firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 21:15:22 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FAWBAsKy67QKC5dJn1_oJ6jK3tD1n7qLLTY2wSP0y3sX3Hy_VvPNfQ==
Age: 2590
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2746
Expires: Mon, 26 Sep 2022 22:44:18 GMT
Date: Mon, 26 Sep 2022 21:58:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3Xx79IRnKV7FxVEqDW-OxiKVkQVFoh-n9KqBONFpetDk-YPZZJuphQ==
age: 62597
X-Firefox-Spdy: h2
www.flaru.com/en/thebarchive.com/
104.21.46.220200 OK 1.9 kB URL HTTP/1.1 www.flaru.com/en/thebarchive.com/
IP 104.21.46.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (376)
Hash c1ac541f0d02e361b0ee05022d8adb66
1f662d77ffa6dd9dd9ba9c389b8fd95c42a04f40
d16db8c1ce341450cab204d34cb97476163f2faa02f20024a94dfa567a7feb97
Analyzer Verdict Alert fortinet Malware
GET /en/thebarchive.com/ HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.9-1ubuntu4.17
Cache-Control: max-age=86400
Vary: Accept-Encoding
CF-Cache-Status: MISS
Last-Modified: Mon, 26 Sep 2022 21:58:32 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K99WFGGA6wfb%2BY78jdznz7i075jMMOyVrW31jlJuVmkkYBeQdSznZqov9iXk0x0Hd4bZ%2Frtgiajj4kyuBFXiLgXnexOLxk0r5ZgfnKElUFPVgw0h8a73jkmHiXvqeeqi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f34fd01c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:58:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.flaru.com/css/style-compressed.css
104.21.46.220200 OK 5.6 kB URL HTTP/1.1 www.flaru.com/css/style-compressed.css
IP 104.21.46.220:0
File type ASCII text, with very long lines (25859), with no line terminators
Hash 7b2f01ed6057f8a7c494efe84edea6b4
3e77a3dcabc4b521b28ab3fb003f8076bc6876e6
7d20d3f082ca3494eaa2c7068d7d0679032649974e5a38ffce2584ed93c2cb7b
GET /css/style-compressed.css HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: text/css
Content-Length: 5555
Connection: keep-alive
Last-Modified: Fri, 05 Aug 2022 01:27:43 GMT
ETag: "6503-5e5745f67af59-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 880
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sL5sqMVlAUNjd4mUD7Rmc6zQ889ODYWDAF9FX5vM%2B%2B3HXUqID8lvp9sbP8lEuPZClIlB3apiEU3wstjp9rOQh9JGnluPU41k1d%2B5m6a%2BLKyFZslRv%2FM1KGydBxR1SM62"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f64a3c1c0a-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/js/js-search-compressed.js
104.21.46.220200 OK 1.0 kB URL HTTP/1.1 www.flaru.com/js/js-search-compressed.js
IP 104.21.46.220:0
File type ASCII text, with very long lines (2275), with no line terminators
Hash cfc19601f2691d417a0868a2854a25b1
757f3061486509f1b63959120520c7bf018b8676
bd641b67d586975007f186d78e94b5187082ce8df23b5e8d805f0999af52f83c
Analyzer Verdict Alert fortinet Malware
GET /js/js-search-compressed.js HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: application/javascript
Content-Length: 1046
Connection: keep-alive
Last-Modified: Fri, 05 Aug 2022 01:25:26 GMT
ETag: "8e3-5e57457499926-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2uHWiFb0GVVFkzEaqc%2FjLUetTMR1WReGQqnuEF0d6HYCG4kqKPyRgh8iJhZVxsRxmdlZsjCOiZwAtFGkKU%2Brw08idH5BMhHDnHpyKfnRLKeKqewozLoCpN0Az7rKoMYl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f64d2c1c0e-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/js/js-readout-compressed.js
104.21.46.220200 OK 1.0 kB URL HTTP/1.1 www.flaru.com/js/js-readout-compressed.js
IP 104.21.46.220:0
File type ASCII text, with very long lines (2646), with no line terminators
Hash e683bba450a43da63bf4f04f91893376
813c4f733784709ca35cb9db2157147e7fe3fe53
b14abd4cb2d0fa6a2b77f8d4e676cc99d7100946a002f0139d867fb19de3a3e7
Analyzer Verdict Alert fortinet Malware
GET /js/js-readout-compressed.js HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: application/javascript
Content-Length: 1047
Connection: keep-alive
Last-Modified: Fri, 05 Aug 2022 01:25:26 GMT
ETag: "a56-5e57457499926-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 82792
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a8oVAkmLzUeE%2FHL0kUp12wYn%2B0Wo7klyW9RuWSGk7kSsEzR16HZUQeD7oWM3kmeGPxDZcht3d9ZQq%2F1M0fb%2Bg5Mb2TpH%2BvPHm416uM0jk4%2FP2cQ52dAFXd4Ep%2B6245tc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f64b0fb4fa-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/js/js-structure-readout.js
104.21.46.220200 OK 596 B URL HTTP/1.1 www.flaru.com/js/js-structure-readout.js
IP 104.21.46.220:0
Hash 0313b1609ec36664990f7ff97c3923c3
8679369898cbb03ab71b2b217b150c697e01e7b1
a95c577d547df87103b78d2c9c97a70b23b16c9c89c0e9494e987113df57c05e
Analyzer Verdict Alert fortinet Malware
GET /js/js-structure-readout.js HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: application/javascript
Content-Length: 596
Connection: keep-alive
Last-Modified: Sun, 15 May 2022 09:12:16 GMT
ETag: "545-5df094dcaf740-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 82791
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rRLwwtMWDtNxBPXpbJ3vOtrPXqWkCP1vYzytr41bPDFYGCGnezgI%2BjDbKsaF2NlTitA8b%2BvZof0l%2B8qlzJue5YnDGP9hcn4fOv2lG5mb0pc7q%2BHJMdGzx27yEJfGIOCk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f64b540b39-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/js/js-structure-main.js
104.21.46.220200 OK 1.8 kB URL HTTP/1.1 www.flaru.com/js/js-structure-main.js
IP 104.21.46.220:0
File type HTML document, ASCII text
Hash ea55451c3aece2c5da42d6a24ed280d6
8c23266df6125e8ac829b473d61b716494b8623f
be9265a8aa2527aabcc28550d8c8d18b910879778ac6ad686b8f61dcf963dcb7
Analyzer Verdict Alert fortinet Malware
GET /js/js-structure-main.js HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: application/javascript
Content-Length: 1792
Connection: keep-alive
Last-Modified: Mon, 16 May 2022 22:29:23 GMT
ETag: "175c-5df288e571277-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BahjlbHn73PfwZlwn6p9BB5U4sMhyjEkEHAcOe1cG0J98E%2F1VmNU9%2FaTrhCnJKkof%2BQCqPn%2F7wDYsVgd3ULvsyohuPvTru4o3Ww%2BhOCybQMz%2F9CY%2BfLuDWKvH2HBqng%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f65a4b1c0a-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/js/js-main-compressed.js
104.21.46.220200 OK 7.6 kB URL HTTP/1.1 www.flaru.com/js/js-main-compressed.js
IP 104.21.46.220:0
File type Unicode text, UTF-8 text, with very long lines (28338), with no line terminators
Hash 36552e2c10f9769221fba399a859fb6f
8e3d86f40bb74e807b83aa118e2f2c1b2f403ab7
1795e752ef850dde9d2d09c068d0b863fd9b0d2d13df0b85bd599fd963c598d5
Analyzer Verdict Alert fortinet Malware
GET /js/js-main-compressed.js HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: application/javascript
Content-Length: 7579
Connection: keep-alive
Last-Modified: Fri, 05 Aug 2022 01:27:43 GMT
ETag: "6f1e-5e5745f67af59-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O4i5eP4hA%2FJ84lbWFT0Bte5J3wj823NsdBD2E5sf5oB9Xb5swAoy8TJYRS%2Byn7yHCsk8EgnebsshgAZXYHs1%2BlV8oGdOYm0LyvGMRX4F8TVwNF%2FMwvs%2BC%2B563%2BO%2BESeI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f649440b55-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/js/js-shell-compressed.js
104.21.46.220200 OK 1.3 kB URL HTTP/1.1 www.flaru.com/js/js-shell-compressed.js
IP 104.21.46.220:0
File type ASCII text, with very long lines (3804), with no line terminators
Hash 8002029be652c13bf31fb53e00161db4
b5861d67e32e154a6ce743aab03bfdb00878551d
6001227acb06d82c73e94f34b1959b8027dd80927033d17cba3e147599394df7
Analyzer Verdict Alert fortinet Malware
GET /js/js-shell-compressed.js HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: application/javascript
Content-Length: 1277
Connection: keep-alive
Last-Modified: Fri, 05 Aug 2022 01:27:43 GMT
ETag: "edc-5e5745f67af59-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z4%2FYA1KmLlh60GGX0YTT0CIA5%2FKn3puNnP0DGxvfCnMEHuS3M4dgfjnzXAifk42YrlAy5s9MyImD45pJakxeUQ0z07xufcqWmJ2JVDpizm1wUSGjSomuTLZIaOIM1Ee2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 750f42f64e68b512-OSL
alt-svc: h2=":443"; ma=60
a.realsrv.com/nativeads-v2.js
205.185.216.10200 OK 16 kB URL HTTP/1.1 a.realsrv.com/nativeads-v2.js
IP 205.185.216.10:0
File type C source, ASCII text, with very long lines (58917), with no line terminators
Hash 4fed24b05715a4123ff52b5bc128522b
6a3a08eb3da52fb6e303b9f1a33a56db987df4aa
f1bf20f90647fd8743e606ed47ea1ee6c191b93f54860e0b86597761b1b520c1
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 16534
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"24dfeeaabc29e5aaefc73f319e2"
X-HW: 1664229512.dop067.sk1.t,1664229512.cds205.sk1.shn,1664229512.cds205.sk1.c
Access-Control-Allow-Origin: *, *
www.flaru.com/icon/core/bulb-icon-40x40.png
104.21.46.220200 OK 490 B URL HTTP/1.1 www.flaru.com/icon/core/bulb-icon-40x40.png
IP 104.21.46.220:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash a05cd3f66797b407e2d47a64e559c587
d378e2c6e629fd5b8629de7113b74ba6b50ae4f2
5f87a0f34d641425fb99b0a58fe28109c24487471f7a5c9f3c80ccc529104280
GET /icon/core/bulb-icon-40x40.png HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/css/style-compressed.css
Cookie: externalLink=same; mode=day; ims=l; menuSay=0; menuFeatures=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: image/png
Content-Length: 490
Connection: keep-alive
Last-Modified: Sat, 07 May 2022 06:26:48 GMT
ETag: "1ea-5de660f48d7d5"
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gX0eSdlaOpASXjCOx93JLhvIjJLM9vzaG%2FgoVDcmsdcT7SCjoElSFDxaxn0mV7X%2Fiv3X42AaxFAiD%2FvbhaKAcfUpfQBiRGAdFEwHofSwO9CybuVQcfIFPnHpMdBBee%2BN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750f42f73a1c0b55-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/icon/core/gear-icon-40x40.png
104.21.46.220200 OK 1.4 kB URL HTTP/1.1 www.flaru.com/icon/core/gear-icon-40x40.png
IP 104.21.46.220:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 959b86975dbfaa0c9ad967dd89b86ac4
6e24ffea6d95dbdf291df0081b851ab5fdaac9d2
1cc0d8f50d5d7571ce7b77d7292c8fa928643580efd4f96829a92bdf3560a5d4
GET /icon/core/gear-icon-40x40.png HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/css/style-compressed.css
Cookie: externalLink=same; mode=day; ims=l; menuSay=0; menuFeatures=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: image/png
Content-Length: 1375
Connection: keep-alive
Last-Modified: Sat, 07 May 2022 06:11:34 GMT
ETag: "55f-5de65d8dd46aa"
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o6rk%2Frs3o6Ncpwisvl57nkJfzz4Wf8BuxB6JHTfpik4hDHCXiBEL7Zi39opkJkfUGi4%2BkQJxX1qdnk2MLUNwnnvz3RtSgNi8ipn1zGrET08AWNcirFsjBDpEUypVvLRO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750f42f74f55b512-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/icon/glass/0-gray.png
104.21.46.220200 OK 1.2 kB URL HTTP/1.1 www.flaru.com/icon/glass/0-gray.png
IP 104.21.46.220:0
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d42472c044dc7fc98e6dd771f198fd6
6e7b32a4643c8222a0ecfb8d16a6db96e6bd4254
fa20e89ded3ce95244a58a7487583ed6af8ab9636d77e51ded12091967797363
GET /icon/glass/0-gray.png HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/css/style-compressed.css
Cookie: externalLink=same; mode=day; ims=l; menuSay=0; menuFeatures=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: image/png
Content-Length: 1195
Connection: keep-alive
Last-Modified: Fri, 18 Sep 2020 13:59:41 GMT
ETag: "4ab-5af96e9802d40"
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nZSOojuvDaj%2FYyi7KF2MQYbnyoArhWpu95itvDpOU17OFbJJdaf3Z8veU4cOUnbQXt1TxEyL0XfE50C4UkIZoc5%2BnCeAKKtb50JDquAhC%2B49DaWBh1a4N%2FSXXKDBoZ1P"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750f42f75a260b55-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/icon/say/say-flaru-en.jpg
104.21.46.220200 OK 6.8 kB URL HTTP/1.1 www.flaru.com/icon/say/say-flaru-en.jpg
IP 104.21.46.220:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive, precision 8, 150x150, components 3\012- data
Hash 40bf26bc35c9154645477dea74283237
35479ec00caf527afba4567d4f4a5c35a123fad8
6ecf4dadaca17c44b84d01460bf7bd6b0f2bad5dd9b7c3adb3b0a2d19013dc81
GET /icon/say/say-flaru-en.jpg HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
Cookie: externalLink=same; mode=day; ims=l; menuSay=0; menuFeatures=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: image/jpeg
Content-Length: 6845
Connection: keep-alive
Last-Modified: Sun, 09 Aug 2020 03:22:11 GMT
ETag: "1abd-5ac6957f87ec0"
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CYMMIZeIeLkvjahJpViUuPqlKXK4mnMZbfpN6YxS5Wt7o%2FH54XjXNOxJKlS8LvQCUnmheWUheLIxxU3J4Dc5iizMhek6yUayGq9byaShYNB7gdojQ7H0oSVwZEqkwqv3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750f42f75e0b1c0e-OSL
alt-svc: h2=":443"; ma=60
www.flaru.com/icon/patreon/patreon-default.png
104.21.46.220200 OK 1.0 kB URL HTTP/1.1 www.flaru.com/icon/patreon/patreon-default.png
IP 104.21.46.220:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 375d9d680172e9508ea1d4034be9125c
445a79c5a1c29f06104b423912a02ff97d2757b5
427d55e9900e2042d5719e0ce2cf18968ba062e8556f2b08881b5fe6f97a6529
GET /icon/patreon/patreon-default.png HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/css/style-compressed.css
Cookie: externalLink=same; mode=day; ims=l; menuSay=0; menuFeatures=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:32 GMT
Content-Type: image/png
Content-Length: 1030
Connection: keep-alive
Last-Modified: Mon, 09 May 2022 06:52:32 GMT
ETag: "406-5de8ea70c0108"
Cache-Control: max-age=86400
CF-Cache-Status: HIT
Age: 879
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S1enx4oVVgeXIETCDSPV618HmNmnBcDYGyZEKxgCw5L4YpGstFlKC1HEEOuqbCIeaYLAMNjeVl0LNk0aSkM6OPnGs5q8hz%2FymTs2gb0YUVhcACr%2FAt98CGnAiVuUktkd"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750f42f75c2ab4fa-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 21:10:46 GMT
Expires: Mon, 26 Sep 2022 21:35:35 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6a06i9_svdzU9LNZyLfVB2hmdEESDAz30ermtYMU_zclugLFqPe1nw==
Age: 2867
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:58:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.38.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 20:34:43 GMT
expires: Mon, 26 Sep 2022 22:34:43 GMT
cache-control: public, max-age=7200
age: 5030
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?native-settings=1&idzone=4084198&cookieconsent=true&p=http%3A%2F%2Fwww.flaru.com%2Fen%2Fthebarchive.com%2F
95.211.229.246200 OK 2.7 kB URL HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=4084198&cookieconsent=true&p=http%3A%2F%2Fwww.flaru.com%2Fen%2Fthebarchive.com%2F
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (5184), with no line terminators
Hash 8b76e7f73a27e4813bb52980adac2521
3783ead734ae5d3d4ee2d4e6f0bb0eb62ecf1885
1020a3bce9fb116311537a6ac9055748b8f7582e188ddca2d6308c8282eb9cd2
GET /splash.php?native-settings=1&idzone=4084198&cookieconsent=true&p=http%3A%2F%2Fwww.flaru.com%2Fen%2Fthebarchive.com%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.flaru.com
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 21:58:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://www.flaru.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263322088df67f0.708734661229480577%22%3B%7D; expires=Wed, 25 Sep 2024 21:58:32 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
impressions=oslmroemnxgxaasmmxxmogeicxbmsbocnxgxaacooobbogeioslmrxbrnxgxaacxeermsgeicxbmsbxcnxgxaacoolrxsgeicxbmsbcenxgxaacxeermsgeislsaroornxgxaasbbrbolgeicxbmsboenxgxaacxomaobgeimreaomxcnxgxaasaoabsrgeimreaobsonxgxaasaoabsrgeioslmrxbmnxgxaasmxelmageimcclsoeenxgxaasamsoccgeimcclosconxgxaasabxarlgeimrblelmonxgxaasamsoccgeimrblxembnxgxaasamsoccgeimrblxeecnxgxaasamsoccgeimrblxemcnxgxaasamsoccgeialbserecnxgxaacxeermsgeioslmrxlsnxgxaaslaalcrgeicaormbbonxgxaacxeermsgeioslmrxlrnxgxaacxomaobgeimcclsxscnxgxaasmebascgeimrerbmbbnxgxaasmeceesgeialbsereanxgxaasboxexogeialbserebnxgxaasborcsogeiccmblmmcnxgxaaslsbacbgeimrblelxcnxgxaasblsoxxgeimcclsxoanxgxaaslaalcrgeimrblelmbnxgxaasblsoxxgeimcclossanxgxaasblsoxxgeimcclselenxgxaasblsoxxgeimcclsoeonxgxaasblsoxxgeimccloscenxgxaaslcsrobgeimcclsxacnxgxaaslcsrobgeicaormlebnxgxaacxeermsgeimcersxranxgxaacxeermsgeisaeeasslnxgxaacxeermsgeimcersxacnxgxaacxeermsgeimcersxrenxgxaacxeermsgeiccmblmmbnxgxaacxomaobgeimclobexbnxgxaacxclmolgxcceiaaxcabmanxgxaacxclmolgxcceimxlbmxlenogxaacxclmolgxcceimclobeoenxgxaacxclmolgxcceimxlbmosonogxaacxrcxaxgxcceimxlbmosanogxaacxrcxaxgxcceimrxccosansgxaacxrclmcgxcceimemlxmcbnxgxaacxrclmcgxcceixaoosscrnxgxaacxrclmcgxcceimocbmmaanxgxaacxrbeosgxcceimrsreamonsgxaacxrbsacgxcceixaoossalnxgxaacxrlolegxcceimxlbmxlonogxaacxasxxagxcceimxlbalsbnogxaacxasxxmgxcceimcssmlronrgxaacxasbbsgxcceimxlbmxbbnogxaacxasbbsgxcceimraeelaanxgxaacxasbbsgxcceimeembescnxgxaacxamalcgxcceimxlbalscnogxaacxamalcgxcceimeembeconxgxaacxabxmxgxcceimxlbmosenogxaacxabxmxgxcceimrxccoscnogxaacxabxmxgxcceimsacexoonxgxaacxabxmxgxcceimxlbmoconogxaacxabxmxgxcceimrmbbrrbnxgxaacxablolgxcceimcrxeobenxgxaacxmcblegxcceialblcxlbnxgxaacxmcblegxcceialblcxmcnxgxaacxmcblegxcceialblcxbonxgxaacxmcblegxcceialblcxmbnxgxaacxmcblegxcceiaaxcamlcnxgxaacxmrrrxgxcceialrexeoonxgxaacxmrrrxgxcceimxxrecsanxgxaacxmrrrxgxcceiaaxcamlanxgxaacxmrrrxgxcceialrexexbnxgxaacxmrrrxgxcceimclsaoxbnmgxaacxmrbexgxcceimrxccosbnogxaacxbcxlrgxcceimrxccosenogxaacxbcxlagxcceimcoaxmxonrgxaacxbcxlagxcceicmarxbbonsgxaacxbcxlagxcceimememsecnxgxaacxbcxlagxcceimxeoclbanxgxaacxlcomsgxcceimxcbrxsenxgxaacxlmemxgxcceimxlbmoobncgxaacoeomxrgxcceimcssmlrensgxaacoeomxrgxcceimxeoxsacnsgxaacoeomxrgxcceimcoaxmxcncgxaacoecmergxcceimxlbmoscnogxaacoebssmgxcceimrsreaabnxgxaacoelssbgxcceiaaxcabeonxgxaacoxbaxogxcceimeembesonxgxaacoxlcalgxcceimrxccosonogxaacoxlcalgxcceimeembecenxgxaacoxlcalgxcceimcssmlrcnsgxaacoxlcalgxcceimxlbmxlcnogxaacoxlcalgxcceicloaxxmonxgxaacooxlosgxcceicloaxxabnxgxaacooxlosgxcceicloaxxacnxgxaacooxlosgxcceimemlxbocnxgxaacooxlosgxcceimrmaoboenogxaacooxlosgxcceialbbebrenxgxaacooxlosgxcceialbbebsbnxgxaacooxlosgxcceialbbebsanxgxaacooobbogxcceirreacmsbnxgxaacooobbogxcceicloaecoenxgxaacoosbsagxcceiaaxcabecnxgxaacooraaagxcceicloaecocnxgxaacooraamgxcceimxcbrxscnxgxaacooraamgxcceimxxerrecnxgxaacooraamgxcceimxcbrxaenxgxaacooraamgxcceimrracoranxgxaacooraamgxcceimrmaobxbnxgxaacooaleegxcceimrmaobxanxgxaacooaleegxcceimraeelabnxgxaacooaleegxcceimeelaclcnxgxaacoomesrgaeimeelaclanxgxaacoomesrgaeicloaxxaanxgxaacoolcxagxcceicloaxxobnxgxaacoolcxmgxcceialaroxrcnxgxaacoolcxmgxcceiccmblmmanxgxaacoolrxsgeimxxerrxenxgxaacoolrxsgxcce; expires=Tue, 27 Sep 2022 21:58:33 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4084198%7C44789776%7C0%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6230c2937938c77a15629916dd76c0ad%7C0%7Cflaru.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Tue, 27 Sep 2022 21:58:33 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4084198%7C71105510%7C0%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6230c2937938c77a15629916dd76c0ad%7C0%7Cflaru.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Tue, 27 Sep 2022 21:58:33 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4084198%7C41873814%7C0%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6230c2937938c77a15629916dd76c0ad%7C0%7Cflaru.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Tue, 27 Sep 2022 21:58:33 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:58:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3t3d2y8.afcdn.net/widget-branding-logo.png
185.76.9.15200 OK 1.5 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/widget-branding-logo.png
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type PNG image data, 94 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a95be207bf27c9a91720b8ac81976ca
6412e94ce13924fede8b1bec73cb8e049b76688c
5325d5beb64d82d48d3f7d78b606ee93b8e975a55868bba038905329ed1044b9
GET /widget-branding-logo.png HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:33 GMT
Content-Type: image/png
Content-Length: 1547
Connection: keep-alive
Last-Modified: Mon, 15 Apr 2019 09:03:59 GMT
ETag: "5cb448ff-60b"
Expires: Fri, 30 Jun 2023 16:01:02 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1688195204
Server: CDN77-Turbo
X-77-NZT: AblMCQ2R8nb/hYNzAA
X-77-NZT-Ray: mNWZTmJA7bg
X-Cache: HIT
X-Age: 7570309
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
s3t3d2y8.afcdn.net/library/623611/26c94b1b9322fb1f2558083727af47e58151007e.webp
185.76.9.15200 OK 6.8 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/623611/26c94b1b9322fb1f2558083727af47e58151007e.webp
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac7f0a83b67d9661811c62d68cdd2074
26c94b1b9322fb1f2558083727af47e58151007e
24c3c958813cf663205712c9a41003d3c5f304d3a90301d63847ab46047fc66f
GET /library/623611/26c94b1b9322fb1f2558083727af47e58151007e.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:58:33 GMT
content-type: image/webp
content-length: 6782
last-modified: Wed, 03 Nov 2021 19:29:43 GMT
etag: "6182e327-1a7e"
expires: Fri, 30 Jun 2023 11:12:51 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195209
server: CDN77-Turbo
x-77-nzt: AblMCQ33IIb/gINzAA
x-77-nzt-ray: JIt3gHUrJDw
x-cache: HIT
x-age: 7570304
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/692514/d62e0d8783013d0874e3ad572e9170093500395e.webp
185.76.9.15200 OK 5.9 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/d62e0d8783013d0874e3ad572e9170093500395e.webp
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 642d381f662d670c471074e0e580bfaf
d62e0d8783013d0874e3ad572e9170093500395e
e1a81991b1ecab2e8b84bcd20fb6880df301b857f93d280f70e60ef07a0128a7
GET /library/692514/d62e0d8783013d0874e3ad572e9170093500395e.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:58:33 GMT
content-type: image/webp
content-length: 5946
last-modified: Wed, 03 Nov 2021 21:07:03 GMT
etag: "6182f9f7-173a"
expires: Wed, 30 Aug 2023 17:11:34 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416768
server: CDN77-Turbo
x-77-nzt: AblMCQ04k5//ydYjAA
x-77-nzt-ray: cxszmxIuYv0
x-cache: HIT
x-age: 2348745
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/759202/f72869e4bd197ef9893235f814688df859ec2897.webp
185.76.9.15200 OK 6.6 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/759202/f72869e4bd197ef9893235f814688df859ec2897.webp
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e02c2c5b08ffad9dbb8a645fbd759d7a
f72869e4bd197ef9893235f814688df859ec2897
736653c2e46389e17dfd30e6d9b43c7651e72789b37470c7aabbc1e8d6acccaf
GET /library/759202/f72869e4bd197ef9893235f814688df859ec2897.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:58:33 GMT
content-type: image/webp
content-length: 6562
last-modified: Thu, 04 Nov 2021 11:46:24 GMT
etag: "6183c810-19a2"
expires: Fri, 30 Jun 2023 18:46:50 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195260
server: CDN77-Turbo
x-77-nzt: AblMCQ3qtxn/TYNzAA
x-77-nzt-ray: la0t3OglwEA
x-cache: HIT
x-age: 7570253
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6015
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:58:33 GMT
Last-Modified: Mon, 26 Sep 2022 20:18:18 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
www.flaru.com/favicon.ico
104.21.46.220200 OK 718 B URL HTTP/1.1 www.flaru.com/favicon.ico
IP 104.21.46.220:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash edfedf13483fb10b91eae9a7b34176e3
1f291edc8610a68bc3fc9c03bcf37886effd66bf
83107864389578f806d122038adaf7d8c12802fc8909df39db387d208838f7fb
GET /favicon.ico HTTP/1.1
Host: www.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flaru.com/en/thebarchive.com/
Cookie: externalLink=same; mode=day; ims=l; menuSay=0; menuFeatures=1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 21:58:33 GMT
Content-Type: image/vnd.microsoft.icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Nov 2017 08:53:18 GMT
ETag: W/"47e-55ef3089b1b80"
Cache-Control: max-age=86400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xBKDOxQAjzSkiIyqspY%2FJMSzIqo%2FdpBeGV%2FF1kqJfFQsWQUubJFFlB%2BP37lOnKb8v%2FUE%2BwYzNgxx6yqMj%2FBDN5%2FWP%2FPjHpct342CplPbW%2BiS0zZzzSXKkrBEXN%2BXuqTZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750f42f92bac0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
44.242.3.166101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.3.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YfDolt+2S8nN9L15noOT2g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 19xZaLFtNmkEnaarHHb0jV3KdkE=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5564
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:58:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5564
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:58:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5564
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:58:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5564
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:58:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae177cf-4ac0-4f54-8ede-a8325edeeae3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae177cf-4ac0-4f54-8ede-a8325edeeae3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72216fd204ede0d6ce0c62c12a1dd49d
de603f1d3d4b6e3e6c088e8a935975dcffa147fd
8fbd3ce81f46ce1c158260aaf59ca20b5f0c9466de08e370c7501799c73bc0dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae177cf-4ac0-4f54-8ede-a8325edeeae3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9988
x-amzn-requestid: 5fb999ab-0ca6-463f-8798-79bb76b78123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YswHTHDYoAMF6Bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63282d61-28ed6d22293443a115c114db;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 08:50:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5IAvtj-mFlqCTikRd9IlAP66vnJG3vcCOxmZyk-MvBYsBfQNxvDZkw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 556
etag: "de603f1d3d4b6e3e6c088e8a935975dcffa147fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e56f576ce4c320252cd028a38a1e4bde
8fbe2856a3e05ae7c45f4e35944d2835d47e4284
dc5783e5d50e89d2b9c72dea55751a64157dbc9ec9be85383a6df10b5ec1a602
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5142
x-amzn-requestid: 5b86b092-ff60-476c-855a-d32d5f10f115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yvz1CGInoAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296686-79e9a4cb75289e1b0785d4fc;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:06:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5uKkOdNToKayXi19pWBWrEwBYSj3NzbjLeE1qjhr8qqCapb_pGRD8g==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:50:22 GMT
age: 492
etag: "8fbe2856a3e05ae7c45f4e35944d2835d47e4284"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3140ec95f33c36599de95b25cdade940
932c74fa24b61ee1b1c672b6c19b1e736caab8d3
f7488246ca75fddc504812f4c5944a5a2494cdb14b6ef1db5fb28beca5cff194
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9737
x-amzn-requestid: aec3c3e9-42e5-4de5-8882-118002369ef8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreGJxoAMF-oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-527ccd70654c22891262279d;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ukn4d6yPeJJHN5trYK3xbhik2pX41zHki3nG5r6fCzQgm3vYw5lhAA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:43:16 GMT
age: 918
etag: "932c74fa24b61ee1b1c672b6c19b1e736caab8d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 947
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f9bc23ab347b5f2e2ec15d69f41f0cf0
a92af0438aa2b6637c0f69dabd0be00b3a43caf8
4382f21ee6727d4b4d21bd7d16b1821a57d9fec6c78dbf7e74bfdfbde51ec206
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4327
x-amzn-requestid: 59493149-3c46-42c6-96aa-92c945fb4c40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlA1HzioAMFzxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9e-5bd13d5719a119a25650f405;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nZuilN7CTsQ_XYx39le70nZKRzVBDyygmYdaHVmBnpi8teTUB1Faxw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 556
etag: "a92af0438aa2b6637c0f69dabd0be00b3a43caf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 556
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
citrus3.flaru.com/en/-/domain/side
172.67.142.225200 OK 0 B URL HTTP/2 citrus3.flaru.com/en/-/domain/side
IP 172.67.142.225:0
Analyzer Verdict Alert fortinet Malware
GET /en/-/domain/side HTTP/1.1
Host: citrus3.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://www.flaru.com
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:58:32 GMT
content-type: text/html
x-powered-by: PHP/5.5.9-1ubuntu4.14
access-control-allow-origin: http://www.flaru.com
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 879
last-modified: Mon, 26 Sep 2022 21:43:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Gi9IvO%2Byen6ZPjyxxWBJSJmPoS90UEn%2BlUEKM0iuGOep%2FvGak0YtHKKoeZQg7DOTtOA5Vyu6BSHOdNjGAWTpnz6sIVuEx0cOYzYEImvhvowueO9tQdfTu8pXu%2F96VihjXeI%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750f42f76c3fb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thebarchive.com/favicon.ico
104.21.84.106403 Forbidden 0 B URL HTTP/2 thebarchive.com/favicon.ico
IP 104.21.84.106:0
GET /favicon.ico HTTP/1.1
Host: thebarchive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Mon, 26 Sep 2022 21:58:32 GMT
content-type: text/html; charset=UTF-8
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ak0acB8IB8ec4Dmc78QqGa2IuISkkOyQWo9mPmla4WBsqjiR6fgaOS2ngY2Q4Cm%2F9JkVD9rykT9feAl8HBsnYWfMRg8bamfjVK91mx30nXDOSstnbNcJ%2F3toX%2BVB2sUS8yg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750f42f779d9b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
citrus3.flaru.com/en/-/hot/thebarchive.com/
172.67.142.225200 OK 0 B URL HTTP/2 citrus3.flaru.com/en/-/hot/thebarchive.com/
IP 172.67.142.225:0
Analyzer Verdict Alert fortinet Malware
GET /en/-/hot/thebarchive.com/ HTTP/1.1
Host: citrus3.flaru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://www.flaru.com
Connection: keep-alive
Referer: http://www.flaru.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 21:58:34 GMT
content-type: text/html
x-powered-by: PHP/5.5.9-1ubuntu4.14
access-control-allow-origin: http://www.flaru.com
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: MISS
last-modified: Mon, 26 Sep 2022 21:58:34 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Chu5r%2FfFTNCHX3BTeHI4FWuUjqKLtqWig6AvKGbDKAv0cbhQz26LlGbYbl%2FLZmvVH656Boy%2FJb8b1OvXrZS2johWxhGQuBniiMGiFYEc8nLUvscRvQDGfVTT9JIM2nJxpkH50A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750f42f75c30b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2