUARDVrHg9jlnHQyTAaTRjwJYIBlYsRxc%2Bg49BHFSnGD3ZjpS5DCg3FI90DjUZYb2kZFL2wWBQ5sqPWOYGR4QTfLNJLp6GXedkZEXTmmcuzTmdc5VyMM%2FToqIMTLg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f072fc7b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 02:40:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.navybeer.sa.com/offer.php?id=449&h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
172.67.223.131200 OK 303 B URL HTTP/1.1 www.navybeer.sa.com/offer.php?id=449&h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4c4d7f832134bd8ae852b36712bd85c3
dea3bedd4467b029238a4be20fcd4d74e233a79b
f43a2f2357aaeee435ac72b7190e24186ffc35d95df20bc91e0cb0e68370e424
Analyzer Verdict Alert quad9 Sinkholed
GET /offer.php?id=449&h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/uwsxxbbofa/ljggi875823hfbas/TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZlLcaDUpJba3Wh0bm8P85kr2cXgfY%2FtrSvsrXBEOUVAgZ%2FvfWdHkQ1L1ReoRSZTstK2uu39V0nKtLMeIVG7OgxPAiVw1ZafDbCf6gfLJA547cgt5rLFY0OBxU%2B8IK251MRmx1X1H"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74df6f081824b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
172.67.223.131200 OK 21 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6926), with CRLF line terminators
Hash 410feb3b98487db2a999938de0071d40
c6761ee31cbecc88524d96e3cdc1476b31d7b958
ac5330eb356c7013358c54a8bd3fadf3e2a0412bcef306abf49000e82caa55a8
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sABX6PJddh70F6KFvvKKhaNK0BxzKg8V0srfzKkA9aj84k%2BL%2FEDflkYasYp%2BFzLRWmRX2FLPMiz8f9VNG%2B8aYgXCB%2F%2BegkVtBJ6%2FCt2CDXWwFAaNmhu88y4sJ7WZj03iVlOJOFra"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74df6f09287cb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.googletagmanager.com/gtag/js?id=UA-22484186-3
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-22484186-3
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 16f88513b1a80d7be7d3dd3f8b8ea45f
950b3244aa1e0b0c2fbf0733e178e25ec54be617
9d6d924c4340e112b9f0bc3c206970846a8db9d678d80f8d3ff4993a752301de
GET /gtag/js?id=UA-22484186-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 02:40:01 GMT
expires: Wed, 21 Sep 2022 02:40:01 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42222
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.navybeer.sa.com/clicks/BarxBusyBall_files/wp-emoji-release.min.js
172.67.223.131200 OK 4.7 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/wp-emoji-release.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (11272)
Hash 71b6d75cd4e93368516cec04a93790f8
d274862e4ee8bea24bf1d6d6f8f1e231abd778c2
7f1d272195370f3d6541779815b23d961b1cb9474d3bf57786f9844840083596
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/wp-emoji-release.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:29 GMT
ETag: W/"632a3299-3795"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JnqrKxb93d%2F5rjKeUBMJ7YOQM0U434csAARLIlmlaycXrhA1LLJ1qL2P%2F%2FVtJV6s%2FmJwk7gjJ5TG49Y7Zf%2BAWGznE7kXsZBSNXyjVQDpAaDt3v0858QCV0JZcM%2Buo1ttpTuJ9Kmz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f09dc000b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend-legacy.min.css
172.67.223.131200 OK 841 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend-legacy.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (13766)
Hash 33628cd8b2d92ed0a17f803521030e29
3419f47abb56eed874af447f42b372afedd17043
b78e1b4ca7ffdc42f304e81c98aa52ac90f1bc59a7d0c193f60d26b5237787cd
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/frontend-legacy.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:02 GMT
ETag: W/"632a327e-35ed"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ciEMrV%2BHJQgX4TcuS0RAC6GTm%2BbfW8D8SoaznX2O6PmoBa%2FRTtK17JbmL3AK1ljP91pNDD5o%2FRoa0BsDnYUYTl%2FTDpjcdytA4GDj%2FGFSzs8uUk4w852g7zJUTaLi3HzvDU8dLuII"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f09f8b1b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/analytics.js
172.67.223.131200 OK 20 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/analytics.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (1325)
Hash 591d54bd92cf26b373257e9fb7a33f6b
a55b132ed25dee24900bf1d4672336ae640f22c8
851e9a6d089fa3f28cae238a77546d6e195f7148c8930e40636668d66b294fb0
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/analytics.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:50 GMT
ETag: W/"632a3272-c41d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W3Z06IavQS606GnPwtxb%2FZ80X28Dh7IhZKnSrFxdT6UA%2BWm516XuxCU%2FIDjGN0us6T8mH%2Bzbo6E0dYRBWrmGtPuvQo560%2BG5EIJ9G7Wf9NEfia4x%2BRI7oOY0JPSmukcoNKU6uD1q"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f09da120b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/elementor-icons.min.css
172.67.223.131200 OK 3.8 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/elementor-icons.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (19233)
Hash 8ff9a7b769f1dd6a22e37d3e77c538f1
3c904f8b42df2e2a0a566c18c19d6793b26d37bf
cbb4376f0b776b633543bbea816811a257d3ea9b44c5e632d531513638d46fa6
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/elementor-icons.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:00 GMT
ETag: W/"632a327c-4b4f"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P0Gat4j5Vk2Xeb8lpbRtjaIvMAWxFFnqmD3A%2BTzptEpRBM7SkQIY2fgrKq6O2tFnRuUqlAIx%2BjVY1ezQTqmVlOA2CLpERglbGXcwwV1tD6tjYX48xPB307GavtrYag0kueN2SCCe"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f09d9840b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/gtm.js
172.67.223.131200 OK 48 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/gtm.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (5023)
Hash bc89e8d21075123f643899c2c9bba6ca
d1db9a2b1334b891e91429f1cf52ab2ded511444
d40c0195a5fc269fa19fd16ba79fa5e661b54e6edf50e86ad8db93cd7a44911e
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/gtm.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:06 GMT
ETag: W/"632a3282-1ebc6"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xJEWM1UnbFwekyGQdvRL47l5h%2BXdh4%2BDjnMTTtlgpIXwrMM1AYVwF%2BQGg5kI58BLTPmzRYc0uK7lCDuXMot6CELvrVZEG6HcgJX8EaZvR6Eg8zapKakO9zmhChoH4PGc0Td0XvzO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f09d9830b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/fbevents.js
172.67.223.131200 OK 27 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/fbevents.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (64348)
Hash a4a24a0cc251d41c2c34daca410fef20
7d228600f6c2af7cbf5dbf39026dd54c2e2a45b2
9e6fd695ea02e5df7e597d9713a20362c439fb54415598602dc6324505ba8e32
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/fbevents.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:01 GMT
ETag: W/"632a327d-192f8"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8%2FzXj3A6fC8QWoNNtS3RPVdza3dMFsoHsS9rv3rKSul4txzHc%2F1bRT0qS8uTOANb%2FJUMs6OnnOzohf0EUHMYy2wimREI%2FgVDle2mZe4we7Qp9%2BEfvhfrYwAbYGS%2BiJpVmXugow%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f09dcd7b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/post-293.css
172.67.223.131200 OK 442 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/post-293.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (1312), with no line terminators
Hash 0b02aeac8980b28de54af97c665dfe72
25da527faf97f005948f97bfebb5fe79537df218
1d582e5785547b4bfc359af4c96fdfcddc8b308dfb20c6fbc9b51a9ea38d7401
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/post-293.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:19 GMT
ETag: W/"632a328f-520"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QNlTLwA2JV%2FU2agjtqSV9FjkBjd7B9lT24IeN%2FINaq9bnC07AUdlwUM3mrY2l77xUeHRtCa%2B6rBEx6laz%2FfGKfgf8A%2BiVcsdxB9Qo%2FhqfCkHqdODkCBKrNh9dwbaIQ7jINavfybn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0ae8efb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/post-30.css
172.67.223.131200 OK 2.5 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/post-30.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (27314), with no line terminators
Hash 775ce3a6470487fccab1ad577464ba12
b4623e5f9bdd5001f150ff33cc9c4e3667a10305
364bac287f929cadd0410cfde464a3acc5ba8c463a3633ec233dfcf68cc89a40
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/post-30.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:20 GMT
ETag: W/"632a3290-6ab2"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FYWe9uRqCpblOhuqxmkY1GTVMvVJdW92yDVInfX4VsJ8SdJ59cp4rexIV4GeIGIkQiZbCkBEsnQsXbv7BIKD9%2F4StqhAsjFPhi4sfb4hx8ZH88JBUyxipPwtBmVjReydD8qHqwvB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0b39cd0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/fontawesome.min.css
172.67.223.131200 OK 12 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/fontawesome.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (57726)
Hash 17fd94d9f0bb4766d4ef7a40e9b72c6d
209efb50dd482437e0d7f4dee1a42e8525c5b203
bdc3f617f541d996de0579bbd01ecb9b643a4968ce2d5b0bea3aedfc73417755
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/fontawesome.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:02 GMT
ETag: W/"632a327e-e238"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tpnKqOAy4h2%2BOhequz0R2imTs4UESQk8qU%2FRVuo1XEhbGCYvsBEWLCGHaB7a8mEzZFhTbcCF2R5nzgJzB0MIb2j4L9rAonCL7ioG3NNh8BjDaJIMR04CPopwjZb5fts9i7Yi%2FDiR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0b8921b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/global.css
172.67.223.131200 OK 2.7 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/global.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (14692)
Hash 22d3258e386dbbdf95db8ab2ba7e423d
0dedc3fb838491f2a04cfc3f549472371412dc00
b0b68fb219665b2c2bd80632f53e90675e3dda3ffa6d7e31a559ffe24741314d
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/global.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:06 GMT
ETag: W/"632a3282-9b5c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O9uIkwkzkuUe%2FCAqgCMJe7fOo9SRDGkwBNvvdZOSUs8hzSTXMQCwen69ERPfeUbHV5BoklPgYDGJg2UYdKjdKrPZ2%2B3IojJdJtcP8aHwj1pfGk8XIlH7cISQiyXjZ9aQ6omId5uk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0b29c50b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min.css
172.67.223.131200 OK 20 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (65497)
Hash a99c6e51459887016152f5ff10940d79
af1351af92cac87a558edf47e49c9e1a1797498b
4d4a79921112de5e7ba5f5a295637200eb94a0c95a95a370a61c3a0cc9ddade9
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/frontend.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:03 GMT
ETag: W/"632a327f-2871e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R8LcF%2F7TW1mW9r817CKcnGsNMVnK2KdW1bBBBmuYBJ2TXMpk1msfXHTHRzFLW%2FD%2FT5amcxWRnuzpJ6tumTrA8bEyUM%2BQyywEANzFkBmbcDNgYHv%2FkPgNoZoGgvvzHLz1KQrb%2FKO1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0adc450b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 02:03:22 GMT
Expires: Wed, 21 Sep 2022 02:33:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ABKzgZbP_WwdTKaNs7rrDyFoLtnVohGjmzYvRP6qL1LoTUDDMnAK1Q==
Age: 2200
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.navybeer.sa.com/clicks/BarxBusyBall_files/brands.min.css
172.67.223.131200 OK 312 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/brands.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (489)
Hash 6a022b68e443848e247029d92bc6ecdc
c11c6feabf7997fa9d1b08eb2c36476f9352d4de
bf7945206dad7cb2c0b38023fe794ce553791a43664c32c39fd2f6b44aff5951
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/brands.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:56 GMT
ETag: W/"632a3278-2a3"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4eVm9wDaJrI8Eyaqa4b9IKp83QXWquiObtF71j6SN1O%2FKDt%2FvDEVXXqVlRKiGBRSJGTB0p%2B9wHlU5APf3E7d36U5nwQeD4Ky4mWhoJdL8LJFyK5utA0bOZJuV2s%2Ffn0hbh5xziEA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0c0a0d0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/style.css
172.67.223.131200 OK 1.0 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/style.css
IP 172.67.223.131:0
Hash e99b51ef4084cd73f88cb7a91d894af9
d092923bdf3e3625fb1c7d5447825afe0ead22a1
b04c604b656626b3f8952e397e0516851e219d246f8838337b7a7b1235285e91
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/style.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:25 GMT
ETag: W/"632a3295-99c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=naYVQTlJT07BdYIe8r2lXnxRWTaxyLmO5TxnDRJm%2FxihXSTzp5xB3fbP9AWIaa2DRkj9bPK9wi0Ftk6KzQacuZ26qWyJByZ6iNLcjbl4bWV99%2F3Y0gbvIEh31anTZ%2FjsSWegGwU0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0c5c990b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/solid.min.css
172.67.223.131200 OK 311 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/solid.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (483)
Hash 217be86c62c0f0465c8766bdc869d10a
9e43286e9b4f012b1e00a722af7f299946af47e5
13f78c579d9ac42e0ecacf5a61c41b8e16c6a93e34c22e967927aa41016ed0d4
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/solid.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:24 GMT
ETag: W/"632a3294-29d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k0nP4KoR%2BEggi1pd0x%2BHHoVEsm%2F1CQjyzBCbwGDGO0qg7Ej1chWbC74CkRZMolibEEEwoUlvT5I22sMOt0xG2KqnJTgGF7rTJCzx6OmjhgramRSCfJDMVPrTZkIpCdfpTa7kqakF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0c5957b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1344
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Last-Modified: Wed, 21 Sep 2022 02:17:38 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min_002.css
172.67.223.131200 OK 41 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min_002.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (65493)
Hash 62e8c8a0a838d2816dea4ef7ee12aa0b
29266c33f27efc4a16d9640900e04b52f84cb4f0
e2464930e1729fc3f0b57ad6a5c86b6d9f11d230aa888699eb6f6344bf24aea3
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/frontend.min_002.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:04 GMT
ETag: W/"632a3280-7551c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WZ372u%2BxLtMfo7sTKxs%2Bsp2wdxXFN4pNo4j7I9YJq9IHLhB0uYzJ53L0CDGBYz3wEHBmqT2yHTS%2BehqgtXjfLheACSOnQjSTRAuUKndc%2B25A3dO7A6%2FJpzO0JLJHaZHjzFl2zmn3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0b1a520b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/css.css
172.67.223.131200 OK 2.1 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/css.css
IP 172.67.223.131:0
Hash a2042d6e18638f91b3ba7da090bfb9c0
10b872776163043e59f3338b8c5a664bd42f25c7
9b86b7e21024d4c484fedf5a03cc4294cbbb6b9025985512925b8362c99023eb
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/css.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:57 GMT
ETag: W/"632a3279-1257e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zWeETZAvbAiokHUT%2FGdThqeVdAwyHqPOSTevLNh6A8dyZUbmDG%2F%2FrRizV3%2FAKe46%2Bqv%2B0KHvvvs%2FyXztFG9t4NyjTfaVutOI0FokH0qMPR0S9YGTkzcbrWU2zfoaWRvNAdPcungq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0b5d7cb521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/js.cookie-2.1.3.min.js
172.67.223.131200 OK 869 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/js.cookie-2.1.3.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (1709), with no line terminators
Hash 26a96c3ee576726a849adece9131100d
04c0b1daac7ea93718df250a7fca4ace3fe1b0e7
7504f9aeaed0f4f24b5d68e2fcd9ab2bf19c2ef80a151b6399252ac4c6cc2e36
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/js.cookie-2.1.3.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:14 GMT
ETag: W/"632a328a-6ad"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z8SJjLY04Pj37FEmrrIqXPyfQJ5zXYrRHJNaSqJU%2B3XcbjH%2Bfcg9kDEPvnRvubRTznFk6ul5ZbFTHETS3dMdl1ZvuCpyHDPELXel0Sn5rkGcQdwcphFgBcs%2F36xCk7wQLLy1EKlt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0d3af90b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery-migrate.min.js
172.67.223.131200 OK 4.2 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery-migrate.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (11126)
Hash 0d5bb2a36d1fc2e095235bc201eb5579
98f0154e2ed5322a9f65077f954868d6c800b337
fe6382620c35c12aa4f3f96fe395e5813defe330c1d95fd3de1e94f8f5d1f0a5
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/jquery-migrate.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:12 GMT
ETag: W/"632a3288-2bd8"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9fNAtKiOrvS7RrQcxnCm9%2BbVCxpPsY2GwNQ8yUQ%2F9FsnwHsz5FlOihyOEHvA%2Bx30MPg18aalPHiFr6YGY3gtpmb%2B1NC4TdcTG5HRCigLT0fyEVkA9TnA2rHwSZyLVlxseVZAuYEn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0d1cca0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery.bind-first-0.2.3.min.js
172.67.223.131200 OK 691 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery.bind-first-0.2.3.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (1146)
Hash f23b394fb0399373a0f11feacefca734
933b8403b8e7d601e9cf7ae08359d0389784675d
13e90c9e8fbcb9e345f05c98ce1a8847dc0663cf02ef003a962cf7a983a43d2a
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/jquery.bind-first-0.2.3.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:12 GMT
ETag: W/"632a3288-525"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZCuOaueMPYVHku6YNY1WvggjOCPepyDw%2FYtluQgj%2BRZp0A5ymuB3Ik6vzQJgWn7DajVcOfiw9SVHL7EcS8eqPvGET8Mm34K3eEWROhZY0lMzbnycSBiQ6YFXE7saYgpLQViPszXU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0d1998b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/bootstrap.min.css
172.67.223.131200 OK 20 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/bootstrap.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (65371)
Hash 989805476e91c69067f09b5cd302a063
b304cca15ecd1c8e0afca179ef50c970addf4f73
f90dedab7e9bc8eb19d5844b65263b6fe49bf3b1b4bc66a8c80b5194fb0faedf
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/bootstrap.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:55 GMT
ETag: W/"632a3277-1d9ac"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uE7OWnC0qSOTZyDDOl2SEottw9%2BySZdzgw2K%2FNbGRTndMLjADaObo5%2FzeS0Gv7%2FKleZl1L2qrvNT3nRoxtwLpcnuKgznUsUwMUeaRCN6bulyV4Kcq5PZC%2FE6CpM7J16zW%2FekGGkY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0c5a2c0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery.min.js
172.67.223.131200 OK 31 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (65451)
Hash de51a7f2c2c244ceb7103216144f03dc
9545e4547e01b6fcabebdfa08c2d75089808fbee
10b58517301b7a47ed1354030c9b652a1d96259d24e1e1b4c4b1aa33b94682ee
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/jquery.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:13 GMT
ETag: W/"632a3289-15d98"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B5A5C0SP3nZ5kOMAfdQ62w45Y47n%2FvM7KQneJSkx8mvNJrAOdvUqgYJnXtfkp%2FXuQ348O3xX5LkXLJJJw5OandNOTdqeXA%2F2627S4zbNaI8i44MoHq7v6EpRSr2j7KQsH3EAfVck"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0d0a6a0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/hotjar-1282132.js
172.67.223.131200 OK 2.3 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/hotjar-1282132.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (3790)
Hash c7f79f90dfc00c4db81536b7a4f3a05c
f5438d62a69251f1f3e6bce67934d29356cc993b
77fda3b197fbeaf0358f7e24a638dcae6b684144b56a45c66dccf5b532ae086a
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/hotjar-1282132.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:09 GMT
ETag: W/"632a3285-1221"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xtE%2FHPuh%2FeQU05qJQVxbfAc%2BfqhrObvqiF8PWuQ15YhDvhO%2F%2Fb5ITstBunw3FVrEv%2Fl%2BGULY08RlaVVccN2TkpEjDND4ofbCHJ73N3tLD9cx0%2Fy0V0RXCJGOIeiAwD23gkvoHXMP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0dcb0e0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/animations.min.css
172.67.223.131200 OK 2.6 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/animations.min.css
IP 172.67.223.131:0
File type ASCII text, with very long lines (10019)
Hash 4c70bb5ced8549969c4fd5763e3ac298
20cb3c388b2e002b67b3d0f3b4be087b16d19976
f28829988ee5fda24ab97ab7f0a729e5d1a11a047c39f2947905f0d33ebc217f
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/animations.min.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:51 GMT
ETag: W/"632a3273-4824"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eqona%2B3aMrBOLlHXO7eT66scbjDDAJtu8YkN5u3roJVBEJRgTAWvI5EispoIaubAGHlHMwWGc6nQ9KNqzwEPbN0Pomvk610f6SLL9gUpboMrBOr6q%2Fwc9hvDdN%2FhNh6ARfw7TRiD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0dccfa0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/wp-embed.min.js
172.67.223.131200 OK 769 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/wp-embed.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (1391)
Hash 82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/wp-embed.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:28 GMT
ETag: W/"632a3298-592"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWk0EvbAmTqs8jfOWdrySdRrgZ1aL4LPe4Id3svnrotRmXF7dEakQTjhO3Sw3RWBU0SRquIC3LQbunOCG%2FIU%2FGuTLNqN6wMoPjVvuSn30TTELB8PEBRLY%2F1rX1xx6iBqC83h8DY%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0dc9d8b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/bootstrap.min.js
172.67.223.131200 OK 9.8 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/bootstrap.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (32003)
Hash 58d37dee3da217a04a9928284dd6e09a
412d316bc6cc79694772c5a86405cac30b00e2d8
d38e60ffa16dcdc8904f412aa9a74d96d637ddd2eec98a338cff900fa9d5283c
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/bootstrap.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:55 GMT
ETag: W/"632a3277-9004"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QqdGjviIVbcFN5im0CgQPjz42gbECw0wNXIgBxhkj2ksvd5bB6ieoGQpo0UcRR7J3RnltBSrXNjqFizPU4cqdKrX01UN%2FGOXXXDX01zbSdvg1gvNOyKehoSyLInwz68hJA0d9fbW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0dda9c0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/webpack-pro.runtime.min.js
172.67.223.131200 OK 2.4 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/webpack-pro.runtime.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (5141)
Hash 22c64f0e109871be8b7abd98390abb2d
123615b09a6c03a94c09c9c86ee5c0abe8ebee6e
bd1136e0e1642361ae4608815564bc4248cd39ea9e2729be218fc0b2933d2515
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/webpack-pro.runtime.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:27 GMT
ETag: W/"632a3297-1440"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w0jynhRJg4k4VLZQr5M4XkIC99GDCNcVg8yagU4UVNY%2FTL9uW6GoCZAtjor3KqPXs4g%2B%2FszuurnJwPBDgPqDgIJkGOfUjYrmUat7o%2FCCkn%2BiMx3zXv0RcKSr8us7FpOTIpErGsTc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0e4b2b0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/webpack.runtime.min.js
172.67.223.131200 OK 2.2 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/webpack.runtime.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (4918)
Hash 3080b214c7a96972c67a75895578632a
8033a9030a569ff2152b8bf5681753edb0c75561
daf37966c7b0293b89c7503e76d36797da0e5c846d3a39a29e1b5b7f0ad22489
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/webpack.runtime.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:28 GMT
ETag: W/"632a3298-135d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yihGIxPRRB8bfvTWvUkIcrGAK%2FMhL6o9pLzV58daHDWv7z%2B9jFT1Dh3k%2F4F9KdrYqzy18GP7QarMwwLHIQiVJlslbIgtva08BGLfF9eC4nkqwOlimOn4P8eYFDVgZmEuu9Yjsw1x"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0e5d210b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/public.js
172.67.223.131200 OK 13 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/public.js
IP 172.67.223.131:0
Hash 75375dac977a95b47addeb0f163faafa
575de150ed3eb7cc5a0f81dab0ef7051f6ceb8c2
45e4f9eabd33cdfaa02f5c4714c7817318a063f71466b7fc21d243714d475142
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/public.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:22 GMT
ETag: W/"632a3292-1417f"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cEnqEMnlTekZeP%2Fg8z0ZEsVS1ejU8jBvEyzr3eD2hUuG5cRBdYv5elEdZm78OSWa5wlWKz9LlKR55st4JoMDM1u9cmeYu%2FJhYRZQ9CezR7UgTkdSh9CEwcV%2F3QXQrOOyEbVL8%2FJm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0d4e55b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/main.js
172.67.223.131200 OK 17 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/main.js
IP 172.67.223.131:0
File type ASCII text, with no line terminators
Hash a932bc38777af90144148f9db9e3a6d6
1e5066d4bca2ce414111ee89b7aa4caf2564720e
8e9b2258b5383cd80acc415960b62c979d06f45af9ea4d59ee328ed76e8a69ab
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/main.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Content-Length: 17
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:14 GMT
ETag: "632a328a-11"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QtB42U2MHWyNLcUliWv83TatdXCO1PE4F9UVDzMCHKLjbUSK3BvFzoXqQXsA0L9ccLp3F2faGP8j2pJztZc0lCe2MmQR8L7CmQsZECZ96BlvL1Rph%2BoDZEDU%2BHviBuFDClmWr1ie"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0e4ac20b3d-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.189.157.130101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.157.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RI/KwyulX5tjkHFX2t+k6A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QB5dMeln2v2T+SyUYFF/0NMldLI=
www.googletagmanager.com/gtag/js?id=UA-22484186-3&l=dataLayer&cx=c
142.250.74.72302 Found 279 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-22484186-3&l=dataLayer&cx=c
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 3345d55aa2a26a83a27b97bb6995c8fa
4649c20e5cd8a0f68eac5bffda0d2daf1a24c7fc
117fdcc93510d2b55da4a428e694cb2f5bc2ce97d55eff95f87f352b9082374e
GET /gtag/js?id=UA-22484186-3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-22484186-3&l=dataLayer&cx=c
Cross-Origin-Resource-Policy: cross-origin
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 279
X-XSS-Protection: 0
www.navybeer.sa.com/clicks/BarxBusyBall_files/i18n.min.js
172.67.223.131200 OK 3.9 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/i18n.min.js
IP 172.67.223.131:0
Hash 8a9cafdbf3d1486429ee2c11cad276d6
c3fd805962ed20863829cfa99f92374764548230
3dabc9317768a089b5ee35bcf593a64b0f8b675fda95d6a3fe359126322b514f
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/i18n.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:09 GMT
ETag: W/"632a3285-27d6"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BvHK3hkUx9HuLxtFHHw%2FIDczFl1AhK%2BJnsDBbmXe5qje8fEYOjxkNtF2%2Fbh3unzZ8RmdEyXfxqE%2FDm%2ByICyoIExaU1bThGIHx9tgv94uOeTvaxuwS4Konzw7ioHSv5GCiDYGUXVh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0eed530b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
go.barxbuddy-busyball.com/tracking/universalJSRequest.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ffq=set|ff|flux_url|ff|http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY|ff|set|ff|flux_ref|ff||ff|set|ff|flux_f|ff|1547514574828824688|ff|set|ff|flux_inject|ff|%7B%22intoUrl%22%3Afalse%2C%22intoForms%22%3A%7B%22selector%22%3Anull%7D%2C%22intoLinks%22%3A%7B%22selector%22%3Anull%7D%2C%22tokens%22%3A%7B%7D%7D&frameId=_ffq_track_
172.67.190.237301 Moved Permanently 0 B URL HTTP/1.1 go.barxbuddy-busyball.com/tracking/universalJSRequest.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ffq=set|ff|flux_url|ff|http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY|ff|set|ff|flux_ref|ff||ff|set|ff|flux_f|ff|1547514574828824688|ff|set|ff|flux_inject|ff|%7B%22intoUrl%22%3Afalse%2C%22intoForms%22%3A%7B%22selector%22%3Anull%7D%2C%22intoLinks%22%3A%7B%22selector%22%3Anull%7D%2C%22tokens%22%3A%7B%7D%7D&frameId=_ffq_track_
IP 172.67.190.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/universalJSRequest.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ffq=set|ff|flux_url|ff|http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY|ff|set|ff|flux_ref|ff||ff|set|ff|flux_f|ff|1547514574828824688|ff|set|ff|flux_inject|ff|%7B%22intoUrl%22%3Afalse%2C%22intoForms%22%3A%7B%22selector%22%3Anull%7D%2C%22intoLinks%22%3A%7B%22selector%22%3Anull%7D%2C%22tokens%22%3A%7B%7D%7D&frameId=_ffq_track_ HTTP/1.1
Host: go.barxbuddy-busyball.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 02:40:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 03:40:02 GMT
Location: https://go.barxbuddy-busyball.com/tracking/universalJSRequest.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ffq=set|ff|flux_url|ff|http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY|ff|set|ff|flux_ref|ff||ff|set|ff|flux_f|ff|1547514574828824688|ff|set|ff|flux_inject|ff|%7B%22intoUrl%22%3Afalse%2C%22intoForms%22%3A%7B%22selector%22%3Anull%7D%2C%22intoLinks%22%3A%7B%22selector%22%3Anull%7D%2C%22tokens%22%3A%7B%7D%7D&frameId=_ffq_track_
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DADWsOaKExspZD6SPh9c9Q2EZEjHEaSNf4re1FBKZrMUtz8ImzlWqrC%2FtMnIeMbwN6Ng7dYIdJn%2BZu5iNfTkukTowTMQ%2Bp8xMgjA0HzvWlMaBOSLSHwfwp%2Fcl3jGjjpyr8V0sEprGKTuF2RY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0f6988b4ff-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend-modules.min.js
172.67.223.131200 OK 11 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend-modules.min.js
IP 172.67.223.131:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 34dfd3a702a8fef627e6a76ce3628333
d57617d6306ffea7aa0de32ddfb551d074ed956a
aeb67eba2e473afb02e9a2ec51f74e9432829736b09ef4114c186f7348435dfa
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/frontend-modules.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:03 GMT
ETag: W/"632a327f-80a1"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZPp2z%2BLhCmEbGNgM7dH3GQK6zdX0wy5B9vGFnru8TGN56rg3GcuzEtO4Tnx3vNefuQmWhaMhlCCOHHDInWG8gNUoBBaMLY3fRe3PC1lv80ShTnJbHsE4t1P0jgKHAYGsTKkl9cv7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0e69f9b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/hooks.min.js
172.67.223.131200 OK 2.3 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/hooks.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (6944)
Hash 03540560694e212a77995c376f83921b
2132b73afc60c57cd03846b1cc9887af9f4a8cfe
d2e2120a70173503c5f249e650dae6432ea5cd1f8149a79663577738ff717d65
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/hooks.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:08 GMT
ETag: W/"632a3284-1b43"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zEozikp13TFX5BBEV0K42d7G39gLnXv9ghNpnC8Gh3DsEIq%2Bot2Rsj8kaegzSAyqhasSM%2FZiNDr5tP7HdUOQD4JOmKMbIh9lOYKMHGflf82MDBQuJuegH6Rd7oMlYfigrUwuhooS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0eeb620b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/waypoints.min.js
172.67.223.131200 OK 3.0 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/waypoints.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash c0db6d5c401074694c0330081ea8fffe
6a7474cbdd8d9f96165eb43a2d0e26840061a7fc
45cb1f190f039721a49a08310c0d932c469c9cb470786b34d6a904e20ffa8c93
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/waypoints.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:27 GMT
ETag: W/"632a3297-2fa6"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qzD7JIIFGCwToSKNvbE%2FaTPGrntOx%2BTq%2BXk6A1W313vp3l5E4stcvM7SMcoA3V%2Fz%2FaimiuEWjr1oEeYaDXm8mFS5HFlREc5YbEsy6SN1Zn8zKD3ElswRDBQj7VtXxJMdNh9fSlt3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0f0af50b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.google-analytics.com/j/collect?v=1&_v=j96&a=650179786&t=pageview&_s=1&dl=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ul=en-us&de=UTF-8&dt=Home%20-%20BarxBuddy%20Busy%20Ball&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=KEBAAEABEAAAAC~&jid=1393793765&gjid=2102346521&cid=1157483889.1663728002&tid=UA-197636334-1&_gid=1719542307.1663728002&_r=1&_slc=1&z=1709287624
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=650179786&t=pageview&_s=1&dl=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ul=en-us&de=UTF-8&dt=Home%20-%20BarxBuddy%20Busy%20Ball&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=KEBAAEABEAAAAC~&jid=1393793765&gjid=2102346521&cid=1157483889.1663728002&tid=UA-197636334-1&_gid=1719542307.1663728002&_r=1&_slc=1&z=1709287624
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j96&a=650179786&t=pageview&_s=1&dl=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&ul=en-us&de=UTF-8&dt=Home%20-%20BarxBuddy%20Busy%20Ball&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=KEBAAEABEAAAAC~&jid=1393793765&gjid=2102346521&cid=1157483889.1663728002&tid=UA-197636334-1&_gid=1719542307.1663728002&_r=1&_slc=1&z=1709287624 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.navybeer.sa.com
date: Wed, 21 Sep 2022 02:40:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min_002.js
172.67.223.131200 OK 5.7 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min_002.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (21374)
Hash 8074fd95a166a82ebca91755e25847f3
c12acecda79a93a2bbabebcb4fb1a7ad3f07ccc4
d6fb4f401ac29b037a5e6651b2b413b676aa165655b660689ce5c99a6d923a90
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/frontend.min_002.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:05 GMT
ETag: W/"632a3281-53a9"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CqUqJrBEZ686gluvgpwVMyI8%2B159qVivhRyIBsIrbXweGgZO3cZANNv33AaIjypdHkAmPVvsS25OAbVidd6utAdxmhnGdrU5cygRrojYvKG5JNbVuj9hZYdLy9aKvtIShOAjuci4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0eff61b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.navybeer.sa.com/clicks/BarxBusyBall_files/dialog.min.js
172.67.223.131200 OK 3.4 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/dialog.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (10544)
Hash 1816af5b3ee327cd6a73773fdac161fb
8cd583eb2a709d5e67cd9afae3764791e6238339
1fa80d69fe6acdcf2a119d33cd7521b43b0a0e0b776e1f9284d5df29dcd98f4c
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/dialog.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:57 GMT
ETag: W/"632a3279-29ba"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WnRzkmx2296HRauLdxZG%2BuaPNNg9Vgra9BLJinXP6QqfmN8zvxLu3uXZiW2cZLM3hQ%2BSHj5NBy7BTqoJt0nvX4WrYavfPlcpE7a698woIFzWrQ5N%2BmKXFim3YUrY%2BXHIq9DM2J79"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0fbb310b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/wp-polyfill.min.js
172.67.223.131200 OK 34 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/wp-polyfill.min.js
IP 172.67.223.131:0
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash 7700052880938fe98594cdf1e2ba3054
ea7e60afdb107fda98f82f917b819eaee23ccb80
e142ee6e547fe3ed111e22f803b1c56adbb8a3b3355ac2984ef7d8b1bae70f5b
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/wp-polyfill.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:29 GMT
ETag: W/"632a3299-183ee"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EvMyCmWKLJ4Vw6U0AB%2BS0swp20iMWopSMcbqyKfwwdxWpSd7lYkQHA%2BdROm16waV8xtDx2TGRfKuSCLLVXMnX33%2BwUO%2FsDvx770yN2EVf8waAhofsrRpSxjXw0ej%2FNNF4BEF%2Bgt3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0ebae80b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.navybeer.sa.com/clicks/BarxBusyBall_files/share-link.min.js
172.67.223.131200 OK 1.1 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/share-link.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (2620), with no line terminators
Hash 04137bf1c2687485f57ecf53a3d1f9da
2e441c6f91e26322802ac93a57b18dc58dc745cc
de19aff59e33bd5997352345f978568eb24971ce0aac1f3842b981049f224855
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/share-link.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:22 GMT
ETag: W/"632a3292-a3c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vhis%2F%2Br6XIf70HuxdzoBPVe4JpX2x7fYOT%2FGo6mUEJVgIQ30Spm5%2BKcmECOnGfxHSSb%2Bxj2faXxHIQafRPibWaAdTy36jJq8TP1LSmPLvSwjnEXRay5HVywkwIPuOokEtsz6mX%2FO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0fbb9e0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/core.min.js
172.67.223.131200 OK 6.9 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/core.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (7973)
Hash 97427162a3287e2a44e758b14839c6de
9b38ec9f301d54a3eb2ea1da12a5f1464e1a19b2
bd5550423958f5eba378c8fb77c628f67ecfbf654d1be7b54a3f2fb7183dbe20
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/core.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:56 GMT
ETag: W/"632a3278-5133"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lrH0UQAln9HE6%2BkTvlSXEII8zY1KFXbKtjFdICWWB0b8mh8dcU3nDiCTZKEpNUPSVVWM8eXtAhHeQj7zPw5t1muqoCGIxGbVrSDwW4uAuczzaGYg%2FSkITpou6%2BzyEADA86b7tnLg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0f6d7f0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 65341
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:47:56 GMT
expires: Thu, 14 Sep 2023 19:47:56 GMT
cache-control: public, max-age=31536000
age: 543126
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 543954
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:59:14 GMT
expires: Tue, 19 Sep 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 114048
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 543954
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:40:23 GMT
expires: Thu, 14 Sep 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 543579
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min.js
172.67.223.131200 OK 12 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/frontend.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (40463)
Hash 329471be076fb60c9e9e8785b0f590f0
9db1b243ccc73bab68d1652f4d3e9e743ad3f72e
9d5481690292d36853154bf8d572dbbff17261b54e17c88431d993d6e2922cbc
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/frontend.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:04 GMT
ETag: W/"632a3280-9e36"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2Bk6F1ApnrY6qbE4PpWsejQvrld7zEV7molt2%2BuzGa1tB63MLhme2ygLzmZT2lTIMRdZxm3AOt%2FGHFM9%2BjBweN5UuaXeeN04zy9LhbMyLEa3HytuPBYRaZyaeHh04o5NIIu8Bc9t"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0fdfbcb521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/fonts/eicons.woff2?5.16.0
172.67.223.131404 Not Found 153 B URL HTTP/1.1 www.navybeer.sa.com/clicks/fonts/eicons.woff2?5.16.0
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/elementor-icons.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQKi85OwhrgYvUGJ1mcUb%2FJ5uLdWjRWzvhmsNN7ljOiS33hMQfmaAGRTLzghx%2FfO7RaQo38uxSEI9HielUhuwo2hDCuka5zLc6e1o6%2Fnd3bPctuJEi8jCLZVuTTuVR7yEnE4Byli"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f109e2a0b39-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.navybeer.sa.com/clicks/BarxBusyBall_files/swiper.min.js
172.67.223.131200 OK 35 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/swiper.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (65280)
Hash c52f5df023eba51e4ec35d3b781c9720
9e6368361ed9627ee355654b6a709212960dcaf8
099f87704891ccf1300cf3ce4bd3af8a217540e8412d89b9228f6b9eeb084a01
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/swiper.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:26 GMT
ETag: W/"632a3296-21f91"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aAZwFyCeLpocE1b6IephMta91oMO9UvxWbPEqLIArQuG0bt0GMsHQVbxFt2cwzgS0HS%2FP4ZuXnDQuk4Dj81qJUaQbcSROUc4welYghrjZwB2mKDhidpL7lQG8NBL6xpBUaUsfox4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f0f9a54b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery.sticky.min.js
172.67.223.131200 OK 1.6 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/jquery.sticky.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (3703)
Hash f81fd6ca08a44fe13ee107c0298ad600
5e87769c1fee743ddf6624948928851103e4671c
c9d4a0ce00dc8f6e46852042450a0fdfdabd4900f97f29c16163cc30e06a5b71
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/jquery.sticky.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:13 GMT
ETag: W/"632a3289-e78"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smj46TAq8f0NIxoH6yQXO7aNEOhM3T3r70WVdOKscptTT2HGCTivaiCjs45s7bgXjvfH%2FO3YTPsp8RpZZJCOxP%2F3ydyTKP%2BnZf40PBVQPFb5UmaHITdZlOzgvIKTy6rvhSJHwsbm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f109bee0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/webfonts/fa-brands-400.woff2
172.67.223.131404 Not Found 153 B URL HTTP/1.1 www.navybeer.sa.com/clicks/webfonts/fa-brands-400.woff2
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/brands.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Rr5oEMv6MOZO40BdsoTjq6rfK2KUfGhKhItQakc3oiVxnL2objYRHOlXs4O8E8gA7Iuf5tExiICMPSU1majyfAo%2Br4Vjcz5yo9mR%2FTbRYHLx0eRPPpOljLAzr6O0C5970MRVkKx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f10d81eb521-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/webfonts/fa-solid-900.woff2
172.67.223.131404 Not Found 153 B URL HTTP/1.1 www.navybeer.sa.com/clicks/webfonts/fa-solid-900.woff2
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/solid.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dszFmfhC77Ou67q9fJkZ4v7pRS1hWQMFvXK2ApNDd4KXJ8U20HD7ejM5diY5C%2FJBSW%2F%2FNRBuCfQN6gtQVAdP91JRP1C2VeZavfCsrPHNxNNAJV6vUNKIbDZv48B%2ByYYl2Irm0F7e"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f10fe4a0b39-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/preloaded-modules.min.js
172.67.223.131200 OK 13 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/preloaded-modules.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (43101)
Hash 161f6b6d7f9cd000afe9c8dbbfa3173e
1f2b235e36c2006fc349b8abf2bab883c9b9edde
49946dbb50ce76b8a61136e134d71baafb6958ca3404ea07147dba68223256b1
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/preloaded-modules.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:21 GMT
ETag: W/"632a3291-a884"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MO%2F6B58KQosm7QWNDzqx4Qjz8TxX9Fa4rS481Kj%2FqFURnAYwPPna8f8hh89qLbpdkIP6PB5yveQQCVcUvzl91Xmp7oJWrDqX0R5vaeefkaRYL1TokOW9p4tanhpMLa5F%2BBxoY0AF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f104b500b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/universalJSRequest.htm
172.67.223.131200 OK 661 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/universalJSRequest.htm
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1090), with CRLF line terminators
Hash bd38cf171f669990f149613e6c670f32
c9041934b6f3cc06c5632c01448f28da0ea96abf
1ccc1307b22fee047d7f8f78a94a99a526eff20aac7456244a80202b91636aa6
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/universalJSRequest.htm HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:26 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wp5A0Fdti%2FT1dtIMgNFA54xr2S%2F2naLrM5xLCrWzUXkALfeNa0JCrBcca5rAjQZN3zm2T0MNcU2B92TSi7Xp1ElskHWZXsmyt2SvuoAPSRhv1ewPVbA0ASJJjD%2BXZS%2B%2BpcRt1cUk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74df6f111c100b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/fonts/eicons.woff?5.16.0
172.67.223.131404 Not Found 153 B URL HTTP/1.1 www.navybeer.sa.com/clicks/fonts/eicons.woff?5.16.0
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/fonts/eicons.woff?5.16.0 HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/elementor-icons.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2FV%2BO%2BtVOzCnwoIuQlYw%2BjU7U%2FjvG1UEPiI%2Bx0rQKife%2FugIg4cfen8GE6HHZSfmoczNJgoEPIynKi9uptOXsBtrroAzfkRhmaYyQXCZNlLi7lV89IMU%2BG4oxWANL%2FGAHZ7fFA%2Bf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f111ad9b506-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/preloaded-elements-handlers.min.js
172.67.223.131200 OK 31 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/preloaded-elements-handlers.min.js
IP 172.67.223.131:0
File type ASCII text, with very long lines (65493)
Hash 3192fe4695c7d72bad352969820565cd
77d149d57900a2aaa799dc487b998944fd6c7db6
e189adca89a4af08f25bc791e476587c6aa331ae86a7f634aa0d384bed0ab85f
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/preloaded-elements-handlers.min.js HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:21 GMT
ETag: W/"632a3291-20de6"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ot9JFOxbz4DSMHlw0uyRCelqV1214pS2DhAI6wEVSpToqUsEEOsfrqESPjrrQYgqPWtNw5CSODJCcT3Pi10nT1wPqDhZ8tkucTJ868hIiKvbt2SggF4IKaoHH5QpGewtLjWOYpFM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f103b4b0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/webfonts/fa-solid-900.woff
172.67.223.131404 Not Found 153 B URL HTTP/1.1 www.navybeer.sa.com/clicks/webfonts/fa-solid-900.woff
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/webfonts/fa-solid-900.woff HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/solid.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0OB9kQYaHL9RPCtZAR0JIdu%2FfDztewj1IscYzk%2FxwE7Ffz7PNAH%2BG14ApHnF2K0pc8WbzOTQAkpdg6S%2FUCImNb4zltQA66r%2B%2Bxx%2F%2FCjLTVrrCdp87chqIFIDxf3WuaRuNPB4ZGa"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f11baf9b506-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/h-logo.png
172.67.223.131200 OK 17 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/h-logo.png
IP 172.67.223.131:0
File type PNG image data, 364 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 215db7d61345c483e47e26954cc90171
5bf5b6255a3965453dfdeb289326e27b75d51920
cfb755f03da045604bed70578f66f61b410a16ee211ff1eb8530a53f71669bcd
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/h-logo.png HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: image/png
Content-Length: 17332
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:08 GMT
ETag: "632a3284-43b4"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bnSnL6BAFhUMO3UnJ%2FEixOT4s7pXagJPotlM3G4OjObIozmVa4lfPpB65dB%2Bdys%2BlKrm49Q5N6J9vBv1AOksYbvKFqWVvzBKypEplS6xjwPz%2BAR%2BX9zBNaHdVXQTM5YApZMWO1lP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f114b940b3d-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/9.png
172.67.223.131200 OK 16 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/9.png
IP 172.67.223.131:0
File type PNG image data, 99 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash 3aac065009b5122410847ea8c22cd48d
adf6ba08fad5046d765104ed5e2ef5f715b92053
1723e02494a6822228851fefd4b9e1d08b43008337b2d08c7d29f5a963b93b4c
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/9.png HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: image/png
Content-Length: 16011
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:50 GMT
ETag: "632a3272-3e8b"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZOYEqy6jTEnP0htf46r2aV1i%2FBOnQr2XfLn4ISu%2F5vVoBN9Oqss4OcmaQwhUpDLSduNGeCIA6mogzhko3cvAq2cMSSR6AXFZEIPZOlV%2Bae7icLHaOKikAEQ2gGfcU1iuUiMDMXhe"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f114e660b39-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/webfonts/fa-brands-400.woff
172.67.223.131404 Not Found 153 B URL HTTP/1.1 www.navybeer.sa.com/clicks/webfonts/fa-brands-400.woff
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 706a98254456810d3e849c3957af9d01
e461d072a6ba8f0082d6f187eba7f053343529c6
8351c0267c2cd7866ff04c04261f06cd75af9a7130aac848ca43fd047404e229
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/webfonts/fa-brands-400.woff HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/brands.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KdrHB4ELQaB7onnsPP5MEWdqVipCsaXmQwdPwLkNfhVOdv9eMrFrENHCOfT%2Bj6iLJNnZNZlrrFqF5JvfgEtekUnTWOCoL78Q6gcjU5jkaBtmJ2RRShve%2BJy2Beho8fogsrXWOekG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f11ac310b45-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/fonts/eicons.ttf?5.16.0
172.67.223.131404 Not Found 116 B URL HTTP/1.1 www.navybeer.sa.com/clicks/fonts/eicons.ttf?5.16.0
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash d6e62b966693d7822072903ae8310d00
2de307cf4db56a090d7633f2da9ce6d224f6ffb7
36bd7d3c61ddaa2cfd74438dfcc2552f527a5299abc17957073a05d4b1d5cecf
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/fonts/eicons.ttf?5.16.0 HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/elementor-icons.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s9vRKQpc8qN8aaD2BlAlFUEB4Zu4JMcr7RHmu7ykfvx0jiamI2Karq9h0%2FLX7W2BrlXsTmnQ0US1DHsEdj3H000Wq%2Fd9TXbfhTO0C6utcCfYWGE4S42z7Qodh7MW%2Fj9aHLcirYpH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f11ebd00b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&gjid=1666061843&_gid=1719542307.1663728002&_u=aEDAAUABEAAAAC~&z=1460872802
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&gjid=1666061843&_gid=1719542307.1663728002&_u=aEDAAUABEAAAAC~&z=1460872802
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&gjid=1666061843&_gid=1719542307.1663728002&_u=aEDAAUABEAAAAC~&z=1460872802 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.navybeer.sa.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Sep 2022 02:40:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.navybeer.sa.com/clicks/webfonts/fa-solid-900.ttf
172.67.223.131404 Not Found 116 B URL HTTP/1.1 www.navybeer.sa.com/clicks/webfonts/fa-solid-900.ttf
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash d6e62b966693d7822072903ae8310d00
2de307cf4db56a090d7633f2da9ce6d224f6ffb7
36bd7d3c61ddaa2cfd74438dfcc2552f527a5299abc17957073a05d4b1d5cecf
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/webfonts/fa-solid-900.ttf HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/solid.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=drqAA7T%2BgwURQQHw0%2BtOyWHLMxpGvQ9Lry%2BZQvHnfe7IY%2BBYWklfEcobPK02hW29GgThJ8fRlZ5bMMrpJ%2BbH62Oajnn7BmxArv%2BgMwkGxnUqeg%2BfWteocaHd53sWnrrOCu9K%2BDUh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f122ea20b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/blank.htm
172.67.223.131200 OK 548 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/blank.htm
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1254), with CRLF line terminators
Hash cd64b4aeec0a8560c0d6527312e2c806
3b84cb918c9cf6a06d81b2aee07f5fec52ec6878
7dc0902142b34ea216d209ad68f58687c2190ebb974b2f540f61cc64b2b22ef4
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/blank.htm HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:54 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F3aVEP%2B3%2BnzHFoHYLfM2WmAen4eeJlksvBRZf14K6MQD3De%2FuGy%2BOhxLss8XW01YKnhKGnnDUDElCDuMeWaFz%2FO1O%2BWFnK7vJ0JvDv%2Bu8E9baPKPA%2B2gpzgGqPloUZ7xhPW9SSqO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74df6f124c5c0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.navybeer.sa.com/clicks/BarxBusyBall_files/2-2.jpg
172.67.223.131200 OK 212 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/2-2.jpg
IP 172.67.223.131:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, manufacturer=BeFunky, orientation=upper-left, xresolution=94, yresolution=102, resolutionunit=2, software=BeFunky Photo Editor], baseline, precision 8, 900x599, components 3\012- data
Size 212 kB (212218 bytes)
Hash e47f60e441e6c6221e56096ae0191517
8a31f128d03dc5c0ef89d11516e972f9d2e91c41
35df81c9bdefe4a0ca20de946a481117c914bfcdb77cb431484fadfb8e61d6bb
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/2-2.jpg HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: image/jpeg
Content-Length: 212218
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:40 GMT
ETag: "632a3268-33cfa"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mK1oj0j8phm9vG9wM6PcbrLqCJpqDL2SIWnwbWa56%2FzbIbQ25L2knaojTDGBcnzA9I2klUmduLetFNnK6kT9R7FRcFUvL0xPgelGZ%2BoGXzP5mt4setaWivD3MdY3%2BCPHp%2FB5ERZp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f121b1db506-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/blank_data/inject.css
172.67.223.131200 OK 928 B URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/blank_data/inject.css
IP 172.67.223.131:0
File type ASCII text, with CRLF line terminators
Hash e1c22e631b7cce42e3ef13cd9bb02ff5
6c6c2b15c56e776d9eac10babf3a6c4a2bd964ae
93950a736308fe62073a44a76b8ec05b9a651062f6ecee4782059d0718aab6dc
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/blank_data/inject.css HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/blank.htm
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:34 GMT
ETag: W/"632a329e-f28"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FWiIee%2FikKsluokcI44knYjmFdj1uQ%2Bc%2BxopZejM%2FqMvD3En%2BEGI6hCNF5jUTquNJKVKiS%2BczBPAKteQ1T6iDbHjk%2BNtwdfncgvc5WGNMWhWiJo2jp%2BpV2%2BRtKkEtancfRSYq1FW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f130cff0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/webfonts/fa-brands-400.ttf
172.67.223.131404 Not Found 116 B URL HTTP/1.1 www.navybeer.sa.com/clicks/webfonts/fa-brands-400.ttf
IP 172.67.223.131:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash d6e62b966693d7822072903ae8310d00
2de307cf4db56a090d7633f2da9ce6d224f6ffb7
36bd7d3c61ddaa2cfd74438dfcc2552f527a5299abc17957073a05d4b1d5cecf
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/webfonts/fa-brands-400.ttf HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall_files/brands.min.css
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1; _gat_gtag_UA_22484186_3=1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIbCF2bGMUXZ67pSylCRJ%2BRYlrNhXwJiXjVeoYylV9LGxuCPkuiAwssyyOnGDlm4iuJ3CCh581Es2a5C1O3g9KnO4jpwxmMJ3O4xdFg%2BJJaO91qdU40CKR6sldXSJvuRZOOGhA0%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f12fc430b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/download.png
172.67.223.131200 OK 1.2 MB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/download.png
IP 172.67.223.131:0
File type PNG image data, 1015 x 1015, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1158119 bytes)
Hash f0d41ae842748c4a9d7f68bd32e3f9b4
e1bb6386c35740f41ee7835af64c5cabd26a21e2
c466eb600c892017f3d7f4bbbe1b78e7bcc0df5d1be2187a45ca748e80dacc30
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/download.png HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: image/png
Content-Length: 1158119
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:37:00 GMT
ETag: "632a327c-11abe7"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8haZX7zKeNh6tYYpTz9ToOX6kD4wLfkrDcMOzzfD4tp2iX%2BqimQw%2BdPgZ9iMwdjSqlpCmVxx%2B53UWhysam4jSwVMfUJTtF5SrdPowCN1k%2FK2sYw1HmOhmQW6EEilO%2BdL%2BWEmlJjn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f11e88eb521-OSL
alt-svc: h2=":443"; ma=60
www.navybeer.sa.com/clicks/BarxBusyBall_files/ball.png
172.67.223.131200 OK 857 kB URL HTTP/1.1 www.navybeer.sa.com/clicks/BarxBusyBall_files/ball.png
IP 172.67.223.131:0
File type PNG image data, 900 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 857 kB (857072 bytes)
Hash 64f0dde2fdf833d02527c4e7677abf03
d90bbcfc400dc6039a73d272c77d01b7fba88b07
057cc4996f1546d56346830ad2aaa0f771c8a652556d7fde3e1773e3a088001c
Analyzer Verdict Alert quad9 Sinkholed
GET /clicks/BarxBusyBall_files/ball.png HTTP/1.1
Host: www.navybeer.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/clicks/BarxBusyBall.php?h=TO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0/wrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
Cookie: _ga=GA1.3.1157483889.1663728002; _gid=GA1.3.1719542307.1663728002; _gat=1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: image/png
Content-Length: 857072
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 21:36:53 GMT
ETag: "632a3275-d13f0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EndhbC9lG3LnlgtTo9PXfaWZTZ9L0Jn3QqXV%2FW0gQy7DQrK1BFtBbRq6N%2BdT3Dbts3ouMfsl%2FKh9HVdsvJdSH8VMOOwetGUTH5MqHldnIyVLdvhswHRVkW9AUaHx3jLugrrdrbHs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74df6f121bf30b3d-OSL
alt-svc: h2=":443"; ma=60
static.hotjar.com/c/hotjar-1282132.js?sv=5
54.230.111.113301 Moved Permanently 167 B URL HTTP/1.1 static.hotjar.com/c/hotjar-1282132.js?sv=5
IP 54.230.111.113:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /c/hotjar-1282132.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://static.hotjar.com/c/hotjar-1282132.js?sv=5
X-Cache: Redirect from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: p2hYmZoUvlyKVdNyBWqFo4kOsjE7v8plK_XjODeBk22XbAGOEAsokQ==
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Wed, 21 Sep 2022 03:00:03 GMT
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Length: 3249
Connection: keep-alive
cdn.taboola.com/libtrc/unip/1169954/tfa.js
151.101.85.44200 OK 18 kB URL HTTP/1.1 cdn.taboola.com/libtrc/unip/1169954/tfa.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (58492)
Hash cd2ca3c51017323b40b1c7a7df68fe5f
44c318c7f545c1765b6662705caedf863ffabf01
67545f8eaa6a53d79ca59a4c6d7b0aff29e830dd183895ec108b969ad92ac164
GET /libtrc/unip/1169954/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
HTTP/1.1 200 OK
x-amz-id-2: 5wb72K1ZBp+KiMaxflJC7C+ePBs3r4MLYq9pVsixghWBmR4JkofmGk1cRG2KDV2se4W9SaqcCQ4=
x-amz-request-id: ZGDKXQQQNWPT5R8H
x-amz-replication-status: COMPLETED
Last-Modified: Sun, 18 Sep 2022 11:10:20 GMT
ETag: "ba7218955c4322ea323b6b5a3824a022"
x-amz-version-id: LD7xPf8TmsA_LdQQC9FXFgHotaG.J64b
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Encoding: gzip
Content-Length: 17949
Accept-Ranges: bytes
Date: Wed, 21 Sep 2022 02:40:03 GMT
Via: 1.1 varnish
Age: 28162
Connection: keep-alive
X-Served-By: cache-bma1659-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1663728003.342460,VS0,VE1
Cache-Control: private,max-age=14401
Vary: Accept-Encoding
abp: 90
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fde987c85b17b2242afddd76c3fd3b62
08e87b8185fc39462e6b331d565a864df2fd5865
49bc15e88c546089cc42939f8dc9f7046f1dd98332c31cf52435586bc8ea177c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9405985bfe6aab7c008cf3a305f79b0f
d698b786300ea45e2cd1b9d3fadf2639e71efe5e
28c7a840f64d83b92b41d7255788845fbe83aefbee8acf3d8cb131ffd81f6267
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1615
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Last-Modified: Wed, 21 Sep 2022 02:13:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 21 Sep 2022 02:40:03 GMT
expires: Wed, 21 Sep 2022 02:40:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&_u=aEDAAUABEAAAAC~&z=2026642681
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&_u=aEDAAUABEAAAAC~&z=2026642681
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&_u=aEDAAUABEAAAAC~&z=2026642681 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 02:40:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&_u=aEDAAUABEAAAAC~&z=2026642681
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&_u=aEDAAUABEAAAAC~&z=2026642681
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22484186-3&cid=1157483889.1663728002&jid=1140897838&_u=aEDAAUABEAAAAC~&z=2026642681 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 02:40:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 9ecd89752214ef749272eef344b9089a
70a58a49c08934265ee34c74efb01d6b3124095d
f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: A2KfgSrcTYnk2US3Z9rozJbWOc6AWLznG8KNPhQTJY/+5X6Kji/BNwbaeVKe+Cngd/V/U0Qiv2c4EclVELMzhg==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 02:40:03 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fde987c85b17b2242afddd76c3fd3b62
08e87b8185fc39462e6b331d565a864df2fd5865
49bc15e88c546089cc42939f8dc9f7046f1dd98332c31cf52435586bc8ea177c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9405985bfe6aab7c008cf3a305f79b0f
d698b786300ea45e2cd1b9d3fadf2639e71efe5e
28c7a840f64d83b92b41d7255788845fbe83aefbee8acf3d8cb131ffd81f6267
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1615
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 02:40:03 GMT
Last-Modified: Wed, 21 Sep 2022 02:13:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/730905238/?random=1663728003448&cv=9&fst=1663728003448&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/730905238/?random=1663728003448&cv=9&fst=1663728003448&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2578), with no line terminators
Hash f363bcd7c74cc1ada8bf3aedc2dbfb17
bb36a183116f3950a893be3f96c8283b7b24b20d
1a6938b4dd6cad7b7d0822d8cee1c4173f633e648d5414ddc17524c98f3c2a17
GET /pagead/viewthroughconversion/730905238/?random=1663728003448&cv=9&fst=1663728003448&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 02:40:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1179
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 02:55:03 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/730863180/?random=1663728003453&cv=9&fst=1663728003453&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/730863180/?random=1663728003453&cv=9&fst=1663728003453&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2578), with no line terminators
Hash 763050d3eda37f6fc56a80715e117aba
fa3fe409ab38caaf734be36a40c73c0445413abb
c80b60b31c3ab151a3db4f5526e0a7158208b1d7c9f04630895d47632a190d16
GET /pagead/viewthroughconversion/730863180/?random=1663728003453&cv=9&fst=1663728003453&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 02:40:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1178
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 02:55:03 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/730868448/?random=1663728003455&cv=9&fst=1663728003455&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/730868448/?random=1663728003455&cv=9&fst=1663728003455&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2578), with no line terminators
Hash bfb2ed69e748570d12280df5e482b7b1
d652616e2d09dafacac0e66b00a3f7662f9e1f21
fda3be55e0a754fabf02ad646451c6369f9b5437c17decb3d86ba41a97335650
GET /pagead/viewthroughconversion/730868448/?random=1663728003455&cv=9&fst=1663728003455&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&tiba=Home%20-%20BarxBuddy%20Busy%20Ball&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 02:40:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1178
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 02:55:03 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=00efe76b38216f21fb23950db8e6453936&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&optOut=false&bust=06305343244320617&referrer=
70.42.32.159200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00efe76b38216f21fb23950db8e6453936&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&optOut=false&bust=06305343244320617&referrer=
IP 70.42.32.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00efe76b38216f21fb23950db8e6453936&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&optOut=false&bust=06305343244320617&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: e3db46a07fb65f69bd330ad5d3fe431d
content-encoding: gzip
tr.outbrain.com/cachedClickId?marketerId=00efe76b38216f21fb23950db8e6453936
70.42.32.159200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00efe76b38216f21fb23950db8e6453936
IP 70.42.32.159:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00efe76b38216f21fb23950db8e6453936 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 02:40:03 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: aeae6a1bab61b3a75c5d46c0700a5d29
content-encoding: gzip
s.yimg.com/wi/config/10141746.json
188.125.94.206200 OK 46 B URL HTTP/2 s.yimg.com/wi/config/10141746.json
IP 188.125.94.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 30ed61bd14cb90ac9fc0b14709d892b8
3b8b6d3e092bedca36158e4144c384b9d97bb94e
c5d3efce28e1e4b610068a3bbced4986ea0281028cc3fef3458a4b9c241c1da3
GET /wi/config/10141746.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Wk+Y4ovGaC/lwxvNb/4p29mfAZ67AYINP4CjzfJZaZEes4LW539qxo738WPUkseNvqGnFwTitTM=
x-amz-request-id: 0GJ142BVFZ4MPH1Z
date: Wed, 21 Sep 2022 02:40:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Wed, 13 Jul 2022 12:57:15 GMT
x-amz-expiration: expiry-date="Fri, 18 Aug 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "30ed61bd14cb90ac9fc0b14709d892b8"
x-amz-server-side-encryption: AES256
x-amz-version-id: rtrgFCJeOY7XeDJM.FhR8ZSfB9_GHv5M
accept-ranges: bytes
content-type: application/json
server: ATS
content-length: 46
referrer-policy: no-referrer-when-downgrade
age: 0
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Wed, 21 Sep 2022 02:40:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Wed, 21 Sep 2022 02:40:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Wed, 21 Sep 2022 02:40:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Wed, 21 Sep 2022 02:40:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Wed, 21 Sep 2022 02:40:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: d9bd4ac9-5032-45d5-9689-c5c3347912d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuFz4oAMFZug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-6fb7d6a52eecab471f67d9a9;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sfGk3C3HLGDYDSXw1d4R7wPRsGdHNKD31chUVzQ8KYBRnsIL0aOW1g==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:17 GMT
age: 17926
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 681b3e236c8b9bc524d935af247ec72b
96048f054243b5a13f14ab3dd9f4a0f3f2e0feae
aaa2f649fd336f89b3c0fc1d9226f8763f5a8cd850826a7f0819ebe7414fbf2a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7383
x-amzn-requestid: 32b97df0-b979-4e80-a54f-cae77affc915
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy2sHJ_oAMF0bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31c4-2c6db6e21fa1db233a4c1f49;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bmxUC0kur2YyFURbaNuBfgoyC3_l6XVfmKAyA-41jFdjBN2bY60GkQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:04 GMT
etag: "96048f054243b5a13f14ab3dd9f4a0f3f2e0feae"
content-type: image/jpeg
age: 17939
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 14:38:21 GMT
age: 43302
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29be3958-30ed-4b26-8320-662d71b90880.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29be3958-30ed-4b26-8320-662d71b90880.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34c353f713d6d470480fdeeb5175a123
f073fc7f24465b76b3681c462c60cd047ed67a6a
0449daa32ab4ec32fa999551cc9ab634c46e15891299162cbb4bbaad6ffa4753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29be3958-30ed-4b26-8320-662d71b90880.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7700
x-amzn-requestid: 3cadae91-6101-4072-b654-9da834fe22e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YmPyvHj8oAMFjiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63259344-4f7c9a7a1aca7f89017897fa;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 09:28:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jFAPc59XciJX2cBI16W9NVIHtdS6pO3DYQLdZFNl_MPjoYBIsxoQGw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 13:32:50 GMT
age: 47233
etag: "f073fc7f24465b76b3681c462c60cd047ed67a6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eff7103898a5102e685ce6741cdf19f8
3371965b4417ee0b74a3a5094adfc1632d4849b1
c326683c06d56a02d8c1a36dd34c1eff1b9d242b8b5280a1824b0602ccd28020
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9574
x-amzn-requestid: 3dfa0e8c-77e6-4fc5-9f64-00ac854abbfa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mEj2IAMFWdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-745819ba4b5c16ee6e649ad7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _3w3cbABzhrIn3y9Spo6-NCZDzf4gHAfU30Zpvk3WTp8_kgWT7NAMw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:04 GMT
age: 17939
etag: "3371965b4417ee0b74a3a5094adfc1632d4849b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 370f018032c47c9e5c11e6afa4ffdd1f
639c8d2d6f1cf5fa6d742925ea61386d600dd368
6084e769cbcc679110c174e8031439f80bcfa0027d1c39c7b6626c54692da120
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 5457ef1c-d92b-4cd5-a704-64c1ff0cb2b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mFRXIAMFv5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-3cd341153ca71b7c069b6ead;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X4rDCd0vk2t74s7qjkuMYwmoA8Ul9As6m5KBtDhltneCK6hSDgfXPQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:04 GMT
age: 17939
etag: "639c8d2d6f1cf5fa6d742925ea61386d600dd368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Wed%2C%2021%20Sep%202022%2002%3A40%3A03%20GMT&n=0&b=Home%20-%20BarxBuddy%20Busy%20Ball&.yp=10141746&f=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&enc=UTF-8&yv=1.13.0&tagmgr=gtm
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Wed%2C%2021%20Sep%202022%2002%3A40%3A03%20GMT&n=0&b=Home%20-%20BarxBuddy%20Busy%20Ball&.yp=10141746&f=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Wed%2C%2021%20Sep%202022%2002%3A40%3A03%20GMT&n=0&b=Home%20-%20BarxBuddy%20Busy%20Ball&.yp=10141746&f=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 02:40:03 GMT
expires: Wed, 21 Sep 2022 02:40:03 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBIN5KmMCEIpuBdBn947LCmZqYCkYbAEFEgEBAQHLK2M0YwAAAAAA_eMAAA&S=AQAAAnOLRb1Wl3wCk5t_nFUozHA; Expires=Thu, 21 Sep 2023 08:40:03 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
connect.facebook.net/signals/config/2573418419437376?v=2.9.83&r=stable
157.240.200.14200 OK 87 kB URL HTTP/2 connect.facebook.net/signals/config/2573418419437376?v=2.9.83&r=stable
IP 157.240.200.14:0
Hash 30cd643d7506fd58b4b0cbf64117b54c
e878ba39aa3e9e6ef4cfc0e4ea44772d5ca49407
ef04680760988d0b85fd4c91b7eb9a0c42165bd983fc70dd9f96b7903186b5e9
GET /signals/config/2573418419437376?v=2.9.83&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy-report-only: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xDAfhWfjtyNyi6DlqKrdclYa/XWTZg/9+U3WfkFlCYxzZD23mu1YVbUdDwuzJnAta+zj5d4jT1/DnFbkpQ4DjA==
priority: u=3,i
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 02:40:03 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trc-events.taboola.com/1169954/log/3/unip?en=pre_d_eng_tb&tos=1570&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1663728004974&vi=1663728003402&ri=3d763d8b0b8d328827a0cf57743f476b&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1169954/log/3/unip?en=pre_d_eng_tb&tos=1570&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1663728004974&vi=1663728003402&ri=3d763d8b0b8d328827a0cf57743f476b&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1169954/log/3/unip?en=pre_d_eng_tb&tos=1570&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1663728004974&vi=1663728003402&ri=3d763d8b0b8d328827a0cf57743f476b&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 21 Sep 2022 02:40:05 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.navybeer.sa.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1307114/log/3/unip?en=pre_d_eng_tb&tos=1573&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1663728004978&vi=1663728003402&ri=4f46983d1309e7ffcf91ba0bfab12d3a&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1307114/log/3/unip?en=pre_d_eng_tb&tos=1573&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1663728004978&vi=1663728003402&ri=4f46983d1309e7ffcf91ba0bfab12d3a&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1307114/log/3/unip?en=pre_d_eng_tb&tos=1573&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1663728004978&vi=1663728003402&ri=4f46983d1309e7ffcf91ba0bfab12d3a&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 21 Sep 2022 02:40:05 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.navybeer.sa.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1169954/log/3/unip?en=pre_d_eng_tb&tos=4575&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1663728007980&vi=1663728003402&ri=3d763d8b0b8d328827a0cf57743f476b&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1169954/log/3/unip?en=pre_d_eng_tb&tos=4575&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1663728007980&vi=1663728003402&ri=3d763d8b0b8d328827a0cf57743f476b&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1169954/log/3/unip?en=pre_d_eng_tb&tos=4575&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1663728007980&vi=1663728003402&ri=3d763d8b0b8d328827a0cf57743f476b&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 21 Sep 2022 02:40:07 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.navybeer.sa.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1307114/log/3/unip?en=pre_d_eng_tb&tos=4576&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1663728007981&vi=1663728003402&ri=4f46983d1309e7ffcf91ba0bfab12d3a&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1307114/log/3/unip?en=pre_d_eng_tb&tos=4576&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1663728007981&vi=1663728003402&ri=4f46983d1309e7ffcf91ba0bfab12d3a&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1307114/log/3/unip?en=pre_d_eng_tb&tos=4576&scd=7&ssd=1&est=1663728003403&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1663728007981&vi=1663728003402&ri=4f46983d1309e7ffcf91ba0bfab12d3a&ref=null&cv=20220918-2-RELEASE&item-url=http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.navybeer.sa.com
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 21 Sep 2022 02:40:07 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.navybeer.sa.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
www.barxbuddy-busyball.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7
104.21.76.64200 OK 0 B URL HTTP/2 www.barxbuddy-busyball.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7
IP 104.21.76.64:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.7 HTTP/1.1
Host: www.barxbuddy-busyball.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 02:40:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 21 May 2021 12:05:06 GMT
etag: W/"3795-5c2d5dee1af6c"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8sjqvePRw6YTuGZ1OQOyiRIemOj9gRKX6FVw3Ff7IQLAQM0GtbNQxbbc0dHmDCBhNpy9qqUEf0rBXPwjIBL5Pt5Pgz6uu51PUue8cu4KMlI%2FGbgVdkxrDfKqqbx0T2DuVuZ0TTFZxYt6ZUL6HQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74df6f0a28cc0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
188.125.94.206200 OK 0 B IP 188.125.94.206:0
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WFltzF+Ehtz40O9MfGTjzk9TOQkTxTJRTVBGxIuNC5Sk3Jv5M/XvMEziPcosnFSduBOPyiESrH8=
x-amz-request-id: BRRRM9C3V2WGBRTX
date: Wed, 21 Sep 2022 02:23:14 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1010
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1282132.js?sv=5
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1282132.js?sv=5
IP 54.230.111.113:0
GET /c/hotjar-1282132.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.navybeer.sa.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 21 Sep 2022 02:40:03 GMT
cache-control: max-age=60
etag: W/a4ba861742ab02c621bd6e4bba897a57
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KZmFG1XwwZ0sAs7YgUjrzMzu-9Q6uLj7EM_waoj8GrftXo_daG9qcA==
X-Firefox-Spdy: h2
trc.taboola.com/1169954/trc/3/json?tim=1663728003406&data=%7B%22id%22%3A780%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1663728003402%2C%22cv%22%3A%2220220918-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.barxbuddy-busyball.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodefunnels-network-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1663728003406%2C%22ref%22%3Anull%2C%22item-url%22%3A%22http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A7%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/1169954/trc/3/json?tim=1663728003406&data=%7B%22id%22%3A780%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1663728003402%2C%22cv%22%3A%2220220918-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.barxbuddy-busyball.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodefunnels-network-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1663728003406%2C%22ref%22%3Anull%2C%22item-url%22%3A%22http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A7%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
GET /1169954/trc/3/json?tim=1663728003406&data=%7B%22id%22%3A780%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1663728003402%2C%22cv%22%3A%2220220918-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.barxbuddy-busyball.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodefunnels-network-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1663728003406%2C%22ref%22%3Anull%2C%22item-url%22%3A%22http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A7%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663728003.485225,VS0,VE97
vary: Accept-Encoding
x-vcl-time-ms: 97
X-Firefox-Spdy: h2
trc.taboola.com/1307114/trc/3/json?tim=1663728003606&data=%7B%22id%22%3A294%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1663728003402%2C%22cv%22%3A%2220220918-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.barxbuddy-busyball.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodefunnels-network-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1663728003411%2C%22ref%22%3Anull%2C%22item-url%22%3A%22http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22tos%22%3A6%2C%22ssd%22%3A1%2C%22scd%22%3A7%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/1307114/trc/3/json?tim=1663728003606&data=%7B%22id%22%3A294%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1663728003402%2C%22cv%22%3A%2220220918-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.barxbuddy-busyball.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodefunnels-network-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1663728003411%2C%22ref%22%3Anull%2C%22item-url%22%3A%22http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22tos%22%3A6%2C%22ssd%22%3A1%2C%22scd%22%3A7%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.85.44:0
GET /1307114/trc/3/json?tim=1663728003606&data=%7B%22id%22%3A294%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1663728003402%2C%22cv%22%3A%2220220918-2-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.barxbuddy-busyball.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodefunnels-network-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1663728003411%2C%22ref%22%3Anull%2C%22item-url%22%3A%22http%3A%2F%2Fwww.navybeer.sa.com%2Fclicks%2FBarxBusyBall.php%3Fh%3DTO9ycVIHngygisqRdFZmkIG3L1botzGShMpmL0DD7U0%2FwrniuM26TpjdDdIwlePxGObO6NLETCBYDAHa633eI2QpTl2W0zoFI0d578GRa0AkHLYA6iXp7bkOKtLvBOBul65o8kUA6pllf7IkktEuObY%22%2C%22tos%22%3A6%2C%22ssd%22%3A1%2C%22scd%22%3A7%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.navybeer.sa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 02:40:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663728004.599486,VS0,VE98
vary: Accept-Encoding
x-vcl-time-ms: 98
X-Firefox-Spdy: h2