firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 19:09:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dvhFNf7pKhTln4jvP9mbgoT55x4Kxuf1weAnPHm94_pTJWNc_OcbPg==
Age: 1963
9bar.studio/
104.21.30.67301 Moved Permanently 169 B IP 104.21.30.67:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8c2170ef3ddebf996718575917956e9c
618ab5fab7445b7797272607a22c0d307465857f
31976ec4fe4abdf91d242f8bacfc9f6cf16acc46d13d0de6e32a2da88076cc55
GET / HTTP/1.1
Host: 9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Sep 2022 19:42:24 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://9bar.studio/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YatGHzCXka4u9%2BI2gzwEVW8PrF6abKWupImDSSYVDSLtt0UP24TGlwc9Myu6%2FsVfqqMNjd780CvqbIydWK3utShd2E3KUav2dlOavKcwXE7xADCZdb1%2BxxpoVz6nnA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74ab9b0a1efbb509-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16811
Expires: Thu, 15 Sep 2022 00:22:35 GMT
Date: Wed, 14 Sep 2022 19:42:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: POJb7AsHyddXrLotfGUHcUidqhw_2_d0n0zfRtloq3_1xZLDSdQ4Yw==
age: 54429
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 19:42:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70d5423b01611a7e180bb1df66aa8709
337e8382cf26d716cc345808809fe4dcbb7a9242
a15422cfc0aaef8e89e56415e8cf5538ec88de429cf62eb38e513cf176c9a36c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A15422CFC0AAEF8E89E56415E8CF5538EC88DE429CF62EB38E513CF176C9A36C"
Last-Modified: Wed, 14 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 15 Sep 2022 01:42:24 GMT
Date: Wed, 14 Sep 2022 19:42:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 14 Sep 2022 19:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 14 Sep 2022 19:37:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tdR4kLrgdj476gm0Q-Js7ApxLtMyWDWPM2Oh3Cp1ksIcesE2bsdprg==
Age: 2342
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70d5423b01611a7e180bb1df66aa8709
337e8382cf26d716cc345808809fe4dcbb7a9242
a15422cfc0aaef8e89e56415e8cf5538ec88de429cf62eb38e513cf176c9a36c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A15422CFC0AAEF8E89E56415E8CF5538EC88DE429CF62EB38E513CF176C9A36C"
Last-Modified: Wed, 14 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 15 Sep 2022 01:42:24 GMT
Date: Wed, 14 Sep 2022 19:42:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4316
Cache-Control: max-age=135391
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Etag: "63218ba4-1d7"
Expires: Fri, 16 Sep 2022 09:18:56 GMT
Last-Modified: Wed, 14 Sep 2022 08:07:00 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9bar.studio/
172.67.172.55200 OK 130 kB IP 172.67.172.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2013)
Size 130 kB (129897 bytes)
Hash 770582eda09d5307c8255f2517e60353
e46691b30a7917c480dd07a73f0881085f69cb75
b7ecec258c38f999e77e837a6e75fbd17d09303d332e298d48b31167bede0f71
GET / HTTP/1.1
Host: 9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:24 GMT
content-type: text/html
last-modified: Wed, 14 Sep 2022 08:03:07 GMT
vary: Accept-Encoding
cache-control: private, no-store, max-age=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YLjRy5S%2FASo74kVMIWA9gcYj0iFW0KKwWSPubB50ATOANvu%2BXKwXFFsHKNicOsREsKmF7MeYQeP2vI9JVW87sCFTqh0NfMjMTTakskVRF26Sasecp1TrqtomzLeRwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b0cc986b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +YY7d+7IZHyrCfOcSSSmZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UquxmDW28Rncd0Pxjd2BTdn0J4g=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c79a6d9219e52788c0288a4288601f0b
a55c74c35279d08872bb4b0805d3f8ff684bc322
345482ec25a567e189a52a824fa13f6bbcfa8ce636c40f3619232b9cff65fa6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-2YBGSYB8YT&l=dataLayer
142.250.74.72200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-2YBGSYB8YT&l=dataLayer
IP 142.250.74.72:0
File type ASCII text, with very long lines (18136)
Hash ecfadc4378cfe99bb06d57d8488abb8d
bf205cb1791521e10fabea7d762e0751e3402bdd
7ae36bdbbb775037dc05963b4710f50e86ab92a82a0f075ea95cdbd1054d051a
GET /gtag/js?id=G-2YBGSYB8YT&l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 14 Sep 2022 19:42:25 GMT
expires: Wed, 14 Sep 2022 19:42:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75765
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 55 kB IP 142.250.74.3:0
Hash ad3a3578c170c5d6ac31eff3440fc163
9cd0700e9f75fc6e6c5c947353242b22449e80de
ffb9dc7115e0705df1fd923a109569a2310f52cb3fc4548468849a8f39390365
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c216fe14f0540c85a40ae7fab4bedf07
be38555ec9d5508b0fd6a1c6393ee1a6a6df6d34
fd4ae18423d4332653f8c824ba79b9fb89c47e496f0955d484ca5bf03ca91021
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2YBGSYB8YT&cid=1880679708.1663184532>m=2oe9c0&aip=1&z=1725828811
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2YBGSYB8YT&cid=1880679708.1663184532>m=2oe9c0&aip=1&z=1725828811
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2YBGSYB8YT&cid=1880679708.1663184532>m=2oe9c0&aip=1&z=1725828811 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 14 Sep 2022 19:42:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c216fe14f0540c85a40ae7fab4bedf07
be38555ec9d5508b0fd6a1c6393ee1a6a6df6d34
fd4ae18423d4332653f8c824ba79b9fb89c47e496f0955d484ca5bf03ca91021
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 14 Sep 2022 18:41:12 GMT
expires: Wed, 14 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 3674
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-2YBGSYB8YT>m=2oe9c0&_p=1547493779&_gaz=1&cid=1880679708.1663184532&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663184531&sct=1&seg=0&dl=https%3A%2F%2F9bar.studio%2F&dt=9bar.studio%20%E0%B9%80%E0%B8%A7%E0%B9%87%E0%B8%9A%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%97%E0%B8%B5%E0%B9%88%E0%B8%94%E0%B8%B5%E0%B8%97%E0%B8%B5%E0%B9%88%E0%B8%AA%E0%B8%B8%E0%B8%94%E0%B9%83%E0%B8%99%E0%B9%84%E0%B8%97%E0%B8%A2%20%E0%B8%AD%E0%B8%B1%E0%B8%9E%E0%B9%80%E0%B8%94%E0%B8%97%E0%B8%97%E0%B8%B8%E0%B8%81%E0%B8%A7%E0%B8%B1%E0%B8%99%20%E0%B8%AB%E0%B8%99%E0%B8%B1%E0%B8%87%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B9%84%E0%B8%97%E0%B8%A2%20%E0%B8%AB%E0%B8%99%E0%B8%B1%E0%B8%87%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B8%8D%E0%B8%B5%E0%B9%88%E0%B8%9B%E0%B8%B8%E0%B9%88%E0%B8%99%20AV%20%E0%B8%A3%E0%B8%B0%E0%B8%94%E0%B8%B1%E0%B8%9AHD&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-2YBGSYB8YT>m=2oe9c0&_p=1547493779&_gaz=1&cid=1880679708.1663184532&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663184531&sct=1&seg=0&dl=https%3A%2F%2F9bar.studio%2F&dt=9bar.studio%20%E0%B9%80%E0%B8%A7%E0%B9%87%E0%B8%9A%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%97%E0%B8%B5%E0%B9%88%E0%B8%94%E0%B8%B5%E0%B8%97%E0%B8%B5%E0%B9%88%E0%B8%AA%E0%B8%B8%E0%B8%94%E0%B9%83%E0%B8%99%E0%B9%84%E0%B8%97%E0%B8%A2%20%E0%B8%AD%E0%B8%B1%E0%B8%9E%E0%B9%80%E0%B8%94%E0%B8%97%E0%B8%97%E0%B8%B8%E0%B8%81%E0%B8%A7%E0%B8%B1%E0%B8%99%20%E0%B8%AB%E0%B8%99%E0%B8%B1%E0%B8%87%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B9%84%E0%B8%97%E0%B8%A2%20%E0%B8%AB%E0%B8%99%E0%B8%B1%E0%B8%87%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B8%8D%E0%B8%B5%E0%B9%88%E0%B8%9B%E0%B8%B8%E0%B9%88%E0%B8%99%20AV%20%E0%B8%A3%E0%B8%B0%E0%B8%94%E0%B8%B1%E0%B8%9AHD&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2YBGSYB8YT>m=2oe9c0&_p=1547493779&_gaz=1&cid=1880679708.1663184532&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663184531&sct=1&seg=0&dl=https%3A%2F%2F9bar.studio%2F&dt=9bar.studio%20%E0%B9%80%E0%B8%A7%E0%B9%87%E0%B8%9A%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B8%9F%E0%B8%A3%E0%B8%B5%E0%B8%97%E0%B8%B5%E0%B9%88%E0%B8%94%E0%B8%B5%E0%B8%97%E0%B8%B5%E0%B9%88%E0%B8%AA%E0%B8%B8%E0%B8%94%E0%B9%83%E0%B8%99%E0%B9%84%E0%B8%97%E0%B8%A2%20%E0%B8%AD%E0%B8%B1%E0%B8%9E%E0%B9%80%E0%B8%94%E0%B8%97%E0%B8%97%E0%B8%B8%E0%B8%81%E0%B8%A7%E0%B8%B1%E0%B8%99%20%E0%B8%AB%E0%B8%99%E0%B8%B1%E0%B8%87%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B9%84%E0%B8%97%E0%B8%A2%20%E0%B8%AB%E0%B8%99%E0%B8%B1%E0%B8%87%E0%B9%82%E0%B8%9B%E0%B9%8A%E0%B8%8D%E0%B8%B5%E0%B9%88%E0%B8%9B%E0%B8%B8%E0%B9%88%E0%B8%99%20AV%20%E0%B8%A3%E0%B8%B0%E0%B8%94%E0%B8%B1%E0%B8%9AHD&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://9bar.studio
date: Wed, 14 Sep 2022 19:42:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-2YBGSYB8YT&cid=1880679708.1663184532>m=2oe9c0&aip=1
142.251.1.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-2YBGSYB8YT&cid=1880679708.1663184532>m=2oe9c0&aip=1
IP 142.251.1.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2YBGSYB8YT&cid=1880679708.1663184532>m=2oe9c0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://9bar.studio
date: Wed, 14 Sep 2022 19:42:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 49db8ba762c06cc6af193ec2d172b4e7
7575bd5c84709bc4ffcafb2b6523f91d8b8fd193
d5205e7ff1662d34d9762142ff41d65a3d764bd1920434222f553818d540b9eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 44f0a31315e135bb54b234a3d456b9b0
865896180a4d850d3f077e1480668a93c22b42cb
24c15ff63eb19b697f36f982d4c14df71eaf5d55ec9259a39e5a9f75fe49609e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 19:42:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api2.9bar.studio/th1/speed_test
104.21.30.67200 OK 8 B URL HTTP/2 api2.9bar.studio/th1/speed_test
IP 104.21.30.67:0
File type ASCII text, with no line terminators
Hash 47b07d10a1f936b9a61abbe338d376d1
9df5bdefe202d2d8c53c190155881ff809ef73a3
e02d91d82a25c6c24534cb4ff9e95aafdf82a10bdb811c304e0704d396124004
OPTIONS /th1/speed_test HTTP/1.1
Host: api2.9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: https://9bar.studio/
Origin: https://9bar.studio
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMXNU4lkIM4CdxwZkOZ%2BGWH8CUU1JqNPXFCkiaDT9UxxgFa4pQQRjv1Des7BI5tvlJ2eemB5jqjlUFitAp85zJsRgiFmwwtr5B72kmOJT5boWUPKMq3daEXV0a8d5O1YODbo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b140bb70afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5789
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 19:42:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5789
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 19:42:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5789
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 19:42:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5789
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 19:42:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5789
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 19:42:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:05:07 GMT
age: 77839
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:09:32 GMT
age: 59574
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: e4d41ba8-41c5-4350-bacb-850136434eaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEw28GD7IAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63182e92-4098031d1475d45f4899654b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 05:39:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BcQa5iNJlJ_rm50BT4O-rIEayxXyD0Jb5dUq_sUccIWfv12HfBec0g==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:22:39 GMT
age: 76787
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CWzE6n2U7hSFcSIHX5z76DPIid9pvbOqM6ikOlegBxzbuRThMeLKZA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:46:14 GMT
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
age: 78972
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
34.120.237.76200 OK 21 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP 34.120.237.76:0
Hash 6e2d31add049de7c3c3b0e8fb5d09191
6f8570ef4a38a03089c1ddcabdeb6b58e2071bb6
17b835b552724dea2312efb6fc8338261356856e68190e8e303eb9e1eb18fab5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:06:54 GMT
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
age: 77732
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP 34.120.237.76:0
Hash 28ecbf3fb7ccb4b91177abdca373ac7a
ab4f8a492a3b839cab345ff0c1b61c431b229d2d
fdea6e012ae5b2c08ceaa161b6922618062979b09210b361795fd9ca11cd83e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3PbHWkNMa0XkuY_FcTO22i9YwMdqlJPCho7FlBwdbuUnbWrOv0w5Hg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:59:03 GMT
age: 78203
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 4.1 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ddfcc39a2027269cd2be07b8e0c819d8
fbab0a2910d1a348079faccd1d477743578abaa5
07a61448a9ee0a1aa8d8156acfbdf34d0e84d42fffbd856cf04a88366081d8e4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "52B13BB45983797730DC3A1FFB2B37EF26E636375A48CA830C319B02521C3212"
Last-Modified: Wed, 14 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 15 Sep 2022 01:42:27 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash edd888361d93b6ab656ed9b9e2b67a42
3381b961f64c11c52802ab3b9e16ae86395bd010
52b13bb45983797730dc3a1ffb2b37ef26e636375a48ca830c319b02521c3212
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "52B13BB45983797730DC3A1FFB2B37EF26E636375A48CA830C319B02521C3212"
Last-Modified: Wed, 14 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21536
Expires: Thu, 15 Sep 2022 01:41:23 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 2.3 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9d6e139944870b38a03ab9f203ae3411
8520be5c09b143eead0654a1b40f50aa791fe8d5
51503c20b9bcbbc0b0d28786dd21d3c3687886413fbcee46de1a49689b2ada47
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "52B13BB45983797730DC3A1FFB2B37EF26E636375A48CA830C319B02521C3212"
Last-Modified: Wed, 14 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 15 Sep 2022 01:42:27 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d22206f70c41bf062bd7c066f91edc3
843aa21278f0d84453ec0b0567461c62d2f321d7
904f0cbe1137c4bd20c6b9e31a0ddfa56dc8d994315525bbdac3ff926ac1d2bc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "904F0CBE1137C4BD20C6B9E31A0DDFA56DC8D994315525BBDAC3FF926AC1D2BC"
Last-Modified: Wed, 14 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21498
Expires: Thu, 15 Sep 2022 01:40:45 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
aops.9barv.com/9bar/img/social/social_tumblr_56o56.png
104.22.54.199200 OK 1.6 kB URL HTTP/2 aops.9barv.com/9bar/img/social/social_tumblr_56o56.png
IP 104.22.54.199:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash e221bf350f1d4682d3614b2c2a344d65
cf8c63733e1db5812b3e9d604ea76194c7aa75ed
2091278cb0b7bcb6cfa1ececb296e148aabc5731ab2ed383efacd60bab45b83b
GET /9bar/img/social/social_tumblr_56o56.png HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/png
content-length: 1647
last-modified: Wed, 06 Oct 2021 03:10:52 GMT
etag: "e221bf350f1d4682d3614b2c2a344d65"
x-amz-version-id: yopAC7xjkOBDurpAIoCrObsOhr69cAtY
x-cache: Miss from cloudfront
via: 1.1 fedd444eadd43dacc7e53f24b46bddf8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: tIG_DxrzlUG2GSEEtBCrjwmKQnHQcPlcVFKpJk9VcO2RDC8G-CSLlw==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 619029
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ab9b1bcf61b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash edd888361d93b6ab656ed9b9e2b67a42
3381b961f64c11c52802ab3b9e16ae86395bd010
52b13bb45983797730dc3a1ffb2b37ef26e636375a48ca830c319b02521c3212
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "52B13BB45983797730DC3A1FFB2B37EF26E636375A48CA830C319B02521C3212"
Last-Modified: Wed, 14 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21540
Expires: Thu, 15 Sep 2022 01:41:27 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
aops.9barv.com/9bar/adchange/img/porndude32x32.png
104.22.54.199200 OK 1.6 kB URL HTTP/2 aops.9barv.com/9bar/adchange/img/porndude32x32.png
IP 104.22.54.199:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /9bar/adchange/img/porndude32x32.png HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/png
content-length: 1576
last-modified: Fri, 21 Jan 2022 04:35:05 GMT
x-amz-version-id: ck6MoEmxGBP0UEB2D9mtJ6a7V0cMT6Ve
etag: "e05d03cbbf9dc784d2f4a3ecb4ad6987"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0ca6102b671acc9950502eeeca241bf8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: kHXwhMOSwchwJxv3Q5QTbppTxdo_LirBzhXBgC07Bvykugc8ed7xOg==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
server: cloudflare
cf-ray: 74ab9b1bcf6eb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/adchange/img/pay69/1100x490/bbcc_pay69_1100o490_08.jpg
104.22.54.199200 OK 172 kB URL HTTP/2 aops.9barv.com/9bar/adchange/img/pay69/1100x490/bbcc_pay69_1100o490_08.jpg
IP 104.22.54.199:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2200x980, components 3\012- data
Size 172 kB (171608 bytes)
Hash 7e5a5f2c1075d4887aea5b910ed177d4
3db29750dc33d7995635d15fa2264daaca6b6efb
c62488700e786532e4be4cd70ed2b942f496f3d7cc613811443dd07783dd256f
GET /9bar/adchange/img/pay69/1100x490/bbcc_pay69_1100o490_08.jpg HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/jpeg
content-length: 171608
cf-bgj: h2pri
etag: "7e5a5f2c1075d4887aea5b910ed177d4"
last-modified: Tue, 26 Apr 2022 09:48:20 GMT
vary: Accept-Encoding
via: 1.1 d945a5fbc073d46145c31f513978802c.cloudfront.net (CloudFront)
x-amz-cf-id: AbMklBEGxruPEMvBI5Yt-Rv1JkGzjvJpjbfjAwT7mU3J1rBoKsRMGQ==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-amz-version-id: uF1R6tx2Cj4SSCo9Z3l90aCxHWwHrKir
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
server: cloudflare
cf-ray: 74ab9b1bcf64b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/img/slider/slider_signup_10081.jpg
104.22.54.199200 OK 106 kB URL HTTP/2 aops.9barv.com/9bar/img/slider/slider_signup_10081.jpg
IP 104.22.54.199:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x490, components 3\012- data
Size 106 kB (106381 bytes)
Hash ceb6c5133b88be6258ea49c3a3dab67a
a6d9c2facdaf9c8935fd8dfbc4928524253dfc17
7e9766ec224a8d61eaaf8776e4527b70ef5ecfe4333751ea7fb38f4df68ccf1f
GET /9bar/img/slider/slider_signup_10081.jpg HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/jpeg
content-length: 106381
cf-bgj: h2pri
etag: "ceb6c5133b88be6258ea49c3a3dab67a"
last-modified: Fri, 08 Oct 2021 04:20:51 GMT
via: 1.1 9fde400234236c10982fe8b8a3ca9eb2.cloudfront.net (CloudFront)
x-amz-cf-id: FAs1z69eP45cQfGKwmM0kgpgyuXL7PJPgXVJwEaOgzBk9PgnRWww1Q==
x-amz-cf-pop: ARN56-P1
x-cache: Hit from cloudfront
x-amz-version-id: Nly.0OHMxVgga4BwKT0Kj4Z.Brhigwaj
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ab9b1bcf66b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/img/slider/slider_join_10011.jpg
104.22.54.199200 OK 508 kB URL HTTP/2 aops.9barv.com/9bar/img/slider/slider_join_10011.jpg
IP 104.22.54.199:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1100x490, components 3\012- data
Size 508 kB (507510 bytes)
Hash 12a75bc0d9c3598655d1f92991b14637
b1aa660cec43948bfc4afefd943832492d1f2630
cdf1dd3bde79f4d6225babfb2eec260aa02c3019d08814149b7d2819bdcd3bfd
GET /9bar/img/slider/slider_join_10011.jpg HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/jpeg
content-length: 507510
cf-bgj: h2pri
etag: "12a75bc0d9c3598655d1f92991b14637"
last-modified: Wed, 06 Oct 2021 02:54:22 GMT
vary: Accept-Encoding
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-id: Rn7LGf0V8-1nmJbfv8YSUXyZi8HD2H9_qZbPakE5I4ZdmdAn-LbU7A==
x-amz-cf-pop: ARN1-C1
x-cache: RefreshHit from cloudfront
x-amz-version-id: uy66UToz3_r_zDcKy2nVnnWcvxZlvi16
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
server: cloudflare
cf-ray: 74ab9b1bcf68b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/adchange/img/pay69/1100x490/bbcc_pay69_1100o490_04.gif
104.22.54.199200 OK 425 kB URL HTTP/2 aops.9barv.com/9bar/adchange/img/pay69/1100x490/bbcc_pay69_1100o490_04.gif
IP 104.22.54.199:0
File type GIF image data, version 89a, 1100 x 490\012- data
Size 425 kB (425252 bytes)
Hash 7abfbde23ac351ba2bedc3053cc8c31a
67197e5488570b2c91aeb93d1581f87bf126c639
67ee2b122c6f98776fd951fbc5c773900169956ceea26ac5e0cc1bd6fb1c211b
GET /9bar/adchange/img/pay69/1100x490/bbcc_pay69_1100o490_04.gif HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/gif
content-length: 425252
last-modified: Tue, 19 Apr 2022 08:52:13 GMT
etag: "7abfbde23ac351ba2bedc3053cc8c31a"
x-amz-version-id: K6Zk3GCyZjF6Ckg0_R3ZUDEdQ8ePZQt5
x-cache: Miss from cloudfront
via: 1.1 009f08cce389af684f28c36891875534.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: AUuCQhdM-abhNqKRs86xniM0P86al4StHho0djTf9ebcKgOq8JxSHg==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ab9b1bcf65b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/img/social/social_line_56o56.png
104.22.54.199200 OK 2.4 kB URL HTTP/2 aops.9barv.com/9bar/img/social/social_line_56o56.png
IP 104.22.54.199:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ad4e13b94591ad3e07328b6d0d3337f
b468c8ea8be9bc0c9208ec943e7f0c65b97fec74
dc5728013d1f54003192135bfd376161b42b7a2e2fcacfc9ddb7a8922e1c9ec6
GET /9bar/img/social/social_line_56o56.png HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/png
content-length: 2409
last-modified: Wed, 06 Oct 2021 03:10:51 GMT
x-amz-version-id: R07srksvPcPrrGr06gBMdq6VZNJXRRYI
etag: "9ad4e13b94591ad3e07328b6d0d3337f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a62f7ce6b39c676fcfdde0f9a6fcf08e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 3BgTGnocN7ibKY-HNJy_aCOAVOrB2j8UUXyo9IbX4wl6qfGh4hmOiA==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
server: cloudflare
cf-ray: 74ab9b1bef93b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/img/social/social_twitter_56o56.png
104.22.54.199200 OK 2.1 kB URL HTTP/2 aops.9barv.com/9bar/img/social/social_twitter_56o56.png
IP 104.22.54.199:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 08c87fa12a1185fd17444bbfcfde26d3
cc0b08fc2529cfa29bbb9380c73a26be9d747b08
1734c42b4ddded1329263900a5cae8dcb81a84b2c43d0242ef7ce8255128dba4
GET /9bar/img/social/social_twitter_56o56.png HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/png
content-length: 2095
last-modified: Wed, 06 Oct 2021 03:10:52 GMT
etag: "08c87fa12a1185fd17444bbfcfde26d3"
x-amz-version-id: H6eBs_Qv0dMxhnL6eLiFCZkeRDwcxWSH
x-cache: Hit from cloudfront
via: 1.1 d975c23165964b20999503339a61d1ae.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 5oBdhCi5llPuMHm0Z8nCxkZntAqPzLYw0RgMkofGEjEUnZOENH1MwA==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ab9b1c1ffcb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/adchange/img/BongaCash/icon/150x150_1.png
104.22.54.199200 OK 52 kB URL HTTP/2 aops.9barv.com/9bar/adchange/img/BongaCash/icon/150x150_1.png
IP 104.22.54.199:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b95f2d0305a055a849d2d7e31f1a42af
7e69a75adc6cb50647f1e37e40fc681115419685
4ed884515d363190ca4cec0af2b72e6b2d266286b5cc791bc6ca9b302727fd84
GET /9bar/adchange/img/BongaCash/icon/150x150_1.png HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/png
content-length: 51697
last-modified: Fri, 19 Aug 2022 09:32:14 GMT
x-amz-version-id: gEsQkTCALG.nB6JDSEf3jAvAfVqEtnUt
etag: "b95f2d0305a055a849d2d7e31f1a42af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ff7194a111d1912088727cbee9f13db0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: nQthjpVSLwfczLBqTMUKpPHrQJbjSBl7zGJGSui74f8lPqYy4PDBcQ==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
server: cloudflare
cf-ray: 74ab9b1c1ff9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aops.9barv.com/9bar/adchange/img/pay69/bbcc_pay69_300o300.png
104.22.54.199200 OK 165 kB URL HTTP/2 aops.9barv.com/9bar/adchange/img/pay69/bbcc_pay69_300o300.png
IP 104.22.54.199:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 165 kB (165186 bytes)
Hash df567cabaa5ac0eebdb138a13ac46baa
3b6eb335455e333f7465391ed3fb9c28bc97e721
31ee3d638996c6bd8342f80e7812c632b17ae0880a1740359991947c9b29de40
GET /9bar/adchange/img/pay69/bbcc_pay69_300o300.png HTTP/1.1
Host: aops.9barv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:27 GMT
content-type: image/png
content-length: 165186
last-modified: Tue, 02 Aug 2022 09:46:35 GMT
etag: "df567cabaa5ac0eebdb138a13ac46baa"
x-amz-version-id: DzEa7xUP2o3cepBr2AgoxF1psRxPixHu
x-cache: Hit from cloudfront
via: 1.1 94251f2595ef5679fba3c952e8743886.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: iLgPky7OLRrYylDJIJoRc8CaEPUytC0PVUXlyPrv9DuLbFPkww-s2Q==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 86660
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ab9b1c2816b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash edd888361d93b6ab656ed9b9e2b67a42
3381b961f64c11c52802ab3b9e16ae86395bd010
52b13bb45983797730dc3a1ffb2b37ef26e636375a48ca830c319b02521c3212
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "52B13BB45983797730DC3A1FFB2B37EF26E636375A48CA830C319B02521C3212"
Last-Modified: Wed, 14 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21540
Expires: Thu, 15 Sep 2022 01:41:27 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 6.9 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 862817132ac53defbca8d156fb44b4de
35f1cad58533b548c42693a63aedb52e22c63034
c3493ab86d691d9ea7c9da9dcdd6456484fe93f3a1970560d2d85691ef9847ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED03B3DDBEB71CC979D8BDD2DA50EA17DD640FA66BA3E486799C28E454C33CC7"
Last-Modified: Mon, 12 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10913
Expires: Wed, 14 Sep 2022 22:44:20 GMT
Date: Wed, 14 Sep 2022 19:42:27 GMT
Connection: keep-alive
negationsome.com/df2fb6f89fec3719616ec21c6d988481/invoke.js
192.243.59.12200 OK 9.3 kB URL HTTP/1.1 negationsome.com/df2fb6f89fec3719616ec21c6d988481/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25062), with no line terminators
Hash b60525e4534c7793818bda2cb98ca2b8
5ba4921c9da664f809612e88ee2b9b8b2249f3d9
6eead4b8f56f93967aec3a3e5ecd8b92e18a0233d1e1f238fd7a5082cc15d724
GET /df2fb6f89fec3719616ec21c6d988481/invoke.js HTTP/1.1
Host: negationsome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 14 Sep 2022 19:42:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d55b5c5213944040a4bc0b495f0ce467
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8f4ef8df966072a94580afecf1b35f91
4c677ad586004935c473eac26ca322265456b18f
b3b317b2a3280e034775115498631650ce38188509f61450ad8c642651d06d94
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 14 Sep 2022 19:42:28 GMT
Last-Modified: Wed, 14 Sep 2022 18:51:44 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HtCwUGDdKZZoBEYPJxfCMSw6BXvw4ZbDxvwSpjHXYcJVf2qEvM2I4A==
Age: 3044
simplewebanalysis.com/stats
52.59.153.168200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.59.153.168:0
File type ASCII text, with no line terminators
Hash 4b3a25e25dd4bf4e449344138d44da4b
8f58d1240c80822e8b394b21a017ffc92fdefe98
1314bb58b9f65773c8c53ee753b10e00e7e84bf110ba0b5246863703b6d3d57f
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:28 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://9bar.studio
access-control-allow-credentials: true
set-cookie: uid_id2=6900fd73-7e1c-4a3d-87c8-32917dbcb5b7:2:1; expires=Sat, 11 Sep 2032 19:42:28 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0a59f2d221482033bffbac0f8bfd0b3d
1dbb3546f40edf4fe03ebca0d6055d5a5bfe5411
0d79ee634fdd9399990ff1447e120f127ac61aee8577d19ab5a19973f2f7c7bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D79EE634FDD9399990FF1447E120F127AC61AEE8577D19AB5A19973F2F7C7BD"
Last-Modified: Tue, 13 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8634
Expires: Wed, 14 Sep 2022 22:06:22 GMT
Date: Wed, 14 Sep 2022 19:42:28 GMT
Connection: keep-alive
firearmtire.com/ntv.json?key=df2fb6f89fec3719616ec21c6d988481&vstc=4
192.243.59.20200 OK 17 kB URL HTTP/1.1 firearmtire.com/ntv.json?key=df2fb6f89fec3719616ec21c6d988481&vstc=4
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (17145), with no line terminators
Hash 1f7e78f471f72c624ac5148c51499b56
706797e33525b6d48a28e66e2938bae1e8df767e
5f30589367b5805899e483f38454ada58f2f06535be0788bf7bc69abdbd97061
Analyzer Verdict Alert quad9 Sinkholed
GET /ntv.json?key=df2fb6f89fec3719616ec21c6d988481&vstc=4 HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 14 Sep 2022 19:42:28 GMT
Content-Type: application/json
Content-Length: 17150
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://9bar.studio
Access-Control-Allow-Origin: https://9bar.studio
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17008214; expires=Thu, 15 Sep 2022 19:42:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 15 Sep 2022 19:42:28 GMT; secure; SameSite=None
uncs=1; expires=Thu, 15 Sep 2022 19:42:28 GMT; secure; SameSite=None
pdhtkv49=true; expires=Thu, 15 Sep 2022 19:42:28 GMT; secure; SameSite=None
uncs49=1; expires=Thu, 15 Sep 2022 19:42:28 GMT; secure; SameSite=None
nlecdf2fb6f89fec3719616ec21c6d988481=[3637745,3262652,3262673,3262650]; expires=Wed, 14 Sep 2022 19:42:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 568c23c061a260d7441b03f8063dba6f
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09ba627272befd0f5ff19db41767b0c4
e262f240ad6e9c4036a1469b5e1d8b9552806ec0
d5c2c3f9401d006b7e078d210c9760789889abd6d6fca60072e6c57f18c82fa6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5C2C3F9401D006B7E078D210C9760789889ABD6D6FCA60072E6C57F18C82FA6"
Last-Modified: Mon, 12 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3251
Expires: Wed, 14 Sep 2022 20:36:39 GMT
Date: Wed, 14 Sep 2022 19:42:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09ba627272befd0f5ff19db41767b0c4
e262f240ad6e9c4036a1469b5e1d8b9552806ec0
d5c2c3f9401d006b7e078d210c9760789889abd6d6fca60072e6c57f18c82fa6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5C2C3F9401D006B7E078D210C9760789889ABD6D6FCA60072E6C57F18C82FA6"
Last-Modified: Mon, 12 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3251
Expires: Wed, 14 Sep 2022 20:36:39 GMT
Date: Wed, 14 Sep 2022 19:42:28 GMT
Connection: keep-alive
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3gyCPw4qexFRBk%2B7IJPunknPjHsIxhgJxs3%2B8NdBkOqq7kmZmq6mqmt6klN0cdmTzsGLnjrfJBt0g%2BhtEV2ks6hLQMjccjD%2FgCcR9yw9BqMP%2Br339fcdvvde3dy2J8SFpceLb6hNISWdnWu49Qvvet6l%2BopI7LA%2B7ATvB61LdT14qRs03Iv11yK2rmZ913Ndz%2FXqS0JHsRrOViREut%2F1Gl230fIb3lwLQ%2F1%2FbKwDQx3wwQl5GoJPaved8xCsRNL%2FZjEy65lKX3y1byXNlMaA772VrCcqT9A%2Fa2PtIE72TtVQ5mjpHlSyO7ULNfhXGIoJcX6%2BhzDZOzWJcLAz9RlKRAlC%2FjjyQYlIlhC0BFM3IPgRARjH5VUk%2FduXlc7pxj8srdgJqT38EyKfkNpv55H0v16QYli%2FrqTNhEoMhnEBMSwheiVSe4Bs8xxEfgCWfQTBfyWzD1eQ9HdWjVQQvJjOLkQJEZeQ0QjUOLDVJxzY2IFNHfT5cZ15ntd2OaNup8tYk7ejMOCuR9uxRz036MCyyt4IWToCkyMwvYVUb2FdjKDtjzBrBQx3YLIJca5uYcAL5BFBbghySpALgjwjyAfFLpfGN8VtLo0NvdPqn9ZmMVZZb5vuqqwXJWQ7PSFPVXtxZm6%2BjfXouM5jPw6DuNONI9Zse93ACyLmeyzg3U6n1fFgRAFhzk1H3RQT8uzKA6RiQh5RPyGkBzDyAEw8CWo90Hzc9l3QtXGr42IzudMNqW6YzHKhwFWBNKsh23C25Ql5Znqe9od%2FIGKH8%2FsX%2Fio%2Ffe8imC6Q6gIfiPsEPXlrfE3lZOeayg35djXNRF9s0up01zOaRTNfvR5t5Erz5UUz%2BvJlVhFVu%2F9mZLIVmnCR9Ay5syA4j%2FSS0iwiPyybd6LwijVrC1YnNl258srScj%2FVkTFCJSWoOHqiBBMT8ujh4vRNPre0BqFLaFugbw%2FJaUCoA7B0CyY9nP%2Fk7tXfP37%2BLoyagZZnmjB1kNtirP3w7KcUBDI6wzQsYP6Dw7N%2B29xCT%2Fug2Q0k%2FQIDXWAgC1A5grGPjbNUH84%2F%2BLyKLxDK2jiUurYTSi0%2Fm652Qrxfvq%2FSUZW%2BgxHH9Xaz6dKgO%2Be12zRqhy2%2FEwcep9RvBX4Q0CYyM2EvNHb%2BBgAA%2F%2F8BAAD%2F%2F6RjHbFtBAAA
192.243.59.20200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3gyCPw4qexFRBk%2B7IJPunknPjHsIxhgJxs3%2B8NdBkOqq7kmZmq6mqmt6klN0cdmTzsGLnjrfJBt0g%2BhtEV2ks6hLQMjccjD%2FgCcR9yw9BqMP%2Br339fcdvvde3dy2J8SFpceLb6hNISWdnWu49Qvvet6l%2BopI7LA%2B7ATvB61LdT14qRs03Iv11yK2rmZ913Ndz%2FXqS0JHsRrOViREut%2F1Gl230fIb3lwLQ%2F1%2FbKwDQx3wwQl5GoJPaved8xCsRNL%2FZjEy65lKX3y1byXNlMaA772VrCcqT9A%2Fa2PtIE72TtVQ5mjpHlSyO7ULNfhXGIoJcX6%2BhzDZOzWJcLAz9RlKRAlC%2FjjyQYlIlhC0BFM3IPgRARjH5VUk%2FduXlc7pxj8srdgJqT38EyKfkNpv55H0v16QYli%2FrqTNhEoMhnEBMSwheiVSe4Bs8xxEfgCWfQTBfyWzD1eQ9HdWjVQQvJjOLkQJEZeQ0QjUOLDVJxzY2IFNHfT5cZ15ntd2OaNup8tYk7ejMOCuR9uxRz036MCyyt4IWToCkyMwvYVUb2FdjKDtjzBrBQx3YLIJca5uYcAL5BFBbghySpALgjwjyAfFLpfGN8VtLo0NvdPqn9ZmMVZZb5vuqqwXJWQ7PSFPVXtxZm6%2BjfXouM5jPw6DuNONI9Zse93ACyLmeyzg3U6n1fFgRAFhzk1H3RQT8uzKA6RiQh5RPyGkBzDyAEw8CWo90Hzc9l3QtXGr42IzudMNqW6YzHKhwFWBNKsh23C25Ql5Znqe9od%2FIGKH8%2FsX%2Fio%2Ffe8imC6Q6gIfiPsEPXlrfE3lZOeayg35djXNRF9s0up01zOaRTNfvR5t5Erz5UUz%2BvJlVhFVu%2F9mZLIVmnCR9Ay5syA4j%2FSS0iwiPyybd6LwijVrC1YnNl258srScj%2FVkTFCJSWoOHqiBBMT8ujh4vRNPre0BqFLaFugbw%2FJaUCoA7B0CyY9nP%2Fk7tXfP37%2BLoyagZZnmjB1kNtirP3w7KcUBDI6wzQsYP6Dw7N%2B29xCT%2Fug2Q0k%2FQIDXWAgC1A5grGPjbNUH84%2F%2BLyKLxDK2jiUurYTSi0%2Fm652Qrxfvq%2FSUZW%2BgxHH9Xaz6dKgO%2Be12zRqhy2%2FEwcep9RvBX4Q0CYyM2EvNHb%2BBgAA%2F%2F8BAAD%2F%2F6RjHbFtBAAA
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3gyCPw4qexFRBk%2B7IJPunknPjHsIxhgJxs3%2B8NdBkOqq7kmZmq6mqmt6klN0cdmTzsGLnjrfJBt0g%2BhtEV2ks6hLQMjccjD%2FgCcR9yw9BqMP%2Br339fcdvvde3dy2J8SFpceLb6hNISWdnWu49Qvvet6l%2BopI7LA%2B7ATvB61LdT14qRs03Iv11yK2rmZ913Ndz%2FXqS0JHsRrOViREut%2F1Gl230fIb3lwLQ%2F1%2FbKwDQx3wwQl5GoJPaved8xCsRNL%2FZjEy65lKX3y1byXNlMaA772VrCcqT9A%2Fa2PtIE72TtVQ5mjpHlSyO7ULNfhXGIoJcX6%2BhzDZOzWJcLAz9RlKRAlC%2FjjyQYlIlhC0BFM3IPgRARjH5VUk%2FduXlc7pxj8srdgJqT38EyKfkNpv55H0v16QYli%2FrqTNhEoMhnEBMSwheiVSe4Bs8xxEfgCWfQTBfyWzD1eQ9HdWjVQQvJjOLkQJEZeQ0QjUOLDVJxzY2IFNHfT5cZ15ntd2OaNup8tYk7ejMOCuR9uxRz036MCyyt4IWToCkyMwvYVUb2FdjKDtjzBrBQx3YLIJca5uYcAL5BFBbghySpALgjwjyAfFLpfGN8VtLo0NvdPqn9ZmMVZZb5vuqqwXJWQ7PSFPVXtxZm6%2BjfXouM5jPw6DuNONI9Zse93ACyLmeyzg3U6n1fFgRAFhzk1H3RQT8uzKA6RiQh5RPyGkBzDyAEw8CWo90Hzc9l3QtXGr42IzudMNqW6YzHKhwFWBNKsh23C25Ql5Znqe9od%2FIGKH8%2FsX%2Fio%2Ffe8imC6Q6gIfiPsEPXlrfE3lZOeayg35djXNRF9s0up01zOaRTNfvR5t5Erz5UUz%2BvJlVhFVu%2F9mZLIVmnCR9Ay5syA4j%2FSS0iwiPyybd6LwijVrC1YnNl258srScj%2FVkTFCJSWoOHqiBBMT8ujh4vRNPre0BqFLaFugbw%2FJaUCoA7B0CyY9nP%2Fk7tXfP37%2BLoyagZZnmjB1kNtirP3w7KcUBDI6wzQsYP6Dw7N%2B29xCT%2Fug2Q0k%2FQIDXWAgC1A5grGPjbNUH84%2F%2BLyKLxDK2jiUurYTSi0%2Fm652Qrxfvq%2FSUZW%2BgxHH9Xaz6dKgO%2Be12zRqhy2%2FEwcep9RvBX4Q0CYyM2EvNHb%2BBgAA%2F%2F8BAAD%2F%2F6RjHbFtBAAA HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Cookie: u_pl=17008214; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecdf2fb6f89fec3719616ec21c6d988481=[3637745,3262652,3262673,3262650]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 14 Sep 2022 19:42:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a8db03b456c0145f59451bb85eff57d3
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
45.133.44.9200 OK 21 kB URL HTTP/2 cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 8f4953c1b8baece7bb7d226247561ce2
da5d440970606602026d7900a55ae2fd27a3f170
8fd9df7d8e48ff2519631e82e01519d4f1c65abd41ec977c18abb58df9832919
GET /si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:28 GMT
content-type: image/jpeg
content-length: 20566
server: nginx/1.17.6
last-modified: Thu, 01 Sep 2022 12:51:28 GMT
etag: "6310aad0-5056"
expires: Fri, 16 Sep 2022 19:42:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/41/43/92/414392f786f321adac19c50c7ac3d316/1646333163.jpg
45.133.44.9200 OK 36 kB URL HTTP/2 cdn.cloudimagesb.com/si/41/43/92/414392f786f321adac19c50c7ac3d316/1646333163.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 555x416, components 3\012- data
Hash 7b8e2bc74a3caa5e56d4b81d7948ccfa
27789384b54882716711bd497a287a5fe015569b
aadd2e7eee0e3daed2bf3f8aecca664971b89b201b9116ece129f5c786c230eb
GET /si/41/43/92/414392f786f321adac19c50c7ac3d316/1646333163.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:28 GMT
content-type: image/jpeg
content-length: 35641
server: nginx/1.17.6
last-modified: Thu, 03 Mar 2022 18:46:11 GMT
etag: "62210cf3-8b39"
expires: Fri, 16 Sep 2022 19:42:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuToYfP%2FSikksQZPCkILPdPbM9M%2BYQXNeVxTWbD79uUl1VPVtOTVdT1TU9u6eNwRA8yBy86Kn3md0smiB6C6JBZoMxLAg7eNmD%2Bw94EiFnmcni6AtV7%2FvW8xye93nr5o47IT4cPV5%2BW29JpejCYs2vvvRBEFyorsnUDaqDVvRh1LhQNf1X21HNf7n6pmBdvRD6ge8HflBdkUYkerAwBSGzu%2B2g1vZrjbAWLDYwMP%2FtrfNgqQfePyHPQfJJ5YF3DpKNkfa%2BXRa2m%2BvslTd6TtFcG%2FT5%2FrtpN9VFit68TIyHJN0%2FZUPbo5X70OneTC50%2Fx9iLCfEe3gfcbp%2FKhJxf3emM1YQKWL%2BNIr%2BGEKNIekYTN%2BA5EcEYByX1pH2bl%2FSpqCbT1A6RSek8vgvyGJCKr%2BfQ9r7ZknJQfWaVi6XOrUYJCXkYAzZGSNzB8i3zkAWB2D5x5D8V7LweA1pb3fdKg3Jy9nsUo4hkzGUGIJaD256pAeXeHCZhx4%2FrrIgCJo%2BZ9RvtRmr86aII%2B4HtJkENPCjFhybyhsiz4ZgaghmtpGZbXTlEMb9BLtRwnIPNp8Q78o2%2BrxEIQgKS1BQgkISFDlB0S%2F3uLKhLW9zZV0cnObwNNfLkc47O3RP5x2Rkp3shDw79cU7e%2FM9dMVxlSdhEkdJq50IVm8G7SiIBAsDFvF2q9VoBbCyhLRnZqNuyQl5fu0RMjkh%2F9M%2FI6YHsOoATD4D6gLQYtQMfdCNUaPlYyu9046pqdnccanBdYksryDf9HbUCTk%2FW0%2Fwy%2FcQ7PDiZ%2Feu%2FPHJC%2FfATInMlPhIPiDoqFujq7ogu1d1Ycl361kue3KLTld3Lae5OPv1W2Kz0IavLtvhV6%2BxKTAt774jbL5GUy7TjiV3liTnwqxowwT5cdW%2BL%2BLLzm4sOZO6bO3y6yurvcwIa6VOx6DyqHsdTE7I%2F%2Fu%2Fzf7k%2BU8fQpoxjCvRc4fkNCD1AVi2DZvN1Vt9FkbNOXFWQeHKkQnj%2BaOSBErMexqXsP%2Fq43m9Y2%2BhY0LQ%2FAbSXom%2BKdFXJagawrqnRnlmDi8%2B%2BmIaXyJWlVGsTGU3VkZ9PiHN639O%2Ff1heh09cdrK42qzXvdp1F4Mmk0qmnEjbCVRwCkNG1EYRbSO3E7Yi7XdvwEAAP%2F%2FAQAA%2F%2F8CYHfGbQQAAA%3D%3D
192.243.59.20200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuToYfP%2FSikksQZPCkILPdPbM9M%2BYQXNeVxTWbD79uUl1VPVtOTVdT1TU9u6eNwRA8yBy86Kn3md0smiB6C6JBZoMxLAg7eNmD%2Bw94EiFnmcni6AtV7%2FvW8xye93nr5o47IT4cPV5%2BW29JpejCYs2vvvRBEFyorsnUDaqDVvRh1LhQNf1X21HNf7n6pmBdvRD6ge8HflBdkUYkerAwBSGzu%2B2g1vZrjbAWLDYwMP%2FtrfNgqQfePyHPQfJJ5YF3DpKNkfa%2BXRa2m%2BvslTd6TtFcG%2FT5%2FrtpN9VFit68TIyHJN0%2FZUPbo5X70OneTC50%2Fx9iLCfEe3gfcbp%2FKhJxf3emM1YQKWL%2BNIr%2BGEKNIekYTN%2BA5EcEYByX1pH2bl%2FSpqCbT1A6RSek8vgvyGJCKr%2BfQ9r7ZknJQfWaVi6XOrUYJCXkYAzZGSNzB8i3zkAWB2D5x5D8V7LweA1pb3fdKg3Jy9nsUo4hkzGUGIJaD256pAeXeHCZhx4%2FrrIgCJo%2BZ9RvtRmr86aII%2B4HtJkENPCjFhybyhsiz4ZgaghmtpGZbXTlEMb9BLtRwnIPNp8Q78o2%2BrxEIQgKS1BQgkISFDlB0S%2F3uLKhLW9zZV0cnObwNNfLkc47O3RP5x2Rkp3shDw79cU7e%2FM9dMVxlSdhEkdJq50IVm8G7SiIBAsDFvF2q9VoBbCyhLRnZqNuyQl5fu0RMjkh%2F9M%2FI6YHsOoATD4D6gLQYtQMfdCNUaPlYyu9046pqdnccanBdYksryDf9HbUCTk%2FW0%2Fwy%2FcQ7PDiZ%2Feu%2FPHJC%2FfATInMlPhIPiDoqFujq7ogu1d1Ycl361kue3KLTld3Lae5OPv1W2Kz0IavLtvhV6%2BxKTAt774jbL5GUy7TjiV3liTnwqxowwT5cdW%2BL%2BLLzm4sOZO6bO3y6yurvcwIa6VOx6DyqHsdTE7I%2F%2Fu%2Fzf7k%2BU8fQpoxjCvRc4fkNCD1AVi2DZvN1Vt9FkbNOXFWQeHKkQnj%2BaOSBErMexqXsP%2Fq43m9Y2%2BhY0LQ%2FAbSXom%2BKdFXJagawrqnRnlmDi8%2B%2BmIaXyJWlVGsTGU3VkZ9PiHN639O%2Ff1heh09cdrK42qzXvdp1F4Mmk0qmnEjbCVRwCkNG1EYRbSO3E7Yi7XdvwEAAP%2F%2FAQAA%2F%2F8CYHfGbQQAAA%3D%3D
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuToYfP%2FSikksQZPCkILPdPbM9M%2BYQXNeVxTWbD79uUl1VPVtOTVdT1TU9u6eNwRA8yBy86Kn3md0smiB6C6JBZoMxLAg7eNmD%2Bw94EiFnmcni6AtV7%2FvW8xye93nr5o47IT4cPV5%2BW29JpejCYs2vvvRBEFyorsnUDaqDVvRh1LhQNf1X21HNf7n6pmBdvRD6ge8HflBdkUYkerAwBSGzu%2B2g1vZrjbAWLDYwMP%2FtrfNgqQfePyHPQfJJ5YF3DpKNkfa%2BXRa2m%2BvslTd6TtFcG%2FT5%2FrtpN9VFit68TIyHJN0%2FZUPbo5X70OneTC50%2Fx9iLCfEe3gfcbp%2FKhJxf3emM1YQKWL%2BNIr%2BGEKNIekYTN%2BA5EcEYByX1pH2bl%2FSpqCbT1A6RSek8vgvyGJCKr%2BfQ9r7ZknJQfWaVi6XOrUYJCXkYAzZGSNzB8i3zkAWB2D5x5D8V7LweA1pb3fdKg3Jy9nsUo4hkzGUGIJaD256pAeXeHCZhx4%2FrrIgCJo%2BZ9RvtRmr86aII%2B4HtJkENPCjFhybyhsiz4ZgaghmtpGZbXTlEMb9BLtRwnIPNp8Q78o2%2BrxEIQgKS1BQgkISFDlB0S%2F3uLKhLW9zZV0cnObwNNfLkc47O3RP5x2Rkp3shDw79cU7e%2FM9dMVxlSdhEkdJq50IVm8G7SiIBAsDFvF2q9VoBbCyhLRnZqNuyQl5fu0RMjkh%2F9M%2FI6YHsOoATD4D6gLQYtQMfdCNUaPlYyu9046pqdnccanBdYksryDf9HbUCTk%2FW0%2Fwy%2FcQ7PDiZ%2Feu%2FPHJC%2FfATInMlPhIPiDoqFujq7ogu1d1Ycl361kue3KLTld3Lae5OPv1W2Kz0IavLtvhV6%2BxKTAt774jbL5GUy7TjiV3liTnwqxowwT5cdW%2BL%2BLLzm4sOZO6bO3y6yurvcwIa6VOx6DyqHsdTE7I%2F%2Fu%2Fzf7k%2BU8fQpoxjCvRc4fkNCD1AVi2DZvN1Vt9FkbNOXFWQeHKkQnj%2BaOSBErMexqXsP%2Fq43m9Y2%2BhY0LQ%2FAbSXom%2BKdFXJagawrqnRnlmDi8%2B%2BmIaXyJWlVGsTGU3VkZ9PiHN639O%2Ff1heh09cdrK42qzXvdp1F4Mmk0qmnEjbCVRwCkNG1EYRbSO3E7Yi7XdvwEAAP%2F%2FAQAA%2F%2F8CYHfGbQQAAA%3D%3D HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Cookie: u_pl=17008214; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecdf2fb6f89fec3719616ec21c6d988481=[3637745,3262652,3262673,3262650]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 14 Sep 2022 19:42:29 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0d3e5b2b7b7d29049f2d758fb991d955
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/18/ec/0a/18ec0a73890512eb2e9a563c4167960a/1646333249.jpg
45.133.44.9200 OK 106 kB URL HTTP/2 cdn.cloudimagesb.com/si/18/ec/0a/18ec0a73890512eb2e9a563c4167960a/1646333249.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x525, components 3\012- data
Size 106 kB (106284 bytes)
Hash f37826ec90e20b5ac9ee7cfb69d9d294
c2b2ee891f028916609984579c268fd7916950f3
81307a2ff0b4224d7c7d602740b7548855182d2cfaff895d2e971b4c6820c19e
GET /si/18/ec/0a/18ec0a73890512eb2e9a563c4167960a/1646333249.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:28 GMT
content-type: image/jpeg
content-length: 106284
server: nginx/1.17.6
last-modified: Thu, 03 Mar 2022 18:47:40 GMT
etag: "62210d4c-19f2c"
expires: Fri, 16 Sep 2022 19:42:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/ca/80/55/ca8055f3bd17219c46a31dbbe249dd28/1646333149.jpg
45.133.44.9200 OK 110 kB URL HTTP/2 cdn.cloudimagesb.com/si/ca/80/55/ca8055f3bd17219c46a31dbbe249dd28/1646333149.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 959x719, components 3\012- data
Size 110 kB (109849 bytes)
Hash eaedd58e80104f9d797a9ad8adb15978
d733640bdfa441842ef83384282039500fa14d13
069d0d40558023c3a95788f3b42ce9f4f1d77a08ac439e648d3528a0ed7b72c8
GET /si/ca/80/55/ca8055f3bd17219c46a31dbbe249dd28/1646333149.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:28 GMT
content-type: image/jpeg
content-length: 109849
server: nginx/1.17.6
last-modified: Thu, 03 Mar 2022 18:45:55 GMT
etag: "62210ce3-1ad19"
expires: Fri, 16 Sep 2022 19:42:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3gw%2FfuhFZS%2BLIIMnBZl090x6ZtzDYoyRYNzsh183qa6qnpRT09VUdU1Pcsq6uCweZA5e9NR5Jtmgu4jeFtFFJou6BITMQcjB%2FAOeRNizzBgcfaHqfd96nsPzPm%2Fd2nWnxIejJytv6m2pFF1cqvnVF94LgovVdZm6QXXQit6PGherpv9yO6r5L1ZfF6yrF0M%2F8P3AD6qr0ohEDxanIGR2rx3U2n6tEdaCpQYG5r%2B9dR4s9cD7p%2BQZSD6pPPTOQ7Ix0t7XK8J2c5299FrPKZprgz4%2FeDvtprpI0ZuXifGQpAdnbGh7vPoAOt2fyYXu%2F0OM5YR4Pz1AnB6ciUTc35vpjBVEipg%2FiaI%2FhlBjSDoG0zch%2BTEBGMflDaS9O5e1KejW3yidohNSefwnZDEhld%2FOI%2B19tazkoHpdK5dLnVoMkhJyMIbsjJG5Q%2BTb5yCLQ7D8Q0j%2BC1l8vI60t7dhlYbk5Wx2KceQyRhKDEGtBzc90oNLPLjMQ4%2BfVFkQBE2fM%2Bq32ozVeVPEEfcD2kwCGvhRC45N5Q2RZ0MwNQQzO8jMDrpyCON%2BgN0sYbkHm0%2BId3UHfV6iEASFJSgoQSEJipyg6Jf7XNnQlne4si4OznJ4luvlSOedXbqv845IyW52Sp6e%2BuIt3HoHXXFS5UmYxFHSaieC1ZtBOwoiwcKARbzdajVaAawsIe252ajbckKeXX%2BETE7I%2F%2FSPiOkhrDoEk0%2BBugC0GDVDH3Rz1Gj52E7vtmNqajZ3XGpwXSLLK8i3vF11Si7M1hP8fAzBji59cv%2Fq7x89dx%2FMlMhMiQ%2FkQ4KOuj26pguyd00XlnyzkeWyJ7fpdHXXc5qLhS%2FfEFuFNnxtxQ6%2FeIVNgWl57y1h83Wacpl2LLm7LDkXZlUbJsj3a%2FZdEV9xdnPZmdRl61deXV3rZUZYK3U6BpXH3RtgckL%2B3%2F919icvfHwKacYwrkTPHZGzgNSHYNkObDZXb%2FUCjJpz4mwBhStHJoznj0oSKDHvaVzC%2FquP5%2FWuvY2OCUHzm0h7JfqmRF%2BVoGoI654Y5Zk5uvTos2l8jlhVRrEylb1YGfXphDRv%2FDH197uZydPrW1h5Um3W6z6N2ktBs0lFM26ErSQKOKVhIwqjiNaR2wl7vrb3FwAAAP%2F%2FAQAA%2F%2F9vn%2FxdbQQAAA%3D%3D
192.243.59.20200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3gw%2FfuhFZS%2BLIIMnBZl090x6ZtzDYoyRYNzsh183qa6qnpRT09VUdU1Pcsq6uCweZA5e9NR5Jtmgu4jeFtFFJou6BITMQcjB%2FAOeRNizzBgcfaHqfd96nsPzPm%2Fd2nWnxIejJytv6m2pFF1cqvnVF94LgovVdZm6QXXQit6PGherpv9yO6r5L1ZfF6yrF0M%2F8P3AD6qr0ohEDxanIGR2rx3U2n6tEdaCpQYG5r%2B9dR4s9cD7p%2BQZSD6pPPTOQ7Ix0t7XK8J2c5299FrPKZprgz4%2FeDvtprpI0ZuXifGQpAdnbGh7vPoAOt2fyYXu%2F0OM5YR4Pz1AnB6ciUTc35vpjBVEipg%2FiaI%2FhlBjSDoG0zch%2BTEBGMflDaS9O5e1KejW3yidohNSefwnZDEhld%2FOI%2B19tazkoHpdK5dLnVoMkhJyMIbsjJG5Q%2BTb5yCLQ7D8Q0j%2BC1l8vI60t7dhlYbk5Wx2KceQyRhKDEGtBzc90oNLPLjMQ4%2BfVFkQBE2fM%2Bq32ozVeVPEEfcD2kwCGvhRC45N5Q2RZ0MwNQQzO8jMDrpyCON%2BgN0sYbkHm0%2BId3UHfV6iEASFJSgoQSEJipyg6Jf7XNnQlne4si4OznJ4luvlSOedXbqv845IyW52Sp6e%2BuIt3HoHXXFS5UmYxFHSaieC1ZtBOwoiwcKARbzdajVaAawsIe252ajbckKeXX%2BETE7I%2F%2FSPiOkhrDoEk0%2BBugC0GDVDH3Rz1Gj52E7vtmNqajZ3XGpwXSLLK8i3vF11Si7M1hP8fAzBji59cv%2Fq7x89dx%2FMlMhMiQ%2FkQ4KOuj26pguyd00XlnyzkeWyJ7fpdHXXc5qLhS%2FfEFuFNnxtxQ6%2FeIVNgWl57y1h83Wacpl2LLm7LDkXZlUbJsj3a%2FZdEV9xdnPZmdRl61deXV3rZUZYK3U6BpXH3RtgckL%2B3%2F919icvfHwKacYwrkTPHZGzgNSHYNkObDZXb%2FUCjJpz4mwBhStHJoznj0oSKDHvaVzC%2FquP5%2FWuvY2OCUHzm0h7JfqmRF%2BVoGoI654Y5Zk5uvTos2l8jlhVRrEylb1YGfXphDRv%2FDH197uZydPrW1h5Um3W6z6N2ktBs0lFM26ErSQKOKVhIwqjiNaR2wl7vrb3FwAAAP%2F%2FAQAA%2F%2F9vn%2FxdbQQAAA%3D%3D
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3gw%2FfuhFZS%2BLIIMnBZl090x6ZtzDYoyRYNzsh183qa6qnpRT09VUdU1Pcsq6uCweZA5e9NR5Jtmgu4jeFtFFJou6BITMQcjB%2FAOeRNizzBgcfaHqfd96nsPzPm%2Fd2nWnxIejJytv6m2pFF1cqvnVF94LgovVdZm6QXXQit6PGherpv9yO6r5L1ZfF6yrF0M%2F8P3AD6qr0ohEDxanIGR2rx3U2n6tEdaCpQYG5r%2B9dR4s9cD7p%2BQZSD6pPPTOQ7Ix0t7XK8J2c5299FrPKZprgz4%2FeDvtprpI0ZuXifGQpAdnbGh7vPoAOt2fyYXu%2F0OM5YR4Pz1AnB6ciUTc35vpjBVEipg%2FiaI%2FhlBjSDoG0zch%2BTEBGMflDaS9O5e1KejW3yidohNSefwnZDEhld%2FOI%2B19tazkoHpdK5dLnVoMkhJyMIbsjJG5Q%2BTb5yCLQ7D8Q0j%2BC1l8vI60t7dhlYbk5Wx2KceQyRhKDEGtBzc90oNLPLjMQ4%2BfVFkQBE2fM%2Bq32ozVeVPEEfcD2kwCGvhRC45N5Q2RZ0MwNQQzO8jMDrpyCON%2BgN0sYbkHm0%2BId3UHfV6iEASFJSgoQSEJipyg6Jf7XNnQlne4si4OznJ4luvlSOedXbqv845IyW52Sp6e%2BuIt3HoHXXFS5UmYxFHSaieC1ZtBOwoiwcKARbzdajVaAawsIe252ajbckKeXX%2BETE7I%2F%2FSPiOkhrDoEk0%2BBugC0GDVDH3Rz1Gj52E7vtmNqajZ3XGpwXSLLK8i3vF11Si7M1hP8fAzBji59cv%2Fq7x89dx%2FMlMhMiQ%2FkQ4KOuj26pguyd00XlnyzkeWyJ7fpdHXXc5qLhS%2FfEFuFNnxtxQ6%2FeIVNgWl57y1h83Wacpl2LLm7LDkXZlUbJsj3a%2FZdEV9xdnPZmdRl61deXV3rZUZYK3U6BpXH3RtgckL%2B3%2F919icvfHwKacYwrkTPHZGzgNSHYNkObDZXb%2FUCjJpz4mwBhStHJoznj0oSKDHvaVzC%2FquP5%2FWuvY2OCUHzm0h7JfqmRF%2BVoGoI654Y5Zk5uvTos2l8jlhVRrEylb1YGfXphDRv%2FDH197uZydPrW1h5Um3W6z6N2ktBs0lFM26ErSQKOKVhIwqjiNaR2wl7vrb3FwAAAP%2F%2FAQAA%2F%2F9vn%2FxdbQQAAA%3D%3D HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Cookie: u_pl=17008214; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecdf2fb6f89fec3719616ec21c6d988481=[3637745,3262652,3262673,3262650]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 14 Sep 2022 19:42:29 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5c009e4dc33ad8f20306ff6f35a8f46
Strict-Transport-Security: max-age=0; includeSubdomains
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxRev3h2%2BfNGLyl4WQQZPCjLp7pn0zLiHxRgjwbjZH%2F66SXVV9aScmq6mqmt6klPWxWXxIHPwoqfOZ5INuovobRFdZLKoISBk8JKD%2BQc8ibBnmTE4%2BqDfe5%2F%2BfA6f917d3nGnxIejJ8tv6i2pFF1YrPnVF94LgkvVNZm6QXXQit6PGpeqpv9yO6r5L1ZfF6yrF0I%2F8P3AD6or0ohEDxamJGR2vx3U2n6tEdaCxQYG5r%2FYOg%2BWeuD9U%2FIMJJ9UHnkXINkYae%2FrZWG7uc5eeq3nFM21QZ%2Fvv512U12k6M3bxHhI0v0zNbQ9XnkIne7N7EL3%2FxHGckK8nx4iTvfPTCLu7858xgoiRcyfRNEfQ6gxJB2D6VuQ%2FJgAjOPKOtLe3SvaFHTzb5ZO2QmpPP4TspiQym8XkPa%2BWlJyUL2hlculTi0GSQk5GEN2xsjcAfKtc5DFAVj%2BIST%2FhSw8XkPa2123SkPycja7lGPIZAwlhqDWg5t%2B0oNLPLjMQ4%2BfVFkQBE2fM%2Bq32ozVeVPEEfcD2kwCGvhRC45N7Q2RZ0MwNQQz28jMNrpyCON%2BgN0oYbkHm0%2BId20bfV6iEASFJSgoQSEJipyg6Jd7XNnQlne5si4Ozmp4VuvlSOedHbqn845IyU52Sp6e7sU7f%2FsddMVJlSdhEkdJq50IVm8G7SiIBAsDFvF2q9VoBbCyhLTnZqNuyQl5du0QmZyQ%2F%2BkfEdMDWHUAJp8CdQFoMWqGPujGqNHysZXea8fU1GzuuNTgukSWV5BvejvqlFycnSf4%2BTsIdnT5kwfXfv%2FouQdgpkRmSnwgHxF01J3RdV2Q3eu6sOSb9SyXPblFp6e7kdNcnP%2FyDbFZaMNXl%2B3wi1fYlJi2998SNl%2BjKZdpx5J7S5JzYVa0YYJ8v2rfFfFVZzeWnEldtnb11ZXVXmaEtVKnY1B53L0JJifk%2F%2F1fZ2%2Fy4seHkGYM40r03BE5C0h9AJZtw2Zz91afh1FzTZydQ%2BHKkQnj%2BU8lCZSYYxqXsP%2FC8bzfsXfQMSFofgtpr0TflOirElQNYd0TozwzR5cPP5vG54hVZRQrU9mNlVGfTkjz5h%2Bz%2FU7T8TR9CytPqs163adRezFoNqloxo2wlUQBpzRsRGEU0TpyO2HP13b%2FAgAA%2F%2F8BAAD%2F%2F3noSqttBAAA
192.243.59.20200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxRev3h2%2BfNGLyl4WQQZPCjLp7pn0zLiHxRgjwbjZH%2F66SXVV9aScmq6mqmt6klPWxWXxIHPwoqfOZ5INuovobRFdZLKoISBk8JKD%2BQc8ibBnmTE4%2BqDfe5%2F%2BfA6f917d3nGnxIejJ8tv6i2pFF1YrPnVF94LgkvVNZm6QXXQit6PGpeqpv9yO6r5L1ZfF6yrF0I%2F8P3AD6or0ohEDxamJGR2vx3U2n6tEdaCxQYG5r%2FYOg%2BWeuD9U%2FIMJJ9UHnkXINkYae%2FrZWG7uc5eeq3nFM21QZ%2Fvv512U12k6M3bxHhI0v0zNbQ9XnkIne7N7EL3%2FxHGckK8nx4iTvfPTCLu7858xgoiRcyfRNEfQ6gxJB2D6VuQ%2FJgAjOPKOtLe3SvaFHTzb5ZO2QmpPP4TspiQym8XkPa%2BWlJyUL2hlculTi0GSQk5GEN2xsjcAfKtc5DFAVj%2BIST%2FhSw8XkPa2123SkPycja7lGPIZAwlhqDWg5t%2B0oNLPLjMQ4%2BfVFkQBE2fM%2Bq32ozVeVPEEfcD2kwCGvhRC45N7Q2RZ0MwNQQz28jMNrpyCON%2BgN0oYbkHm0%2BId20bfV6iEASFJSgoQSEJipyg6Jd7XNnQlne5si4Ozmp4VuvlSOedHbqn845IyU52Sp6e7sU7f%2FsddMVJlSdhEkdJq50IVm8G7SiIBAsDFvF2q9VoBbCyhLTnZqNuyQl5du0QmZyQ%2F%2BkfEdMDWHUAJp8CdQFoMWqGPujGqNHysZXea8fU1GzuuNTgukSWV5BvejvqlFycnSf4%2BTsIdnT5kwfXfv%2FouQdgpkRmSnwgHxF01J3RdV2Q3eu6sOSb9SyXPblFp6e7kdNcnP%2FyDbFZaMNXl%2B3wi1fYlJi2998SNl%2BjKZdpx5J7S5JzYVa0YYJ8v2rfFfFVZzeWnEldtnb11ZXVXmaEtVKnY1B53L0JJifk%2F%2F1fZ2%2Fy4seHkGYM40r03BE5C0h9AJZtw2Zz91afh1FzTZydQ%2BHKkQnj%2BU8lCZSYYxqXsP%2FC8bzfsXfQMSFofgtpr0TflOirElQNYd0TozwzR5cPP5vG54hVZRQrU9mNlVGfTkjz5h%2Bz%2FU7T8TR9CytPqs163adRezFoNqloxo2wlUQBpzRsRGEU0TpyO2HP13b%2FAgAA%2F%2F8BAAD%2F%2F3noSqttBAAA
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxRev3h2%2BfNGLyl4WQQZPCjLp7pn0zLiHxRgjwbjZH%2F66SXVV9aScmq6mqmt6klPWxWXxIHPwoqfOZ5INuovobRFdZLKoISBk8JKD%2BQc8ibBnmTE4%2BqDfe5%2F%2BfA6f917d3nGnxIejJ8tv6i2pFF1YrPnVF94LgkvVNZm6QXXQit6PGpeqpv9yO6r5L1ZfF6yrF0I%2F8P3AD6or0ohEDxamJGR2vx3U2n6tEdaCxQYG5r%2FYOg%2BWeuD9U%2FIMJJ9UHnkXINkYae%2FrZWG7uc5eeq3nFM21QZ%2Fvv512U12k6M3bxHhI0v0zNbQ9XnkIne7N7EL3%2FxHGckK8nx4iTvfPTCLu7858xgoiRcyfRNEfQ6gxJB2D6VuQ%2FJgAjOPKOtLe3SvaFHTzb5ZO2QmpPP4TspiQym8XkPa%2BWlJyUL2hlculTi0GSQk5GEN2xsjcAfKtc5DFAVj%2BIST%2FhSw8XkPa2123SkPycja7lGPIZAwlhqDWg5t%2B0oNLPLjMQ4%2BfVFkQBE2fM%2Bq32ozVeVPEEfcD2kwCGvhRC45N7Q2RZ0MwNQQz28jMNrpyCON%2BgN0oYbkHm0%2BId20bfV6iEASFJSgoQSEJipyg6Jd7XNnQlne5si4Ozmp4VuvlSOedHbqn845IyU52Sp6e7sU7f%2FsddMVJlSdhEkdJq50IVm8G7SiIBAsDFvF2q9VoBbCyhLTnZqNuyQl5du0QmZyQ%2F%2BkfEdMDWHUAJp8CdQFoMWqGPujGqNHysZXea8fU1GzuuNTgukSWV5BvejvqlFycnSf4%2BTsIdnT5kwfXfv%2FouQdgpkRmSnwgHxF01J3RdV2Q3eu6sOSb9SyXPblFp6e7kdNcnP%2FyDbFZaMNXl%2B3wi1fYlJi2998SNl%2BjKZdpx5J7S5JzYVa0YYJ8v2rfFfFVZzeWnEldtnb11ZXVXmaEtVKnY1B53L0JJifk%2F%2F1fZ2%2Fy4seHkGYM40r03BE5C0h9AJZtw2Zz91afh1FzTZydQ%2BHKkQnj%2BU8lCZSYYxqXsP%2FC8bzfsXfQMSFofgtpr0TflOirElQNYd0TozwzR5cPP5vG54hVZRQrU9mNlVGfTkjz5h%2Bz%2FU7T8TR9CytPqs163adRezFoNqloxo2wlUQBpzRsRGEU0TpyO2HP13b%2FAgAA%2F%2F8BAAD%2F%2F3noSqttBAAA HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9bar.studio/
Cookie: u_pl=17008214; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecdf2fb6f89fec3719616ec21c6d988481=[3637745,3262652,3262673,3262650]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 14 Sep 2022 19:42:29 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 46f6c7dc512a8d4454dbf01060e38bec
Strict-Transport-Security: max-age=0; includeSubdomains
api3.9bar.studio/th1/speed_test
104.21.30.67200 OK 0 B URL HTTP/2 api3.9bar.studio/th1/speed_test
IP 104.21.30.67:0
GET /th1/speed_test HTTP/1.1
Host: api3.9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WRK5877RyPF%2Bzujcsr8y2Fcl1XCcxnj41T50BglYyINMI9vBXeng0DjZpsmmjTdMz3YIlauIt6nW%2BYwxckvt7%2FF6g8EwJcZBJwGVZCm%2Fzy3lV9UGhPoTwGwxkT8Lb65SOHtB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b156da40afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.9bar.studio/th1/speed_test
104.21.30.67200 OK 0 B URL HTTP/2 api.9bar.studio/th1/speed_test
IP 104.21.30.67:0
GET /th1/speed_test HTTP/1.1
Host: api.9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zYMAze4P1OTVvx9jmhnu3j78435XPxV0rTibuOzD7ok7I7CnM0%2BKkxxhHLOqX2E0fq%2FfNzG6IwKxxXEHkuulZuzff%2FnFmWOVtioexovN1p3fgv8mO3%2F3MmqYZos5CAjnJoY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b153d690afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api2.9bar.studio/th1/speed_test
104.21.30.67200 OK 0 B URL HTTP/2 api2.9bar.studio/th1/speed_test
IP 104.21.30.67:0
GET /th1/speed_test HTTP/1.1
Host: api2.9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9bar.studio
Connection: keep-alive
Referer: https://9bar.studio/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cjOIby5N4PyQ%2Bxgrml0oCymwlYEKrj2TP%2Ftartn0dFu1q85HIzzm9OKGTxxEIi%2Ft74WpSIg9a1M%2Bz5Htd7VFjK5NW%2FyNdR83aIEv4bTVGTh2PumFVnmJcwN%2FUTNs1yq8nBC8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b154d770afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.9bar.studio/th1/speed_test
104.21.30.67200 OK 0 B URL HTTP/2 api.9bar.studio/th1/speed_test
IP 104.21.30.67:0
OPTIONS /th1/speed_test HTTP/1.1
Host: api.9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: https://9bar.studio/
Origin: https://9bar.studio
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oN6Ow8ADdV65zwO%2BgTQlQlWcs8EXeG43OaL%2FU0M9a4V11IW%2BXfsg7R2cRJGLWeKxJfTbu7eTFfOcBw42IUu5jtK69zGCxI7K4LvQCIqHUEoF%2FWH0KulgiH6uGOVYGz78Qvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b13fba00afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api3.9bar.studio/th1/speed_test
104.21.30.67200 OK 0 B URL HTTP/2 api3.9bar.studio/th1/speed_test
IP 104.21.30.67:0
OPTIONS /th1/speed_test HTTP/1.1
Host: api3.9bar.studio
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: https://9bar.studio/
Origin: https://9bar.studio
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 19:42:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iRQE1Kk%2FlRoaeVi7cxn6coXZlJ%2Ffefs2U3PT26QWgTEDdyjittbiJun%2FPqyyrTGv8NfHxbV1nuBBgJoCkDEy%2B9dFfiQL3yV%2FVZ4JXJ3TWzeUiuWB99P%2FPElxF1HhVC90zOii"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ab9b142be00afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2