Report - rileimply.com/cavtpcge95?adb=n&dev=r&key=8eed0af3ba88434b397fe82f5912d434&kw=["livecamrips","com","saraarchbould","live","show","recorded","on","2024-03-30","16","24","09"]&paj=41&psid=CF-3428_layer_0&refer=https://livecamrips.com/video/2987668&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-4&uuid=090a20bf-1476-4e82-adc9-e295df906950:3:1&v=24.4.2204

Report Overview

Submitted URL
rileimply.com/cavtpcge95?adb=n&dev=r&key=8eed0af3ba88434b397fe82f5912d434&kw=["livecamrips","com","saraarchbould","live","show","recorded","on","2024-03-30","16","24","09"]&paj=41&psid=CF-3428_layer_0&refer=https://livecamrips.com/video/2987668&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-4&uuid=090a20bf-1476-4e82-adc9-e295df906950:3:1&v=24.4.2204
IP
192.243.61.227
ASN
#39572 DataWeb Global Group B.V.
Submitted
2024-04-20 16:39:42
Access
public
Website Title
IO online multiplayer action game. Survive and grow eating other players cells.
Final URL
eatcells.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.icone-png.com	unknown	2013-09-26	2017-01-31	2024-03-28	426 B	44 kB	194.150.236.240
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-20	2.1 kB	102 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-20	429 B	2.5 kB	142.250.74.106
rileimply.com	unknown	2024-04-16	2024-04-16	2024-04-19	5.0 kB	5.1 kB	192.243.61.227
timelyactive.com	unknown	2023-06-19	2023-06-19	2024-04-05	628 B	605 B	88.85.94.240
eatcells.com	438054	2018-08-16	2018-08-23	2024-04-18	6.3 kB	390 kB	94.130.177.84
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-19	871 B	163 kB	142.250.74.168
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-04-19	1.0 kB	137 kB	104.18.10.207
carefreestage.com	unknown	2023-12-08	2023-12-08	2024-04-18	453 B	666 B	88.85.94.237

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	rileimply.com	Sinkholed
2024-04-20	medium	rileimply.com	Sinkholed
2024-04-20	medium	timelyactive.com	Sinkholed
2024-04-20	medium	rileimply.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	eatcells.com/assets/js/new_quadtree.js	3.6 kB	2023-03-13	2024-04-27
Pretty URL eatcells.com/assets/js/new_quadtree.js IP 94.130.177.84 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:24:22 Last Seen2024-04-27 14:54:55 Times Seen589 Hash 97535307fed0d8618244e4d8c19ee53f a58c1a5deed12f5c7898262e74c380377cdd95ba 51faf127356027d068fa984e84e4fe2dcbe3d748f73fc3fb7944310c08b8187e Loading...

	eatcells.com/	661 B	2023-03-13	2024-04-27
Pretty URL eatcells.com/ IP 94.130.177.84 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 10:24:22 Last Seen2024-04-27 14:54:55 Times Seen304 Hash 6658153b9972a62f00c72c3f02d5d151 01371da660c1055c93cc325096f0d3037dd7171f 2d27c8d667be0a7aa6c1fc102702771c3f2d35c6029ae98947d9f9a3e3f06cab Loading...

	eatcells.com/	203 B	2023-03-13	2024-04-27
Pretty URL eatcells.com/ IP 94.130.177.84 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 10:24:22 Last Seen2024-04-27 14:54:55 Times Seen304 Hash 2a828610eb10e6505d75b9b6d0bcc7bb 6718a16fbb1ac4d27e1b883cb7f8928d435cabb4 f9ebd1b1ec1c92605c287ae9332c0e67576310e40bc9b0c313f4f549f5f1c78b Loading...

	eatcells.com/	409 B	2024-04-01	2024-04-27
Pretty URL eatcells.com/ IP 94.130.177.84 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-01 08:44:56 Last Seen2024-04-27 14:54:55 Times Seen14 Hash 40954b4e085db5f6bbef73f1ad00ed6d 85f05ddd71837083a9856508995ed3556e6d7052 90bc0b32ccd83b769fae2802e869cb80166467cd68222793d957aa18f2a8338e Loading...

	carefreestage.com/c.De9/6nbE2l5tlqSYWyQO9/NeT-EE5qOZTnQm1dNZi/0D1CMqTAk/5CNjDnU/3h	0 B	2023-03-07	2024-05-03
Pretty URL carefreestage.com/c.De9/6nbE2l5tlqSYWyQO9/NeT-EE5qOZTnQm1dNZi/0D1CMqTAk/5CNjDnU/3h IP 88.85.94.237 ASN #35415 Webzilla B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-03 18:28:04 Times Seen37310460 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	eatcells.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-03
Pretty URL eatcells.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-03 18:21:39 Times Seen344467 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	eatcells.com/assets/js/new_main_out4.js?3512341123	66 kB	2023-03-13	2024-04-27
Pretty URL eatcells.com/assets/js/new_main_out4.js?3512341123 IP 94.130.177.84 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:24:22 Last Seen2024-04-27 14:54:55 Times Seen608 Hash a09324e4f90b9d6437ded27984bfd1c9 654f526654aa638af0c7cfb378139b8bc0e9b25c 3fe37eefb8e3c4306bb7614aa524baba49a90960a7598053fee3f1d14af05fc7 Loading...

	www.googletagmanager.com/gtag/js?id=UA-136886237-1	202 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-136886237-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 18:39:43 Last Seen2024-04-20 18:39:43 Times Seen2 Hash 57c127bde9669fbecb876d2f43e07cfc ec625872a49a6195750c6be159c99dfdbefa2cc9 3fea3798dd10e75d9227e402dd5bb9862257b3f1822d5fafa9830e1421ddb6eb Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-03
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-03 18:21:39 Times Seen343961 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=G-7KY1EBYBZS&l=dataLayer&cx=c	250 kB	2024-04-20	2024-04-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-7KY1EBYBZS&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 18:39:43 Last Seen2024-04-20 18:39:43 Times Seen2 Hash 119a1082bd705776912463ad2f9f9919 617c5b3c2461af514831e5033546509136ce5dcc b1eea0d6b1c198c775d1e2315f74d240cdc8abbb16e5be264ae5b997131f542d Loading...

HTTP Transactions (29)

URL IP Response Size

rileimply.com/cavtpcge95?adb=n&dev=r&key=8eed0af3ba88434b397fe82f5912d434&kw=[%22livecamrips%22,%22com%22,%22saraarchbould%22,%22live%22,%22show%22,%22recorded%22,%22on%22,%222024-03-30%22,%2216%22,%2224%22,%2209%22]&paj=41&psid=CF-3428_layer_0&refer=https://livecamrips.com/video/2987668&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-4&uuid=090a20bf-1476-4e82-adc9-e295df906950:3:1&v=24.4.2204

192.243.61.227

1.7 kB

URL
rileimply.com/cavtpcge95?adb=n&dev=r&key=8eed0af3ba88434b397fe82f5912d434&kw=[%22livecamrips%22,%22com%22,%22saraarchbould%22,%22live%22,%22show%22,%22recorded%22,%22on%22,%222024-03-30%22,%2216%22,%2224%22,%2209%22]&paj=41&psid=CF-3428_layer_0&refer=https://livecamrips.com/video/2987668&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-4&uuid=090a20bf-1476-4e82-adc9-e295df906950:3:1&v=24.4.2204
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text, with very long lines (932)
Size
1.7 kB (1712 bytes)
Hash
c3e9aa9135b944cc2403b511c96fce69
6b32fc0059bfd1c81bcb930b005c3b2ad997305d
4968cc7196d9db7acc63d3adf854808e81a3bc87fa4fcf7c690754755531da46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cavtpcge95?adb=n&dev=r&key=8eed0af3ba88434b397fe82f5912d434&kw=[%22livecamrips%22,%22com%22,%22saraarchbould%22,%22live%22,%22show%22,%22recorded%22,%22on%22,%222024-03-30%22,%2216%22,%2224%22,%2209%22]&paj=41&psid=CF-3428_layer_0&refer=https://livecamrips.com/video/2987668&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=-4&uuid=090a20bf-1476-4e82-adc9-e295df906950:3:1&v=24.4.2204 HTTP/1.1
Host: rileimply.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 16:39:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=22400125; expires=Sun, 21 Apr 2024 16:39:15 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.5ldLBpjXNmqK9EfZzg-4i9sLakkBLcD0lU41NJzBnTc; expires=Sat, 20 Apr 2024 16:40:15 GMT
uid_id2=090a20bf-1476-4e82-adc9-e295df906950:3:1; expires=Sat, 27 Apr 2024 16:39:15 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: db2a2bf52bafac6166667f8d4c353aca
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

rileimply.com/api/users?token=L2NhdnRwY2dlOTU_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&uuid=090a20bf-1476-4e82-adc9-e295df906950%3A3%3A1&pii=&in=false

192.243.61.227

302 Found

0 B

URL User Request GET HTTP/1.1
rileimply.com/api/users?token=L2NhdnRwY2dlOTU_YWRiPW4mZGV2PXIma2V5PThlZWQwYWYzYmE4ODQzNGIzOTdmZTgyZjU5MTJkNDM0Jmt3PSU1QiUyMmxpdmVjYW1yaXBzJTIyJTJDJTIyY29tJTIyJTJDJTIyc2FyYWFyY2hib3VsZCUyMiUyQyUyMmxpdmUlMjIlMkMlMjJzaG93JTIyJTJDJTIycmVjb3JkZWQlMjIlMkMlMjJvbiUyMiUyQyUyMjIwMjQtMDMtMzAlMjIlMkMlMjIxNiUyMiUyQyUyMjI0JTIyJTJDJTIyMDklMjIlNUQmcGFqPTQxJnBzaWQ9Q0YtMzQyOF9sYXllcl8wJnBzdD0xNzEzNjMxMjE1JnJlZmVyPWh0dHBzJTNBJTJGJTJGbGl2ZWNhbXJpcHMuY29tJTJGdmlkZW8lMkYyOTg3NjY4JnJlcz0xNC4zMSZybXRjPXQmc2NySGVpZ2h0PTEwODAmc2NyV2lkdGg9MTkyMCZzaGlwPSZzaHU9NGM5MDRhMmM0NTMyNjI2NjRlZDM5NTcyMTJkYjA2MmZhZjAyZWVhN2U2MWZkNDAxMGYwZjRlZjQxNWIzYThlMTFlNDAwOGY0ZjJjYTY4MWIwNGM0MDEyZDhiYzZhOTdjMjg0NWJlYWU0YTM0YTMyZGYzNWI3MjJjNjA3ZGYwYjc2ZDZjMDc2YTlhZGE2ZDdiZGMzMmYyNGY3Y2Q3NTRkMWY5MzdhNjlhNWEyMTM0NTQ3NTc0ZWUyYmM2MGI1MiZzdWIzPWludm9rZV9sYXllciZ0ej0tNCZ1dWlkPTA5MGEyMGJmLTE0NzYtNGU4Mi1hZGM5LWUyOTVkZjkwNjk1MCUzQTMlM0ExJnY9MjQuNC4yMjA0&uuid=090a20bf-1476-4e82-adc9-e295df906950%3A3%3A1&pii=&in=false
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectrileimply.com
Fingerprint2D:17:72:37:A2:CB:9A:54:7C:61:06:13:31:1A:94:BF:04:17:89:9F
ValidityTue, 16 Apr 2024 14:03:20 GMT - Mon, 15 Jul 2024 14:03:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/users?token=L2NhdnRwY2dlOTU_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&uuid=090a20bf-1476-4e82-adc9-e295df906950%3A3%3A1&pii=&in=false HTTP/1.1
Host: rileimply.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rileimply.com/api/users?token=L2NhdnRwY2dlOTU_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0yMjQwMDEyNQ
Cookie: u_pl=22400125; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjQwMDEyNSwiayI6IjhlZWQwYWYzYmE4ODQzNGIzOTdmZTgyZjU5MTJkNDM0Iiwic2lkIjoiQ0YtMzQyOF9sYXllcl8wIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNDE4NzQ5LCJwaWQiOjgxNDY0MCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyOCwicHQiOjQsInBrIjoiY2F2dHBjZ2U5NSIsImNwa3MiOnsiMjkiOiI1YzQxMDY3MGU2OTBjZTlkZjBkOWRjOTc0MzUwMzU4OCJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vbGl2ZWNhbXJpcHMuY29tL3ZpZGVvLzI5ODc2NjgiLCJhciI6W119fQ.5ldLBpjXNmqK9EfZzg-4i9sLakkBLcD0lU41NJzBnTc; uid_id2=090a20bf-1476-4e82-adc9-e295df906950:3:1; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 16:39:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://timelyactive.com/b.3qVG0/Pu3VpTvEbQm/VtJkZdDb0q0gO/DGUs0BMLDYY-1lL/TZQd4INbT/QmwiNLj/Yn?clickId=38b6b346f7c6eba2bc817a8db5b5efa9&sId=22400125
Set-Cookie: uid_id2=090a20bf-1476-4e82-adc9-e295df906950:3:1; expires=Sat, 27 Apr 2024 16:39:16 GMT
iprc3213cf98406925d75314b1a1593834e0=4595700; expires=Sun, 21 Apr 2024 16:39:16 GMT
pdhtkv=true; expires=Sun, 21 Apr 2024 16:39:16 GMT
uncs=1; expires=Sun, 21 Apr 2024 16:39:16 GMT
pdhtkv28=true; expires=Sun, 21 Apr 2024 16:39:16 GMT
uncs28=1; expires=Sun, 21 Apr 2024 16:39:16 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c1fcee99d35e22193b73e1ee4b0bd5cc
Strict-Transport-Security: max-age=0; includeSubdomains

timelyactive.com/b.3qVG0/Pu3VpTvEbQm/VtJkZdDb0q0gO/DGUs0BMLDYY-1lL/TZQd4INbT/QmwiNLj/Yn?clickId=38b6b346f7c6eba2bc817a8db5b5efa9&sId=22400125

88.85.94.240

302 Found

0 B

URL User Request GET HTTP/2
timelyactive.com/b.3qVG0/Pu3VpTvEbQm/VtJkZdDb0q0gO/DGUs0BMLDYY-1lL/TZQd4INbT/QmwiNLj/Yn?clickId=38b6b346f7c6eba2bc817a8db5b5efa9&sId=22400125
IP
88.85.94.240:443
ASN
#35415 Webzilla B.V.

Certificate
IssuerLet's Encrypt
Subjecttimelyactive.com
Fingerprint7C:C1:01:39:67:32:12:C3:B7:FC:B6:20:2C:A0:C6:1F:5F:3D:6E:F8
ValiditySat, 24 Feb 2024 23:33:32 GMT - Fri, 24 May 2024 23:33:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b.3qVG0/Pu3VpTvEbQm/VtJkZdDb0q0gO/DGUs0BMLDYY-1lL/TZQd4INbT/QmwiNLj/Yn?clickId=38b6b346f7c6eba2bc817a8db5b5efa9&sId=22400125 HTTP/1.1
Host: timelyactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rileimply.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Sat, 20 Apr 2024 16:39:16 GMT
content-type: text/html;charset=UTF-8
content-length: 0
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
location: https://eatcells.com/
referrer-policy: no-referrer
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

rileimply.com/favicon.ico

172.240.253.132

0 B

URL
rileimply.com/favicon.ico
IP
172.240.253.132:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: rileimply.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rileimply.com/api/users?token=L2NhdnRwY2dlOTU_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0yMjQwMDEyNQ
Cookie: u_pl=22400125; ain=eyJhbGciOiJIUzI1NiJ9.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.5ldLBpjXNmqK9EfZzg-4i9sLakkBLcD0lU41NJzBnTc; uid_id2=090a20bf-1476-4e82-adc9-e295df906950:3:1; cjs=t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 16:39:16 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 59aac22265098ec9e2af6ae628aa7396
Strict-Transport-Security: max-age=0; includeSubdomains

eatcells.com/assets/css/new_index.css

94.130.177.84

200 OK

3.9 kB

URL GET HTTP/2
eatcells.com/assets/css/new_index.css
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
ASCII text
Size
3.9 kB (3923 bytes)
Hash
0070cb8e88e6776819b1ae397d40f209
db8d333e839bcc76d38026c6710e4be9d9cecd95
c611bde29c5e0950bcee6719767678d98b850288f452a6f7b641dae680fe6096

HTTP Headers

GET /assets/css/new_index.css HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: text/css
content-length: 3923
last-modified: Wed, 04 Sep 2019 20:36:34 GMT
etag: "5d702052-f53"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/assets/css/new_gallery.css

94.130.177.84

200 OK

1.8 kB

URL GET HTTP/2
eatcells.com/assets/css/new_gallery.css
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
ASCII text
Size
1.8 kB (1791 bytes)
Hash
7fe0557524dbf60d5b7d589d11f72fd6
ebbce6c0589f46dc0f8959e49a1778ab01c6b0f5
a374fd62e3d4aa19adba05d455c79bc3352b24e744d455156dcc275947079f9e

HTTP Headers

GET /assets/css/new_gallery.css HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: text/css
content-length: 1791
last-modified: Wed, 04 Sep 2019 20:36:34 GMT
etag: "5d702052-6ff"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/assets/js/new_quadtree.js

94.130.177.84

200 OK

3.6 kB

URL GET HTTP/2
eatcells.com/assets/js/new_quadtree.js
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
JavaScript source, ASCII text
Size
3.6 kB (3639 bytes)
Hash
97535307fed0d8618244e4d8c19ee53f
a58c1a5deed12f5c7898262e74c380377cdd95ba
51faf127356027d068fa984e84e4fe2dcbe3d748f73fc3fb7944310c08b8187e

HTTP Headers

GET /assets/js/new_quadtree.js HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: application/javascript
content-length: 3639
last-modified: Wed, 04 Sep 2019 20:36:33 GMT
etag: "5d702051-e37"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-136886237-1

142.250.74.168

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-136886237-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73148 bytes)
Hash
57c127bde9669fbecb876d2f43e07cfc
ec625872a49a6195750c6be159c99dfdbefa2cc9
3fea3798dd10e75d9227e402dd5bb9862257b3f1822d5fafa9830e1421ddb6eb

HTTP Headers

GET /gtag/js?id=UA-136886237-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 16:39:16 GMT
expires: Sat, 20 Apr 2024 16:39:16 GMT
cache-control: private, max-age=900
last-modified: Sat, 20 Apr 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73148
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

eatcells.com/assets/js/new_main_out4.js?3512341123

94.130.177.84

200 OK

66 kB

URL GET HTTP/2
eatcells.com/assets/js/new_main_out4.js?3512341123
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
JavaScript source, ASCII text
Size
66 kB (66367 bytes)
Hash
a09324e4f90b9d6437ded27984bfd1c9
654f526654aa638af0c7cfb378139b8bc0e9b25c
3fe37eefb8e3c4306bb7614aa524baba49a90960a7598053fee3f1d14af05fc7

HTTP Headers

GET /assets/js/new_main_out4.js?3512341123 HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: application/javascript
content-length: 66367
last-modified: Wed, 17 Mar 2021 11:17:47 GMT
etag: "6051e55b-1033f"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/assets/img/game-2048.jpg

94.130.177.84

200 OK

35 kB

URL GET HTTP/2
eatcells.com/assets/img/game-2048.jpg
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 1200x1200, components 3
Size
35 kB (35226 bytes)
Hash
83c6bcd32c7e90ab34e5a8f02e642e8d
97db55b7b37fc4d477057d0e35509af231f770fa
8eb5894f89bf0e0c90e32872557f0ed0bdc95e15518c4cd7eab98a629e17c65e

HTTP Headers

GET /assets/img/game-2048.jpg HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: image/jpeg
content-length: 35226
last-modified: Wed, 04 Sep 2019 20:36:34 GMT
etag: "5d702052-899a"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/assets/img/game-floppy.jpg

94.130.177.84

200 OK

22 kB

URL GET HTTP/2
eatcells.com/assets/img/game-floppy.jpg
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3
Size
22 kB (21816 bytes)
Hash
5ad1eea8c383ba8227fc0202cd53328b
555dced4831f55755a8b94b272be77963c7f243d
df91f7b73203d9477560338afd906fdaea7be4359efd8b4f5c710ea040236f88

HTTP Headers

GET /assets/img/game-floppy.jpg HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: image/jpeg
content-length: 21816
last-modified: Wed, 04 Sep 2019 20:36:35 GMT
etag: "5d702053-5538"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/

94.130.177.84

200 OK

12 kB

URL User Request GET HTTP/2
eatcells.com/
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
gzip compressed data, max speed, from Unix
Size
12 kB (12360 bytes)
Hash
77b7867b28be6d25fbeea11465530eed
4e7af699fb2e59cb92412168e72e2fce50826420
6c67f1ab123d0007e639edf659a105a7f5f4f387ab3ce5b5c2a63263a7522c3b

HTTP Headers

GET / HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
X-Firefox-Spdy: h2

eatcells.com/assets/img/eject.png?4

94.130.177.84

200 OK

8.3 kB

URL GET HTTP/2
eatcells.com/assets/img/eject.png?4
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced
Size
8.3 kB (8253 bytes)
Hash
cdbc5150d163614cf9278cb6f4796fb1
80d9f03f734e95a89f39f2dd076d4466ed99b1bf
0efc772d5985fdb5a8b8bdb62af4732de2ec1ebc8af7f4a6b6039ef1623f5c63

HTTP Headers

GET /assets/img/eject.png?4 HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: image/png
content-length: 8253
last-modified: Wed, 04 Sep 2019 20:36:35 GMT
etag: "5d702053-203d"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/assets/img/game-tap.jpg

94.130.177.84

200 OK

188 kB

URL GET HTTP/2
eatcells.com/assets/img/game-tap.jpg
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1200x1200, components 3
Size
188 kB (188023 bytes)
Hash
f10541f07881ca3f61b1adeff57c62b8
c12fbce7d19d66e5fb7c769d1f3f1e75d750d9f7
b92f76d1bdafaafe084228cfda473a714e64f24d816f90d5bf7e2ae59ad65421

HTTP Headers

GET /assets/img/game-tap.jpg HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: image/jpeg
content-length: 188023
last-modified: Wed, 04 Sep 2019 20:36:36 GMT
etag: "5d702054-2de77"
accept-ranges: bytes
X-Firefox-Spdy: h2

eatcells.com/skinList.txt

94.130.177.84

200 OK

4.7 kB

URL GET HTTP/2
eatcells.com/skinList.txt
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
ASCII text, with very long lines (4653), with no line terminators
Size
4.7 kB (4653 bytes)
Hash
fc25f7574d752ded929cb1dac5cfd6dc
25214cdc98340d44f8152951370a8dc6ef858f38
c0b0c1999cab2333546e0233aed66ee13ba7ac3fc21b68bd378e8a7dc114a197

HTTP Headers

GET /skinList.txt HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: text/plain
content-length: 4653
last-modified: Wed, 04 Sep 2019 20:36:32 GMT
etag: "5d702050-122d"
accept-ranges: bytes
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.4/fonts/glyphicons-halflings-regular.woff2

104.18.10.207

200 OK

18 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/bootstrap/3.3.4/fonts/glyphicons-halflings-regular.woff2
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /bootstrap/3.3.4/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eatcells.com
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:39:17 GMT
content-type: font/woff2
content-length: 18028
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "448c34a56d699c29117adc64c43affeb"
last-modified: Mon, 25 Jan 2021 22:03:58 GMT
cdn-cachedat: 11/12/2022 05:25:23
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1049
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 65fad5cfc5af482c7c821eefc6a6a87c
cdn-cache: HIT
cf-cache-status: HIT
age: 12916656
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 877691cbee52b51d-OSL
alt-svc: h3=":443"; ma=86400

www.icone-png.com/png/22/22430.png

194.150.236.240

44 kB

URL GET
www.icone-png.com/png/22/22430.png
IP
194.150.236.240:0
ASN
#44976 AZNET s.a.r.l.

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecticone-png.com
Fingerprint42:FE:87:28:4E:56:34:FC:C6:02:EE:22:6D:87:36:A7:E8:A0:0C:81
ValidityThu, 15 Feb 2024 21:20:14 GMT - Wed, 15 May 2024 21:20:13 GMT

File type
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
Size
44 kB (44103 bytes)
Hash
e3f3995eee92ffbd800489ea80bcf4b1
09b579124f0cff2b416274fd9dc1533971cedc65
72e00f5849a0359da527b77f1f1063d1476d00aefc93c347b78b96c960bd994a

HTTP Headers

GET /png/22/22430.png HTTP/1.1
Host: www.icone-png.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 16:39:17 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Sun, 06 Jan 2019 22:18:39 GMT
ETag: "324f27-ac75-57ed17e8caf03"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 44103
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: image/png

carefreestage.com/c.De9/6nbE2l5tlqSYWyQO9/NeT-EE5qOZTnQm1dNZi/0D1CMqTAk/5CNjDnU/3h

88.85.94.237

200 OK

0 B

URL GET HTTP/2
carefreestage.com/c.De9/6nbE2l5tlqSYWyQO9/NeT-EE5qOZTnQm1dNZi/0D1CMqTAk/5CNjDnU/3h
IP
88.85.94.237:443
ASN
#35415 Webzilla B.V.

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjectcarefreestage.com
Fingerprint04:47:6E:2B:26:A3:4C:CE:2E:9E:71:91:43:C6:85:67:C8:9C:35:1D
ValiditySun, 14 Apr 2024 02:07:32 GMT - Sat, 13 Jul 2024 02:07:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.De9/6nbE2l5tlqSYWyQO9/NeT-EE5qOZTnQm1dNZi/0D1CMqTAk/5CNjDnU/3h HTTP/1.1
Host: carefreestage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:39:17 GMT
content-type: application/javascript
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
x-content-type-options: nosniff
X-Firefox-Spdy: h2

eatcells.com/api/

94.130.177.84

0 B

URL
eatcells.com/api/
IP
94.130.177.84:0
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/ HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://eatcells.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kbQUkgy1tS+6kY0jfGQiQw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 20 Apr 2024 16:24:12 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1t6uYh+hlPL8GxnkuloQKT51LZ0=

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2

216.58.207.227

200 OK

30 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0
Size
30 kB (29752 bytes)
Hash
ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eatcells.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:15:26 GMT
expires: Wed, 16 Apr 2025 03:15:26 GMT
cache-control: public, max-age=31536000
age: 393831
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-7KY1EBYBZS&l=dataLayer&cx=c

142.250.74.168

200 OK

88 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-7KY1EBYBZS&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
88 kB (88328 bytes)
Hash
119a1082bd705776912463ad2f9f9919
617c5b3c2461af514831e5033546509136ce5dcc
b1eea0d6b1c198c775d1e2315f74d240cdc8abbb16e5be264ae5b997131f542d

HTTP Headers

GET /gtag/js?id=G-7KY1EBYBZS&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 16:39:17 GMT
expires: Sat, 20 Apr 2024 16:39:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88328
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

eatcells.com/assets/img/favicon.ico?4

94.130.177.84

200 OK

32 kB

URL GET HTTP/2
eatcells.com/assets/img/favicon.ico?4
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
32 kB (32347 bytes)
Hash
86a61de6ab87b83d46a4873affaa717a
8863fa661cf2a1561a7ea19261f0980010d20eac
04e2c050285112bcd703f8765b5104c8dcf2c5b7b463f47802ccbd1933b57adf

HTTP Headers

GET /assets/img/favicon.ico?4 HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:13 GMT
content-type: image/x-icon
content-length: 32347
last-modified: Wed, 04 Sep 2019 20:36:35 GMT
etag: "5d702053-7e5b"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37840, version 1.0
Size
38 kB (37840 bytes)
Hash
6957af42676a9a6104e7a8eee1cee92f
05a81c1de245f5abfda3e26e333753a98a90b77f
e4f50b8bf27fec2b2be5907a06a6579a355aa86542322a2434fac71a22c2ea6e

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eatcells.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 20:59:25 GMT
expires: Sat, 19 Apr 2025 20:59:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:05:12 GMT
content-type: font/woff2
age: 70793
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjs2yNL4U.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjs2yNL4U.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12936, version 1.0
Size
13 kB (12936 bytes)
Hash
6addbc1c8b8d01749d11b911a14b495e
56d87e9231ba1cf4c97a03e98d1ead1622b366ac
7e60d4df52144b57e1065524716f9087b1be34ffc9049e0d3eb1091f8d1e2551

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjs2yNL4U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eatcells.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:47:36 GMT
expires: Fri, 18 Apr 2025 02:47:36 GMT
cache-control: public, max-age=31536000
age: 222702
last-modified: Wed, 27 Apr 2022 17:10:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjtGyNL4U.woff2

216.58.207.227

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjtGyNL4U.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18200, version 1.0
Size
18 kB (18200 bytes)
Hash
8c7519686a5ddf20a3981e660a5f2610
3e0d73d14e4892b36fb5c6a9854c7d2e6bec005a
caeaf02fa4a8a45438c270767c4e50fc7f3ed5f94a4c90984eaacb87c2e8a693

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjtGyNL4U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eatcells.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18200
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:56:03 GMT
expires: Fri, 18 Apr 2025 02:56:03 GMT
cache-control: public, max-age=31536000
age: 222195
last-modified: Wed, 27 Apr 2022 17:10:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Ubuntu:700

142.250.74.106

200 OK

1.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Ubuntu:700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1866), with no line terminators
Size
1.8 kB (1818 bytes)
Hash
c6c5f08d9c61ab6b761edfac2eb0990b
80335863af34ea4d624172f35d242672055524c9
87f7bfef312355e92855e385e9267ecbd4d034e81b8a2eb30932bb4f32d167fb

HTTP Headers

GET /css?family=Ubuntu:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 16:39:16 GMT
date: Sat, 20 Apr 2024 16:39:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

eatcells.com/api/

94.130.177.84

101 Switching Protocols

0 B

URL GET HTTP/1.1
eatcells.com/api/
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/ HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://eatcells.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kbQUkgy1tS+6kY0jfGQiQw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 20 Apr 2024 16:24:12 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1t6uYh+hlPL8GxnkuloQKT51LZ0=

maxcdn.bootstrapcdn.com/bootstrap/3.3.4/css/bootstrap.min.css

104.18.10.207

200 OK

117 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.4/css/bootstrap.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://eatcells.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (65371)
Size
117 kB (117305 bytes)
Hash
eedf9ee80c2faa4e1b9ab9017cdfcb88
ed29315e0ffb3f14382431f2724235bf67f44eb3
f04b517ba5d6a0510485689a3e42dac000f51640fd71b986804cba178eae42a5

HTTP Headers

GET /bootstrap/3.3.4/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:39:16 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"eedf9ee80c2faa4e1b9ab9017cdfcb88"
last-modified: Mon, 25 Jan 2021 22:03:58 GMT
cdn-cachedat: 08/04/2023 12:50:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7e74c5fea2151758aaf7c8cf1f839c4a
cdn-cache: HIT
cf-cache-status: HIT
age: 12733176
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 877691ca2b97569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

eatcells.com/assets/img/split.png?4

94.130.177.84

200 OK

8.4 kB

URL GET HTTP/2
eatcells.com/assets/img/split.png?4
IP
94.130.177.84:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://eatcells.com/
Certificate
IssuerLet's Encrypt
Subjecteatcells.com
FingerprintD4:8A:30:30:2F:AB:06:2D:90:C7:A1:EF:09:7D:E4:5C:24:46:1C:DF
ValidityThu, 28 Mar 2024 09:48:38 GMT - Wed, 26 Jun 2024 09:48:37 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced
Size
8.4 kB (8351 bytes)
Hash
a750c895db286aad876dd4d0d921489f
9702489ca7bf3da73c794bc7b08ebde1af41251f
561d10034a0809c36d7d24c7f3aee2b061a9a5dad63ad28d75f4fbc434406d1b

HTTP Headers

GET /assets/img/split.png?4 HTTP/1.1
Host: eatcells.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eatcells.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:24:12 GMT
content-type: image/png
content-length: 8351
last-modified: Wed, 04 Sep 2019 20:36:36 GMT
etag: "5d702054-209f"
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML