| cdnjs.cloudflare.com/ajax/libs/script.js/2.0.2/script.min.js | 104.17.24.14 | 200 OK | 684 B |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/script.js/2.0.2/script.min.js IP104.17.24.14:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1233) Hash0425e414c5c771ea19751d344586a945 0cd64d6a8b8c87bb47b008e2ef4181a07c1ed93a 674f5eaec7036971b28f595dc5fd4d55a93994e282ab2a232d2486d30640d453
GET /ajax/libs/script.js/2.0.2/script.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 684
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fcb-594"
last-modified: Mon, 04 May 2020 16:16:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 595819
expires: Sun, 27 Apr 2025 14:55:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iW98XGYxqFvrWFNqs3ePKqX6WzKjvh7BdwEckKmEblAcKqBdy72J5J%2BF1SVjUVpBwT7g70Nn60YGcxjdh1UdjseGtfGHUqey8Vb%2B35eZvpqA%2Fmb6o%2F8c5DgOakbSGgbPM5b3Trdn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88020d08e97456a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/particles.js/2.0.0/particles.min.js | 151.101.65.229 | 200 OK | 6.4 kB |
URL GET HTTP/2cdn.jsdelivr.net/particles.js/2.0.0/particles.min.js IP151.101.65.229:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (23002) Hash00debcf6cf0789a19cee2278011afcd4 8017f8b1869077db728573f1ca4684a00af69462 faee7815a5fd27e938d1e01c8392b66332024908eb118048f608eee671371df6
GET /particles.js/2.0.0/particles.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"5b44-gBf4sYaQd9tyhXPxykaEoAr2lGI"
content-encoding: br
accept-ranges: bytes
date: Tue, 07 May 2024 14:55:25 GMT
age: 2736714
x-served-by: cache-fra-eddf8230124-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6363
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/js/index.js | 76.76.21.61 | 200 OK | 918 B |
URL GET HTTP/2v9-eight.vercel.app/assets/js/index.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Hash815340f4d0164925524b313679698dae d77f83ff8bad8f196341892068e29e26805131dc 4639aa1a5a7aa1f4dec1769536f09b7803885243623c577c4cd27c32e4f526e2
GET /assets/js/index.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"396-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::qg4mz-1715093725586-6a40103bcba5
content-length: 918
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-6YEQ7Q0XRC | 142.250.74.72 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-6YEQ7Q0XRC IP142.250.74.72:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101617 bytes) Hash6a09ecd2738a1bf87319ee535366550c 50420d05bfd3b15625281d62085b1e02d8c2d491 ad4079aba662f08d6fea910ba4bbeb61ebdcaaa6a595083930b85bd823f7635e
GET /gtag/js?id=G-6YEQ7Q0XRC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 14:55:25 GMT
expires: Tue, 07 May 2024 14:55:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101617
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.11.1/font/bootstrap-icons.css | 151.101.65.229 | 200 OK | 14 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/bootstrap-icons@1.11.1/font/bootstrap-icons.css IP151.101.65.229:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hashedf74488a993c84b266b2de3b9c14456 1bec138083d3b27ff687a9d41b80b797cf20b709 bb6fd8cd85394cb367e8ac58e47292f2d68eb288fa12fab68e65430a5ddfce48
GET /npm/bootstrap-icons@1.11.1/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 13601
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.11.1
x-jsd-version-type: version
etag: W/"17fcf-G+wTgIPTsn/2h6nUG4C3l88gtwk"
content-encoding: br
accept-ranges: bytes
date: Tue, 07 May 2024 14:55:25 GMT
age: 18192277
x-served-by: cache-fra-eddf8230023-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| v9-eight.vercel.app/assets/css/menu.css | 76.76.21.61 | 200 OK | 8.3 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/css/menu.css IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with CRLF line terminators Hash3a0ba80d43ee06a098d5bee90392f7e6 588a4a3e920f58c15306bbc49674009d6f29097b 8d18c6c4421646e5d0d237764db88e9a3c108b1ac308ca627487284b7064c316
GET /assets/css/menu.css HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"4a4-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::svg5j-1715093725575-cd219acb53f0
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.11.1/font/fonts/bootstrap-icons.woff2?2820a3852bdb9a5832199cc61cec4e65 | 151.101.65.229 | 200 OK | 131 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/bootstrap-icons@1.11.1/font/fonts/bootstrap-icons.woff2?2820a3852bdb9a5832199cc61cec4e65 IP151.101.65.229:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 130608, version 1.0 Size131 kB (130608 bytes) Hashed62b9f1e0c75121f4d797a4a85730a2 d33714cb0836ea9ebe02f4ccc22806593903167a bacd70afda7da1deac2bbd49b5717a4dd133bcd59c379525d705b8492f678e95
GET /npm/bootstrap-icons@1.11.1/font/fonts/bootstrap-icons.woff2?2820a3852bdb9a5832199cc61cec4e65 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 130608
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
x-jsd-version: 1.11.1
x-jsd-version-type: version
etag: W/"1fe30-0zcUywg26p6+AvTMwigGWTkDFno"
accept-ranges: bytes
age: 2649427
date: Tue, 07 May 2024 14:55:26 GMT
x-served-by: cache-fra-etou8220153-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| pl22991509.profitablegatecpm.com/df/d2/e1/dfd2e1c094b00a158058ce0068d7df84.js | 172.240.108.76 | 200 OK | 16 kB |
URL GET HTTP/1.1pl22991509.profitablegatecpm.com/df/d2/e1/dfd2e1c094b00a158058ce0068d7df84.js IP172.240.108.76:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectprofitablegatecpm.com Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30 ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT
File typeJavaScript source, ASCII text, with very long lines (44102), with no line terminators Hashd3a5485add5a1658be323afde25172be 2b6ffa6ce1e3cec791f413a31f62f1bf447fc331 b30af0482a28b60c504e504f8f5b4ac87a8e7543e2fac4f6fc7ccfb8093b94d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /df/d2/e1/dfd2e1c094b00a158058ce0068d7df84.js HTTP/1.1
Host: pl22991509.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a8648672684c480220fac30bc1cca2a8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash1c746578e95683e8b5c861e2c85d81b0 d689114a6d40b4a92b56d12e0eb33e9aeb1a4349 67752d648603b1a5bb6f8856a09b777cfa84dbaed795194ea4018908778fe336
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 14:55:26 GMT
Last-Modified: Tue, 07 May 2024 13:13:38 GMT
Server: ECAcc (ska/F75B)
X-Cache: Miss from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MUtH9QQzMl5sZOoDxJqOVbtqE_DFrKGsjCUtWV_K_l-dFGvFZAgvYQ==
Age: 6108
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash19a200f6511647ff516561fdfb69fa7d 7ab20883f4959718a1f7223e93d798b57b8b7e08 48b4b81937734ddedb3804fd52077d2b449545a30d9110408a4c84fb524fca0c
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:26 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://v9-eight.vercel.app
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; expires=Fri, 05 May 2034 14:55:26 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| warsabnormality.com/29/fa/b7/29fab7886bf7b6e324633f506204e65d.js | 192.243.61.227 | 200 OK | 31 kB |
URL GET HTTP/1.1warsabnormality.com/29/fa/b7/29fab7886bf7b6e324633f506204e65d.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb437df59a8f1cc3d3f25ee59c33973f5 2f1af0b8322dde81c448349020181257ea6189ec e207ecc5a4c4a9e2e762891c4ff1cebae39b41bf3ac3ae6433c302f9d6cd759a
GET /29/fa/b7/29fab7886bf7b6e324633f506204e65d.js HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 149ef03f645b14d6d3c221679e69f4d4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| v9-eight.vercel.app/uv/uv.config.js | 76.76.21.61 | 200 OK | 291 B |
URL GET HTTP/2v9-eight.vercel.app/uv/uv.config.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with CRLF line terminators Hash71ce42fbda3e2abed32e5320a8812cf7 7a01f9a81b957816121a98421c99c50f63b09b23 71cbd5a515918f868cea099f452f35e50576df2494866b5aa16a7fea8b0371ed
GET /uv/uv.config.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: _ga_6YEQ7Q0XRC=GS1.1.1715093726.1.0.1715093726.0.0.0; _ga=GA1.1.1890076201.1715093726
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:26 GMT
etag: W/"123-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::2z7lh-1715093726876-58378eb47d9a
content-length: 291
X-Firefox-Spdy: h2
|
|
| intelligenceconcerning.com/pixel/purst?dl=0&th=0&sc=0&rs=2237&rd=2237&fd=585&bv=24.5.6485&tmpl=70 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1intelligenceconcerning.com/pixel/purst?dl=0&th=0&sc=0&rs=2237&rd=2237&fd=585&bv=24.5.6485&tmpl=70 IP172.240.127.234:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectintelligenceconcerning.com FingerprintC0:A5:42:A6:FF:2A:A2:5A:B8:05:95:E6:77:40:C1:82:5F:95:09:51 ValidityMon, 06 May 2024 08:11:10 GMT - Sun, 04 Aug 2024 08:11:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=2237&rd=2237&fd=585&bv=24.5.6485&tmpl=70 HTTP/1.1
Host: intelligenceconcerning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| warsabnormality.com/sbar.json?key=dfd2e1c094b00a158058ce0068d7df84&uuid=68123efa-83dc-43f3-94e0-a084ac412b3a%3A1%3A1 | 192.243.61.227 | 200 OK | 6.7 kB |
URL GET HTTP/1.1warsabnormality.com/sbar.json?key=dfd2e1c094b00a158058ce0068d7df84&uuid=68123efa-83dc-43f3-94e0-a084ac412b3a%3A1%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
Hashf2779be9879a0e8a0f4a2acfa50b3c2f c09b908f14493011b06b0561cbb14cb4a66ec462 53455685b1beb345d629a37bcc4ef8c5f1779f4d7c0cdce39327ed25f64cd921
GET /sbar.json?key=dfd2e1c094b00a158058ce0068d7df84&uuid=68123efa-83dc-43f3-94e0-a084ac412b3a%3A1%3A1 HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:27 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v9-eight.vercel.app
Access-Control-Allow-Origin: https://v9-eight.vercel.app
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22891010; expires=Wed, 08 May 2024 14:55:27 GMT; secure; SameSite=None
uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; expires=Tue, 14 May 2024 14:55:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 14:55:27 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 14:55:27 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 08 May 2024 14:55:27 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 08 May 2024 14:55:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 199d408452a217fd74c9618139766295
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| v9-eight.vercel.app/worker.js | 76.76.21.61 | 500 Internal Server Error | 28 B |
URL GET HTTP/2v9-eight.vercel.app/worker.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with no line terminators Hash7305135e8c8844dec3bdaf6071604de8 76fae8ae6068e24b7fb57128fc00b8b867c56985 6a38227859da1b654cfdd0e54846f0692ed50f02be2c464feaaf15f123d53d6a
GET /worker.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: _ga_6YEQ7Q0XRC=GS1.1.1715093726.1.0.1715093726.0.0.0; _ga=GA1.1.1890076201.1715093726; dom3ic8zudi28v8lr6fgphwffqoz0j6c=68123efa-83dc-43f3-94e0-a084ac412b3a%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 500 Internal Server Error
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: text/html; charset=utf-8
date: Tue, 07 May 2024 14:55:27 GMT
etag: W/"1c-dvrormBo4kt/tXEo/AC4uGfFaYU"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::svg5j-1715093727677-ca3cbfca8501
content-length: 28
X-Firefox-Spdy: h2
|
|
| warsabnormality.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuns3tBz9Q9rYIc%2FCwgpl090x6ZnYPqzFGonGz7K7oRaS6qnpSpqarqeqanuQUDMgeB%2F%2BCzjfJBnVXdq%2BCi0wWPASEHU85GA%2F%2BBwp7lh4HRx9UvffqewXf%2B9778shdkhCOXqx%2FqPelUnRlteHXr38SBDfrWzJ1w%2FqwE30WtW7WzeBGN2r4b9TfE2xXr4R%2B4PuBH9Q3pBGJHq5UIGT2qBs0un6jFTaC1RaG5r%2B5dR4s9cAHl%2BRVSD5deu5dhWQTpP0n68Lu5jp7892%2BUzTXBgN%2B%2BlG6m%2BoiRX8RJsZDkp7Oq6Hti41n0OnJjC704J%2FCWE6J99MzxOnpnCTiwfGMZ6wgUsT8fygGEwg1gaQTMH0IyV8QgHHc3kbaf3hbm4Lu%2FY3SCp2SpZd%2FQhZTsvTrVaT979aUHNbvaeVyqVOLYVJCDieQvQkyd4Z8vwZZnIHlX0Dyn8nKyy2k%2FeNtqzQkv3g96gRhUyR0udPkbLnVTJrL3Zbwl6nfaVHWCsK4SWcCSTmBTCZQYgRqPbjqSA8u8eAyD31%2BUWdBELR9zqjf6TLW5G0RR9wPaDsJaOBHHThW9TBCno3A1AjMHCAzB9iVIxj3I%2BxOCcs92JxgwEsUgqCwBAUlKCRBkRMUg%2FKEKxva8iFX1sXB3Idz3yzHOu8d0ROd90RKQM0IhpdH2SV5pRLQ%2B%2FT9GnbFRZ0nPBQB87ut2PdpsNrxVztM%2BH7U4W2edFqwsoS0tVm7%2B3JKuuQxMjkl1xqHiOkZrDoDk1dA3WugRQm6U2I%2FfSzSxs5elokGUy4G1yWyfAn5nnekLsm12Qw3t59AsPNbvzdnBmZKZKbE5%2FI5QU89GN%2FVBTm%2BqwtLnm5nuezLfVrN915Oc3Hlmw%2FEXqEN31y3o6%2FfZhVQhY%2FuC5tv0ZTLtGfJt2uSc2E2tGGC%2FLBpPxbxHWd31pxJXbZ1552NzX5mhLVSpxPQalX%2FMGBySv5%2F7f5sda9%2Fvw1pJjCuRN%2Bdk7lB6glYdgCbLfhbTWDUoibOPBSuHJswXjwqSaDEIqdxCfuvPF7EY0Or31SWR%2FYBeqYGmh8i7ZcYmBIDVYKqEay7Ms4zc37rlzmNWNXGsTK141gZ9dVM5up6Cisv6u1m06dRdzVot6lox62wk0QBpzRsRWEU0SZyO01uvPXbXwAAAP%2F%2FAQAA%2F%2F8tClFElAQAAA%3D%3D | 192.243.61.227 | 200 OK | 7 B |
URL GET HTTP/1.1warsabnormality.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuns3tBz9Q9rYIc%2FCwgpl090x6ZnYPqzFGonGz7K7oRaS6qnpSpqarqeqanuQUDMgeB%2F%2BCzjfJBnVXdq%2BCi0wWPASEHU85GA%2F%2BBwp7lh4HRx9UvffqewXf%2B9778shdkhCOXqx%2FqPelUnRlteHXr38SBDfrWzJ1w%2FqwE30WtW7WzeBGN2r4b9TfE2xXr4R%2B4PuBH9Q3pBGJHq5UIGT2qBs0un6jFTaC1RaG5r%2B5dR4s9cAHl%2BRVSD5deu5dhWQTpP0n68Lu5jp7892%2BUzTXBgN%2B%2BlG6m%2BoiRX8RJsZDkp7Oq6Hti41n0OnJjC704J%2FCWE6J99MzxOnpnCTiwfGMZ6wgUsT8fygGEwg1gaQTMH0IyV8QgHHc3kbaf3hbm4Lu%2FY3SCp2SpZd%2FQhZTsvTrVaT979aUHNbvaeVyqVOLYVJCDieQvQkyd4Z8vwZZnIHlX0Dyn8nKyy2k%2FeNtqzQkv3g96gRhUyR0udPkbLnVTJrL3Zbwl6nfaVHWCsK4SWcCSTmBTCZQYgRqPbjqSA8u8eAyD31%2BUWdBELR9zqjf6TLW5G0RR9wPaDsJaOBHHThW9TBCno3A1AjMHCAzB9iVIxj3I%2BxOCcs92JxgwEsUgqCwBAUlKCRBkRMUg%2FKEKxva8iFX1sXB3Idz3yzHOu8d0ROd90RKQM0IhpdH2SV5pRLQ%2B%2FT9GnbFRZ0nPBQB87ut2PdpsNrxVztM%2BH7U4W2edFqwsoS0tVm7%2B3JKuuQxMjkl1xqHiOkZrDoDk1dA3WugRQm6U2I%2FfSzSxs5elokGUy4G1yWyfAn5nnekLsm12Qw3t59AsPNbvzdnBmZKZKbE5%2FI5QU89GN%2FVBTm%2BqwtLnm5nuezLfVrN915Oc3Hlmw%2FEXqEN31y3o6%2FfZhVQhY%2FuC5tv0ZTLtGfJt2uSc2E2tGGC%2FLBpPxbxHWd31pxJXbZ1552NzX5mhLVSpxPQalX%2FMGBySv5%2F7f5sda9%2Fvw1pJjCuRN%2Bdk7lB6glYdgCbLfhbTWDUoibOPBSuHJswXjwqSaDEIqdxCfuvPF7EY0Or31SWR%2FYBeqYGmh8i7ZcYmBIDVYKqEay7Ms4zc37rlzmNWNXGsTK141gZ9dVM5up6Cisv6u1m06dRdzVot6lox62wk0QBpzRsRWEU0SZyO01uvPXbXwAAAP%2F%2FAQAA%2F%2F8tClFElAQAAA%3D%3D IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuns3tBz9Q9rYIc%2FCwgpl090x6ZnYPqzFGonGz7K7oRaS6qnpSpqarqeqanuQUDMgeB%2F%2BCzjfJBnVXdq%2BCi0wWPASEHU85GA%2F%2BBwp7lh4HRx9UvffqewXf%2B9778shdkhCOXqx%2FqPelUnRlteHXr38SBDfrWzJ1w%2FqwE30WtW7WzeBGN2r4b9TfE2xXr4R%2B4PuBH9Q3pBGJHq5UIGT2qBs0un6jFTaC1RaG5r%2B5dR4s9cAHl%2BRVSD5deu5dhWQTpP0n68Lu5jp7892%2BUzTXBgN%2B%2BlG6m%2BoiRX8RJsZDkp7Oq6Hti41n0OnJjC704J%2FCWE6J99MzxOnpnCTiwfGMZ6wgUsT8fygGEwg1gaQTMH0IyV8QgHHc3kbaf3hbm4Lu%2FY3SCp2SpZd%2FQhZTsvTrVaT979aUHNbvaeVyqVOLYVJCDieQvQkyd4Z8vwZZnIHlX0Dyn8nKyy2k%2FeNtqzQkv3g96gRhUyR0udPkbLnVTJrL3Zbwl6nfaVHWCsK4SWcCSTmBTCZQYgRqPbjqSA8u8eAyD31%2BUWdBELR9zqjf6TLW5G0RR9wPaDsJaOBHHThW9TBCno3A1AjMHCAzB9iVIxj3I%2BxOCcs92JxgwEsUgqCwBAUlKCRBkRMUg%2FKEKxva8iFX1sXB3Idz3yzHOu8d0ROd90RKQM0IhpdH2SV5pRLQ%2B%2FT9GnbFRZ0nPBQB87ut2PdpsNrxVztM%2BH7U4W2edFqwsoS0tVm7%2B3JKuuQxMjkl1xqHiOkZrDoDk1dA3WugRQm6U2I%2FfSzSxs5elokGUy4G1yWyfAn5nnekLsm12Qw3t59AsPNbvzdnBmZKZKbE5%2FI5QU89GN%2FVBTm%2BqwtLnm5nuezLfVrN915Oc3Hlmw%2FEXqEN31y3o6%2FfZhVQhY%2FuC5tv0ZTLtGfJt2uSc2E2tGGC%2FLBpPxbxHWd31pxJXbZ1552NzX5mhLVSpxPQalX%2FMGBySv5%2F7f5sda9%2Fvw1pJjCuRN%2Bdk7lB6glYdgCbLfhbTWDUoibOPBSuHJswXjwqSaDEIqdxCfuvPF7EY0Or31SWR%2FYBeqYGmh8i7ZcYmBIDVYKqEay7Ms4zc37rlzmNWNXGsTK141gZ9dVM5up6Cisv6u1m06dRdzVot6lox62wk0QBpzRsRWEU0SZyO01uvPXbXwAAAP%2F%2FAQAA%2F%2F8tClFElAQAAA%3D%3D HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:27 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4544c1d134af8074206301bebe585dda
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=127 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=127 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=127 HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png | 172.67.141.24 | 200 OK | 6.0 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png IP172.67.141.24:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 591424
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IHBnZAdXKfMkK0q396khWTTtTJ%2FDhlj%2FRfeCDMwXl69aLNUeggaDWtwApc7cosRWeG0WjDv7%2Fz9Y7MDOxVUSvU1l%2BhtySTAqKDfdYwxMgEcn6Z%2BgnRDu9VVLMfC3bJxatVFI2GAaNYnQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d198fb01c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash095c0a60b78a766dba64389d52d50cfa e6245baf064fb1401f5292e485478ac15772d430 bd64fd0dd69c60c469022592134e9ef4bac03173555bc7369dd8bd77b1d4f402
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 14:55:28 GMT
date: Tue, 07 May 2024 14:55:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=191 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=191 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=191 HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png | 45.133.44.10 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash962ac416cce3fad636d4904386c8d3d4 811166fceb971353dc6a9ea3a153367f20b47592 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Thu, 09 May 2024 14:55:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js | 172.67.141.24 | 200 OK | 183 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js IP172.67.141.24:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash4f5f05ab032dd8fc0db448fcf51a35e2 78f94f93fdb792d95ea3ac293ac1b8e3bc13d609 7fd8e9c0e5ca0c7123954a109fa8b7e8368c7e1262880925e2ac7b8c877a9e38
GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2c0MP2tDL%2FgL0aH%2F72m8oAzv7HtsVMaBV0%2BU4NrixBNkKicL6%2FC03JRrN%2BdyWaBEkfwuYQMgieh3hMOEcLCvWMqxPjM%2FWGY%2FSsJp8tRKQTTt%2FKdNKgOvgQO2G%2BnysL7KzO%2BLz2YrYhL0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d1a08b11c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=68123efa-83dc-43f3-94e0-a084ac412b3a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=dfd2e1c094b00a158058ce0068d7df84&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 | 192.243.59.13 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=68123efa-83dc-43f3-94e0-a084ac412b3a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=dfd2e1c094b00a158058ce0068d7df84&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=68123efa-83dc-43f3-94e0-a084ac412b3a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=dfd2e1c094b00a158058ce0068d7df84&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7678e723517f59cb475d5a362665ed2a
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=68123efa-83dc-43f3-94e0-a084ac412b3a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=29fab7886bf7b6e324633f506204e65d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 | 192.243.59.13 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=68123efa-83dc-43f3-94e0-a084ac412b3a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=29fab7886bf7b6e324633f506204e65d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=68123efa-83dc-43f3-94e0-a084ac412b3a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=29fab7886bf7b6e324633f506204e65d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d73d599c34f5952bdb73e2460f1e01e0
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js | 172.67.141.24 | 200 OK | 48 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP172.67.141.24:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 599872
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kDWdc4DxCKVIfwbxeVTPWU8ayKfXf8DVoJdGrYVpe0zob9ErUJ8aHQ6Sq2lQnXuRn1c1dgVaE0hMeESTCES6SD62Slp%2BMl9p8vsUuJK6jpdQdJfyph5aSU%2FUdbV0wtlUoGUsrmKXREoH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d198fbb1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.131:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 10:46:32 GMT
expires: Wed, 07 May 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 14936
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=371 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=371 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=371 HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| warsabnormality.com/pixel/sbs?c=1 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1warsabnormality.com/pixel/sbs?c=1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| warsabnormality.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skxRevnuT2hS8oewvCHDysYCbd87Nn97AaYyQaN8vuil5E6ldPytR0NVXd05OcggHZ4%2BBf0PlMskHdld2r4CKTBQ8BYcdTDsaD%2F4HCnqXHwdEHVe%2B9%2BryCz%2Fu89%2BVxdkXqyOjlxofmQGlN11o1v3r9kyC4Wd1WcTasDsP2Z%2B3mzaod3Oi2a%2F4b1fck3zNrdT%2Fw%2FcAPqpvKysgM10oQKnnUDWpdv9as14JWE0P739xlHhz1IAZX5FUoMV1%2B7l2D4hPE%2FScb0u2lJnnz3X6maWosBuLso3gvNnmM%2FiKMrIcoPptXw7gXm89g4tMZXZjBP4VMTYn30zOw%2BGxOEmxwMuPJNGQMJv6HfDCB1BMoOgE3R1DiBQG4wO0dxP2Ht43N6f7fKC3RKVl%2B%2BSdUPiXLv15D3P9uXath9Z7RWapM7DCMCqjhBKo3QZKdIz2oQOXn4OkXUOJnsvZyG3H%2FZMdpAyUuX2%2BHQb0hI7oaNgRfbTaixmq3Kf1V6odNyptBnTXoTCClJlDRBFqOQJ2HrDzKQxZ5yBIPfXFZ5UEQdHzBqR92OW%2BIjmRt4Qe0EwU08NshMl72MEKajMD1CNweIrGH2FMj2OxHuN0CTnhwKcFAFMglQe4IckqQK4I8JcgHxanQru6Kh0K7jAVzX5%2F7RjE2ae%2BYnpq0J2MCakewojhOrsgrpYDep%2B9XsCcvqyISdRlwv9tkvk%2BDVui3Qi59vx2KjojCJpwqoFxl1u6BmpIueYxETclK7QiMnsPpc3C1BJq9BpoXoLsFDuLHMq7t7ieJrHGdMQhTIEmXke57x%2FqKrMxmuLXzBJJf3Pq9MTNwWyCxBT5Xzwl6%2BsH4rsnJyV2TO%2FJ0J0lVXx3Qcr73UprKpW8%2BkPu5sWJrw42%2BfpuXQBk%2Bui9duk1joeKeI9%2BuKyGk3TSWS%2FLDlvtYsjuZ213PbJwl23fe2dzqJ1Y6p0w8AS1X9Q8Lrqbk%2Fyv3Z6t7%2FfsdKDuBzQr0swsyNygzAU8O4ZIFf2cIrF7UsMRDnhVjW2eLR60ItFzklBVw%2F8rZIh5bWv6mqjh2D9CzFdD0CHG%2FwMAWGOgCVI%2FgsqVxmtiLW7%2FMaTBdGTNtKydMW%2F3VTObyegqnLqsNX3SYjGSHyWarGUkuWKvFfB5x1hBhyJG6aXTjrd%2F%2BAgAA%2F%2F8BAAD%2F%2F63ehKyUBAAA | 192.243.59.13 | 200 OK | 7 B |
URL GET HTTP/1.1warsabnormality.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skxRevnuT2hS8oewvCHDysYCbd87Nn97AaYyQaN8vuil5E6ldPytR0NVXd05OcggHZ4%2BBf0PlMskHdld2r4CKTBQ8BYcdTDsaD%2F4HCnqXHwdEHVe%2B9%2BryCz%2Fu89%2BVxdkXqyOjlxofmQGlN11o1v3r9kyC4Wd1WcTasDsP2Z%2B3mzaod3Oi2a%2F4b1fck3zNrdT%2Fw%2FcAPqpvKysgM10oQKnnUDWpdv9as14JWE0P739xlHhz1IAZX5FUoMV1%2B7l2D4hPE%2FScb0u2lJnnz3X6maWosBuLso3gvNnmM%2FiKMrIcoPptXw7gXm89g4tMZXZjBP4VMTYn30zOw%2BGxOEmxwMuPJNGQMJv6HfDCB1BMoOgE3R1DiBQG4wO0dxP2Ht43N6f7fKC3RKVl%2B%2BSdUPiXLv15D3P9uXath9Z7RWapM7DCMCqjhBKo3QZKdIz2oQOXn4OkXUOJnsvZyG3H%2FZMdpAyUuX2%2BHQb0hI7oaNgRfbTaixmq3Kf1V6odNyptBnTXoTCClJlDRBFqOQJ2HrDzKQxZ5yBIPfXFZ5UEQdHzBqR92OW%2BIjmRt4Qe0EwU08NshMl72MEKajMD1CNweIrGH2FMj2OxHuN0CTnhwKcFAFMglQe4IckqQK4I8JcgHxanQru6Kh0K7jAVzX5%2F7RjE2ae%2BYnpq0J2MCakewojhOrsgrpYDep%2B9XsCcvqyISdRlwv9tkvk%2BDVui3Qi59vx2KjojCJpwqoFxl1u6BmpIueYxETclK7QiMnsPpc3C1BJq9BpoXoLsFDuLHMq7t7ieJrHGdMQhTIEmXke57x%2FqKrMxmuLXzBJJf3Pq9MTNwWyCxBT5Xzwl6%2BsH4rsnJyV2TO%2FJ0J0lVXx3Qcr73UprKpW8%2BkPu5sWJrw42%2BfpuXQBk%2Bui9duk1joeKeI9%2BuKyGk3TSWS%2FLDlvtYsjuZ213PbJwl23fe2dzqJ1Y6p0w8AS1X9Q8Lrqbk%2Fyv3Z6t7%2FfsdKDuBzQr0swsyNygzAU8O4ZIFf2cIrF7UsMRDnhVjW2eLR60ItFzklBVw%2F8rZIh5bWv6mqjh2D9CzFdD0CHG%2FwMAWGOgCVI%2FgsqVxmtiLW7%2FMaTBdGTNtKydMW%2F3VTObyegqnLqsNX3SYjGSHyWarGUkuWKvFfB5x1hBhyJG6aXTjrd%2F%2BAgAA%2F%2F8BAAD%2F%2F63ehKyUBAAA IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skxRevnuT2hS8oewvCHDysYCbd87Nn97AaYyQaN8vuil5E6ldPytR0NVXd05OcggHZ4%2BBf0PlMskHdld2r4CKTBQ8BYcdTDsaD%2F4HCnqXHwdEHVe%2B9%2BryCz%2Fu89%2BVxdkXqyOjlxofmQGlN11o1v3r9kyC4Wd1WcTasDsP2Z%2B3mzaod3Oi2a%2F4b1fck3zNrdT%2Fw%2FcAPqpvKysgM10oQKnnUDWpdv9as14JWE0P739xlHhz1IAZX5FUoMV1%2B7l2D4hPE%2FScb0u2lJnnz3X6maWosBuLso3gvNnmM%2FiKMrIcoPptXw7gXm89g4tMZXZjBP4VMTYn30zOw%2BGxOEmxwMuPJNGQMJv6HfDCB1BMoOgE3R1DiBQG4wO0dxP2Ht43N6f7fKC3RKVl%2B%2BSdUPiXLv15D3P9uXath9Z7RWapM7DCMCqjhBKo3QZKdIz2oQOXn4OkXUOJnsvZyG3H%2FZMdpAyUuX2%2BHQb0hI7oaNgRfbTaixmq3Kf1V6odNyptBnTXoTCClJlDRBFqOQJ2HrDzKQxZ5yBIPfXFZ5UEQdHzBqR92OW%2BIjmRt4Qe0EwU08NshMl72MEKajMD1CNweIrGH2FMj2OxHuN0CTnhwKcFAFMglQe4IckqQK4I8JcgHxanQru6Kh0K7jAVzX5%2F7RjE2ae%2BYnpq0J2MCakewojhOrsgrpYDep%2B9XsCcvqyISdRlwv9tkvk%2BDVui3Qi59vx2KjojCJpwqoFxl1u6BmpIueYxETclK7QiMnsPpc3C1BJq9BpoXoLsFDuLHMq7t7ieJrHGdMQhTIEmXke57x%2FqKrMxmuLXzBJJf3Pq9MTNwWyCxBT5Xzwl6%2BsH4rsnJyV2TO%2FJ0J0lVXx3Qcr73UprKpW8%2BkPu5sWJrw42%2BfpuXQBk%2Bui9duk1joeKeI9%2BuKyGk3TSWS%2FLDlvtYsjuZ213PbJwl23fe2dzqJ1Y6p0w8AS1X9Q8Lrqbk%2Fyv3Z6t7%2FfsdKDuBzQr0swsyNygzAU8O4ZIFf2cIrF7UsMRDnhVjW2eLR60ItFzklBVw%2F8rZIh5bWv6mqjh2D9CzFdD0CHG%2FwMAWGOgCVI%2FgsqVxmtiLW7%2FMaTBdGTNtKydMW%2F3VTObyegqnLqsNX3SYjGSHyWarGUkuWKvFfB5x1hBhyJG6aXTjrd%2F%2BAgAA%2F%2F8BAAD%2F%2F63ehKyUBAAA HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 14:55:29 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9686be85b108b4aee703862f595ff62d
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| v9-eight.vercel.app/assets/js/particles.js | 76.76.21.61 | 200 OK | 23 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/js/particles.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/js/particles.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"584d-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::xk2qs-1715093725581-182d2fd022a8
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/uv/uv.bundle.js | 76.76.21.61 | 200 OK | 1.8 MB |
URL GET HTTP/2v9-eight.vercel.app/uv/uv.bundle.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Size1.8 MB (1809191 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uv/uv.bundle.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: _ga_6YEQ7Q0XRC=GS1.1.1715093726.1.0.1715093726.0.0.0; _ga=GA1.1.1890076201.1715093726
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:26 GMT
etag: W/"1b9b27-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::ww9c9-1715093726063-3e6bf2277efa
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css | 172.67.141.24 | 200 OK | 4.6 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css IP172.67.141.24:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (4886), with no line terminators Hash1230b98f01a549572edcd2bf3bdcb4ad ac87a2a752ffb8b5167566183fddd531d7971be9 9a2954fc66ebbb9adf18c2ea4403d2a0a5dedf2928f9905e1fc656f5dc1b208d
GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xgPmMqw68b9Gx9E%2FmwVN0OjrZl2HrvjP%2Fq6cUU2PjYZJn4PzNcxnc%2Bt6RjYyGdP5fI%2FJt9p1kKqw9LCCmxxmEhmlgY47QUuFGzYgi7a3BbmHzi0KVUe%2B5F4QWeOR8uOIOgnbeYwYCd8F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d18fead1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css | 172.67.141.24 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css IP172.67.141.24:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashfc638645a938f69e69360c75335ffd1a 143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4 7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90
GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x6kihlAyJDaKG4L9V160N1%2BGsr3gvrKwSYAQ%2BGBHZ8iwISBUHwILn48qorou7cSGofzSiahiJCQxT8bYQmbeeimaodmuGNRr2cPSkcHq4SAbpdOIYnix3AnqzPC0jvZ0gKE5t3cp8YYY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d190eb61c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/js/functions.js | 76.76.21.61 | 200 OK | 7.5 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/js/functions.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (8179), with no line terminators Hashcf3f70fb65205d2a3590b20b6187d3d2 1738ee1312394b94880ff0bac423405afc93deae a885bf3bfe57b6b8c827e6f157ed7686da0c42feba4e50f3e09c9ff142f28f02
GET /assets/js/functions.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"1d2f-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::j9xk6-1715093725575-475eaa5cf97a
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.131:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 377229
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 86 kB |
URL GET HTTP/3downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 14:55:27 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ac44ba0f3dfa0da600ba049c90178590
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 07 May 2024 14:55:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hM8f8ZJgROXbityEFOcafFfbpnhnhsDE2nNHPRGDIgfVHCwrWNH3NTA1ZgG%2B6UO%2FqgIcckLjpmSk1Mjtsfp4%2BwbdWiqLeLgPiKoVHvzxobA4tmrvYgHe%2BmYYVnB0Sl0hcfiHi%2Bn4tvxkrX3EWuZHQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d11ee6a56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| v9-eight.vercel.app/assets/img/doge.jpg | 76.76.21.61 | 200 OK | 30 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/img/doge.jpg IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash0eb51aabb859d0be979f7fa8fc0ce987 83a3141771da65ad6d6108693e3f6bb7ed953b39 75cd1593ebc1761765fd196b90ce99e0069984a59b0e1933be765cbe01838ccf
GET /assets/img/doge.jpg HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0
content-type: image/jpeg
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"76e7-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::ww9c9-1715093725580-ba7dcfd963c3
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/js/anym.js | 76.76.21.61 | 200 OK | 1.9 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/js/anym.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (2041), with no line terminators Hash50152328a9087f364ade7acbaad84b8b dc6249f46d4d483d568b2f4481f277f377a12087 4d9204bf6db18ece175e1b545c144683af1d8314bb32df78277cf404c54cf9de
GET /assets/js/anym.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"773-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::47frn-1715093725575-b02cc91a341f
X-Firefox-Spdy: h2
|
|
| warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=159 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1warsabnormality.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=159 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectwarsabnormality.com Fingerprint7B:67:78:96:28:BC:B3:82:14:C5:91:38:0B:26:4C:49:B5:25:70:17 ValidityMon, 06 May 2024 12:57:18 GMT - Sun, 04 Aug 2024 12:57:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=159 HTTP/1.1
Host: warsabnormality.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: u_pl=22891010; uid_id2=68123efa-83dc-43f3-94e0-a084ac412b3a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 14:55:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 142.250.74.131 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP142.250.74.131:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 02:03:08 GMT
expires: Sat, 03 May 2025 02:03:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 391937
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:26 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 36ed4d768640d5a151514d4f69d32e4c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 07 May 2024 14:55:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dVApwPQula4cYFsiLO%2FIn1nSR4GLGy7Npq0oCYh0y8%2Fug8zvLGkSnp%2FRH%2Fa3gzZmtQDC2AMi0abwNFsTf6DtPMiiOuY4KR3M4um4s0zTMsnJD9iD1pA357cbBDh4kX38nroiwbm9CAexbrBBIC12uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88020d0e8e8056b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/img/doge.jpg | 76.76.21.61 | 200 OK | 30 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/img/doge.jpg IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash0eb51aabb859d0be979f7fa8fc0ce987 83a3141771da65ad6d6108693e3f6bb7ed953b39 75cd1593ebc1761765fd196b90ce99e0069984a59b0e1933be765cbe01838ccf
GET /assets/img/doge.jpg HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Cookie: _ga_6YEQ7Q0XRC=GS1.1.1715093726.1.0.1715093726.0.0.0; _ga=GA1.1.1890076201.1715093726
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0
content-type: image/jpeg
date: Tue, 07 May 2024 14:55:26 GMT
etag: W/"76e7-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::ww9c9-1715093726794-877b37d0ae40
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html | 45.133.44.4 | 200 OK | 3.0 kB |
URL GET HTTP/2cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html IP45.133.44.4:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text, with very long lines (3229), with no line terminators Hash0b579b1f5697d55d3bc0856975d08243 e68a8e8bc08f86086744aba736df40ca7bea6d01 8ac4909eb5c0efc3278c66a43990535925fb271226f96261415df027fe40cb0c
GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v9-eight.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:55:28 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 07 May 2024 15:55:28 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/uv/uv.handler.js | 76.76.21.61 | 200 OK | 40 kB |
URL GET HTTP/2v9-eight.vercel.app/uv/uv.handler.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashf851487bd084c494d1c978b75b57e3f5 cbcf9e251be077638a0d4b3b8be69bcd1d5d5e8f c5e8a39d09280aeaac25c2548543e53ea74ad041f8932f1f3d702d8223d9c46c
GET /uv/uv.handler.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"9dbf-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::ww9c9-1715093725893-54688eff7cba
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/js/main.js | 76.76.21.61 | 200 OK | 3.6 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/js/main.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3939), with no line terminators Hashfda3eda4690fd4030d2b86a9c15f6cc1 3e46902fc12bfde7762ab05bb77ae919147164de 42da2c91c94dd9f5cfb15ddf085f38035533686309b354b0e749786fd30fba1b
GET /assets/js/main.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"e29-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::x5854-1715093725580-710f4af9356d
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/css/app.css | 76.76.21.61 | 200 OK | 6.0 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/css/app.css IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (6632), with no line terminators Hash61c4fb4622218c1d63c34c9e18da25d3 b8dcf55940f33fb38f5bd91560c521b30d62d498 5b0be2b2f0cb579183079ec9948c62544e6f0e8aefe4020f7d6a5d498b63f69a
GET /assets/css/app.css HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"177c-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::flmqw-1715093725571-17e86b8c92fc
X-Firefox-Spdy: h2
|
|
| v9-eight.vercel.app/assets/js/themes.js | 76.76.21.61 | 200 OK | 7.6 kB |
URL GET HTTP/2v9-eight.vercel.app/assets/js/themes.js IP76.76.21.61:443
Requested byhttps://v9-eight.vercel.app/ CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7783), with no line terminators Hash0e9fa7a9c668b4aba84b0b9a19494639 ba80897a6a390b318702af380a30b4b16930bdcd 11f06271f1d96a1b8d71a98116528df77d35ee8bff5bb93048d5d00ddf200851
GET /assets/js/themes.js HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v9-eight.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"1d8b-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::7xzjj-1715093725581-9a6a0c9ef674
X-Firefox-Spdy: h2
|
|
| | 76.76.21.61 | 200 OK | 4.3 kB |
URL User Request GET HTTP/2IP76.76.21.61:443
CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeHTML document, ASCII text, with very long lines (4655), with no line terminators Hashc6af9b6f4d48d1eb7215df1152419728 5bc92cc34062578f9f76324183ac8860de473839 34b0c22c65ccbc947ca170943c6a3d3cf0d1d77c92ae8d02f670fab7f0468ce6
GET / HTTP/1.1
Host: v9-eight.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
age: 0
cache-control: public, max-age=0
content-encoding: br
content-type: text/html; charset=UTF-8
date: Tue, 07 May 2024 14:55:25 GMT
etag: W/"10e5-1668f272800"
last-modified: Sat, 20 Oct 2018 01:46:40 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-powered-by: Express
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::flmqw-1715093724826-b21f725196d2
X-Firefox-Spdy: h2
|
|