Report - lion.chairhelmet.com/?jp=64faf944bcf70&zoneid=6376139&visitorid=812816101955084288&linkref=369_1220

Report Overview

Submitted URL
lion.chairhelmet.com/?jp=64faf944bcf70&zoneid=6376139&visitorid=812816101955084288&linkref=369_1220_1
IP
35.158.14.91
ASN
#16509 AMAZON-02
Submitted
2024-05-10 15:15:56
Access
public
Website Title
Get you content now!
Final URL
ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lion.chairhelmet.com	232781	2020-01-31	2020-03-03	2024-04-28	555 B	1.3 kB	35.158.14.91
doorphoneboard.com	unknown	unknown	No data	No data	2.8 kB	6.6 kB	116.202.159.170
jump.zmobistein.com	unknown	2016-10-31	2017-05-01	2024-04-27	659 B	977 B	3.125.248.250
zerossl.ocsp.sectigo.com	4049	2018-08-16	2020-05-09	2024-05-09	336 B	1.2 kB	172.64.149.23
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	465 B	7.9 kB	216.58.207.234
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-09	445 B	32 kB	151.101.130.137
ae-grandslamgaming.com	unknown	2023-12-08	2024-01-31	2024-04-18	3.4 kB	190 kB	65.108.95.237
track.ae-grandslamgaming.com	unknown	unknown	No data	No data	1.4 kB	5.9 kB	85.17.54.67
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	540 B	48 kB	142.250.74.67

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 15:15:39	low	85.17.54.67	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2024-05-10 15:15:39	low	85.17.54.67	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2024-05-10 15:15:39	low	85.17.54.67	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2024-05-10 15:15:39	low	85.17.54.67	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	ae-grandslamgaming.com/lpd/js/jquery.min.js?v=2	89 kB	2023-03-07	2024-05-19
Pretty URL ae-grandslamgaming.com/lpd/js/jquery.min.js?v=2 IP 65.108.95.237 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:02 Last Seen2024-05-19 10:44:05 Times Seen36 Hash 93cd09e232ecc0912733dd32c87acb00 b671541d4f0ad5c39ee74b64ac8d53696ed04ea7 5d9cfde10bdc06fb765e3c89753bc1d2eb97debaa266dcb23dabf01c630e000f Loading...

	ae-grandslamgaming.com/lpd/js/jquery.inputmask.bundle.min.js	73 kB	2023-04-27	2024-05-19
Pretty URL ae-grandslamgaming.com/lpd/js/jquery.inputmask.bundle.min.js IP 65.108.95.237 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-27 15:26:38 Last Seen2024-05-19 10:44:05 Times Seen32 Hash 309f005b4c5b79bacbd5757899350705 f6525945fb97d2aaead5adec591f09826e1d7dc0 96f09c6d0b128d5c052268f1af3954b987d403949052e162a2e462ff66ad3607 Loading...

	ae-grandslamgaming.com/lpd/js/main.js?v=23	13 kB	2024-05-10	2024-05-19
Pretty URL ae-grandslamgaming.com/lpd/js/main.js?v=23 IP 65.108.95.237 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 17:16:02 Last Seen2024-05-19 10:44:05 Times Seen3 Hash 05697eee1fad77e981548e5a4962089b f97b5c17012f6c7d472cc4cafadd37aff81d41ef 004f367432f1fd068c12a85b795a8f9e7d2fb5f78b73e3223db14dce0a93fe74 Loading...

	track.ae-grandslamgaming.com/track.js?rtkcmpid=6573388f944a0b00010dd762	4.3 kB	2024-04-21	2024-05-19
Pretty URL track.ae-grandslamgaming.com/track.js?rtkcmpid=6573388f944a0b00010dd762 IP 85.17.54.67 ASN #60781 LeaseWeb Netherlands B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-21 06:16:31 Last Seen2024-05-19 10:44:05 Times Seen8 Hash 63937686d00003ec95a1ed3a651c8d77 deafcc2b3e5237353f20d0b5b97c69d476a18b8c 6b950fbb0a966be7136de68757aec404a4083b064354bf65b520a8a7373b5962 Loading...

HTTP Transactions (21)

	URL	IP	Response	Size
	lion.chairhelmet.com/?jp=64faf944bcf70&zoneid=6376139&visitorid=812816101955084288&linkref=369_1220_1	35.158.14.91		1.1 kB
URL lion.chairhelmet.com/?jp=64faf944bcf70&zoneid=6376139&visitorid=812816101955084288&linkref=369_1220_1 IP 35.158.14.91:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text, with very long lines (345) Size 1.1 kB (1138 bytes) Hash 671d3fdecd294a7d3dbcf20d0f875332 efedde2acd51bf1a2ab918570fcf46b6183ff9e5 6a01e576112def1601531a2ba963523eb4b36531f8d4cb5a29cd054e6a34f586 HTTP Headers GET /?jp=64faf944bcf70&zoneid=6376139&visitorid=812816101955084288&linkref=369_1220_1 HTTP/1.1 Host: lion.chairhelmet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 15:15:30 GMT content-type: text/html content-length: 1138 apigw-requestid: Xj4C9i7JFiAEPqw= X-Firefox-Spdy: h2`

	doorphoneboard.com/lpz/cb/AE/65c36a3836a9c?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139	116.202.159.170		178 B
URL doorphoneboard.com/lpz/cb/AE/65c36a3836a9c?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 IP 116.202.159.170:0 ASN #24940 Hetzner Online GmbH File type HTML document, ASCII text, with CRLF line terminators Size 178 B (178 bytes) Hash 64c2c262f9e85c0f6bfba9a92bcab025 687d2f4e7e252a0cbfa8546132f8acf161c32ae9 99ee7c936423e9ac18771086fdabedfd148dc8507286b98239b13fb48850d9dd HTTP Headers GET /lpz/cb/AE/65c36a3836a9c?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 HTTP/1.1 Host: doorphoneboard.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 301 Moved Permanently Server: nginx/1.16.1 (Ubuntu) Date: Fri, 10 May 2024 15:15:31 GMT Content-Type: text/html Content-Length: 178 Location: https://doorphoneboard.com/lpz/cb/AE/65c36a3836a9c/?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 Connection: keep-alive`

	doorphoneboard.com/lpz/cb/AE/65c36a3836a9c/?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139	116.202.159.170		2.9 kB
URL doorphoneboard.com/lpz/cb/AE/65c36a3836a9c/?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 IP 116.202.159.170:0 ASN #24940 Hetzner Online GmbH File type JavaScript source, ASCII text, with very long lines (346), with CRLF, LF line terminators Size 2.9 kB (2870 bytes) Hash 30d36dbef5f1e152e6d226a71e8f67b9 2ef484de16a14b490d1579d095b6618b8c16c6c5 61157e123cae52e0c451d4ca0665ea389087e6420df646b2ecadcd2302b54b5f HTTP Headers GET /lpz/cb/AE/65c36a3836a9c/?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 HTTP/1.1 Host: doorphoneboard.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx/1.16.1 (Ubuntu) Date: Fri, 10 May 2024 15:15:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Content-Encoding: gzip`

	doorphoneboard.com/lpz/lpfiles/1-Dating/Gifs/Cartoon/loadbarblue.gif	116.202.159.170		2.3 kB
URL doorphoneboard.com/lpz/lpfiles/1-Dating/Gifs/Cartoon/loadbarblue.gif IP 116.202.159.170:0 ASN #24940 Hetzner Online GmbH File type GIF image data, version 89a, 300 x 24 Size 2.3 kB (2298 bytes) Hash c70340b310eeeae7ebcde32165251820 3d9735c0cfe9748ce2eba2683a849262cab56b59 b48ccc9d454a4b109c75336ef80e3ccc7a0ad4bf6fa09c46668249f2a66352d1 HTTP Headers GET /lpz/lpfiles/1-Dating/Gifs/Cartoon/loadbarblue.gif HTTP/1.1 Host: doorphoneboard.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doorphoneboard.com/lpz/cb/AE/65c36a3836a9c/?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx/1.16.1 (Ubuntu) Date: Fri, 10 May 2024 15:15:31 GMT Content-Type: image/gif Content-Length: 2298 Last-Modified: Thu, 08 Sep 2022 13:43:34 GMT Connection: keep-alive ETag: "6319f186-8fa" Accept-Ranges: bytes`

	code.jquery.com/jquery-3.6.0.min.js	151.101.130.137		31 kB
URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.130.137:0 ASN #54113 FASTLY File type JavaScript source, ASCII text, with very long lines (65447) Size 31 kB (30875 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /jquery-3.6.0.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://doorphoneboard.com DNT: 1 Connection: keep-alive Referer: https://doorphoneboard.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: W/"28feccc0-15d9d" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Fri, 10 May 2024 15:15:31 GMT age: 1210312 x-served-by: cache-lga21931-LGA, cache-hel1410030-HEL x-cache: HIT, HIT x-cache-hits: 3, 920124 x-timer: S1715354131.458699,VS0,VE0 vary: Accept-Encoding content-length: 30875 X-Firefox-Spdy: h2

	doorphoneboard.com/favicon.ico	116.202.159.170		123 B
URL doorphoneboard.com/favicon.ico IP 116.202.159.170:0 ASN #24940 Hetzner Online GmbH File type HTML document, ASCII text, with CRLF line terminators Size 123 B (123 bytes) Hash 661f125616424cb5e2f962d2b7135cb4 56a88217c061831e1d80792879042cb9f9311f3f dc15b2d86cce242fae1901cb42953aece90954c28612dedd864fc28a4e7eedaa HTTP Headers GET /favicon.ico HTTP/1.1 Host: doorphoneboard.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doorphoneboard.com/lpz/cb/AE/65c36a3836a9c/?linkref=https%3A%2F%2Fjump.zmobistein.com%2F%3Fjp%3D6618f7e13ccb4%26id%3D9300_AE_1_xxxx_369_1220_1t%26nxl%3D64faf944bcf70_961242_16455%26mjump%3D27x369xe2a3884c068%26visitorid%3D812816101955084288%26zoneid%3D6376139 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Server: nginx/1.16.1 (Ubuntu) Date: Fri, 10 May 2024 15:15:31 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Content-Encoding: gzip`

	jump.zmobistein.com/?jp=6618f7e13ccb4&id=9300_AE_1_xxxx_369_1220_1t&nxl=64faf944bcf70_961242_16455&mjump=27x369xe2a3884c068&visitorid=812816101955084288&zoneid=6376139	3.125.248.250		824 B
URL jump.zmobistein.com/?jp=6618f7e13ccb4&id=9300_AE_1_xxxx_369_1220_1t&nxl=64faf944bcf70_961242_16455&mjump=27x369xe2a3884c068&visitorid=812816101955084288&zoneid=6376139 IP 3.125.248.250:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text Size 824 B (824 bytes) Hash 4fb40ceed0429c81a3c59167bfc8ed79 4c1470d934d13015f496472b5ccc70493b76b72c 4e78ef16e28d4f6d281c13f4965838127595fb08f780309f6c703ee4c26876c4 HTTP Headers GET /?jp=6618f7e13ccb4&id=9300_AE_1_xxxx_369_1220_1t&nxl=64faf944bcf70_961242_16455&mjump=27x369xe2a3884c068&visitorid=812816101955084288&zoneid=6376139 HTTP/1.1 Host: jump.zmobistein.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doorphoneboard.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 15:15:38 GMT content-type: text/html content-length: 824 apigw-requestid: Xj4ENiYYFiAEPhA= X-Firefox-Spdy: h2`

	ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq	65.108.95.237	200 OK	1.6 kB
URL User Request GET HTTP/2 ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type HTML document, ASCII text, with very long lines (611), with CRLF line terminators Size 1.6 kB (1604 bytes) Hash 18ff50538cdb2b0c87f4c44051184f0b 5447892b05a675a01261de41552fa17cfe632138 315786d73bba6d39e9a6cdd36b4e50232e2a0509365af4351f31007e9e6b8cda HTTP Headers GET /lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:38 GMT content-type: text/html; charset=UTF-8 content-length: 1604 content-security-policy: default-src 'self' fonts.googleapis.com .gstatic.com .ae-grandslamgaming.com; x-frame-options: DENY x-content-type-options: nosniff strict-transport-security: max-age=63072000 referrer-policy: no-referrer referer: no-referrer vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	ae-grandslamgaming.com/lpd/images/logo.png?v=2	65.108.95.237	200 OK	11 kB
URL GET HTTP/2 ae-grandslamgaming.com/lpd/images/logo.png?v=2 IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type PNG image data, 200 x 71, 8-bit/color RGBA, non-interlaced Size 11 kB (11086 bytes) Hash 95f7aafd0901b0ebba66198d304f7f58 27b5919e2bd352e0bd68c7fa23dec02b170cd9f5 75196dffa0151e63320588b5849a7ca943aab7b47caf558f17578d8e565994bf HTTP Headers `GET /lpd/images/logo.png?v=2 HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: image/png content-length: 11086 last-modified: Thu, 11 Apr 2024 18:24:17 GMT etag: "66182ad1-2b4e" accept-ranges: bytes X-Firefox-Spdy: h2`

	ae-grandslamgaming.com/lpd/images/arrow.png	65.108.95.237	200 OK	2.6 kB
URL GET HTTP/2 ae-grandslamgaming.com/lpd/images/arrow.png IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type PNG image data, 200 x 154, 8-bit/color RGBA, non-interlaced Size 2.6 kB (2611 bytes) Hash 1e078cab1ae3bfc9f33d55dcc1d90ec8 01533008e7859285b73ce0e48cfc4d3922446807 a0618d3bd55ef30a3df4857668bf4e77ad0cddc9e846f4813e04764ad6ffd5c4 HTTP Headers `GET /lpd/images/arrow.png HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: image/png content-length: 2611 last-modified: Thu, 11 Apr 2024 18:24:15 GMT etag: "66182acf-a33" accept-ranges: bytes X-Firefox-Spdy: h2`

	ae-grandslamgaming.com/lpd/js/main.js?v=23	65.108.95.237	200 OK	5.5 kB
URL GET HTTP/2 ae-grandslamgaming.com/lpd/js/main.js?v=23 IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type gzip compressed data, max speed, from Unix Size 5.5 kB (5453 bytes) Hash f29a195d28b29634a88f85530ab2371e f6afdd20253523d9965498cd2015aa778a5880d6 242cf62d81fa1480049e5307e5ec641e2f7ee903765c40580f38918815af4ddf HTTP Headers `GET /lpd/js/main.js?v=23 HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: application/javascript; charset=utf-8 last-modified: Fri, 03 May 2024 17:51:34 GMT etag: W/"66352426-3315" content-encoding: gzip X-Firefox-Spdy: h2`

	zerossl.ocsp.sectigo.com/	172.64.149.23		727 B
URL zerossl.ocsp.sectigo.com/ IP 172.64.149.23:0 ASN #13335 CLOUDFLARENET File type data Size 727 B (727 bytes) Hash 47ba42919b1aa37602d8180babcfd344 54c2ef533faf15f93237a9c81c2c54540f44d4d4 5f8f235cb994116b76a7a0caf403a2786c0b4894003f84874820cb7163e85326 HTTP Headers `POST / HTTP/1.1 Host: zerossl.ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 10 May 2024 15:15:39 GMT Content-Type: application/ocsp-response Content-Length: 727 Connection: keep-alive Last-Modified: Tue, 07 May 2024 06:00:00 GMT Expires: Tue, 14 May 2024 05:59:59 GMT Etag: "54c2ef533faf15f93237a9c81c2c54540f44d4d4" Cache-Control: max-age=311659,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 881ae2caaa8b0b3d-OSL`

	track.ae-grandslamgaming.com/track.js?rtkcmpid=6573388f944a0b00010dd762	85.17.54.67	200 OK	4.3 kB
URL GET HTTP/1.1 track.ae-grandslamgaming.com/track.js?rtkcmpid=6573388f944a0b00010dd762 IP 85.17.54.67:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerZeroSSL Subjecttrack.ae-grandslamgaming.com Fingerprint16:D2:1F:48:58:F8:3F:2D:B6:B3:C9:42:39:6B:55:57:99:32:4A:9D ValidityWed, 06 Mar 2024 00:00:00 GMT - Tue, 04 Jun 2024 23:59:59 GMT File type JavaScript source, ASCII text Size 4.3 kB (4304 bytes) Hash 63937686d00003ec95a1ed3a651c8d77 deafcc2b3e5237353f20d0b5b97c69d476a18b8c 6b950fbb0a966be7136de68757aec404a4083b064354bf65b520a8a7373b5962 HTTP Headers `GET /track.js?rtkcmpid=6573388f944a0b00010dd762 HTTP/1.1 Host: track.ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx/1.20.2 Date: Fri, 10 May 2024 15:15:39 GMT Content-Type: text/plain; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range`

	ae-grandslamgaming.com/lpd/js/jquery.min.js?v=2	65.108.95.237	200 OK	83 kB
URL GET HTTP/2 ae-grandslamgaming.com/lpd/js/jquery.min.js?v=2 IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type gzip compressed data, max speed, from Unix Size 83 kB (82691 bytes) Hash 2cf790d12c7215453b9052114e8560a0 dd9e5120a5300abe4424b032618258f8921e431d 7e6469914abe19bc0490420f09d07c5c28c61263d1a503812e51e2a17e2a8095 HTTP Headers `GET /lpd/js/jquery.min.js?v=2 HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: application/javascript; charset=utf-8 last-modified: Thu, 11 Apr 2024 19:24:13 GMT etag: W/"661838dd-15d44" content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2	142.250.74.67	200 OK	47 kB
URL GET HTTP/2 fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP 142.250.74.67:443 ASN #15169 GOOGLE Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT File type Web Open Font Format (Version 2), TrueType, length 46704, version 1.0 Size 47 kB (46704 bytes) Hash 30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42 HTTP Headers GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://ae-grandslamgaming.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 46704 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 06 May 2024 10:54:17 GMT expires: Tue, 06 May 2025 10:54:17 GMT cache-control: public, max-age=31536000 last-modified: Wed, 13 Sep 2023 23:49:07 GMT content-type: font/woff2 age: 361282 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ae-grandslamgaming.com/lpd/js/jquery.inputmask.bundle.min.js	65.108.95.237	200 OK	74 kB
URL GET HTTP/2 ae-grandslamgaming.com/lpd/js/jquery.inputmask.bundle.min.js IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type gzip compressed data, max speed, from Unix Size 74 kB (73750 bytes) Hash 4f9f61a4eafc26c064a7925941689f99 3911961d674a12253ca4eb2841425d5bd39dccf1 5946f640cd90011d28cbe56a7b21e4d8609bea8ddf21c7c593b0454f2e75d807 HTTP Headers `GET /lpd/js/jquery.inputmask.bundle.min.js HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: application/javascript; charset=utf-8 last-modified: Thu, 11 Apr 2024 19:24:13 GMT etag: W/"661838dd-11b80" content-encoding: gzip X-Firefox-Spdy: h2`

	ae-grandslamgaming.com/lpd/images/favicon.png	65.108.95.237	200 OK	940 B
URL GET HTTP/2 ae-grandslamgaming.com/lpd/images/favicon.png IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced Size 940 B (940 bytes) Hash 40171a53d5fd2a9cac038eb67eca8562 5994a159088ab00c94c2fe2d70fa312de6df3af0 02f68e4b4e66e2ad53ccba9bcf77323c04e4be95bd96895a25a3fbd2bd5e06d7 HTTP Headers `GET /lpd/images/favicon.png HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: image/png content-length: 940 last-modified: Thu, 11 Apr 2024 18:24:16 GMT etag: "66182ad0-3ac" accept-ranges: bytes X-Firefox-Spdy: h2`

	track.ae-grandslamgaming.com/6573388f944a0b00010dd762?format=json&ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq&sub19=&sub20=	85.17.54.67	200 OK	80 B
URL GET HTTP/1.1 track.ae-grandslamgaming.com/6573388f944a0b00010dd762?format=json&ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq&sub19=&sub20= IP 85.17.54.67:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerZeroSSL Subjecttrack.ae-grandslamgaming.com Fingerprint16:D2:1F:48:58:F8:3F:2D:B6:B3:C9:42:39:6B:55:57:99:32:4A:9D ValidityWed, 06 Mar 2024 00:00:00 GMT - Tue, 04 Jun 2024 23:59:59 GMT File type JSON text data Size 80 B (80 bytes) Hash 4481e64ff944ba5b7a09a926208b8ee0 b4bd08d55fc52e495335e8821b10969a4b19c46b c61241f249cf2492602f78d5bf3b86d747fd2e6513f0c7775634f93513c5ad59 HTTP Headers GET /6573388f944a0b00010dd762?format=json&ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq&sub19=&sub20= HTTP/1.1 Host: track.ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ae-grandslamgaming.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: nginx/1.20.2 Date: Fri, 10 May 2024 15:15:39 GMT Content-Type: application/json Content-Length: 80 Connection: keep-alive Set-Cookie: redcmps=W3siaWQiOiI2NTczMzg4Zjk0NGEwYjAwMDEwZGQ3NjIiLCJ0IjoiMjAyNC0wNS0xMFQxNToxNTozOS44NTI0MzQ3NzJaIn1d; Path=/; Domain=track.ae-grandslamgaming.com; Expires=Sat, 11 May 2024 15:15:39 GMT; Secure; SameSite=None redhash=NjYzZTNhMWJjOTAwYmMwMDAxOWY3Y2QyfDB8NjU3MzM4OGY5NDRhMGIwMDAxMGRkNzYyfHwyNWNiNDkxNi02MDQwLTQ4ZDAtYTA3MC00MDQ1Yzc4ZjBlOTJ8MTcxNTM1NDEzOQ==; Path=/; Domain=track.ae-grandslamgaming.com; Expires=Sat, 10 May 2025 15:15:39 GMT; Secure; SameSite=None Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range

	track.ae-grandslamgaming.com/view?clickid=663e3a1bc900bc00019f7cd2	85.17.54.67	204 No Content	0 B
URL GET HTTP/1.1 track.ae-grandslamgaming.com/view?clickid=663e3a1bc900bc00019f7cd2 IP 85.17.54.67:443 ASN #60781 LeaseWeb Netherlands B.V. Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerZeroSSL Subjecttrack.ae-grandslamgaming.com Fingerprint16:D2:1F:48:58:F8:3F:2D:B6:B3:C9:42:39:6B:55:57:99:32:4A:9D ValidityWed, 06 Mar 2024 00:00:00 GMT - Tue, 04 Jun 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /view?clickid=663e3a1bc900bc00019f7cd2 HTTP/1.1 Host: track.ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ae-grandslamgaming.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 204 No Content Server: nginx/1.20.2 Date: Fri, 10 May 2024 15:15:40 GMT Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range`

	ae-grandslamgaming.com/lpd/css/style.css?v=17	65.108.95.237	200 OK	9.3 kB
URL GET HTTP/2 ae-grandslamgaming.com/lpd/css/style.css?v=17 IP 65.108.95.237:443 ASN #24940 Hetzner Online GmbH Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerLet's Encrypt Subjectae-grandslamgaming.com Fingerprint5A:11:63:C5:DD:84:E4:51:F1:A8:83:AD:89:E1:F9:F6:A2:1E:AB:8A ValiditySat, 06 Apr 2024 13:50:10 GMT - Fri, 05 Jul 2024 13:50:09 GMT File type ASCII text, with very long lines (10757), with no line terminators Size 9.3 kB (9321 bytes) Hash 5ae29885fc46dcf1421808e4731f0d30 5a8bd3625a11b906c8e457de730443c8fabd9a15 9e2dafd73d40ad5fcbec7edd9547f5c76fea943cde3ff256d5b8d4bb44eca4e8 HTTP Headers `GET /lpd/css/style.css?v=17 HTTP/1.1 Host: ae-grandslamgaming.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 10 May 2024 15:15:39 GMT content-type: text/css last-modified: Thu, 11 Apr 2024 18:24:14 GMT etag: W/"66182ace-2469" content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css2?family=Inter:wght@400;700;900&display=swap	216.58.207.234	200 OK	7.2 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@400;700;900&display=swap IP 216.58.207.234:443 ASN #15169 GOOGLE Requested by https://ae-grandslamgaming.com/lpd/?ref_id=9300_369_1220_1tt_6618f7e13ccb4_27x369xe2a3884c068&=369-7vOQY_XLZq Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT File type ASCII text, with very long lines (7431), with no line terminators Size 7.2 kB (7242 bytes) Hash caea16a563b69ca6c168c248a0efa98c 5c7594dedc46cb9aa50ff37ce3103f5c5b6e96b0 35da5b3328d3f7fe3e45d6c612186fc8a34ae8abece97992ecc1f0d68f04c7ac HTTP Headers `GET /css2?family=Inter:wght@400;700;900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://ae-grandslamgaming.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 10 May 2024 15:15:39 GMT date: Fri, 10 May 2024 15:15:39 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type