Report - game-2u.com/Category/game/ps4

Report Overview

Submitted URL
game-2u.com/Category/game/ps4
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 12:57:21
Access
public
Website Title
PS4 Archives - Game-2u.com
Final URL
game-2u.com/Category/game/ps4
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-09	418 B	87 kB	142.250.74.168
stats.wp.com	2711	1997-03-28	2017-01-30	2024-05-09	394 B	7.6 kB	192.0.76.3
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	2.1 kB	128 kB	216.58.207.227
catchymorselguffaw.com	unknown	2024-05-06	2024-05-08	2024-05-08	3.0 kB	37 kB	172.240.127.234
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-09	406 B	29 kB	188.114.96.1
goomaphy.com	unknown	2022-07-21	2022-07-22	2024-05-02	3.6 kB	112 kB	139.45.197.239
game-2u.com	79791	2018-10-10	2016-01-30	2024-01-31	8.8 kB	2.4 MB	188.114.96.1
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-09	1.4 kB	8.0 kB	104.17.25.14
offerimage.com	304078	2019-06-10	2019-06-10	2024-05-09	436 B	18 kB	104.22.33.172
tzegilo.com	unknown	2022-01-14	2022-01-14	2024-05-09	392 B	24 kB	104.21.11.245
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	1.8 kB	40 kB	142.250.74.106
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-09	918 B	712 B	3.124.83.201
c0.wp.com	6988	1997-03-28	2018-09-24	2024-05-09	2.2 kB	219 kB	192.0.77.37
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-05-09	896 B	199 kB	45.133.44.9
i0.wp.com	3021	1997-03-28	2013-09-17	2024-05-09	11 kB	1.3 MB	192.0.77.2
assets.nintendo.com	75920	1995-01-10	2020-02-19	2024-02-22	1.7 kB	174 kB	151.101.2.102
definedbootnervous.com	unknown	2023-05-22	2023-05-22	2024-02-26	870 B	25 kB	172.240.108.84
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-09	338 B	942 B	143.204.53.97
static.a-ads.com	34827	2012-07-07	2013-06-01	2024-05-09	1.4 kB	2.1 MB	148.251.53.118
suggestnotegotistical.com	unknown	2024-05-06	2024-05-07	2024-05-08	3.0 kB	37 kB	172.240.108.68
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-05-09	415 B	740 B	139.45.195.8
captivityhandleicicle.com	unknown	2024-05-06	2024-05-07	2024-05-10	487 B	467 B	172.240.127.234
fleraprt.com	unknown	2022-01-14	2022-01-14	2024-05-09	561 B	479 B	139.45.195.254
ad.a-ads.com	26970	2012-07-07	2013-04-19	2024-05-09	1.6 kB	67 kB	148.251.53.118

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	definedbootnervous.com	Sinkholed
2024-05-10	medium	definedbootnervous.com	Sinkholed
2024-05-10	medium	catchymorselguffaw.com	Sinkholed
2024-05-10	medium	suggestnotegotistical.com	Sinkholed
2024-05-10	medium	suggestnotegotistical.com	Sinkholed
2024-05-10	medium	catchymorselguffaw.com	Sinkholed
2024-05-10	medium	catchymorselguffaw.com	Sinkholed
2024-05-10	medium	suggestnotegotistical.com	Sinkholed
2024-05-10	medium	goomaphy.com	Sinkholed
2024-05-10	medium	captivityhandleicicle.com	Sinkholed
2024-05-10	medium	goomaphy.com	Sinkholed
2024-05-10	medium	goomaphy.com	Sinkholed
2024-05-10	medium	goomaphy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (24)

	URL	Size	First Seen	Last Seen
	game-2u.com/Category/game/ps4	262 B	2024-04-30	2024-05-10
Pretty URL game-2u.com/Category/game/ps4 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-30 22:33:20 Last Seen2024-05-10 14:57:23 Times Seen3 Hash d0fa73fb28053a5f1ffa4a267e67b097 bad2ebac00310f0abc0c73c07b2547bbabbb1da1 ff8d0c4be97ca92e6d6124290a8ba2a6ff91ab9cb8a8fa52551168736145e8c6 Loading...

	unknown	145 B	2023-05-08	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-08 02:38:37 Last Seen2024-05-10 14:57:23 Times Seen23 Hash 1d79cbd997a8fc218b4c9976a823f420 838338dcadcb706cb6bf41cded65f6a3166aa939 769ddfae0bf47b05714acfdcd2bc646f954bbdfb4ce3a763607bbbf9184164ba Loading...

	unknown	3.3 kB	2024-05-10	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:23 Times Seen1 Hash be29c1229a44fa7376c087a423fd2c52 13448355ed1a6f7ad7cf46eeae432bc93424cfe3 270253b989f1b84155f040b868d189ce5eadf755388e5cf140ef6135a967c5cc Loading...

	game-2u.com/Category/game/ps4	327 B	2023-06-08	2024-05-10
Pretty URL game-2u.com/Category/game/ps4 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-08 22:09:02 Last Seen2024-05-10 14:57:23 Times Seen22 Hash 60c11f5285a754a3e2b16b097d5b7e24 b4ef72abab5eddc3fcfe756569fff78aee35095f 9050a935863aa6fbd508c8900d4289cb0a8ea6729f92fb61eed6223dd5a9f971 Loading...

	suggestnotegotistical.com/92/6c/ef/926cef8b47c32f14e00f9a46d8cb5cdf.js	84 kB	2024-05-10	2024-05-10
Pretty URL suggestnotegotistical.com/92/6c/ef/926cef8b47c32f14e00f9a46d8cb5cdf.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:24 Times Seen2 Hash 8bf6c6b098f1a610c43f3c34292fe547 9117ea407cc979b8d90a3d1aa3e72b7ea5447ffc fa9c8af34a28a42769257f1750bfa85e2ecf819b7da13adb5ccbd45e97d8d840 Loading...

	unknown	3.3 kB	2024-05-10	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:23 Times Seen1 Hash 8de9cc992321b29274e011a990f26622 6edb97874c3acb99195b5703b077850cbaf96812 d2e783a058c423544eec7aeba5f950e1df66bd204726a2d110bccca6c2ca4582 Loading...

	tzegilo.com/stattag.js	19 kB	2024-02-10	2024-05-20
Pretty URL tzegilo.com/stattag.js IP 104.21.11.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-10 03:00:18 Last Seen2024-05-20 16:36:33 Times Seen1861 Hash 70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f Loading...

	game-2u.com/Category/game/ps4	328 B	2023-06-08	2024-05-10
Pretty URL game-2u.com/Category/game/ps4 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-08 22:09:02 Last Seen2024-05-10 14:57:23 Times Seen22 Hash 101ec7c0dff96d2ce189cf9c96920191 8f93d4eb36a7818fad1e61054fe56e9c78de2b1c 74cb9ecab5e7e17849dbc9eeb4a55cd1716231248014d5ff9ce0aa919d8d29da Loading...

	game-2u.com/Category/game/ps4	26 kB	2024-05-10	2024-05-10
Pretty URL game-2u.com/Category/game/ps4 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:23 Times Seen1 Hash 9f3c10c3140081b116194a83743fb75e 4437488bbebb505e6199f058881ff23c4f112c7a 8d8b28f40a57e2d572b925a2029361ca0277e282dfbd9de87cec2b389f571dd2 Loading...

	catchymorselguffaw.com/2e/59/01/2e59010ee40bb5ee297c2a0ecedaa23b.js	84 kB	2024-05-10	2024-05-10
Pretty URL catchymorselguffaw.com/2e/59/01/2e59010ee40bb5ee297c2a0ecedaa23b.js IP 172.240.127.234 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:24 Times Seen2 Hash dbc1d8d10a013d424f5040fb04b2359c 00b8d13a33f02598e82d2f5f1cd45acb9f540437 f6b8c602c503857ab2aa2144c5d999ab98536f768f0ad7a82fdba3abad1128a1 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery-migrate.min.js	14 kB	2023-05-09	2024-05-20
Pretty URL c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-20 20:48:07 Times Seen88052 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	game-2u.com/Category/game/ps4	176 B	2023-05-08	2024-05-10
Pretty URL game-2u.com/Category/game/ps4 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-08 02:38:37 Last Seen2024-05-10 14:57:23 Times Seen4 Hash 3fe4abcf894407293cc60f450fcf949e 66a5d2b34ebb39a2550278121e9630dc8cad1ae1 17ef3ffda0f5f4d654b1c6ba7bf6fe856b66ad1cc5d4f22b881dd370a5924683 Loading...

	definedbootnervous.com/b820496cbe0f52245b6894ae62c63be0/invoke.js	31 kB	2024-05-10	2024-05-10
Pretty URL definedbootnervous.com/b820496cbe0f52245b6894ae62c63be0/invoke.js IP 172.240.108.84 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:24 Times Seen2 Hash 4a58a7ca86b754c4983169dafb8d031b 7f1e568bb9326f970046fd67ef6f1c97daab6b86 90f9f7d41032cb55e78ee913ff4b7dc251a8b235fcca67843f9bb6e3b6bb5b5f Loading...

	definedbootnervous.com/ee9bf356d601332a3ace39ce6d63a346/invoke.js	31 kB	2024-05-10	2024-05-10
Pretty URL definedbootnervous.com/ee9bf356d601332a3ace39ce6d63a346/invoke.js IP 172.240.108.84 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:24 Times Seen2 Hash 7ad8991a726bd9f1077e5d26bc31fdda b0fac3d2ea9e45d6224913544324bbbc49ef5498 789b8d22d796a177f00318f42ab6b4f5504adcb141632a7931feece91dc28249 Loading...

	goomaphy.com/401/5746120	91 kB	2024-05-10	2024-05-10
Pretty URL goomaphy.com/401/5746120 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:25 Times Seen2 Hash 068ebfe43bfbb3433f1a635b17bdf94e 3245fff796fa43a1ecf1253e07f769e11b285c95 fe28b08964f6b64a1d232148fd74b451f68705ce9635c4ff4dde7225c0b59e1b Loading...

	unknown	145 B	2023-05-08	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-08 02:38:37 Last Seen2024-05-10 14:57:23 Times Seen33 Hash 06a918e0f4bff1e0a12510ca481ff15b d8fb64f86fb85e144b6bc7ff10012f41f37a2876 390358511cf8991b032587bdd877dbdda4ccb905164958ea1ba57eea439d5d75 Loading...

	c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery.min.js	88 kB	2023-11-03	2024-05-20
Pretty URL c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-05-20 20:48:07 Times Seen49563 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	www.googletagmanager.com/gtag/js?id=G-BDK88G3QWJ	243 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-BDK88G3QWJ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:24 Times Seen2 Hash 91126fb4a774d9bbcbfcc2e8486e8171 2582c2caef9c2c7127262050140411090f11a8c0 b41baeadf41d0fc3edbc63e4a2eca5a4841e70bb5fbfd5d0f60ed7a2e3764263 Loading...

		Size	First Seen	Last Seen
	#1 Eval - e24bd4196f211183dc88d4ccd9a2a4db	6.2 kB	2024-05-10	2024-05-10
Pretty Observations First Seen2024-05-10 14:57:23 Last Seen2024-05-10 14:57:24 Times Seen1 Hash e24bd4196f211183dc88d4ccd9a2a4db b22445409a579666b9f123532ce90db15a33c27c 25a928aed8960a91ba20bebe4eb524058c97e88680751e8461a3e9dc00d539a2 Loading...

	#2 Eval - 7b03ff12965edaa0bf0a4ed0b480b84b	2.1 kB	2024-05-10	2024-05-10
Pretty Observations First Seen2024-05-10 14:57:24 Last Seen2024-05-10 14:57:24 Times Seen1 Hash 7b03ff12965edaa0bf0a4ed0b480b84b ef55545adab9cbc8762feab253cd1e2fce9069c1 9f159c093cdb327b90535c4eb2a1d5b24f3793cda49f29239658889e4c539c60 Loading...

	#3 Eval - 8504ae51999b8afb2468faed031e9d28	2.1 kB	2024-05-10	2024-05-10
Pretty Observations First Seen2024-05-10 14:57:24 Last Seen2024-05-10 14:57:24 Times Seen1 Hash 8504ae51999b8afb2468faed031e9d28 ab06649cdfdb4064585694c29a2d789de1d7325a 6d2baff7d8d9e1abb6b7d6fbbb2399c1b8e1d80f70a9899f5f7b851ffa7b7ccc Loading...

		Size	First Seen	Last Seen
	#1 Write - 8d7c3e0ad7d4adf583a2d846917ccbcf	120 B	2023-06-08	2024-05-10
Pretty Observations First Seen2023-06-08 22:09:03 Last Seen2024-05-10 14:57:24 Times Seen28 Hash 8d7c3e0ad7d4adf583a2d846917ccbcf 80b709e027ca673aeb85050ec683aa6b03780476 0e4374a855c697e9dc79a7be9ffaa1d58eab36c36723d73f8cb91ce216a7f207 Loading...

	#2 Write - a89e2d6dbfc9b84c7fcff241ae466e67	120 B	2023-06-08	2024-05-10
Pretty Observations First Seen2023-06-08 22:09:03 Last Seen2024-05-10 14:57:24 Times Seen28 Hash a89e2d6dbfc9b84c7fcff241ae466e67 350e63894c038f1f9a9d8d28079147077249300f f54b46b1f4f05a1d6cfc74bb267115bbac4ad51d6ab7e57d7ac2db2c8c825e8b Loading...

HTTP Transactions (90)

URL IP Response Size

game-2u.com/wp-content/plugins/chp-ads-block-detector/assets/img/icon.png

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
game-2u.com/wp-content/plugins/chp-ads-block-detector/assets/img/icon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
PNG image data, 350 x 350, 8-bit colormap, non-interlaced
Size
16 kB (15671 bytes)
Hash
134fce13c189ed0e483a1bddb6406204
eed559ac52e9731c56a1fb03eb94fc82e551bb66
723597ec6e9461e79c420faf0454170cf6f9243246a4fac3cef5f05a4b5be791

HTTP Headers

GET /wp-content/plugins/chp-ads-block-detector/assets/img/icon.png HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/png
content-length: 15671
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 17 Jan 2024 18:52:12 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VrrrL1AOqh0izIYZS0agp%2BevzsG3x0isSSzfXN1b%2FIF38r6iZmWDayN89uLvRI2sNeMJ8bAIbGZajuLuu9YQuYWo2VYn9BcAO2%2BuYeXxV7leFG3V6nWhbaHPgOvT%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a1777d9b30b59-OSL

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.5.2

104.17.25.14

200 OK

3.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.5.2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7862)
Size
3.2 kB (3150 bytes)
Hash
45bacd312d5098b4b59f563d8756c15d
fa55e2cff078381e5365d95782a95a787d0b7192
3d9120fa621da6d613c1698b7014ec6bdf4620366e8f2b7b547059f4b6f6272b

HTTP Headers

GET /ajax/libs/lazysizes/5.3.2/lazysizes.min.js?ver=6.5.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 3150
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-1ed1"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 205681
expires: Wed, 30 Apr 2025 12:56:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H7TU3iyyOfj8cIsBjyQLp9OfsZ0hdlbf1f5uTt9S%2B93EqLw7Vgok4DojvQVt7q38uUXQeBRaOGvT2THFxacaNtIb8WPL8xPZ2ESH9QUxfWulgiW6D5PLzIWrDi%2BIY2un3c4EJFK2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881a1778b992b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?fit=549%2C700&ssl=1

192.0.77.2

200 OK

44 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?fit=549%2C700&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 549x700, Scaling: [none]x[none], YUV color, decoders should clamp
Size
44 kB (44016 bytes)
Hash
75c6cf85f705a0e0864e59824ab2c735
cab75b114fd4bfefe79a88008824f651801bd557
8e2a80cbd5c939e48360b46716bf1cd7598ad513f525a34ae9b2a3f549c0d18e

HTTP Headers

GET /images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?fit=549%2C700&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 44016
last-modified: Mon, 15 Jan 2024 09:16:14 GMT
expires: Wed, 14 Jan 2026 21:16:14 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "44d7052dbfded549"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.5.2

104.17.25.14

200 OK

677 B

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.5.2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1845)
Size
677 B (677 bytes)
Hash
f6a3dd4ecbf227acbafcff33d68dc71d
7421115ddcd5d436b89a1fd27e0cdce5a01978e6
30b2271be76ee2dd43122d0611f8aa498b9781f4cd03904ca12e12d2e91e9421

HTTP Headers

GET /ajax/libs/lazysizes/5.3.2/plugins/unveilhooks/ls.unveilhooks.min.js?ver=6.5.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 677
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-750"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 109909
expires: Wed, 30 Apr 2025 12:56:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5ZfQwB7MHmEtdxOlG5WRCKIQ4W%2F%2F5xE3GcThToCrD5NT1MkkCJPQarCHRzWQxp1T0XibeaLBO8rsKTRySLRNGJh8nwf0plJ5gmOb6LTMQaZqNlYfEoYPqxpNM2T67wlNq6NEFdHu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881a1778c9a0b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

8.9 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.9 kB (8902 bytes)
Hash
0ab55ecd67987d77417dae7a7cbde6b0
bf0d20e24080b1c16e7b993bff2f23e1de2d958f
4eaded2fc82671f5542dfbb57624ebc66a733df10eeb48082ccb76f3b5e6dd56

HTTP Headers

GET /images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 8902
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "975bd54906f02360"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/game-2u.com/wp-content/uploads/2019/07/Game2u-web.png?w=400&ssl=1

192.0.77.2

200 OK

6.2 kB

URL GET HTTP/2
i0.wp.com/game-2u.com/wp-content/uploads/2019/07/Game2u-web.png?w=400&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
6.2 kB (6158 bytes)
Hash
eaf72cc3af90419ec0aa491668f75a3e
f54ed88dd15522601d457c4d749564f733cfe0bc
e85b1bca5ed77bcc7bcb77f7a47cedac9da03da7565d61ae3b3c371daa4454f7

HTTP Headers

GET /game-2u.com/wp-content/uploads/2019/07/Game2u-web.png?w=400&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 6158
last-modified: Sun, 19 Jun 2022 07:37:36 GMT
expires: Tue, 18 Jun 2024 19:37:36 GMT
cache-control: public, max-age=63115200
link: <https://game-2u.com/wp-content/uploads/2019/07/Game2u-web.png>; rel="canonical"
x-content-type-options: nosniff
etag: "29b31a5b8481f5b3"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

10 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
10 kB (10300 bytes)
Hash
d5ce5bd769fb0315d7f690ae08b7e580
5799e0dcecaad4de1b5c1fdd1cb654d3a4467f8e
6bab0b95595ffcdcf3eb8791ea584fb72bb46da9b9f2e880e9916eda1785e9c4

HTTP Headers

GET /images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 10300
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "df9021f3ee70bce0"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.5.2

104.17.25.14

200 OK

1.1 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.5.2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3036)
Size
1.1 kB (1101 bytes)
Hash
94279a9a0c4060a96efcf1da47716f86
ea88b3fd8b01a8b86edfd0f4120cc9a834893018
d41c6733a8c4a3a7f08204de8e3d60e1d2baf17dd7f675a26830fb1047fac40a

HTTP Headers

GET /ajax/libs/lazysizes/5.3.2/plugins/bgset/ls.bgset.min.js?ver=6.5.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 1101
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-bf7"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 748955
expires: Wed, 30 Apr 2025 12:56:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kDGHXQ2LbEEuYe3RjuESEaXZy0Oqxsu2YkuHVXn%2BZ909r7GGnyo17ykcdTyrYwZ6e%2FUWsyn%2FC%2FqqyQ47MQLUeDkwecsVSdMl90hSbHA7q4VloAUWg%2Bj3OzwWFrCun8KHLfao5AUn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881a1778d9b2b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i0.wp.com/image.api.playstation.com/vulcan/img/rnd/202109/2715/NYMvDucYFBQ6ZHWUVUZf7Sy7.jpg?fit=1440%2C2160&ssl=1

192.0.77.2

200 OK

487 kB

URL GET HTTP/2
i0.wp.com/image.api.playstation.com/vulcan/img/rnd/202109/2715/NYMvDucYFBQ6ZHWUVUZf7Sy7.jpg?fit=1440%2C2160&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
487 kB (486742 bytes)
Hash
4ca01d93d6d9f0163bdf3fb479306865
5264896bf65aeeacd048de01e235c97ded332c20
f99f2bba7891cfa5046a23c89082683ebc9d69401a0db69b78d6d22b4d14dcde

HTTP Headers

GET /image.api.playstation.com/vulcan/img/rnd/202109/2715/NYMvDucYFBQ6ZHWUVUZf7Sy7.jpg?fit=1440%2C2160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 486742
last-modified: Thu, 08 Feb 2024 01:07:01 GMT
expires: Sat, 07 Feb 2026 13:07:01 GMT
cache-control: public, max-age=63115200
link: <https://image.api.playstation.com/vulcan/img/rnd/202109/2715/NYMvDucYFBQ6ZHWUVUZf7Sy7.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "38ed7e0448f2a08b"
vary: Accept
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?fit=%2C&ssl=1

192.0.77.2

200 OK

42 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?fit=%2C&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 549x700, Scaling: [none]x[none], YUV color, decoders should clamp
Size
42 kB (42380 bytes)
Hash
d4928f7b25fded3f8d8a950e9d163f32
d3c246313c0b85eb96b9bea998baeb1c8da5a7c5
6590cb89e20fcfe488bf87db73a0a86d040513f68b0711e6456c0a0da091bce4

HTTP Headers

GET /images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg?fit=%2C&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 42380
last-modified: Mon, 15 Jan 2024 09:16:14 GMT
expires: Wed, 14 Jan 2026 21:16:14 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1696928090/cd438cd8/39032848.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "aa23b95202f83aec"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/image.api.playstation.com/vulcan/ap/rnd/202009/2214/KJM77x118vMhn9LpBUz0iKFI.jpg?fit=1440%2C2160&ssl=1

192.0.77.2

200 OK

350 kB

URL GET HTTP/2
i0.wp.com/image.api.playstation.com/vulcan/ap/rnd/202009/2214/KJM77x118vMhn9LpBUz0iKFI.jpg?fit=1440%2C2160&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
350 kB (349754 bytes)
Hash
ca280995683d45db0bc550402db42b9a
e73271f618bad81f497ba8b8c31f75b5a7b0733e
17e769bd0c7fddb3d30792fb42ca0551c1e1a8ff30a1b232793622447b69359e

HTTP Headers

GET /image.api.playstation.com/vulcan/ap/rnd/202009/2214/KJM77x118vMhn9LpBUz0iKFI.jpg?fit=1440%2C2160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 349754
last-modified: Thu, 08 Feb 2024 01:07:02 GMT
expires: Sat, 07 Feb 2026 13:07:02 GMT
cache-control: public, max-age=63115200
link: <https://image.api.playstation.com/vulcan/ap/rnd/202009/2214/KJM77x118vMhn9LpBUz0iKFI.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a52a8ac332529651"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

10 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
10 kB (9956 bytes)
Hash
addb4e8fb6e8f840771345400c3593fb
f3dce980adc8ea3fd1c0bc2cf6e78acb67550bc3
f4ceec6ba4ae5c191249bbc29af3653bdd488aa344b41e20c2d2907deb829240

HTTP Headers

GET /images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 9956
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1696250976/cac8d0a1/39022607.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ed854ff86d3c5d40"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg?fit=549%2C700&ssl=1

192.0.77.2

200 OK

36 kB

URL GET HTTP/2
i0.wp.com/images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg?fit=549%2C700&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 549x700, Scaling: [none]x[none], YUV color, decoders should clamp
Size
36 kB (36324 bytes)
Hash
6f03fb14bdc07793df0dec127cfec8b0
0c15dd710c8b32ccc4e196c1e9fbfb4dd22ae13c
ce17e150589285dd474a2d491a4ca4c8c04246718d23d8fcb524ce3b4454173f

HTTP Headers

GET /images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg?fit=549%2C700&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 36324
last-modified: Mon, 15 Jan 2024 09:16:14 GMT
expires: Wed, 14 Jan 2026 21:16:14 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1705285297/bd7a9695/39101279.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c4a63df44a8a54db"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/image.api.playstation.com/vulcan/ap/rnd/202202/1819/FbasjFB1valkbSUzu8BrOm4p.png?fit=1440%2C2160&ssl=1

192.0.77.2

200 OK

200 kB

URL GET HTTP/2
i0.wp.com/image.api.playstation.com/vulcan/ap/rnd/202202/1819/FbasjFB1valkbSUzu8BrOm4p.png?fit=1440%2C2160&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
200 kB (200474 bytes)
Hash
13e107abc4b1671aa8c1a08b99f8dff8
288660c2aa3de43330672554f9722537cd4f6016
b629bfee352e0ea49f91dcd03ce4178620f3c10df379d5574141315e2c727bbe

HTTP Headers

GET /image.api.playstation.com/vulcan/ap/rnd/202202/1819/FbasjFB1valkbSUzu8BrOm4p.png?fit=1440%2C2160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/webp
content-length: 200474
last-modified: Thu, 08 Feb 2024 01:07:22 GMT
expires: Sat, 07 Feb 2026 13:07:22 GMT
cache-control: public, max-age=63115200
link: <https://image.api.playstation.com/vulcan/ap/rnd/202202/1819/FbasjFB1valkbSUzu8BrOm4p.png>; rel="canonical"
x-content-type-options: nosniff
etag: "dd1443f70fae2383"
vary: Accept
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-BDK88G3QWJ

142.250.74.168

200 OK

86 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-BDK88G3QWJ
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4242)
Size
86 kB (86474 bytes)
Hash
91126fb4a774d9bbcbfcc2e8486e8171
2582c2caef9c2c7127262050140411090f11a8c0
b41baeadf41d0fc3edbc63e4a2eca5a4841e70bb5fbfd5d0f60ed7a2e3764263

HTTP Headers

GET /gtag/js?id=G-BDK88G3QWJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 12:56:51 GMT
expires: Fri, 10 May 2024 12:56:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86474
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

assets.nintendo.com/image/upload/ar_16:9,c_lpad,w_1240/b_white/f_auto/q_auto/ncom/software/switch/70010000075960/a00854e78b30848feea926b0da1a125c99106f3da8f821e31651dc748972ba7b

151.101.2.102

200 OK

57 kB

URL GET HTTP/2
assets.nintendo.com/image/upload/ar_16:9,c_lpad,w_1240/b_white/f_auto/q_auto/ncom/software/switch/70010000075960/a00854e78b30848feea926b0da1a125c99106f3da8f821e31651dc748972ba7b
IP
151.101.2.102:443
ASN
#54113 FASTLY

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGlobalSign nv-sa
Subjects4-san.cloudinary.com
Fingerprint60:2C:C7:31:75:3B:66:30:4C:63:A0:F9:FE:A3:DC:2B:F5:BF:55:CC
ValiditySun, 13 Aug 2023 11:59:58 GMT - Fri, 13 Sep 2024 11:59:57 GMT

File type
ISO Media, AVIF Image
Size
57 kB (57444 bytes)
Hash
4cb4911d33771dff14b2d239b7d2e088
435788bfad5c5066b3508454afc71ac5869b8341
7c0cb25e28a2116688cbc17636dcb08c9d6be0ebffec0abbad95a592f2b75c6e

HTTP Headers

GET /image/upload/ar_16:9,c_lpad,w_1240/b_white/f_auto/q_auto/ncom/software/switch/70010000075960/a00854e78b30848feea926b0da1a125c99106f3da8f821e31651dc748972ba7b HTTP/1.1
Host: assets.nintendo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/avif
etag: "4cb4911d33771dff14b2d239b7d2e088"
last-modified: Thu, 11 Apr 2024 09:08:32 GMT
date: Fri, 10 May 2024 12:56:52 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, max-age=31536000
server-timing: cld-fastly;dur=1;start=2024-05-10T12:56:52.029Z;desc=hit,rtt;dur=13,content-info;desc="width=1240,height=698,bytes=57444,owidth=1920,oheight=1080,obytes=1281755,ef=(1,11,13,17,97)"
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 57444
X-Firefox-Spdy: h2

assets.nintendo.com/image/upload/c_fill,w_338/q_auto:best/f_auto/dpr_2.0/ncom/software/switch/70010000080615/5dc5a169f1ef21ff28021112bfa181c002354d37569e3f01cc61c3aa92893eb0

151.101.2.102

200 OK

65 kB

URL GET HTTP/2
assets.nintendo.com/image/upload/c_fill,w_338/q_auto:best/f_auto/dpr_2.0/ncom/software/switch/70010000080615/5dc5a169f1ef21ff28021112bfa181c002354d37569e3f01cc61c3aa92893eb0
IP
151.101.2.102:443
ASN
#54113 FASTLY

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGlobalSign nv-sa
Subjects4-san.cloudinary.com
Fingerprint60:2C:C7:31:75:3B:66:30:4C:63:A0:F9:FE:A3:DC:2B:F5:BF:55:CC
ValiditySun, 13 Aug 2023 11:59:58 GMT - Fri, 13 Sep 2024 11:59:57 GMT

File type
ISO Media, AVIF Image
Size
65 kB (65094 bytes)
Hash
9c5e440f5acb74e7a57f371b78312c54
c5be8d017a332d990168948122da312a8128add4
02a89c8b4f8876ffd509f84ee1227f977d0873e2cf521bc0b6a1e723ef24545f

HTTP Headers

GET /image/upload/c_fill,w_338/q_auto:best/f_auto/dpr_2.0/ncom/software/switch/70010000080615/5dc5a169f1ef21ff28021112bfa181c002354d37569e3f01cc61c3aa92893eb0 HTTP/1.1
Host: assets.nintendo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/avif
etag: "9c5e440f5acb74e7a57f371b78312c54"
last-modified: Wed, 24 Apr 2024 12:52:39 GMT
date: Fri, 10 May 2024 12:56:52 GMT
vary: Accept,User-Agent
strict-transport-security: max-age=604800
cache-control: private, no-transform, max-age=31536000
server-timing: cld-fastly;dur=1;cpu=0;start=2024-05-10T12:56:52.064Z;desc=hit,rtt;dur=14,content-info;desc="width=676,height=380,bytes=65094,owidth=1920,oheight=1080,obytes=2349975,ef=(1,11,13,17,23)"
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 65094
X-Firefox-Spdy: h2

assets.nintendo.com/image/upload/c_fill,w_338/q_auto:best/f_auto/dpr_2.0/ncom/software/switch/70010000044345/3d09263baf68759d1c31a9838fcc96a775ac8cc5f1baa57b7fd3023a3a5d4784

151.101.2.102

200 OK

49 kB

URL GET HTTP/2
assets.nintendo.com/image/upload/c_fill,w_338/q_auto:best/f_auto/dpr_2.0/ncom/software/switch/70010000044345/3d09263baf68759d1c31a9838fcc96a775ac8cc5f1baa57b7fd3023a3a5d4784
IP
151.101.2.102:443
ASN
#54113 FASTLY

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGlobalSign nv-sa
Subjects4-san.cloudinary.com
Fingerprint60:2C:C7:31:75:3B:66:30:4C:63:A0:F9:FE:A3:DC:2B:F5:BF:55:CC
ValiditySun, 13 Aug 2023 11:59:58 GMT - Fri, 13 Sep 2024 11:59:57 GMT

File type
ISO Media, AVIF Image
Size
49 kB (48763 bytes)
Hash
b0e610ede72574ab8b336dd6e12db0e3
7e3184c8bfced72ec70f5cee5d2f21fc9bd91a08
ae0fee7b79a3961d0ba5f0e46eda948b275b6adcabc0eeefd84e186dbb5ed07f

HTTP Headers

GET /image/upload/c_fill,w_338/q_auto:best/f_auto/dpr_2.0/ncom/software/switch/70010000044345/3d09263baf68759d1c31a9838fcc96a775ac8cc5f1baa57b7fd3023a3a5d4784 HTTP/1.1
Host: assets.nintendo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/avif
etag: "b0e610ede72574ab8b336dd6e12db0e3"
last-modified: Sat, 06 Jan 2024 08:42:15 GMT
date: Fri, 10 May 2024 12:56:52 GMT
vary: Accept,User-Agent
strict-transport-security: max-age=604800
cache-control: private, no-transform, max-age=31536000
server-timing: cld-fastly;dur=1;cpu=0;start=2024-05-10T12:56:52.064Z;desc=hit,rtt;dur=14,content-info;desc="width=676,height=380,bytes=48763,owidth=1920,oheight=1080,obytes=1974953,ef=(1,11,13,17,23)"
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 48763
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

5.6 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.6 kB (5582 bytes)
Hash
5dc123567ca89754cb1904e1c69ed41f
24636b6f72d0bd16ca4a31f0c7d598a591a3a0ae
0abcc8a11f774af7a0c490ea2c93062ec79a9db4b11ca85764a5fd6451b7c0ef

HTTP Headers

GET /images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 5582
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1679750390/4e99e8e1/38826367.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "af816a328511b3ef"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

game-2u.com/wp-content/uploads/2023/12/Grand-Theft-Auto-VI-GTA-6.jpg

188.114.96.1

200 OK

232 kB

URL GET HTTP/3
game-2u.com/wp-content/uploads/2023/12/Grand-Theft-Auto-VI-GTA-6.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1920x1080, components 3
Size
232 kB (232364 bytes)
Hash
bcc7823e8aa3407fd83ba093a7745800
32726b569125b59a3c0adc7762455517c92ab495
2ac0981da434e842bf7977f413f10e3ca78d07f151b91921903fb164c89c3b39

HTTP Headers

GET /wp-content/uploads/2023/12/Grand-Theft-Auto-VI-GTA-6.jpg HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/jpeg
content-length: 232364
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Tue, 05 Dec 2023 09:30:11 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193316
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SiJMCCnVb3srHMxA4It8I40ClssM1H8PrZsmSGylzrmCddq7r6tD0XlPWSR65H4nBkRnbBtQOSnWbtrWsuZnIAPpF7PVim0RCxOHhEQ3zWh1T9Fmwsm9XOPMPw1u3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a177ee96e0b59-OSL

game-2u.com/wp-content/plugins/wp-trending-post-slider-and-widget/assets/js/wtpsw-public.js?ver=1.8

188.114.96.1

200 OK

24 kB

URL GET HTTP/3
game-2u.com/wp-content/plugins/wp-trending-post-slider-and-widget/assets/js/wtpsw-public.js?ver=1.8
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text, with very long lines (388)
Size
24 kB (23563 bytes)
Hash
6a30c95fc2f160591ad31bfd666c0aa2
112338fa8bf1d505e395f694716f1f0188748f4e
520b6c3d1f1e887aae8715612e4d8d0a1fafd93ef09dd188f5d3261c2a1f632d

HTTP Headers

GET /wp-content/plugins/wp-trending-post-slider-and-widget/assets/js/wtpsw-public.js?ver=1.8 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Tue, 02 Jan 2024 09:55:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5R0%2FDOsnsz9L4YAfHalxTaGRDPWnzy3%2B%2B6QZK14S7W5StA7DClruyLnwEU13MdyrL1hXVPsRqyb1SAHy%2FGhSg5UWeU%2FGiP4N7Is6p%2B0z7%2FA6dPo0bVm3uDrZnso5pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9c00b59-OSL
content-encoding: br

game-2u.com/wp-content/themes/poster/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

188.114.96.1

200 OK

77 kB

URL GET HTTP/3
game-2u.com/wp-content/themes/poster/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/themes/poster/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/wp-content/cache/wpfc-minified/lmnzjxmp/g4fzp.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:52 GMT
content-type: application/font-woff2
content-length: 77160
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 22 Feb 2023 09:26:36 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 162342
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bjtMoT%2BmQh2%2B%2F8I1QJ1ge06QQUPjT%2FqwkfWIniFRdWnBbA%2BMdooCxpBO5pxfHdIXA4ePFDJP1ABHM%2BIPSbH7hTaeY7asjUxoXEDdbF3KRkeYlmno2CxD9mzmkpPeBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a177ef9780b59-OSL

i0.wp.com/images.vfl.ru/ii/1679738619/4429b61e/38826218.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

4.1 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1679738619/4429b61e/38826218.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.1 kB (4090 bytes)
Hash
372ddbcafc31edb06233280de535a5eb
3c94912bb6d0b6a827d47836531f8f1b7d2075bc
de2ce7a7c7298b87f22502980cc080c4152c8260de294a6374013f7140ca2779

HTTP Headers

GET /images.vfl.ru/ii/1679738619/4429b61e/38826218.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 4090
last-modified: Wed, 03 Apr 2024 09:05:22 GMT
expires: Fri, 03 Apr 2026 21:05:22 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1679738619/4429b61e/38826218.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f7536170d7372edf"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/images.vfl.ru/ii/1679707845/154521c0/38824712.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

4.9 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1679707845/154521c0/38824712.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.9 kB (4886 bytes)
Hash
2730af394e41ebe41efaf9ec883815f7
22e2ddc4e83a9e8fc73479ce85b313e5d8391ff6
6a7fe9021b4d8b8dade990c8fe8c6ef34a667cb258f8915f73606edfb42b2978

HTTP Headers

GET /images.vfl.ru/ii/1679707845/154521c0/38824712.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 4886
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1679707845/154521c0/38824712.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a2102ffd5b01481d"
vary: Accept
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/images.vfl.ru/ii/1670535497/93cfc2bd/38665474.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

7.3 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1670535497/93cfc2bd/38665474.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.3 kB (7304 bytes)
Hash
99cfcb66eba3450d17f70fdac3c2aece
e47a304da8afa936aae0b36a06fae7390d93bc86
51217c3ac49c2eb8bafec238bb8dc18a8c9d024dbb40c967bf5e873c34c20e89

HTTP Headers

GET /images.vfl.ru/ii/1670535497/93cfc2bd/38665474.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 7304
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1670535497/93cfc2bd/38665474.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "bfede2d6ee6daefc"
vary: Accept
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

game-2u.com/wp-content/themes/poster/foundation/js/foundation.core.js

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
game-2u.com/wp-content/themes/poster/foundation/js/foundation.core.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text
Size
15 kB (14671 bytes)
Hash
0e78b1db7d662e95ae8c3506146b080a
9f1675c87a306e4dd45f84d0b7ac484ae506245e
6e79424f448b401656e2384514c9332a4baa6ab4d458ba048655e01f4b1c60f2

HTTP Headers

GET /wp-content/themes/poster/foundation/js/foundation.core.js HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 22 Feb 2023 09:26:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uJXHn3MTlOlGcG8tWAhIGf%2Fxr%2FoeweL08z%2F10T7M0ky8mr%2Fjbn3QMSIGOAYdxdPfYa0A3cBTHuyLH2UnI8eQxBiMqC%2BODgS9tsvJ7Uf7KawOzkta5uAaWW1w658vjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9c80b59-OSL
content-encoding: br

i0.wp.com/images.vfl.ru/ii/1668014273/1c677abc/38638784.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

6.2 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1668014273/1c677abc/38638784.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.2 kB (6176 bytes)
Hash
44e04442067ea240a75767b7848d732b
09b7ae4411aa808c737b5c3ca3336c7b465e4ff0
716023731ddf0008978e582b90735681740a3074b50c0b5081cfcfcfb8788306

HTTP Headers

GET /images.vfl.ru/ii/1668014273/1c677abc/38638784.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 6176
last-modified: Thu, 18 Jan 2024 00:29:42 GMT
expires: Sat, 17 Jan 2026 12:29:42 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1668014273/1c677abc/38638784.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7f420c6335b6fef1"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/images.vfl.ru/ii/1664792430/cd1f1f93/38597239.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

3.6 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1664792430/cd1f1f93/38597239.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.6 kB (3588 bytes)
Hash
d4dcc28a93ffae3a68e9c349e7b7a973
2f727019539ea34596d6de278058b9aaa8f52dcb
067ea7b00a9b2fc37cb77cf8d70a407ca79d4ce8b18c8ff456d996a051faaa87

HTTP Headers

GET /images.vfl.ru/ii/1664792430/cd1f1f93/38597239.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 3588
last-modified: Mon, 15 Jan 2024 09:24:39 GMT
expires: Wed, 14 Jan 2026 21:24:39 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1664792430/cd1f1f93/38597239.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "51f2386d20969dc1"
vary: Accept
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

stats.wp.com/e-202419.js

192.0.76.3

200 OK

7.2 kB

URL GET HTTP/2
stats.wp.com/e-202419.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7329), with no line terminators
Size
7.2 kB (7200 bytes)
Hash
bd2d67186594b0e32223b293fdfcca55
b797a9d012c850b53a7ccc12211adcfbcd9ae0be
4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641

HTTP Headers

GET /e-202419.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402358485.9985
content-encoding: br
expires: Sat, 03 May 2025 15:12:58 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1664657364/4238b823/38595043.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

5.7 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1664657364/4238b823/38595043.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.7 kB (5732 bytes)
Hash
6c27aa99ba6662bf2496a34b1844ce4a
6b094c2593cef71b2bdca08420c4d4ba1a2dd786
0748c042c35f8bc7adf70e944e6c4a23974798656f2c1977b024175871a31e45

HTTP Headers

GET /images.vfl.ru/ii/1664657364/4238b823/38595043.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 5732
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1664657364/4238b823/38595043.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "57f5acffebddeb79"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

game-2u.com/wp-content/themes/poster/js/loadscripts.js?ver=1.0

188.114.96.1

200 OK

700 kB

URL GET HTTP/3
game-2u.com/wp-content/themes/poster/js/loadscripts.js?ver=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text
Size
700 kB (699630 bytes)
Hash
5c8deb69b2f7b5258a12a9a113b087b9
8c4d79d253217bc17d6fcd6808c9f255be596aaa
9778467bb8930869e7f29d83d8ec51a3b79bd1d7c44c0fc046b24686decdd803

HTTP Headers

GET /wp-content/themes/poster/js/loadscripts.js?ver=1.0 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 22 Feb 2023 09:26:36 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HZA6JT%2Bm7b5BdlcRsbx%2FZABiOGnnfb%2BkaKucfjx78f2Lu4%2BHvA807wf%2FPRqyTvijsVmg8rSuUE132lpd4CPtdmO3JAyPtPomN15IRO5CvVGvt89YX1pDCuzUACsJVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a17780a090b59-OSL
content-encoding: br

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://ad.a-ads.com/1024056?size=728x90
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ad.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 352955
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

game-2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.7.0

188.114.96.1

200 OK

702 kB

URL GET HTTP/3
game-2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.7.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text
Size
702 kB (701868 bytes)
Hash
e65cb4d4cd399c1b09798edfcea1b41e
49a2a4a502ac7e2c15727c3b7fd6e3d9d5960ff2
d2e0e4ea817ec2075d8ad25c70e9c8e124df393088286cfe1e75dd56069abc2b

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/js/lazySizesConfig.js?ver=4.7.0 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 20 Apr 2024 09:19:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ItdJQXqot9QztgVDwAvR3fVG9DqTQITSOnhvVk60YfHuoCJvCQ6bqVTB%2Fny9OjCtEWpOqioJRWjD%2B4xx4Q0O6krJ1z7HNEg0DFJNp%2FJULjkaQshTyMD5WgG08D98mQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a17780a0a0b59-OSL
content-encoding: br

definedbootnervous.com/b820496cbe0f52245b6894ae62c63be0/invoke.js

172.240.108.84

200 OK

12 kB

URL GET HTTP/1.1
definedbootnervous.com/b820496cbe0f52245b6894ae62c63be0/invoke.js
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectdefinedbootnervous.com
FingerprintD2:0E:09:40:49:B6:A6:96:57:ED:00:1C:21:32:D5:5A:57:F9:10:A9
ValiditySun, 17 Mar 2024 07:12:54 GMT - Sat, 15 Jun 2024 07:12:53 GMT

File type
JavaScript source, ASCII text, with very long lines (31364), with no line terminators
Size
12 kB (11894 bytes)
Hash
4a58a7ca86b754c4983169dafb8d031b
7f1e568bb9326f970046fd67ef6f1c97daab6b86
90f9f7d41032cb55e78ee913ff4b7dc251a8b235fcca67843f9bb6e3b6bb5b5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b820496cbe0f52245b6894ae62c63be0/invoke.js HTTP/1.1
Host: definedbootnervous.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c6db1ea9e5ca505d7b5275fc5b568aef
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

game-2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.7.0

188.114.96.1

200 OK

48 kB

URL GET HTTP/3
game-2u.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.7.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text
Size
48 kB (48498 bytes)
Hash
65c8ee2d1261374df0e25e3ec316ff46
3fd3eb7b89670dd57b8e470b347959f07734c531
772d4b6a7d7f0c35fdcfc0cccd2802a66f31d7df5de4b44401c0725e6ae9041c

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.7.0 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 20 Apr 2024 09:19:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=adZnIP3Ax97ft35oYWC6qCxpoGGD8Csv2Cw%2BD0LyAn%2FoGuUAtmIdClHOwdIk46HLnE6UI%2F8p1nHnTWkOWpfRO2uG%2BPYDrP57nM%2F5eFIPyZRWTwMyriC52Q%2BGu1OYww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a17780a0c0b59-OSL
content-encoding: br

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c1ae368dfcd18c3fe0a38f18783ecfe1
591b78d8c937af6063def58fa5d376d07e7d005e
58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 12:56:53 GMT
Last-Modified: Fri, 10 May 2024 11:23:37 GMT
Server: ECAcc (ska/F78B)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kfF865nTDordPJjzGuWA1iD3xq_YlAWk48cdTza-TexyczpzSYUnwg==
Age: 5596

definedbootnervous.com/ee9bf356d601332a3ace39ce6d63a346/invoke.js

172.240.108.84

200 OK

12 kB

URL GET HTTP/1.1
definedbootnervous.com/ee9bf356d601332a3ace39ce6d63a346/invoke.js
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectdefinedbootnervous.com
FingerprintD2:0E:09:40:49:B6:A6:96:57:ED:00:1C:21:32:D5:5A:57:F9:10:A9
ValiditySun, 17 Mar 2024 07:12:54 GMT - Sat, 15 Jun 2024 07:12:53 GMT

File type
JavaScript source, ASCII text, with very long lines (31363), with no line terminators
Size
12 kB (11881 bytes)
Hash
7ad8991a726bd9f1077e5d26bc31fdda
b0fac3d2ea9e45d6224913544324bbbc49ef5498
789b8d22d796a177f00318f42ab6b4f5504adcb141632a7931feece91dc28249

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ee9bf356d601332a3ace39ce6d63a346/invoke.js HTTP/1.1
Host: definedbootnervous.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6d7e767403403fa86e2d89ab1bc6c1fa
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

3.124.83.201

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.124.83.201:443
ASN
#16509 AMAZON-02

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
6662afd6ad6f5e0ab790177247f273b1
731ccd4f563c913e761c0f3dbc3bcd20e212e872
f1668d40549e326d0ee8dbbafeddd6950ac9fb2beb22eb804042616869d512eb

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://game-2u.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=39d66b9b-0ef8-419c-9a88-40d768f44a09:1:1; expires=Mon, 08 May 2034 12:56:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

3.124.83.201

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.124.83.201:443
ASN
#16509 AMAZON-02

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
6662afd6ad6f5e0ab790177247f273b1
731ccd4f563c913e761c0f3dbc3bcd20e212e872
f1668d40549e326d0ee8dbbafeddd6950ac9fb2beb22eb804042616869d512eb

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Cookie: uid_id2=39d66b9b-0ef8-419c-9a88-40d768f44a09:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://game-2u.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?resize=405%2C155&ssl=1

192.0.77.2

200 OK

7.7 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?resize=405%2C155&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 405x155, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.7 kB (7712 bytes)
Hash
1f2664d6059193e6c1a59ee7ef14d1a0
46542860abd849426ea23d66c601ff0888d735db
f685610012cd711cdf0f3f186e878030c152058d3705dd751d6048d480bc2621

HTTP Headers

GET /images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg?resize=405%2C155&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:53 GMT
content-type: image/webp
content-length: 7712
last-modified: Sat, 11 Jun 2022 22:08:00 GMT
expires: Tue, 11 Jun 2024 10:08:00 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1588854988/40f4425a/30440747.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "416c01d7e07bbbbf"
vary: Accept
x-nc: HIT arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

static.a-ads.com/a-ads-banners/504908/336x280?region=eu-central-1

148.251.53.118

200 OK

655 kB

URL GET HTTP/2
static.a-ads.com/a-ads-banners/504908/336x280?region=eu-central-1
IP
148.251.53.118:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://ad.a-ads.com/1134233?size=336x280
Certificate
IssuerSectigo Limited
Subject*.a-ads.com
FingerprintC4:DC:49:DF:0A:63:5A:A6:E4:00:AB:0B:FD:E4:94:92:A8:77:B7:C6
ValidityWed, 27 Dec 2023 00:00:00 GMT - Sun, 26 Jan 2025 23:59:59 GMT

File type
GIF image data, version 89a, 336 x 280
Size
655 kB (655051 bytes)
Hash
8ad7e5e596597a34432f69f0917aeae7
b7b98286898da2b1230591193e291ff02e471a67
7ea79e73e757379c51cf1d85e5b22db2ef3a9bd096829c6f6f752985a0e3ff8e

HTTP Headers

GET /a-ads-banners/504908/336x280?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:53 GMT
content-type: image/gif
content-length: 655051
x-amz-id-2: s/KQ3U5/UYxC47XxvSrh/iM+aki9elDQ8CdXCBVWlTXtQPMydQ3NAHB9Ec9C4bQkiUp6y7AnA1Y=
x-amz-request-id: G8WQ33G87ZYGAYD6
x-amz-replication-status: COMPLETED
last-modified: Fri, 08 Mar 2024 12:56:32 GMT
etag: "8ad7e5e596597a34432f69f0917aeae7"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: z72LtSj2IOYDzRriRudjlIcOP59StK1S
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://ad.a-ads.com/1024056?size=728x90
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ad.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 352956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

c0.wp.com/c/6.5.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

3.1 kB

URL GET HTTP/2
c0.wp.com/c/6.5.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
3.1 kB (3070 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

HTTP Headers

GET /c/6.5.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Sat, 10 May 2025 12:56:51 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

catchymorselguffaw.com/watch.1113312906949.js?key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&tz=0&dev=e&res=14.2071&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1

172.240.127.234

307 Temporary Redirect

0 B

URL GET HTTP/1.1
catchymorselguffaw.com/watch.1113312906949.js?key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&tz=0&dev=e&res=14.2071&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectcatchymorselguffaw.com
Fingerprint74:D1:6D:2F:69:EC:A8:47:9F:07:F7:CE:A5:86:42:63:5E:86:02:F7
ValidityMon, 06 May 2024 12:40:21 GMT - Sun, 04 Aug 2024 12:40:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1113312906949.js?key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&tz=0&dev=e&res=14.2071&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1 HTTP/1.1
Host: catchymorselguffaw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://game-2u.com
Access-Control-Allow-Origin: https://game-2u.com
Access-Control-Allow-Credentials: true
Location: https://catchymorselguffaw.com/watch.1113312906949.js?dev=e&key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=17157897b163ccf3407ce33c3f8eba180c68aa3c214457a90d0213a171034650991e8926279eac7f4c556ffc5419f1a98b6c7d7d4843baf2781b2c432720e5930f8e0414954c3475cf03fcf63ab78598fcb9b532822ad7a531d8aa3b74e2bd60&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1
Set-Cookie: u_pl=15236932; expires=Sat, 11 May 2024 12:56:53 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.3UmEUv_vhHJki5y-o0KPLlGqzGG334fdVQQQMiissWg; expires=Fri, 10 May 2024 12:57:53 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 57bbcef53a553862ebeceaefcec7181f
Strict-Transport-Security: max-age=0; includeSubdomains

suggestnotegotistical.com/92/6c/ef/926cef8b47c32f14e00f9a46d8cb5cdf.js

172.240.108.68

200 OK

31 kB

URL GET HTTP/1.1
suggestnotegotistical.com/92/6c/ef/926cef8b47c32f14e00f9a46d8cb5cdf.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectsuggestnotegotistical.com
FingerprintB9:F2:18:7D:EF:DF:11:24:D4:01:92:F9:F6:21:1F:D0:DB:21:CC:9C
ValidityMon, 06 May 2024 08:12:38 GMT - Sun, 04 Aug 2024 08:12:37 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30625 bytes)
Hash
8bf6c6b098f1a610c43f3c34292fe547
9117ea407cc979b8d90a3d1aa3e72b7ea5447ffc
fa9c8af34a28a42769257f1750bfa85e2ecf819b7da13adb5ccbd45e97d8d840

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /92/6c/ef/926cef8b47c32f14e00f9a46d8cb5cdf.js HTTP/1.1
Host: suggestnotegotistical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5b77127fa378087a890fef0c3163cca7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

suggestnotegotistical.com/watch.588112345221.js?key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&tz=0&dev=e&res=14.2071&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1

172.240.108.68

307 Temporary Redirect

0 B

URL GET HTTP/1.1
suggestnotegotistical.com/watch.588112345221.js?key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&tz=0&dev=e&res=14.2071&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectsuggestnotegotistical.com
FingerprintB9:F2:18:7D:EF:DF:11:24:D4:01:92:F9:F6:21:1F:D0:DB:21:CC:9C
ValidityMon, 06 May 2024 08:12:38 GMT - Sun, 04 Aug 2024 08:12:37 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.588112345221.js?key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&tz=0&dev=e&res=14.2071&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1 HTTP/1.1
Host: suggestnotegotistical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://game-2u.com
Access-Control-Allow-Origin: https://game-2u.com
Access-Control-Allow-Credentials: true
Location: https://suggestnotegotistical.com/watch.588112345221.js?dev=e&key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=f799167a13cc0e5d181c212d77acf09332b13dba5252189bc71711b16a0b07901b928dffac65cc124d9c1a608f21888a08d33ed5b7d62027498d3f2fdbaba87b188311a3dc500c0072b1e90e02e268f0d1677937734a7898f768362d51b494b144&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1
Set-Cookie: u_pl=19052443; expires=Sat, 11 May 2024 12:56:53 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.I1m0XwccICUPhZ2J5p7iVMqirPDjC1nfGR5uF3zfda8; expires=Fri, 10 May 2024 12:57:53 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 84bcf81f75c34562af41da667c8592af
Strict-Transport-Security: max-age=0; includeSubdomains

catchymorselguffaw.com/watch.1113312906949.js?dev=e&key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=17157897b163ccf3407ce33c3f8eba180c68aa3c214457a90d0213a171034650991e8926279eac7f4c556ffc5419f1a98b6c7d7d4843baf2781b2c432720e5930f8e0414954c3475cf03fcf63ab78598fcb9b532822ad7a531d8aa3b74e2bd60&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1

172.240.127.234

200 OK

2.0 kB

URL GET HTTP/1.1
catchymorselguffaw.com/watch.1113312906949.js?dev=e&key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=17157897b163ccf3407ce33c3f8eba180c68aa3c214457a90d0213a171034650991e8926279eac7f4c556ffc5419f1a98b6c7d7d4843baf2781b2c432720e5930f8e0414954c3475cf03fcf63ab78598fcb9b532822ad7a531d8aa3b74e2bd60&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectcatchymorselguffaw.com
Fingerprint74:D1:6D:2F:69:EC:A8:47:9F:07:F7:CE:A5:86:42:63:5E:86:02:F7
ValidityMon, 06 May 2024 12:40:21 GMT - Sun, 04 Aug 2024 12:40:20 GMT

File type
JavaScript source, ASCII text, with very long lines (2468)
Size
2.0 kB (2004 bytes)
Hash
dc6b6d0540bee4b79e5a8fa2eefa6c90
343065b9ee0d09dd9fe278b635cb874419c6608b
2a864118f34a33404b318581d90eec3284512570f79034fdad358ce18e5b6499

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1113312906949.js?dev=e&key=b820496cbe0f52245b6894ae62c63be0&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=17157897b163ccf3407ce33c3f8eba180c68aa3c214457a90d0213a171034650991e8926279eac7f4c556ffc5419f1a98b6c7d7d4843baf2781b2c432720e5930f8e0414954c3475cf03fcf63ab78598fcb9b532822ad7a531d8aa3b74e2bd60&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1 HTTP/1.1
Host: catchymorselguffaw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
Referer: https://game-2u.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15236932; ain=eyJhbGciOiJIUzI1NiJ9.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.3UmEUv_vhHJki5y-o0KPLlGqzGG334fdVQQQMiissWg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://game-2u.com
Access-Control-Allow-Origin: https://game-2u.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=39d66b9b-0ef8-419c-9a88-40d768f44a09:1:1; expires=Fri, 17 May 2024 12:56:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 458c8c351fa8dc3ca82f010658d84ee9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

my.rtmark.net/gid.js

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
84319f41597749a1d77bbc060cd4bc38
d47ebb44f03b6e54b91f25afe2fe936f3cfb673f
9d8af6709d55b485113db05c3235d59ffcbe29c3d48968a830e25423e74bebd4

HTTP Headers

GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:54 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://game-2u.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=080058ff712946ebf8816ac2dce180ab; expires=Sat, 10 May 2025 12:56:54 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

catchymorselguffaw.com/2e/59/01/2e59010ee40bb5ee297c2a0ecedaa23b.js

172.240.127.234

200 OK

31 kB

URL GET HTTP/1.1
catchymorselguffaw.com/2e/59/01/2e59010ee40bb5ee297c2a0ecedaa23b.js
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectcatchymorselguffaw.com
Fingerprint74:D1:6D:2F:69:EC:A8:47:9F:07:F7:CE:A5:86:42:63:5E:86:02:F7
ValidityMon, 06 May 2024 12:40:21 GMT - Sun, 04 Aug 2024 12:40:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30605 bytes)
Hash
dbc1d8d10a013d424f5040fb04b2359c
00b8d13a33f02598e82d2f5f1cd45acb9f540437
f6b8c602c503857ab2aa2144c5d999ab98536f768f0ad7a82fdba3abad1128a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2e/59/01/2e59010ee40bb5ee297c2a0ecedaa23b.js HTTP/1.1
Host: catchymorselguffaw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: eb3a6347ebb4e90861f4979cf39c5969
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

suggestnotegotistical.com/watch.588112345221.js?dev=e&key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=f799167a13cc0e5d181c212d77acf09332b13dba5252189bc71711b16a0b07901b928dffac65cc124d9c1a608f21888a08d33ed5b7d62027498d3f2fdbaba87b188311a3dc500c0072b1e90e02e268f0d1677937734a7898f768362d51b494b144&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1

172.240.108.68

200 OK

2.0 kB

URL GET HTTP/1.1
suggestnotegotistical.com/watch.588112345221.js?dev=e&key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=f799167a13cc0e5d181c212d77acf09332b13dba5252189bc71711b16a0b07901b928dffac65cc124d9c1a608f21888a08d33ed5b7d62027498d3f2fdbaba87b188311a3dc500c0072b1e90e02e268f0d1677937734a7898f768362d51b494b144&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectsuggestnotegotistical.com
FingerprintB9:F2:18:7D:EF:DF:11:24:D4:01:92:F9:F6:21:1F:D0:DB:21:CC:9C
ValidityMon, 06 May 2024 08:12:38 GMT - Sun, 04 Aug 2024 08:12:37 GMT

File type
JavaScript source, ASCII text, with very long lines (2464)
Size
2.0 kB (2001 bytes)
Hash
4e7133c21ad9435572762033c26e990a
98f24dca2476328dd0926c47517d6b82e2d29d85
039f3c0c378e4f2359fbfdc83fc04cb9d0dd732db948af2b2c22a1a676cc0142

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.588112345221.js?dev=e&key=ee9bf356d601332a3ace39ce6d63a346&kw=%5B%22ps4%22%2C%22archives%22%2C%22-%22%2C%22game-2u%22%2C%22com%22%5D&pst=1715345873&refer=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&res=14.2071&rmtc=t&shu=f799167a13cc0e5d181c212d77acf09332b13dba5252189bc71711b16a0b07901b928dffac65cc124d9c1a608f21888a08d33ed5b7d62027498d3f2fdbaba87b188311a3dc500c0072b1e90e02e268f0d1677937734a7898f768362d51b494b144&tz=0&uuid=39d66b9b-0ef8-419c-9a88-40d768f44a09%3A1%3A1 HTTP/1.1
Host: suggestnotegotistical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
Referer: https://game-2u.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=19052443; ain=eyJhbGciOiJIUzI1NiJ9.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.I1m0XwccICUPhZ2J5p7iVMqirPDjC1nfGR5uF3zfda8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://game-2u.com
Access-Control-Allow-Origin: https://game-2u.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=39d66b9b-0ef8-419c-9a88-40d768f44a09:1:1; expires=Fri, 17 May 2024 12:56:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 11 May 2024 12:56:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e51af731420c1dd7ceb54881519e3c9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

downstairsnegotiatebarren.com/sfp.js

188.114.96.1

200 OK

28 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27964 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:54 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ed7cb3e2a82b536a16319df8a731af25
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 12:56:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2BAVtIJqCDVORg6DN68Ad9w5l1PtuEtt5nVjrQDhb3czbbG4zGeNCdaWm4zZM13OK%2BXZtR2wEymIPrWR%2FXTMIcd2O1hRxQQJSCL57xjWjgFfTY65Q1dtOIf%2B7fbDIXXfk5OEBU5o7sX4glThDsWR4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a178a3a2c56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/6b/66/81/6b66811e5a98f23a678c8617e305411f/1707726249.jpg

45.133.44.9

200 OK

71 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/6b/66/81/6b66811e5a98f23a678c8617e305411f/1707726249.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 728x90, components 3
Size
71 kB (71425 bytes)
Hash
87aa79b34568872bc200c4370d3fab4d
88c86e6c88a3350b243e6b394a02929f275c823d
c4490618e39f5b51260b3d98b3f3ea0a9362b1eaff286d420e2550f8f86e67da

HTTP Headers

GET /cti/6b/66/81/6b66811e5a98f23a678c8617e305411f/1707726249.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:54 GMT
content-type: image/jpeg
content-length: 71425
server: nginx/1.21.6
last-modified: Mon, 12 Feb 2024 08:24:19 GMT
etag: "65c9d5b3-11701"
expires: Sun, 12 May 2024 12:56:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

goomaphy.com/500/5746120?excludes=&oaid=080058ff712946ebf8816ac2dce180ab&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0

139.45.197.239

200 OK

0 B

URL GET HTTP/2
goomaphy.com/500/5746120?excludes=&oaid=080058ff712946ebf8816ac2dce180ab&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC5:05:17:84:C2:C0:36:57:FA:8C:2B:4E:FC:3F:41:74:F8:89:05:50
ValiditySun, 21 Apr 2024 05:07:12 GMT - Sat, 20 Jul 2024 05:07:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /500/5746120?excludes=&oaid=080058ff712946ebf8816ac2dce180ab&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://game-2u.com/
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:54 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://game-2u.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/2a/64/ce/2a64ce8eda8dd978aa075a952612a996/1707813839.png

45.133.44.9

200 OK

127 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/2a/64/ce/2a64ce8eda8dd978aa075a952612a996/1707813839.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size
127 kB (126881 bytes)
Hash
2b3a88d55519a3486d66d937f650bc1e
ada2d70a5653252dbb2a16fcbaee6b0a082d7649
cb63305035c57bf9d2d2cdca42c28adf15860b1807c7a40c6a1bfd72058848f1

HTTP Headers

GET /cti/2a/64/ce/2a64ce8eda8dd978aa075a952612a996/1707813839.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:54 GMT
content-type: image/png
content-length: 126881
server: nginx/1.21.6
last-modified: Tue, 13 Feb 2024 08:44:07 GMT
etag: "65cb2bd7-1efa1"
expires: Sun, 12 May 2024 12:56:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

captivityhandleicicle.com/pixel/purst?dl=0&th=0&sc=0&rs=3577&rd=3577&fd=576&bv=24.5.6485&tmpl=70

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
captivityhandleicicle.com/pixel/purst?dl=0&th=0&sc=0&rs=3577&rd=3577&fd=576&bv=24.5.6485&tmpl=70
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectcaptivityhandleicicle.com
Fingerprint03:7E:2E:B2:58:E8:9E:B9:20:A6:35:45:93:6E:A7:28:4F:7E:D5:C7
ValidityMon, 06 May 2024 12:56:33 GMT - Sun, 04 Aug 2024 12:56:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=3577&rd=3577&fd=576&bv=24.5.6485&tmpl=70 HTTP/1.1
Host: captivityhandleicicle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 12:56:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=913d2859-f9b3-462a-8aea-649aabb7a7a4

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=913d2859-f9b3-462a-8aea-649aabb7a7a4
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C
ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT

File type
JSON text data
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=913d2859-f9b3-462a-8aea-649aabb7a7a4 HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1397
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 10 May 2024 12:56:54 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://game-2u.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

139.45.197.239

200 OK

19 kB

URL GET HTTP/2
goomaphy.com/500/5746120?excludes=&oaid=080058ff712946ebf8816ac2dce180ab&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC5:05:17:84:C2:C0:36:57:FA:8C:2B:4E:FC:3F:41:74:F8:89:05:50
ValiditySun, 21 Apr 2024 05:07:12 GMT - Sat, 20 Jul 2024 05:07:11 GMT

File type
gzip compressed data, max speed, from Unix
Size
19 kB (18562 bytes)
Hash
44d095fbedfd16ff7a0051faf59216dd
2f20c80f7c9f22d4e214496ce0fbb25905ea4855
723cab21c431b79e26df4bae18b73d98dfae0d0ccea7b126b5673c435efd98c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /500/5746120?excludes=&oaid=080058ff712946ebf8816ac2dce180ab&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Cookie: OAID=03005889d82f4932e5d59fec3478999b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:54 GMT
content-type: application/javascript
x-trace-id: 121d5c3024b4a14d3a550361108d3aea
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://game-2u.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=080058ff712946ebf8816ac2dce180ab; expires=Sat, 10 May 2025 12:56:54 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

i0.wp.com/game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png?fit=192%2C192&ssl=1

192.0.77.2

200 OK

7.4 kB

URL GET HTTP/3
i0.wp.com/game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png?fit=192%2C192&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
7.4 kB (7398 bytes)
Hash
17ba3b75c727f8e31df88e47f64b6bbb
cc22666501307a7a3239a6b5bd81fb93a81e15df
f462dcf75fb1bdeacff02f10777a384036aa5ab7ff147d15dc1d84c627cda719

HTTP Headers

GET /game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:55 GMT
content-type: image/webp
content-length: 7398
last-modified: Sun, 27 Aug 2023 08:56:31 GMT
expires: Tue, 26 Aug 2025 20:56:31 GMT
cache-control: public, max-age=63115200
link: <https://game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "a100b52275355109"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

i0.wp.com/game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png?fit=32%2C32&ssl=1

192.0.77.2

200 OK

944 B

URL GET HTTP/3
i0.wp.com/game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png?fit=32%2C32&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
944 B (944 bytes)
Hash
a4383a7981be160f4caea541966b0c37
ff8887cf5112ef1fd077253112e1f595db5f011d
94f1fb6412d9f34d3433643a187445b6807663d15fc08739933204d4401a56ec

HTTP Headers

GET /game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:55 GMT
content-type: image/webp
content-length: 944
last-modified: Sun, 27 Aug 2023 09:17:14 GMT
expires: Tue, 26 Aug 2025 21:17:14 GMT
cache-control: public, max-age=63115200
link: <https://game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "842fd8d4810895bc"
vary: Accept
x-nc: HIT arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

goomaphy.com/impression/sfE0Rm1_0yoWAppMJIqAzrLyogB9TfThPJ9a2zRs4vZFfjneAgrckjPrwriSn3yqSu3R92ZyRXL5DKMpvAl8Bx3PKVmbBAIfcBzH74yXPLtImOcRAaWNqzCKkAgj8x_oX0s2TQ4bkb2OnIakTu2nwm4ypGDtlnGIBsrv8WwwwXtrnt202HQQ5Qre8Mbj3qf9hN4DHCS7reHG_40kcNMVlVY_H0x6obxsC4HEhjwyn5Q9uvclC4Ek7K3PKdbseFTHchjXCP88gM4YY7g1l2cLS3_Jm-0JB6nFy34VNvKok5gLNvsDOuPnDbcvDg8zmm26rhBOD_bot6KTwd5qWHRFvdsWjGXkIMA-TxibsOP_6iskGj92QYiKy4ncvug9iIRBYdP6C7AmVsiEDVZHwy-jiI6aEAq_W8ffMoRUFDtYjiMEry26pJE1kKdfYLhrPuQFw0LNy2q0XqPN_aUsPOPF4Z9-R0mRCEEOrcZDBQSoVIYBTjNc8xx9AUnFLJIkSrLspGORQ_8-xLeuhwT2TdaD7L5SWnalrw0-133ebUToGYdWOz3hlkIXalhfkvO4ztcWivwtZLducBqfSCgRG9G36f-ZVftw1hSid0LEJKPUjd4dH7fDgLrUK1yyO1AAAguyYjJxcLNGPeJHVlwz-Jmvo7Kq1UafX7m2tRqYOGBQkR4iZJARzN6-KouqYBgnzvE4kAYHfHkLl3zWK5HLradzLBCM9pbYkx7tYeIWw5Ssgg2Gn4l2JlOq0e-3K7WeucKl3CN9B0fYZ4Tlzn_3kQRssewRthrh7k_QFoN_03KiZcEVm-ViodjMkNHgIgo=?_z=5746120&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0

139.45.197.239

200 OK

43 B

URL GET HTTP/2
goomaphy.com/impression/sfE0Rm1_0yoWAppMJIqAzrLyogB9TfThPJ9a2zRs4vZFfjneAgrckjPrwriSn3yqSu3R92ZyRXL5DKMpvAl8Bx3PKVmbBAIfcBzH74yXPLtImOcRAaWNqzCKkAgj8x_oX0s2TQ4bkb2OnIakTu2nwm4ypGDtlnGIBsrv8WwwwXtrnt202HQQ5Qre8Mbj3qf9hN4DHCS7reHG_40kcNMVlVY_H0x6obxsC4HEhjwyn5Q9uvclC4Ek7K3PKdbseFTHchjXCP88gM4YY7g1l2cLS3_Jm-0JB6nFy34VNvKok5gLNvsDOuPnDbcvDg8zmm26rhBOD_bot6KTwd5qWHRFvdsWjGXkIMA-TxibsOP_6iskGj92QYiKy4ncvug9iIRBYdP6C7AmVsiEDVZHwy-jiI6aEAq_W8ffMoRUFDtYjiMEry26pJE1kKdfYLhrPuQFw0LNy2q0XqPN_aUsPOPF4Z9-R0mRCEEOrcZDBQSoVIYBTjNc8xx9AUnFLJIkSrLspGORQ_8-xLeuhwT2TdaD7L5SWnalrw0-133ebUToGYdWOz3hlkIXalhfkvO4ztcWivwtZLducBqfSCgRG9G36f-ZVftw1hSid0LEJKPUjd4dH7fDgLrUK1yyO1AAAguyYjJxcLNGPeJHVlwz-Jmvo7Kq1UafX7m2tRqYOGBQkR4iZJARzN6-KouqYBgnzvE4kAYHfHkLl3zWK5HLradzLBCM9pbYkx7tYeIWw5Ssgg2Gn4l2JlOq0e-3K7WeucKl3CN9B0fYZ4Tlzn_3kQRssewRthrh7k_QFoN_03KiZcEVm-ViodjMkNHgIgo=?_z=5746120&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC5:05:17:84:C2:C0:36:57:FA:8C:2B:4E:FC:3F:41:74:F8:89:05:50
ValiditySun, 21 Apr 2024 05:07:12 GMT - Sat, 20 Jul 2024 05:07:11 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impression/sfE0Rm1_0yoWAppMJIqAzrLyogB9TfThPJ9a2zRs4vZFfjneAgrckjPrwriSn3yqSu3R92ZyRXL5DKMpvAl8Bx3PKVmbBAIfcBzH74yXPLtImOcRAaWNqzCKkAgj8x_oX0s2TQ4bkb2OnIakTu2nwm4ypGDtlnGIBsrv8WwwwXtrnt202HQQ5Qre8Mbj3qf9hN4DHCS7reHG_40kcNMVlVY_H0x6obxsC4HEhjwyn5Q9uvclC4Ek7K3PKdbseFTHchjXCP88gM4YY7g1l2cLS3_Jm-0JB6nFy34VNvKok5gLNvsDOuPnDbcvDg8zmm26rhBOD_bot6KTwd5qWHRFvdsWjGXkIMA-TxibsOP_6iskGj92QYiKy4ncvug9iIRBYdP6C7AmVsiEDVZHwy-jiI6aEAq_W8ffMoRUFDtYjiMEry26pJE1kKdfYLhrPuQFw0LNy2q0XqPN_aUsPOPF4Z9-R0mRCEEOrcZDBQSoVIYBTjNc8xx9AUnFLJIkSrLspGORQ_8-xLeuhwT2TdaD7L5SWnalrw0-133ebUToGYdWOz3hlkIXalhfkvO4ztcWivwtZLducBqfSCgRG9G36f-ZVftw1hSid0LEJKPUjd4dH7fDgLrUK1yyO1AAAguyYjJxcLNGPeJHVlwz-Jmvo7Kq1UafX7m2tRqYOGBQkR4iZJARzN6-KouqYBgnzvE4kAYHfHkLl3zWK5HLradzLBCM9pbYkx7tYeIWw5Ssgg2Gn4l2JlOq0e-3K7WeucKl3CN9B0fYZ4Tlzn_3kQRssewRthrh7k_QFoN_03KiZcEVm-ViodjMkNHgIgo=?_z=5746120&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fgame-2u.com%2FCategory%2Fgame%2Fps4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.339.0 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Cookie: OAID=080058ff712946ebf8816ac2dce180ab
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:59 GMT
content-type: image/gif
content-length: 43
x-trace-id: 27ef9cb06eb7fbb1aa6bac0071c2e679
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg

104.22.33.172

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg
IP
104.22.33.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
17 kB (17173 bytes)
Hash
9c6355bcf96815c755fbba83f9fd8f64
ce698b45fb51ef1494f80f432b7aff0985247724
2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906

HTTP Headers

GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:59 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Fri, 10 May 2024 20:07:36 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 60563
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a17a9aff5abe1-CPH
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:55:00 GMT
expires: Fri, 09 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
age: 126119
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

tzegilo.com/stattag.js

104.21.11.245

200 OK

23 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
104.21.11.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1
ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT

File type
JavaScript source, ASCII text, with very long lines (18486)
Size
23 kB (23183 bytes)
Hash
70ebd404c2e1e7bad13998538b56887c
86e57af8ba3cfc2c004da3311835f6b54ba6d848
d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:54 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2314
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ETnmM9HeYhZ1KqQHgSkKmIQygFynOGtdLklaPiAx4IyVuYOUxa%2FMVsohyIQkSk4Dt1XitM%2BVeupEPYkLgNN62JfxoFqdYQBICRiJk%2FIZohWAb4ppQb5by3oXxLuqyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a178b5e7e0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

game-2u.com/wp-content/themes/poster/js/skip-link-focus-fix.js?ver=20130115

188.114.96.1

200 OK

880 B

URL GET HTTP/3
game-2u.com/wp-content/themes/poster/js/skip-link-focus-fix.js?ver=20130115
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
ASCII text, with very long lines (965), with no line terminators
Size
880 B (880 bytes)
Hash
fa7fe6b99dd294598a44154cb2f424b7
78a909d97e5dfeffa1e1311e2c7ad8633d768960
9600c505b5d0d438a661c90d7b6ef5c6098024ff4e16e58a3577d5d0c837237f

HTTP Headers

GET /wp-content/themes/poster/js/skip-link-focus-fix.js?ver=20130115 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 22 Feb 2023 09:26:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AeJsUCdq0ZmZfSxAZfd53l7maD5Pfmsu8TBK3UI4CHrEUqscITDG1HAyaCsQVLRBN8qm9UpfH1gjhUmjASTlbQbdMysg4vVzdTt3j%2F1Dy298pE0oA2Qyee9fQ0mNXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9c30b59-OSL
content-encoding: br

ad.a-ads.com/1024056?size=728x90

148.251.53.118

200 OK

22 kB

URL GET HTTP/2
ad.a-ads.com/1024056?size=728x90
IP
148.251.53.118:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.a-ads.com
FingerprintC4:DC:49:DF:0A:63:5A:A6:E4:00:AB:0B:FD:E4:94:92:A8:77:B7:C6
ValidityWed, 27 Dec 2023 00:00:00 GMT - Sun, 26 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (19754)
Size
22 kB (22058 bytes)
Hash
314b670b2173402582df30a567ef3a26
ce3a66064bc7d4eadd615b5cea52b996c3fa3bc4
b4a72b5d349a47e21195bca1ebf6f63038bdc7616e82851733ec44f9950de3ba

HTTP Headers

GET /1024056?size=728x90 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://game-2u.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2

game-2u.com/wp-content/cache/wpfc-minified/lmnzjxmp/g4fzp.css

188.114.96.1

200 OK

138 kB

URL GET HTTP/3
game-2u.com/wp-content/cache/wpfc-minified/lmnzjxmp/g4fzp.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type

Size
138 kB (137996 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/wpfc-minified/lmnzjxmp/g4fzp.css HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Thu, 28 Sep 2023 10:01:45 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193316
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ri%2FKte%2BQAjb76b9jy%2F0D097eRIgCFdtX1NcDcWh5zJJIJ9GCfJXfkbBH9xUCUYwFsuw%2FJy1zIhmZrdCdNZHB7J9zmzDBAfE9KgPhgchn1FeHQUwK8d0Ri0cwDgXU%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a177779550b59-OSL
content-encoding: br

fonts.googleapis.com/css?family=Open+Sans%3A100%2C300%2C400%2C700&ver=6.5.2

142.250.74.106

200 OK

17 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A100%2C300%2C400%2C700&ver=6.5.2
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1572)
Size
17 kB (16791 bytes)
Hash
91ac03e451a4baae0cf9b1704a46298e
89f3c96528c24b8cfaad5b25eb6d7b650944eb7f
3309a12da2ed18db77a65bfd52b4fb97a0dfd77e4f22889bd708a010ffd2f9c3

HTTP Headers

GET /css?family=Open+Sans%3A100%2C300%2C400%2C700&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 12:56:51 GMT
date: Fri, 10 May 2024 12:56:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@400;600&display=swap

142.250.74.106

200 OK

4.8 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Inter:wght@400;600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://ad.a-ads.com/1024056?size=728x90
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (4954), with no line terminators
Size
4.8 kB (4828 bytes)
Hash
e2b76956a2f401d42266e922a300fae3
5cb0f3ee8ad65388ed9575419d24c08e9a890b15
1081acb8e37966be8d88856aac1ec4aa5051600dfa001e82765114a15b397f6e

HTTP Headers

GET /css2?family=Inter:wght@400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 12:56:52 GMT
date: Fri, 10 May 2024 12:56:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

game-2u.com/wp-content/plugins/chp-ads-block-detector/assets/img/d.svg

188.114.96.1

200 OK

73 kB

URL GET HTTP/3
game-2u.com/wp-content/plugins/chp-ads-block-detector/assets/img/d.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
SVG Scalable Vector Graphics image
Size
73 kB (72617 bytes)
Hash
496d1ae6bd68127d1c2e7d768de2702d
401094e71de488d2233d229bad8be282130a92b5
51ed1f79aeb5a9c25435cb7b6d5335353448d2eefaac75fa24470d93a0d07fde

HTTP Headers

GET /wp-content/plugins/chp-ads-block-detector/assets/img/d.svg HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: image/svg+xml
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 17 Jan 2024 18:52:12 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Z6szNUc1oTgouSGEVg4evAgtQ6rCjkz0ShzncfT%2B8g0rasMqIhJkFJ%2FbJntQPyekQEiPYRIjneckaJgl59sXImdZA8fdvydt0AEYis0iLG55uw23kfULA7rZd2bPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9b70b59-OSL
content-encoding: br

i0.wp.com/images.vfl.ru/ii/1659861766/f24f649e/38521057.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

4.5 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1659861766/f24f649e/38521057.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.5 kB (4536 bytes)
Hash
4396281581baafb7c1c4b4679c0fb468
0607e33093136c3d4055c037d6417264666bbc89
f6377cbcf78f9980146e05263aa53425bf7aab6f7ec14a8a1a3b68df7d1766fb

HTTP Headers

GET /images.vfl.ru/ii/1659861766/f24f649e/38521057.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 4536
last-modified: Sat, 20 Jan 2024 01:25:37 GMT
expires: Mon, 19 Jan 2026 13:25:37 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1659861766/f24f649e/38521057.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1217bbb1f02bac04"
vary: Accept
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

static.a-ads.com/a-ads-banners/504902/728x90?region=eu-central-1

148.251.53.118

200 OK

700 kB

URL GET HTTP/2
static.a-ads.com/a-ads-banners/504902/728x90?region=eu-central-1
IP
148.251.53.118:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://ad.a-ads.com/1024368?size=728x90
Certificate
IssuerSectigo Limited
Subject*.a-ads.com
FingerprintC4:DC:49:DF:0A:63:5A:A6:E4:00:AB:0B:FD:E4:94:92:A8:77:B7:C6
ValidityWed, 27 Dec 2023 00:00:00 GMT - Sun, 26 Jan 2025 23:59:59 GMT

File type
GIF image data, version 89a, 728 x 90
Size
700 kB (699570 bytes)
Hash
5daae68da69a6ed343bd8207c4234aac
d95c4d8289585cf0aed7f390cd3067d5fd2ecfc3
87b20baa1697f5811246493a7bc6ce4fba8b9b0dd6ab8c1a13263734b016b50b

HTTP Headers

GET /a-ads-banners/504902/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/gif
content-length: 699570
x-amz-id-2: 4fBV5o6mELcIved0wTd4/FVn1to27Xz3Bsq32wpj+RJffcdP62My4Ho81yflVH5P/wYjFynZF9Y=
x-amz-request-id: G8WW491NY93A4RAE
x-amz-replication-status: COMPLETED
last-modified: Fri, 08 Mar 2024 12:56:30 GMT
etag: "5daae68da69a6ed343bd8207c4234aac"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: L_CDJvdAqX8P52mVOwluQIiknajk4bdR
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

game-2u.com/wp-content/themes/poster/foundation/js/foundation.min.js

188.114.96.1

200 OK

109 kB

URL GET HTTP/3
game-2u.com/wp-content/themes/poster/foundation/js/foundation.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
109 kB (109037 bytes)
Hash
9f0af735cc1c2011ddd8e8a94273129a
4fced5505d621687f784e705ce3da6dd02312773
e8fa3bdea50e7c47ebbcab43cbcf073745f1eb08f1dd996781c7098ec215a488

HTTP Headers

GET /wp-content/themes/poster/foundation/js/foundation.min.js HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 22 Feb 2023 09:26:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V%2Fm731HUltrFdUQTR%2FGh8SCq6%2FZ6DB2UbuCJW4STkFUjndiNfhUhnu9sr59Y60%2FtBLEIHZQvavbXyW3VjXL0cskU2DPcDPXqlV3Z5fhgwU8OSPwSjBFul6JDVWxtCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9ca0b59-OSL
content-encoding: br

game-2u.com/Category/game/ps4

188.114.96.1

200 OK

192 kB

URL User Request GET HTTP/2
game-2u.com/Category/game/ps4
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type

Size
192 kB (191817 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Category/game/ps4 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 12:56:50 GMT
content-type: text/html
last-modified: Tue, 07 May 2024 02:37:55 GMT
vary: Accept-Encoding
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=57bZg346NVhxvtWoQHmazH%2BliAtvhiY9rJ%2BXx2m8zcVt9HFX1Vjv2XT9i2a5PvsDp1vJynxRd9kwbTB3s1BHUXFLmEbctpad%2FM26jat0LKUTolkc5%2Fiv%2FV6KRIrssA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a17738f3556c4-OSL
content-encoding: br
X-Firefox-Spdy: h2

c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

14 kB

URL GET HTTP/2
c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /c/6.5.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
content-encoding: br
expires: Sat, 10 May 2025 12:56:51 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700

142.250.74.106

200 OK

11 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
11 kB (10915 bytes)
Hash
155f53ee6339ba8215c3513f7e89a646
1785d802da7b560dc8af49e5c17627ecc88285a0
859bbc3840ddbfac2cbabd04217077fcab6f31a0e24a9f7ff1a2ee6246ba5319

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 12:56:59 GMT
date: Fri, 10 May 2024 12:56:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ad.a-ads.com/1024368?size=728x90

148.251.53.118

200 OK

22 kB

URL GET HTTP/2
ad.a-ads.com/1024368?size=728x90
IP
148.251.53.118:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.a-ads.com
FingerprintC4:DC:49:DF:0A:63:5A:A6:E4:00:AB:0B:FD:E4:94:92:A8:77:B7:C6
ValidityWed, 27 Dec 2023 00:00:00 GMT - Sun, 26 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (19754)
Size
22 kB (22008 bytes)
Hash
54fdcb242625afe668307c1ad0edb332
0542275894f12916eccee0364534059b3cb32f89
3d608bb6e879ee489b60853302ed8637e7c3455ad7d84d3381e33e172ee42614

HTTP Headers

GET /1024368?size=728x90 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://game-2u.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2

static.a-ads.com/a-ads-banners/504918/728x90?region=eu-central-1

148.251.53.118

200 OK

700 kB

URL GET HTTP/2
static.a-ads.com/a-ads-banners/504918/728x90?region=eu-central-1
IP
148.251.53.118:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://ad.a-ads.com/1024056?size=728x90
Certificate
IssuerSectigo Limited
Subject*.a-ads.com
FingerprintC4:DC:49:DF:0A:63:5A:A6:E4:00:AB:0B:FD:E4:94:92:A8:77:B7:C6
ValidityWed, 27 Dec 2023 00:00:00 GMT - Sun, 26 Jan 2025 23:59:59 GMT

File type
GIF image data, version 89a, 728 x 90
Size
700 kB (699570 bytes)
Hash
5daae68da69a6ed343bd8207c4234aac
d95c4d8289585cf0aed7f390cd3067d5fd2ecfc3
87b20baa1697f5811246493a7bc6ce4fba8b9b0dd6ab8c1a13263734b016b50b

HTTP Headers

GET /a-ads-banners/504918/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/gif
content-length: 699570
x-amz-id-2: NnXXsGe0dFYjHt5Yy7Bb7zodD0g7ZYXshANH44NRUxiZFkGngV0ciYQ6ZxWLF+Li+DjZ6wS+VEs=
x-amz-request-id: 3SDVG3D1BRDNQCXP
x-amz-replication-status: COMPLETED
last-modified: Fri, 08 Mar 2024 13:00:11 GMT
etag: "5daae68da69a6ed343bd8207c4234aac"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: _X0Qy5Lxgi4vdz3dLIpFdQK5X0jfGH1R
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

goomaphy.com/401/5746120

139.45.197.239

200 OK

91 kB

URL GET HTTP/2
goomaphy.com/401/5746120
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC5:05:17:84:C2:C0:36:57:FA:8C:2B:4E:FC:3F:41:74:F8:89:05:50
ValiditySun, 21 Apr 2024 05:07:12 GMT - Sat, 20 Jul 2024 05:07:11 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90745 bytes)
Hash
068ebfe43bfbb3433f1a635b17bdf94e
3245fff796fa43a1ecf1253e07f769e11b285c95
fe28b08964f6b64a1d232148fd74b451f68705ce9635c4ff4dde7225c0b59e1b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /401/5746120 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:53 GMT
content-type: application/javascript
x-trace-id: 7886d923c7ca0a5f8818cedc2b92a5f1
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03005889d82f4932e5d59fec3478999b; expires=Sat, 10 May 2025 12:56:53 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

c0.wp.com/c/6.5.2/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

4.2 kB

URL GET HTTP/2
c0.wp.com/c/6.5.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
4.2 kB (4186 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

HTTP Headers

GET /c/6.5.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Sat, 10 May 2025 12:56:51 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

88 kB

URL GET HTTP/2
c0.wp.com/c/6.5.2/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /c/6.5.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
content-encoding: br
expires: Sat, 10 May 2025 12:56:51 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@400;600&display=swap

142.250.74.106

200 OK

4.8 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Inter:wght@400;600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://ad.a-ads.com/1134233?size=336x280
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (4954), with no line terminators
Size
4.8 kB (4828 bytes)
Hash
e2b76956a2f401d42266e922a300fae3
5cb0f3ee8ad65388ed9575419d24c08e9a890b15
1081acb8e37966be8d88856aac1ec4aa5051600dfa001e82765114a15b397f6e

HTTP Headers

GET /css2?family=Inter:wght@400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 12:56:53 GMT
date: Fri, 10 May 2024 12:56:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

c0.wp.com/p/jetpack/13.3.1/css/jetpack.css

192.0.77.37

200 OK

108 kB

URL GET HTTP/2
c0.wp.com/p/jetpack/13.3.1/css/jetpack.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type

Size
108 kB (107794 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/jetpack/13.3.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:51 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 10 Apr 2024 20:25:49 GMT
content-encoding: br
expires: Sat, 10 May 2025 12:56:51 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

game-2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188

0.0.0.0

0 B

URL GET
game-2u.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188
IP
0.0.0.0:0
ASN
#0

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

game-2u.com/wp-content/plugins/featured-image-from-url/includes/html/css/lazyload.css?ver=4.7.0

188.114.96.1

200 OK

399 B

URL GET HTTP/3
game-2u.com/wp-content/plugins/featured-image-from-url/includes/html/css/lazyload.css?ver=4.7.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
ASCII text, with very long lines (423), with no line terminators
Size
399 B (399 bytes)
Hash
ed94fa94e236140899a07d0bb24f233d
8e7f16eda1a41233d4d0f19264382b6222959b6c
2fb43730229e7993c5976889479bdd4488ce1cab9f939f11d7bba6e327c9a5df

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/css/lazyload.css?ver=4.7.0 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Sat, 20 Apr 2024 09:19:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 146127
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BwBmh%2BUDEbOeQUrUYNiMLOdp0mJLtA8wKd5oEb5udC0MmJiFaju3JucKlJyDVWMYV05ce7yPPgVjVWyXE1SU4sA9nvJ%2F6HS9%2FXGjiTnFA2geF4HtbOnZMJ7FHv5yWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9bb0b59-OSL
content-encoding: br

game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.jpg

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
game-2u.com/wp-content/uploads/2019/07/cropped-game2u-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x96, components 3
Size
22 kB (21510 bytes)
Hash
50a6ccb47e60769abd113604a36a8782
841d8534f4c26c18b6e82e248dee42325533024e
11ec5a03426f3043a9027fced80b462983b1c1883e696b68c2f1df864bb1d9a3

HTTP Headers

GET /wp-content/uploads/2019/07/cropped-game2u-1.jpg HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/jpeg
content-length: 21510
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Tue, 15 Nov 2022 18:35:21 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193316
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TZqlSGB9hFw1uoiV5wUHUUMTEwmoULEXNuQ%2B%2FJfdtd1krpWzD82g%2BYO3JeeHS9rC6RXizRr1SXr1oYMtSEquGu2aNkbMc77ts9of%2Byo13OZWakRY2Algop%2BMYEDW3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a177ef9740b59-OSL

game-2u.com/wp-content/themes/poster/js/navigation.js?ver=20120206

188.114.96.1

200 OK

2.3 kB

URL GET HTTP/3
game-2u.com/wp-content/themes/poster/js/navigation.js?ver=20120206
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2474), with no line terminators
Size
2.3 kB (2279 bytes)
Hash
2ea8be541e460acf6fcdc3c80a6d0ba8
49ae474a65aea7683fc0bc240d8188ab4439a8a3
51ef203dec6836fddecac912cb5b68f9e38378018a276975b4f927adc8de574d

HTTP Headers

GET /wp-content/themes/poster/js/navigation.js?ver=20120206 HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: application/javascript
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Wed, 22 Feb 2023 09:26:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193315
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sIsRU3R1XHMnh00P6DOTtpu6DqwNZm5hWd6tvNYZmi0hFXKesYAVx6h4he37w7D63Oxa%2BhPR56YYmax17FjGJf0tVzm8ajm5hbtiXPHxRCjbUO%2B3LuCVxHEhr6Nu1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777d9c10b59-OSL
content-encoding: br

i0.wp.com/images.vfl.ru/ii/1668003490/1ef4e00b/38638574.jpg?resize=180%2C200&ssl=1

192.0.77.2

200 OK

10 kB

URL GET HTTP/3
i0.wp.com/images.vfl.ru/ii/1668003490/1ef4e00b/38638574.jpg?resize=180%2C200&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
10 kB (10184 bytes)
Hash
7a6448704fa583e23f1a837b425fac8d
8d83d6e5e4432bc740b251f6f9c3977919f36588
959941a51c12c1835bccdea7da0f5ced453a27c4f0cc758c89267fe5ed48e251

HTTP Headers

GET /images.vfl.ru/ii/1668003490/1ef4e00b/38638574.jpg?resize=180%2C200&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:52 GMT
content-type: image/webp
content-length: 10184
last-modified: Mon, 15 Jan 2024 09:12:47 GMT
expires: Wed, 14 Jan 2026 21:12:47 GMT
cache-control: public, max-age=63115200
link: <https://images.vfl.ru/ii/1668003490/1ef4e00b/38638574.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3da518b44b59ec7c"
vary: Accept
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *

ad.a-ads.com/1134233?size=336x280

148.251.53.118

200 OK

22 kB

URL GET HTTP/2
ad.a-ads.com/1134233?size=336x280
IP
148.251.53.118:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerSectigo Limited
Subject*.a-ads.com
FingerprintC4:DC:49:DF:0A:63:5A:A6:E4:00:AB:0B:FD:E4:94:92:A8:77:B7:C6
ValidityWed, 27 Dec 2023 00:00:00 GMT - Sun, 26 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (19754)
Size
22 kB (22013 bytes)
Hash
f49928f6e3e90d847081923cef96d2ba
a2a7fb527cb769d350a3e4f032627d7d12b921d8
dadc30d84a71a3c7f2900e56a25632a9f240cc20e4222f0bedc94298e1d26821

HTTP Headers

GET /1134233?size=336x280 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 12:56:53 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://game-2u.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2

game-2u.com/wp-content/cache/wpfc-minified/8uz857ue/g4fzt.css

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
game-2u.com/wp-content/cache/wpfc-minified/8uz857ue/g4fzt.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subjectgame-2u.com
FingerprintAE:9A:59:59:25:23:E6:BF:AC:5C:C9:C8:84:FC:F0:90:99:62:4D:19
ValidityTue, 02 Apr 2024 19:32:12 GMT - Mon, 01 Jul 2024 19:32:11 GMT

File type
ASCII text, with very long lines (1678)
Size
22 kB (21740 bytes)
Hash
040d842fcb8d8075e704f5744d5b8dcb
52988c0d05c48d30ea2d71f906da7aefcef86da9
cb86b12817bb6e0764a86c61b2508498d32ab823949530bcee836a61c1b9abc9

HTTP Headers

GET /wp-content/cache/wpfc-minified/8uz857ue/g4fzt.css HTTP/1.1
Host: game-2u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://game-2u.com/Category/game/ps4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 12:56:51 GMT
content-type: text/css
cache-control: public, max-age=16070400
expires: max-age=A10368000, public
last-modified: Thu, 28 Sep 2023 10:01:49 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 193316
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fO7WlegepN5aVlHktz%2FUwBCMvEao%2FIfJVtgGniFrhs6r00hAQpc0wKsFCF7eAE2Sd3jqS76fGrT9Sr01Rd4vVZnRzxV9kuOFw8C84WaGI9hAo%2FNczxg3%2F3%2FpZ0Bxgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a1777694d0b59-OSL
content-encoding: br

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://game-2u.com/Category/game/ps4
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://game-2u.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 530902
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash