Report - n9.cl/lx4p9

Report Overview

Submitted URL
n9.cl/lx4p9
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-03 23:37:12
Access
public
Website Title
Free Link Shortener, Tiny URL - n9.cl Free Short URL Redirects, Custom Brand Link Free
Final URL
n9.cl/en/lx4p9
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
glimtors.net	168336	2021-04-03	2021-04-05	2024-03-04	4.3 kB	110 kB	139.45.197.251
woudaufe.net	unknown	2022-10-03	2022-10-03	2024-04-30	1.0 kB	38 kB	139.45.197.251
jouteetu.net	260109	2021-07-08	2021-07-15	2024-05-02	1.3 kB	1.9 kB	139.45.197.251
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	2.9 kB	474 kB	142.250.74.132
amunfezanttor.com	unknown	2023-03-31	2023-03-31	2024-05-03	1.5 kB	1.7 kB	139.45.197.250
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-03	428 B	346 kB	104.17.24.14
n9.cl	96312	2016-04-17	2017-07-13	2024-03-19	14 kB	430 kB	188.114.97.1
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-02	412 B	88 kB	142.250.74.168
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-05-03	1.9 kB	442 kB	142.250.74.35
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-03	511 B	16 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-03	medium	woudaufe.net	Sinkholed
2024-05-03	medium	amunfezanttor.com	Sinkholed
2024-05-03	medium	amunfezanttor.com	Sinkholed
2024-05-03	medium	amunfezanttor.com	Sinkholed
2024-05-03	medium	woudaufe.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	n9.cl/lx4p9	420 B	2024-05-04	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen1 Hash cb066a988d2c784ee14f791be0904dee e9e59044f55dcb85b4b5c35e1e060f025fd4f5d7 13524559742bfdf3ddd8c6609d0f55bb4fb6ec30664aced3462eaaf7d0c43762 Loading...

	n9.cl/lx4p9	340 B	2023-03-07	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:11:54 Last Seen2024-05-04 01:37:14 Times Seen30 Hash 099ae6e3d09272c6b1c6613ac28ed14b bc22fca6c58f065df80a34fe2fcd1cc5c92c5351 c2e9605d518aaa4a7a7cbe9e7086ecc2db99c4f53d2f99b7fd3a44eda0b519d9 Loading...

	n9.cl/app/view/js/base.js?v2.17	1.5 kB	2023-03-07	2024-05-07
Pretty URL n9.cl/app/view/js/base.js?v2.17 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:11:54 Last Seen2024-05-07 17:04:17 Times Seen42 Hash eec80ed11beac936380255c1927dfdca 318d69b26694afb795f000b30727aae0048a5fb7 f1854cf7a7229628ef40e65e9d25b58af4605f00bc6cbb1cd14ae1512e1e8d76 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444	69 B	2023-03-07	2024-05-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-18 01:55:27 Times Seen102385 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	n9.cl/app/view/js/bootstrap.min.js	40 kB	2023-03-07	2024-05-17
Pretty URL n9.cl/app/view/js/bootstrap.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-17 22:22:10 Times Seen12510 Hash 2f34b630ffe30ba2ff2b91e3f3c322a1 b16fd8226bd6bfb08e568f1b1d0a21d60247cefb 9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe Loading...

	n9.cl/en/lx4p9	428 B	2024-05-04	2024-05-04
Pretty URL n9.cl/en/lx4p9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen1 Hash 12d35fe1c60f9647f9ef27e3cd114e22 0464135f5bb8a5a2a5f9f3ffa414a2b9b312c315 9fee0232a66d788aa35540962fee09f140cea99f485bcf40e93c591e7e8f9c89 Loading...

	www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js	518 kB	2024-04-24	2024-05-15
Pretty URL www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:18:30 Last Seen2024-05-15 19:10:18 Times Seen9003 Hash e2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1	0 B	2023-03-07	2024-05-18
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 02:31:46 Times Seen37765854 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	glimtors.net/pfe/current/tag.min.js?z=2339578	15 kB	2024-04-25	2024-05-14
Pretty URL glimtors.net/pfe/current/tag.min.js?z=2339578 IP 139.45.197.251 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 22:19:47 Last Seen2024-05-14 14:21:41 Times Seen215 Hash ffdd38e0a5a1a47cb341a116a3318e0e 2fd730feff506cf56e14c531e9d89cdea2cca424 7d8e97e9586d3f04c4a2a703692378868e49120c6159d079ae7ed1eca2ca2b5c Loading...

	woudaufe.net/pfe/current/micro.tag.min.js?z=6011312&sw=/sw-check-permissions-c1121.js	37 kB	2024-04-25	2024-05-15
Pretty URL woudaufe.net/pfe/current/micro.tag.min.js?z=6011312&sw=/sw-check-permissions-c1121.js IP 139.45.197.251 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 13:01:48 Last Seen2024-05-15 20:42:51 Times Seen2522 Hash 32d6dbd00a639e2cd10d1704b9159bd5 0dab4c95675393f1d0e13d20f13d80ee12e41d95 9f339e5efd7c959419a4e86bb4c5e9f07eae2ed839484846157be981917743de Loading...

	www.googletagmanager.com/gtag/js?id=G-VMZ7RLZB6D	247 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-VMZ7RLZB6D IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen2 Hash fd9b92e10b072bd3f46b69d7261eb295 13ec5839212328cbd4355e9c4ba70508b5fb9298 0b4e8d48e9cc2c27ea91b30ee255a86d68e2940b29274f319ea0aa98cd6e25ac Loading...

	unknown	90 kB	2024-04-25	2024-05-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 22:19:47 Last Seen2024-05-14 14:21:41 Times Seen281 Hash 4caad44ecc6a13eba45b63ed7cf9e387 e67dfe90bebd5447495d8fe962d03e55f6d13071 66f95b5eb4bf3dc3a13643e3e6776b18a2b15e0b881328e2ee012c73e679ad00 Loading...

	n9.cl/sandbox%20eval%20code	136 B	2023-04-11	2024-05-18
Pretty URL n9.cl/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23:25 Last Seen2024-05-18 01:58:42 Times Seen32307 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.0/js/all.min.js	1.1 MB	2023-03-07	2024-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.0/js/all.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:52 Last Seen2024-05-09 16:00:40 Times Seen224 Hash 1b21d2869be6436b7db5422a9083c97e 4badba503159675023d1cc111ee7ad5b9230d733 d2fba4f0b5e8cab9828e9d5fd0edf4d2aa3533be59432847f57dc9e9dfac7269 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444	37 kB	2024-05-04	2024-05-04
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen1 Hash e50fdaec4b97f19508d1858d1c6e8a76 17fe9d843d7c5000715ebb24b340ce1e540ea365 ac735616eb2ce09373591dba6b35bbf3473efe01389ab4de1cf57679de61659f Loading...

	n9.cl/lx4p9	151 B	2023-05-05	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-05 00:52:01 Last Seen2024-05-04 01:37:14 Times Seen11 Hash 200a5b28934e2721c721e4a3c59ce4ab 783f5034ffb704b4bf16e7ea3785d02ee30729ff d595603ff4687f63466133bef47af7c4584e97468fb74870152601e06dac4d4f Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	13 kB	2023-04-05	2024-05-18
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46:03 Last Seen2024-05-18 01:58:42 Times Seen31695 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	www.google.com/js/bg/fyCF3lmo_OYnC_9rGWUF-CeQvtOEKKrTUK_XXS1Fd1s.js	18 kB	2024-04-27	2024-05-06
Pretty URL www.google.com/js/bg/fyCF3lmo_OYnC_9rGWUF-CeQvtOEKKrTUK_XXS1Fd1s.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 09:59:03 Last Seen2024-05-06 06:50:01 Times Seen458 Hash 040162f6da25c64feaaed69abc0ac96b 818d0d73c7efdeafe6898255d407c519173a5131 7f2085de59a8fce6270bff6b196505f82790bed38428aad350afd75d2d45775b Loading...

	n9.cl/lx4p9	450 B	2023-06-08	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-08 23:55:45 Last Seen2024-05-04 01:37:14 Times Seen11 Hash 64d6e5e21b2c36711e3fcd0666c9ffa7 32736b15f730eaa2a6b56015fe9e51c801b8d4f5 85255d447fbf69c1814f227bb2f00febbb49002726715389364288d67b28dc8f Loading...

	n9.cl/lx4p9	693 B	2023-11-02	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-02 23:47:33 Last Seen2024-05-04 01:37:14 Times Seen4 Hash 9028a5b199ba298c53d612843919d686 e39cc0a40d8e1ce1282398e04128a41b7685564d f325bc6f4434fc72928b51a16943f475a9701455dc69874efe97cb8f5076cc75 Loading...

	www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit&hl=en	909 B	2024-04-25	2024-05-08
Pretty URL www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit&hl=en IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 15:51:51 Last Seen2024-05-08 11:58:36 Times Seen70 Hash 7e868d7b0b2320352c711c2fd7b6197a e73d3a5def06de41eea5380507de55f8320bd2cd 0be833f2ac6cc0b422ed1b1c95c72b65468928f97db7055bb608c9e5fec1c39a Loading...

	n9.cl/app/view/js/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-18
Pretty URL n9.cl/app/view/js/jquery-3.5.1.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-18 02:19:44 Times Seen145161 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	n9.cl/app/lib/xajax/xajax_js/xajax_core.js	40 kB	2023-03-07	2024-05-07
Pretty URL n9.cl/app/lib/xajax/xajax_js/xajax_core.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:11:54 Last Seen2024-05-07 17:04:17 Times Seen42 Hash b7d32313ea0e0f23f7dd853474f0e4be d7c117d94ed4c05b6e686ed79bbcb51a9c8e168c e9bed75941000ad2af76fdf555e2e70c209ef0c67b68211877b58db1a85d6083 Loading...

	n9.cl/lx4p9	277 B	2024-05-04	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen1 Hash 22b7aee8cc582a5cd7decf98fd40382b abe0b1e7cbfad784c8f1588a7deafe4cf518bf3d 3f95674401a40d2565992ea6a920c0d206e036e8869efcf4a7a1be8ff3233a1f Loading...

	n9.cl/lx4p9	41 B	2024-05-04	2024-05-04
Pretty URL n9.cl/lx4p9 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen1 Hash 57091804dbac3ce4d0cda69b41493d5f aff03bc807a254ede386a529c27a9424b588bf48 5ad7e41833301388f7e122b31a3afa83a3b834f8e3c37aba20a842d5d0d4c401 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d9e35c2efcb7cc9175a029ea36a0fc03	22 B	2024-04-27	2024-05-06
Pretty Observations First Seen2024-04-27 09:59:04 Last Seen2024-05-06 06:50:01 Times Seen202 Hash d9e35c2efcb7cc9175a029ea36a0fc03 d509b773833167268ce159a9aa1cec2b66bbaade 3224ac29c9b9ae1df69da061c76b3b8f753e63eda41cd56d984b823b7a2c03f2 Loading...

	#2 Eval - a22acf42c34df68d6068204184c4d70b	64 B	2024-04-27	2024-05-06
Pretty Observations First Seen2024-04-27 09:59:04 Last Seen2024-05-06 06:50:01 Times Seen206 Hash a22acf42c34df68d6068204184c4d70b f2243b2b3554d90dbef6126d7240383316b8ca81 85b592cd7beae3e895f3d3d70ab35e21b38becd37775a635a5d277032f6d22c2 Loading...

	#3 Eval - afac6155a432cfffdfc7a0a8f5f710ec	25 kB	2024-05-04	2024-05-04
Pretty Observations First Seen2024-05-04 01:37:14 Last Seen2024-05-04 01:37:14 Times Seen1 Hash afac6155a432cfffdfc7a0a8f5f710ec d050ea12275dbbdf692fdbde5c48d1385c9345ab 9cfced8dd5185c1f9008ca2e825dd25665dcdf9ba7bcec0e5886a921811947ff Loading...

	#4 Eval - 082a52c05eea6787ba699ff89fb0976a	22 B	2024-04-27	2024-05-06
Pretty Observations First Seen2024-04-27 09:59:04 Last Seen2024-05-06 06:50:01 Times Seen205 Hash 082a52c05eea6787ba699ff89fb0976a 8b94e04205aa757cfe3584f2b39846d1949019bf 1f1dfcf2bd3c3f18e17e4f8270d17610c0c8dd648a46eb5d7d2f99810b33b45e Loading...

HTTP Transactions (58)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.0/js/all.min.js

104.17.24.14

200 OK

345 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.0/js/all.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65350)
Size
345 kB (345403 bytes)
Hash
1b21d2869be6436b7db5422a9083c97e
4badba503159675023d1cc111ee7ad5b9230d733
d2fba4f0b5e8cab9828e9d5fd0edf4d2aa3533be59432847f57dc9e9dfac7269

HTTP Headers

GET /ajax/libs/font-awesome/5.12.0/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 345403
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-117579"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 272906
expires: Wed, 23 Apr 2025 23:36:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ykez0ZWDFCwMDgFHMeOLk9whIRxPxamVvz6OYjQIeoTPa9rIlPXXQgEdVsLy5QEXWKz%2FmW0q2YDzRXDt1nvLulAKtCsf%2BEuzQfvT6Lc0JZv3DSEKDEjHUT1NLaEo7zHoAom%2BQeU1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e4132e193d7130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

n9.cl/app/view/css/bootstrap.css

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
n9.cl/app/view/css/bootstrap.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (19700 bytes)
Hash
2f75f07de2462ab2dab22663798936cb
feb104a305aae280f8bdcfd2fe8754ad2a80e31d
c1b54937654bed13fe4a38efd9875caea4596e139d259e1752f99978c27b971d

HTTP Headers

GET /app/view/css/bootstrap.css HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/css
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=134942
etag: W/"20f1e-608e6ea761176-gzip"
expires: Thu, 30 May 2024 16:25:18 GMT
last-modified: Mon, 30 Oct 2023 03:48:49 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 285086
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pbUtq73RGlPI41UCz%2BAdS0ViO9sarEr%2FOZZ%2BNdLUV808AZ6pDOtBjwp1wtWcyDVfWnY4q29n3E7jN8mqvPYpITl5GFsODgIGFUp%2BseprkTBftWmBvkPDTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132dff480b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/css/font-awesome.min.css

188.114.97.1

200 OK

6.7 kB

URL GET HTTP/3
n9.cl/app/view/css/font-awesome.min.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
ASCII text, with very long lines (27229)
Size
6.7 kB (6710 bytes)
Hash
351761943e16cd64685832a48c2e8e65
8c0c552a9772fe033330e767d578123ebf5ce12c
2b5f208aa4ad56934b40813179317ea75e567f6f8b0912147fe19c6e9dc286c3

HTTP Headers

GET /app/view/css/font-awesome.min.css HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/css
last-modified: Mon, 06 Nov 2023 18:25:37 GMT
etag: W/"6aff-6097ffb07f0e0-gzip"
cache-control: public, max-age=604800
expires: Thu, 30 May 2024 18:42:24 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 276860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AqL8QxVAztkNlhpTx4I8i07EOT7z0MBptS%2B%2FeefIHgWHjIKDzmnV7vjL5H1F1GJ0k0Y4Gra82pK2XTQ6DobcPkjudtXDqVNI4TIDaP8iLS8xHkIhqipWdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132dff4b0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-VMZ7RLZB6D

142.250.74.168

200 OK

88 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-VMZ7RLZB6D
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://n9.cl/lx4p9
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
88 kB (87701 bytes)
Hash
fd9b92e10b072bd3f46b69d7261eb295
13ec5839212328cbd4355e9c4ba70508b5fb9298
0b4e8d48e9cc2c27ea91b30ee255a86d68e2940b29274f319ea0aa98cd6e25ac

HTTP Headers

GET /gtag/js?id=G-VMZ7RLZB6D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 May 2024 23:36:44 GMT
expires: Fri, 03 May 2024 23:36:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87701
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

n9.cl/app/view/js/jquery-3.5.1.min.js

188.114.97.1

200 OK

39 kB

URL GET HTTP/3
n9.cl/app/view/js/jquery-3.5.1.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
39 kB (38906 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /app/view/js/jquery-3.5.1.min.js HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/javascript
last-modified: Mon, 30 Oct 2023 03:49:24 GMT
etag: W/"15d84-608e6ec867d2d-gzip"
cache-control: max-age=216000, private
expires: Sun, 02 Jun 2024 23:36:44 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GbMDjheyfU3vm%2FK4cix18%2FS66kZ0MyGLh%2FAEV1yxuJ5N8lp1m5xqkfahO6vb%2B53QNQBkmrzymwBNnk8xw95SpjILNztfIlS0w4gun735z4Z%2BeDfYXKzAPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132dff4d0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/fonts/OpenSans/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2

188.114.97.1

200 OK

16 kB

URL GET HTTP/3
n9.cl/app/view/fonts/OpenSans/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15572, version 1.6554
Size
16 kB (15572 bytes)
Hash
e64cab167bbdc04807429d10873901a0
afc44700053c9a28f9ab26f6aec4862ac1d0795d
60f9b5203842a4fe2d52f7c96f3c57b755bbf8f347535469739bcc6f95a9c4b5

HTTP Headers

GET /app/view/fonts/OpenSans/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/app/view/css/fonts.css
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:45 GMT
content-type: font/woff2
content-length: 15572
last-modified: Mon, 30 Oct 2023 03:51:30 GMT
etag: "3cd4-608e6f412c1d8"
cache-control: max-age=2592000
expires: Thu, 30 May 2024 18:51:30 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 276315
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WNp2nCUsQ0oCo5WT3itg3s7ZLsiIaHFOV4LYzmDp%2BJdLE25GoWsaowWOPi2EgYtF4NzF6S28ocLTWK0P9147kdMttgezOFltYyj7aZ%2FyYXXZeJy%2BXeXoIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e41331f9110b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/ar.png

188.114.97.1

200 OK

17 kB

URL GET HTTP/3
n9.cl/app/view/img/flags/ar.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
17 kB (16617 bytes)
Hash
1b168c33f9b3d0931c65f2668e80b2c1
bd0237f93181e1b3e2de29f85c21fe0280e44129
38c58dbae402579e1823ed833042ed46d113b6b4f885d747978c5de604876a30

HTTP Headers

GET /app/view/img/flags/ar.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:51:49 GMT
etag: W/"1d1-608e6f5361932-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 18:39:15 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 277049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z4enM1HZX2vSkF3MeR2H1uyxbPxJSK5hbYYKMWYfLWumsExHwwQ6Ej1zhW5WDfBPfHZCOyacyRUiuCL3e%2FreKHRJ%2BD8BCZ%2FFEvEWIR3pp7oTJXHMaq3QMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf2e0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/js/bootstrap.min.js

188.114.97.1

200 OK

16 kB

URL GET HTTP/3
n9.cl/app/view/js/bootstrap.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
JavaScript source, ASCII text, with very long lines (39553)
Size
16 kB (15846 bytes)
Hash
2f34b630ffe30ba2ff2b91e3f3c322a1
b16fd8226bd6bfb08e568f1b1d0a21d60247cefb
9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe

HTTP Headers

GET /app/view/js/bootstrap.min.js HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/javascript
last-modified: Mon, 30 Oct 2023 03:49:20 GMT
etag: W/"9b00-608e6ec4a6d09-gzip"
cache-control: max-age=216000, private
expires: Sun, 02 Jun 2024 23:36:44 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2ujrxwV4wwPD14fT9d4%2FJ3DIK47RrZ%2BLk%2BK7I63uBuBkR0W9DrioV2%2Fw9L1oz3mRuhZhXXCWBmzWsNudofZamSjfMEL0BCkVvRTwG4eZjtVj8ext1FEh6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132e0f500b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/fr.png

188.114.97.1

200 OK

67 kB

URL GET HTTP/3
n9.cl/app/view/img/flags/fr.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
67 kB (67169 bytes)
Hash
d2fb119cedff1441a2a59ada22bb0dc4
c5377ff53c87fc3c267f127c7d7d454f55a25752
9f4eb65170625bde775e82744ca14a54c78637c2ee3e51acc5047b5ce9301099

HTTP Headers

GET /app/view/img/flags/fr.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:13 GMT
etag: W/"221-608e6f6a33c73-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 18:39:15 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 277049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZFkh%2FU2Sj4rAPk7jWlz4MTIN0psKKCdAxrg56wEvyyzLzA1V1CoYTUKuvvsPXardcTwlD5RjdtjYh%2BUd6Na37NnyDxRpUZd6YwYk77J9yT%2BhBD6mfzR3hw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf360b69-OSL
alt-svc: h3=":443"; ma=86400

glimtors.net/zone?pub=0&zone_id=2339578&is_mobile=false&domain=n9.cl&var=&ymid=&var_3=&tg=0&sw=3.1.504

139.45.197.251

200 OK

881 B

URL GET HTTP/2
glimtors.net/zone?pub=0&zone_id=2339578&is_mobile=false&domain=n9.cl&var=&ymid=&var_3=&tg=0&sw=3.1.504
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type
JSON text data
Size
881 B (881 bytes)
Hash
1107652f7d9a01eec9b28c53e4381b26
a0bb4ea3f9a8c89968c83d5fd7a17559cdde5679
fab26fcf5e683c72e30a67ce89046751fae5968a3ddb80b1092621cadf7e1306

HTTP Headers

GET /zone?pub=0&zone_id=2339578&is_mobile=false&domain=n9.cl&var=&ymid=&var_3=&tg=0&sw=3.1.504 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 881
x-trace-id: 73bb4aa50019d600a9f1c0ff74770aaa
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

woudaufe.net/zone?&pub=0&zone_id=6011312&is_mobile=false&domain=n9.cl&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=11a72b10-8d5d-4881-9fa3-f4030e3c1826&action=prerequest

139.45.197.251

200 OK

0 B

URL POST HTTP/2
woudaufe.net/zone?&pub=0&zone_id=6011312&is_mobile=false&domain=n9.cl&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=11a72b10-8d5d-4881-9fa3-f4030e3c1826&action=prerequest
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectwoudaufe.net
Fingerprint97:B7:E3:B4:46:26:82:1A:84:6C:4D:15:C2:B7:B8:FE:0F:00:67:F5
ValidityMon, 15 Apr 2024 05:41:42 GMT - Sun, 14 Jul 2024 05:41:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /zone?&pub=0&zone_id=6011312&is_mobile=false&domain=n9.cl&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=11a72b10-8d5d-4881-9fa3-f4030e3c1826&action=prerequest HTTP/1.1
Host: woudaufe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-length: 0
x-trace-id: 9fea63f6175e1108b955e0913e7b96cf
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jouteetu.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
jouteetu.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectjouteetu.net
FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65
ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 233
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: b6298fc20d6b1d950b61d4b9fd68ef2c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jouteetu.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
jouteetu.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectjouteetu.net
FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65
ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 235
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: a02dbb4147dcb064e1d495dc738a320d
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jouteetu.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
jouteetu.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectjouteetu.net
FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65
ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 236
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: b8fdd1d486d459e02fc9b71188fbd530
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit&hl=en

142.250.74.132

200 OK

15 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit&hl=en
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://n9.cl/lx4p9
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
JavaScript source, ASCII text, with very long lines (38051), with no line terminators
Size
15 kB (15258 bytes)
Hash
cf6e2104627cdeb66a19b759635ba002
37cc9b4e44f2879b3ad22adc772305dee17012d1
5578f0c0110340b3f70b571e32b590ff2b3f190194c87f08426ae927aa652d0a

HTTP Headers

GET /recaptcha/api.js?onload=onloadCallback&render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 03 May 2024 23:36:44 GMT
date: Fri, 03 May 2024 23:36:44 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type
JSON text data
Size
94 B (94 bytes)
Hash
3293d571396b0cf1027a45c2e79dc93b
99b4f0e12359c52cc9237b780c79b65992618b3a
25a4c25b6459e5441db62658eb3070c327fd920ab8b402aae68dad4c8a0726b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Content-Type: application/json
Content-Length: 866
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n9.cl/
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

0 B

URL OPTIONS HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n9.cl/
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type
JSON text data
Size
94 B (94 bytes)
Hash
f0b0771685be36e4c8371889ce7a0002
9764c62a7a7d1ab393eca3201506c92393b8966d
efce876af0c0759e34100c0d235fbdfc915271f5c54adfb3f6dc80122d79e363

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Content-Type: application/json
Content-Length: 498
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 164434
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL OPTIONS HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Content-Type: application/json
Content-Length: 355
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 1527773ecab6d5c7bd2ee3c3446c65c5
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

n9.cl/app/view/fonts/OpenSans/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2

188.114.97.1

200 OK

16 kB

URL GET HTTP/3
n9.cl/app/view/fonts/OpenSans/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15572, version 1.6554
Size
16 kB (15572 bytes)
Hash
e64cab167bbdc04807429d10873901a0
afc44700053c9a28f9ab26f6aec4862ac1d0795d
60f9b5203842a4fe2d52f7c96f3c57b755bbf8f347535469739bcc6f95a9c4b5

HTTP Headers

GET /app/view/fonts/OpenSans/cJZKeOuBrn4kERxqtaUH3VtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/app/view/css/fonts.css
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1; _ga_VMZ7RLZB6D=GS1.1.1714779405.1.0.1714779405.0.0.0; _ga=GA1.1.1729452366.1714779405
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:45 GMT
content-type: font/woff2
content-length: 15572
last-modified: Mon, 30 Oct 2023 03:51:30 GMT
etag: "3cd4-608e6f412c1d8"
cache-control: max-age=2592000
expires: Thu, 30 May 2024 18:51:30 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 276315
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L48sOZlG62Rbq6HbPzAzLyN0qMKLZMqOi7khF%2BHqNTFLVzg2SmzPaGoOf3gt%2Bd9wJ9RbP4QVEqtyTaQzNzKj01%2BPv6IwfgJP6%2Bzw7FIRsDRU%2FNKhsZDZag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e413357a490b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/fonts/OpenSans/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2

188.114.97.1

200 OK

16 kB

URL GET HTTP/3
n9.cl/app/view/fonts/OpenSans/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16152, version 1.6554
Size
16 kB (16152 bytes)
Hash
bc5457c1089cc65463eb981d4cdb7045
2da4d6d1b1bef32c05719680145b61613b3829b4
1f1ab7f1b22c02d93e5bd37b04e7e848afd14337697f652c1454d14e801676f2

HTTP Headers

GET /app/view/fonts/OpenSans/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2 HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/app/view/css/fonts.css
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1; _ga_VMZ7RLZB6D=GS1.1.1714779405.1.0.1714779405.0.0.0; _ga=GA1.1.1729452366.1714779405
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:45 GMT
content-type: font/woff2
content-length: 16152
last-modified: Mon, 30 Oct 2023 03:51:32 GMT
etag: "3f18-608e6f42a41e4"
cache-control: max-age=2592000
expires: Thu, 30 May 2024 18:51:30 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 276315
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sr2uu%2Bdee9F2xfxS%2BKbcmB7x%2Bm6mg3Nmc8K3F6EOlToWaNUWy9amrjdMuv7QARK1gwbI%2BAhnkzKpepP6%2FZsUXSGPLVLCmsuTMujxWJk5QYS0jqc1RSvYVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e413357a4a0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/no.png

188.114.97.1

200 OK

25 kB

URL GET HTTP/3
n9.cl/app/view/img/flags/no.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
25 kB (25129 bytes)
Hash
dfa8e7a41b0763ac037055682be0ffaf
6c5a97d373696da71a13932dc1b8b0a41741a9e4
600dce2dc9c735ec7c5d3ccf3bf780f5c73ebe40935f82fffb4cc391b4568c26

HTTP Headers

GET /app/view/img/flags/no.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:46 GMT
etag: W/"200-608e6f89acf96-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 21:07:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 268173
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9xeICP7JScy2p1W3LCtH4xpxsU3ByBlXTLm87zwmQ8usmK8J9EKa6yRShxp9xKat5WWry1jQ0gtyyuwNWcE%2BgDpL1iVWWgqlf6ZOw1SjYXKn9adIOV0iSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf2b0b69-OSL
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444

142.250.74.132

200 OK

234 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://n9.cl/lx4p9
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
HTML document, ASCII text, with very long lines (37185)
Size
234 kB (234177 bytes)
Hash
d6d69751b7c1e79a68193cdfb72b8090
67bfeff6d35964ec715b02441a696198e4000fe3
0e98c6dd14a27ad45c47680491d22dbd32cf6ac7499a1e9851413ce8809e6dcb

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:36:45 GMT
content-security-policy: script-src 'nonce-LkbD6AClxclqwrGycb4Pww' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

glimtors.net/custom

139.45.197.251

200 OK

0 B

URL OPTIONS HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n9.cl/
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:46 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL OPTIONS HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Content-Type: application/json
Content-Length: 364
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:46 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c6d6d1d8642772db9d2f149f4cf1fc8c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m

142.250.74.132

200 OK

206 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205913 bytes)
Hash
e4eb924eec164dfe5fb43e5d8e6b2a2f
582bad0eac6440aa49632ca1e24d7a52a89d7d92
428ed37cf336160c986f3c470a345bd9790e95d119cfb794767637df59eb3a59

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 03 May 2024 23:36:46 GMT
date: Fri, 03 May 2024 23:36:46 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 25542
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:54:07 GMT
expires: Thu, 09 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 160959
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/fyCF3lmo_OYnC_9rGWUF-CeQvtOEKKrTUK_XXS1Fd1s.js

142.250.74.132

200 OK

7.5 kB

URL GET HTTP/3
www.google.com/js/bg/fyCF3lmo_OYnC_9rGWUF-CeQvtOEKKrTUK_XXS1Fd1s.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (17691)
Size
7.5 kB (7490 bytes)
Hash
040162f6da25c64feaaed69abc0ac96b
818d0d73c7efdeafe6898255d407c519173a5131
7f2085de59a8fce6270bff6b196505f82790bed38428aad350afd75d2d45775b

HTTP Headers

GET /js/bg/fyCF3lmo_OYnC_9rGWUF-CeQvtOEKKrTUK_XXS1Fd1s.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7490
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:12:08 GMT
expires: Fri, 02 May 2025 02:12:08 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 163478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

glimtors.net/custom

139.45.197.251

200 OK

0 B

URL OPTIONS HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n9.cl/
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:46 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL OPTIONS HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Content-Type: application/json
Content-Length: 715
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:46 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 4ad0e70e59e1bc2a25459dd96e7b8818
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1&co=aHR0cHM6Ly9uOS5jbDo0NDM.&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=normal&cb=ov3bxqn8g444
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
25 kB (24617 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:09:29 GMT
expires: Sat, 03 May 2025 01:09:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 80837
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 164435
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

n9.cl/app/view/img/flags/pt.png

188.114.97.1

200 OK

554 B

URL GET HTTP/3
n9.cl/app/view/img/flags/pt.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
554 B (554 bytes)
Hash
5b8ab69ac52129bd32a3927f1b94d170
058abf2f3e55994f2d952dbe8619bf9ad190635c
ba636f1cb6bfd323dac1fb079cd002b5d486ed5eff54f4c4744b81316b257e96

HTTP Headers

GET /app/view/img/flags/pt.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:52 GMT
etag: W/"22a-608e6f8f78796-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 21:07:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 268173
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=idU4mPM8t4SiTXFj7EyZG97pzwm5QlQOWMkF9uLz8S%2BnyKtd4YGswdftn0cwOddorJmc9AaQlq40koOCI4iWdg1efeKXkV6igkewukMUGGURzUSidvr9zA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf390b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/js/base.js?v2.17

188.114.97.1

200 OK

1.5 kB

URL GET HTTP/3
n9.cl/app/view/js/base.js?v2.17
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
JavaScript source, ASCII text, with very long lines (1653), with no line terminators
Size
1.5 kB (1536 bytes)
Hash
f21e8a5e1aa3c2bdbeac50c207e170f1
342832760a2a0e5cc675c1da045fdccaa7a11de9
c07f80434bd79782d2f6803be544cead23da51c41597f4516d14c35cc31d88a7

HTTP Headers

GET /app/view/js/base.js?v2.17 HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/javascript
last-modified: Mon, 30 Oct 2023 03:49:17 GMT
etag: W/"600-608e6ec27639f-gzip"
cache-control: max-age=216000, private
expires: Sun, 02 Jun 2024 23:36:44 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=weTO7QluFVl6Ae8HF7B%2Fy5zeIAJvpoEosBVEg8N3lrVIyL8GmI29IS7Pkw5IqL1PBFRjb1ADNy%2Bo7gQtPNTp1Q2n%2FYC8fhJP7k50vXFo%2FMzZGdmLrqEpxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132e0f510b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/lib/xajax/xajax_js/xajax_core.js

188.114.97.1

200 OK

40 kB

URL GET HTTP/3
n9.cl/app/lib/xajax/xajax_js/xajax_core.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type

Size
40 kB (40313 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/lib/xajax/xajax_js/xajax_core.js HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/javascript
last-modified: Mon, 30 Oct 2023 03:51:19 GMT
etag: W/"9d79-608e6f3654877-gzip"
cache-control: max-age=216000, private
expires: Sun, 02 Jun 2024 23:36:44 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wyEQc1%2B5zwIG9RKJKPJRb3LpwhStYSwbzGGTmg7GpaXcY0SyFtT8bbeQLruHryHI48q2B65Qykw8WdIiU92uYcgJYZOJlE9hCix%2FfFhS2Lsq1%2BH2KTpYmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf240b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1

142.250.74.132

200 OK

7.4 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://n9.cl/lx4p9
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
HTML document, ASCII text, with very long lines (7672), with no line terminators
Size
7.4 kB (7441 bytes)
Hash
a46559543681e1ba0c675cb8f4fd9ff5
9e5542a6774331fa3f8cb8e1c9edf1958e7a19b9
00ac3355c899b685353c5cb03add587561bcbdddcd8d690ca32bf950b1081e44

HTTP Headers

GET /recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcZheIUAAAAAN2_e301vi2LKXIqUtCcmNAYSQU1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:36:46 GMT
content-security-policy: script-src 'nonce-Wx7aXNLjSEOVC5Zo5z_aIw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

n9.cl/app/view/css/base.css

188.114.97.1

200 OK

27 kB

URL GET HTTP/3
n9.cl/app/view/css/base.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
ASCII text, with very long lines (26992), with no line terminators
Size
27 kB (26992 bytes)
Hash
eb8c9ac078d2d2fd425d468351a31870
a0bf0e779e1bb978fbf14d91660becc91cbceb38
d765f4bfff18d319ab8f8ca323cd99d19edfdee5132da71050203abfd778684f

HTTP Headers

GET /app/view/css/base.css HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/css
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=33365
etag: W/"8255-608e6ea6920b6-gzip"
expires: Thu, 30 May 2024 18:39:15 GMT
last-modified: Mon, 30 Oct 2023 03:48:48 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 277049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IYRjbSGHIRJijnHLjERXSgERSLOSLqO8Sa3dsRGHeV2wbbGM0gjwDrzrOnqLLBR23PWBrk7vXpnffsc2uQcOtbRVN39sDLbSiRbJjA69BsT2uYAL0CtdtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132dff4c0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/fonts/fontawesome-webfont.woff2?v=4.5.0

188.114.97.1

200 OK

67 kB

URL GET HTTP/3
n9.cl/app/view/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 66624, version 4.262
Size
67 kB (66624 bytes)
Hash
db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995

HTTP Headers

GET /app/view/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/app/view/css/font-awesome.min.css
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:45 GMT
content-type: font/woff2
content-length: 66624
last-modified: Mon, 30 Oct 2023 03:48:57 GMT
etag: "10440-608e6eaeebe67"
cache-control: max-age=2592000
expires: Thu, 30 May 2024 17:01:45 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 282900
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJWBtrMZk37xWt8qXjf89tg%2FUExJRL7UrFaIC99VSuWCo8TWyZboAn0GIsjOvbsqusCfp6WvBrmDYy50Xb%2BCFQBfZkmUKYvyeMmu64PEqzB8NQ6frUSDgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e41331f9130b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/hu.png

188.114.97.1

200 OK

432 B

URL GET HTTP/3
n9.cl/app/view/img/flags/hu.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
432 B (432 bytes)
Hash
6c6fce8a6fd09c340964b00c5e82a8c3
9a189d123170ec8c611c6ea83910e5988ada03f6
61a2cecf8326a8da732499312a098f89d050d13546f6204e6204de38c550437e

HTTP Headers

GET /app/view/img/flags/hu.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:22 GMT
etag: W/"1b0-608e6f72c73e2-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 16:18:02 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 285522
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KHerR8u5D85zY0yCixvg2O59LbyUdN2FwjOL0p4gLeXtjzAvq9X8B5CamEhPhj54waadnpzfFJ6i%2BNMC%2FP2IoQzbf5Zr7B%2B76Ll5vr50upI6d2yNnNkYaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132def410b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/es.png

188.114.97.1

200 OK

469 B

URL GET HTTP/3
n9.cl/app/view/img/flags/es.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
469 B (469 bytes)
Hash
d6693ce2a6346b2da89ceda335554e0a
a88880bf0da5063d8082b66b066c4456e4d2e0d9
e9aa6fcf5e814e25b7462ed594643e25979cf9c04f3a68197b5755b476ac38a7

HTTP Headers

GET /app/view/img/flags/es.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:10 GMT
etag: W/"1d5-608e6f6766ee8-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 16:18:02 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 285522
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PCLX74kgIN6%2Fy5I4CKJhKUcKSg%2FIKW52fQB%2BfXPogMwdHYGj6F5wM%2FkzLJQYTW8hpS%2BThs7KIkQgD9c9DzR0zSQpZZWKbkU1Q%2FZ4EIbKb6enV5Nw0g%2FwDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf2a0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/ru.png

188.114.97.1

200 OK

420 B

URL GET HTTP/3
n9.cl/app/view/img/flags/ru.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
420 B (420 bytes)
Hash
0d31ef75adef220e73f0cb93a84a7422
24b172c54d4691a8862403c73624f6b0bf23fc09
c6e9489e25e7854a58db93acc5a91b3cc023d33a70c4931dce8d2ef2868b5e94

HTTP Headers

GET /app/view/img/flags/ru.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:55 GMT
etag: W/"1a4-608e6f924d221-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 18:39:15 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 277049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i6u%2FgejBfg3m8D1RUpjyl0SEPIAeeu9CYUxeP2%2F1ra3yZiUzwhWYsHNx7RbRc8CQLlhAJNsNJ7bZAaSFcSrz44f7J6JHAHSgYjiZqPV%2FzlWhqfkMD%2Ba5cA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf2c0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/hi.png

188.114.97.1

200 OK

503 B

URL GET HTTP/3
n9.cl/app/view/img/flags/hi.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
503 B (503 bytes)
Hash
50d62cba8134c8c097d073646cda1b9b
edc2441e6e21e2cb0c8750ef5d2fcc0f66829c36
0aa7543328f3fddde96ab8fc7e3a8b85732de57de6e84447b22964971f399f28

HTTP Headers

GET /app/view/img/flags/hi.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:20 GMT
etag: W/"1f7-608e6f70a6487-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 18:39:15 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 277049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AD64VLMgUQfjF3Ylkz%2F6%2Fk6W5D2sguSHFcQmX%2FGB6eFV7NoWHAStQBsh%2BCuAphaWWen3ULpL6eSeJJtlpY6Qdl%2BfdMxFZu%2FdLIDQkYU8koxxjMiFIRfV2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132def3f0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/logos.png

188.114.97.1

200 OK

5.0 kB

URL GET HTTP/3
n9.cl/app/view/img/logos.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 70 x 76, 8-bit/color RGBA, non-interlaced
Size
5.0 kB (5019 bytes)
Hash
5d5af331e17c65da17d08792be5be14c
d0eca97faae408a68538bd52731f756d7f8af87f
704269b0d6e2b821d2276d2413cf44e4dcd3dc97a46594a076a788c4ed70024b

HTTP Headers

GET /app/view/img/logos.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:49:11 GMT
etag: W/"139b-608e6ebcd1c87-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 17:54:04 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 279760
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J3t2iTGj7nHicgKEnqMy6gbVY1uEukOpzyZ4LSLEVGsZYBaZ79neEPsWF36kO4a5Hlx9%2BEwjv6vBRu9tUYsMazLCIxZLfisIno2lb4uJEhrGAd11aM59kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf260b69-OSL
alt-svc: h3=":443"; ma=86400

glimtors.net/pfe/current/universal.min.js?v=3.1.504

139.45.197.251

200 OK

90 kB

URL GET HTTP/2
glimtors.net/pfe/current/universal.min.js?v=3.1.504
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
90 kB (89850 bytes)
Hash
4caad44ecc6a13eba45b63ed7cf9e387
e67dfe90bebd5447495d8fe962d03e55f6d13071
66f95b5eb4bf3dc3a13643e3e6776b18a2b15e0b881328e2ee012c73e679ad00

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.504 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/
Origin: https://n9.cl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:51 GMT
etag: W/"662a3513-15efa"
access-control-allow-origin: https://n9.cl
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

n9.cl/pasw.js

188.114.97.1

200 OK

5.2 kB

URL GET HTTP/3
n9.cl/pasw.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
JavaScript source, ASCII text, with very long lines (5237), with no line terminators
Size
5.2 kB (5233 bytes)
Hash
80596db27ef221eaac65f6e96d4361e4
18aefb491c5ba6ea14dfde954e56949bca467acd
df3a357a6fa252d7bd878422746ac9abdedbca11771cb6e25f166bfb2d6aa136

HTTP Headers

GET /pasw.js HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n9.cl/en/lx4p9
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1; _ga_VMZ7RLZB6D=GS1.1.1714779405.1.0.1714779405.0.0.0; _ga=GA1.1.1729452366.1714779405
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:46 GMT
content-type: text/javascript
last-modified: Sun, 21 Apr 2024 03:24:15 GMT
etag: W/"1471-61692db03f9f9-gzip"
cache-control: max-age=216000, private
expires: Sun, 02 Jun 2024 23:36:46 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PK3bAIUyXP8iyyizfE%2BwziS7bnRX59vV8YkFoGkNyMpyEQHiPhOBDG8cg7WWg978UPEZpPLHwPCgCyHHKFnXv54Fiexa5bpJU2ALPKvgu14ozfMZ7liwCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4133489fd0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

woudaufe.net/pfe/current/micro.tag.min.js?z=6011312&sw=/sw-check-permissions-c1121.js

139.45.197.251

200 OK

37 kB

URL GET HTTP/2
woudaufe.net/pfe/current/micro.tag.min.js?z=6011312&sw=/sw-check-permissions-c1121.js
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectwoudaufe.net
Fingerprint97:B7:E3:B4:46:26:82:1A:84:6C:4D:15:C2:B7:B8:FE:0F:00:67:F5
ValidityMon, 15 Apr 2024 05:41:42 GMT - Sun, 14 Jul 2024 05:41:41 GMT

File type
JavaScript source, ASCII text, with very long lines (37142), with no line terminators
Size
37 kB (37142 bytes)
Hash
32d6dbd00a639e2cd10d1704b9159bd5
0dab4c95675393f1d0e13d20f13d80ee12e41d95
9f339e5efd7c959419a4e86bb4c5e9f07eae2ed839484846157be981917743de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/micro.tag.min.js?z=6011312&sw=/sw-check-permissions-c1121.js HTTP/1.1
Host: woudaufe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:45 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-9116"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

n9.cl/app/view/img/flags/th.png

188.114.97.1

200 OK

452 B

URL GET HTTP/3
n9.cl/app/view/img/flags/th.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
452 B (452 bytes)
Hash
af85286bf1cadae9c2c636fe83195251
0a947fc1eb6a6efa4a574435c9276a7f5b1ae08c
9301b5300fa18b50f774512c3549ded45bf41c30359d1824ced7cca0cc75e216

HTTP Headers

GET /app/view/img/flags/th.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:53:05 GMT
etag: W/"1c4-608e6f9c1823d-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 21:07:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 268173
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I7XD6GumVBZcp0s%2BUeasG5gD%2BgtlCfWgB4yH%2FP0K9LWk0EcTuwswiQOtkCGei5EbJ%2Bn%2BOTElSQdA6iowkU%2Fw0zHvmQ01U4lWvvRFRcaTCbdmTUjXNqQTyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132def3c0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/css/fonts.css

188.114.97.1

200 OK

3.9 kB

URL GET HTTP/3
n9.cl/app/view/css/fonts.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
ASCII text, with very long lines (3942), with no line terminators
Size
3.9 kB (3942 bytes)
Hash
71e03a3ccfce00056c4d33d4ba2a0e4c
d7c457fa7cf3a4c000f620dce11502f68a366b7a
97de1a7cfd969dfcc5003f3525cc80280f1a2d764d82ed5c215a739a814ca7da

HTTP Headers

GET /app/view/css/fonts.css HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/css
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=4656
etag: W/"1230-6097fee3f29d6-gzip"
expires: Thu, 30 May 2024 16:25:18 GMT
last-modified: Mon, 06 Nov 2023 18:22:02 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 285086
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PsqSj1NZfG2p%2BOTh5jAs%2BqutwafGJN%2BL3hMnG3vmWSw28CK56nedBAbWEMryVLW6kzNK1mYLe%2FtOg%2FWfBHIGEN5p5MAIyOvXO9OLFFzzqVRsfRU%2BYQX8%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132dcf230b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/de.png

188.114.97.1

200 OK

545 B

URL GET HTTP/3
n9.cl/app/view/img/flags/de.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
545 B (545 bytes)
Hash
ddabae687ecae5edaaeb808d440543e6
1daf2d67ccaa5be01a330a231ac996a9d5575594
3323814006fe6739493d27057954941830b59eff37ebaac994310e17c522dd57

HTTP Headers

GET /app/view/img/flags/de.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:06 GMT
etag: W/"221-608e6f63d3d44-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 16:18:02 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 285522
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5V8dNM5fWQYr%2Be8xlys5FLzjzfoyUxuhFTnmzOmu8Qm2ZTorKmIM%2FGGWubGEDCqJKH%2BlkXlt3lhq8fPJSTCuHb240mALFph69Ia7k%2F7JbobLDcmk1gGLsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132def3a0b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/lx4p9

188.114.97.1

200 OK

15 kB

URL User Request GET HTTP/2
n9.cl/lx4p9
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type

Size
15 kB (15324 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /lx4p9 HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=600, private, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SZ55qJvWmn6Zz4LG%2B8jy1%2FRgQ%2FvthBh4E1OU4ct3KgukuIJsFBseVREtOwTl%2Bmliai4hUtohzZt6xDRCM839O%2FiyWedUhocTdxgfpIfduMQZtY6gLYKgww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e413248c5db527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

n9.cl/app/view/img/flags/en.png

188.114.97.1

200 OK

599 B

URL GET HTTP/3
n9.cl/app/view/img/flags/en.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
599 B (599 bytes)
Hash
0894999b108830afc0733ee7b6e08310
a98ec259c5e198fffb3116e4cf950e2d8b695880
5d72c5a8bef80fca6f99f476e15ec95ce2d5e5f65c6dab9ee8e56348be0d39fc

HTTP Headers

GET /app/view/img/flags/en.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:09 GMT
etag: W/"257-608e6f66b4355-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 18:39:15 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 277049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MPgLgbSw8LAD60dZQoa%2F7Lyv7g4goeNVyUvIHPlhqwUaAMV235umcneLpTuK32q7CSvNTuDZw5VaXfF569TFZR8wfzbG9q6htvgweChfkejgg2d71cBQng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132ddf270b69-OSL
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/zh.png

188.114.97.1

200 OK

472 B

URL GET HTTP/3
n9.cl/app/view/img/flags/zh.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
472 B (472 bytes)
Hash
a82ff00f39eff54062328b4474c33dbc
9c7185e038ea1000382fb1b14b88f3e9f2d99c14
7058233b5bdfdd4279e92e9dfe64bd4a61afd7e76d97dba498ce1d5777b92185

HTTP Headers

GET /app/view/img/flags/zh.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:53:17 GMT
etag: W/"1d8-608e6fa75067d-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 21:07:12 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 268172
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=00Enp4ZeC0ZjqwK5msQlLcteky9%2FP%2BmFNxEl1BlSzqDpc8EIfT1Z4PjADl8ux7u4rfqCQN3ozGw6jcBnkGe53MDsG9uktMDs4nJkj6Tyl8SJOeqiI28bmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132def3e0b69-OSL
alt-svc: h3=":443"; ma=86400

glimtors.net/pfe/current/tag.min.js?z=2339578

139.45.197.251

200 OK

15 kB

URL GET HTTP/2
glimtors.net/pfe/current/tag.min.js?z=2339578
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
FingerprintAD:D3:B5:D6:35:8B:C9:C8:65:6E:CD:13:4A:B5:24:BC:6A:A7:8C:56
ValidityMon, 29 Apr 2024 05:56:49 GMT - Sun, 28 Jul 2024 05:56:48 GMT

File type
JavaScript source, ASCII text, with very long lines (14612), with no line terminators
Size
15 kB (14612 bytes)
Hash
ffdd38e0a5a1a47cb341a116a3318e0e
2fd730feff506cf56e14c531e9d89cdea2cca424
7d8e97e9586d3f04c4a2a703692378868e49120c6159d079ae7ed1eca2ca2b5c

HTTP Headers

GET /pfe/current/tag.min.js?z=2339578 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:36:44 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-3914"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

n9.cl/app/view/img/favicon.ico

188.114.97.1

200 OK

1.2 kB

URL GET HTTP/3
n9.cl/app/view/img/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
6d15cb9e7625f884b3c51587ab456d12
ca2b5ca30d3023106a09bd8045e5ada3d8d283b0
527df2884e3ba8d2b26ed58d871088ded10c68a00ddba3bd3dea035d0206be93

HTTP Headers

GET /app/view/img/favicon.ico HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1; _ga_VMZ7RLZB6D=GS1.1.1714779405.1.0.1714779405.0.0.0; _ga=GA1.1.1729452366.1714779405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:45 GMT
content-type: image/vnd.microsoft.icon
last-modified: Mon, 30 Oct 2023 03:49:08 GMT
etag: W/"47e-608e6eb9513b6"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 17:54:11 GMT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 279754
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PljyGX1%2Bn7AHiCn77OQhsVmzPE1r4RrSBSShlanZ9WsOC1fl0FYAV9uYZywRQHTHaz05OeQ1t8adPLUssIbmg1JnJ98r752LmlfCEPI%2BZhjJKcPdnd0sTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e4133449ed0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

n9.cl/app/view/img/flags/ms.png

188.114.97.1

200 OK

571 B

URL GET HTTP/3
n9.cl/app/view/img/flags/ms.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n9.cl/lx4p9
Certificate
IssuerLet's Encrypt
Subjectn9.cl
Fingerprint05:8E:F4:E3:05:78:9E:48:F8:98:1A:46:C4:40:E8:D0:CF:44:8D:0F
ValiditySun, 14 Apr 2024 00:54:37 GMT - Sat, 13 Jul 2024 00:54:36 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
571 B (571 bytes)
Hash
e1c0f262c141e8615f819b1cd18393d3
95533a92f8155eda858542b540ba17799e2e079c
1e7866925f0e0d350f2c74aa8ac3542be6e90b3c2be3c7f6b1ba0b641b53de9d

HTTP Headers

GET /app/view/img/flags/ms.png HTTP/1.1
Host: n9.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n9.cl/lx4p9
Cookie: PHPSESSID=qmcrvu6h8r709t2rcbaenjild1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 03 May 2024 23:36:44 GMT
content-type: image/png
last-modified: Mon, 30 Oct 2023 03:52:40 GMT
etag: W/"23b-608e6f83f501a-gzip"
cache-control: public, max-age=2592000
expires: Wed, 30 Apr 2025 21:07:12 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 268172
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GJEvdpBD513GKeoh6Lfs6e%2BrnvcB4I2ZstX4u7xWagoiCvhry%2FsE1h4dt5%2FgoWsEF4D48Yui9IpBaM9Njafrqby131CuXQALjPJXNtezxrf4myz56Yko0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4132def400b69-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML