firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 16 Oct 2022 05:50:25 GMT
Expires: Sun, 16 Oct 2022 06:32:00 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2Q_P7E5f4hNctcBsebYzXDA6toXY2h0_LfFaWcC-JSVJy_6hoyTivg==
Age: 2478
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b424d8c01b211c56d5b44b92e4e4153
b1fdab18f23271eee58ae1482f8af25badc2ffda
1c82a5fd2bc3f16a66becb5e1924e8c9edd39386622dc2e5ed296442f4307b2b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C82A5FD2BC3F16A66BECB5E1924E8C9EDD39386622DC2E5ED296442F4307B2B"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10359
Expires: Sun, 16 Oct 2022 09:24:22 GMT
Date: Sun, 16 Oct 2022 06:31:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18226
Expires: Sun, 16 Oct 2022 11:35:29 GMT
Date: Sun, 16 Oct 2022 06:31:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5wr4r6uFJSKc0qDS2Fnw9DjTK8NVlGLhb+aZAPyj+P+4o/srXvMybqtGu/Mb9FwhTlIYuCXg9E4=
x-amz-request-id: 63R7C5CTA9VFBBNW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 16 Oct 2022 06:02:53 GMT
age: 1730
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 06:31:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 16 Oct 2022 06:07:44 GMT
Cache-Control: max-age=3600
Expires: Sun, 16 Oct 2022 06:08:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vmINKAAFOuRsVPwzssEBZfWHt9p6RS9ObOQXehXhevPCYvzGRrZLog==
Age: 1440
napgame24h.com/
163.44.194.225301 Moved Permanently 231 B IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d725bc2f479ac7ccb6b329078bdc1b0
2329793a2d0dafb2a0f320b1967e54f85535cd1e
57e6ff70a223892655ebfd7c2b457c983f5d109e2332d310c37e7333e9f96cc7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 16 Oct 2022 06:31:43 GMT
Server: Apache
Location: https://napgame24h.com/
Content-Length: 231
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 301aafc13bc66315321d9476df002258
e6bfd29899543fcd4d1b332623757bbad355306f
c64315afdfcf146b16942d981588ed912650472c5e2bba7b6f8dee396d820860
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5709
Cache-Control: max-age=97820
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:44 GMT
Etag: "634a6a1f-1d7"
Expires: Mon, 17 Oct 2022 09:42:04 GMT
Last-Modified: Sat, 15 Oct 2022 08:06:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.143.157101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.143.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NxZDpoqjYOJIuzo4ZuLYaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ckoVhojsnUesKzMaqlFuD/JAT2M=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0efa623bed47d42f69be9e523e7725f4
b301c00ee9ab5778b326edea3bc274f8ae46da15
c7d4afc16dd19b5216a9c34cf3048b4e6dff056608666d6d40c9f5eeeae309a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-164997393-1
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-164997393-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1952)
Hash e7524142561b17a904dc47cff1a6fa7c
82bbf4d8fb5592e43de7df00bd6ff03bccb9d0e1
eac1bc01f8039a4c18d78e3cffbc5de589830258f76b9bfb5c6aeb917ae79c45
GET /gtag/js?id=UA-164997393-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Oct 2022 06:31:44 GMT
expires: Sun, 16 Oct 2022 06:31:44 GMT
cache-control: private, max-age=900
last-modified: Sun, 16 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42477
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0efa623bed47d42f69be9e523e7725f4
b301c00ee9ab5778b326edea3bc274f8ae46da15
c7d4afc16dd19b5216a9c34cf3048b4e6dff056608666d6d40c9f5eeeae309a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgame24h.com/
163.44.194.225200 OK 45 kB IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1904)
Hash 5940ea345fa468d8a54f2bc110bdc7d3
2c8d8756959e558c608c9531a8d5c80be2418432
fa06a6c2387af7d17a6150be089e858839c6de3d4dbb154231bfa40b0e8c7f12
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:44 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Link: <https://napgame24h.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash f3737542994ca9d4940cba94fddcbd15
1f91900e4a01d264185393d7cffd3cec7bc14cd5
99e7b7227e52ed1c7589df8e95a1d6ace4294970f2c6c896fdb1cf6b98c0f5a3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 16 Oct 2022 06:31:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 15 Oct 2022 22:39:13 GMT
Expires: Sun, 16 Oct 2022 22:39:13 GMT
ETag: "1f91900e4a01d264185393d7cffd3cec7bc14cd5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash f3737542994ca9d4940cba94fddcbd15
1f91900e4a01d264185393d7cffd3cec7bc14cd5
99e7b7227e52ed1c7589df8e95a1d6ace4294970f2c6c896fdb1cf6b98c0f5a3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 16 Oct 2022 06:31:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 15 Oct 2022 22:39:13 GMT
Expires: Sun, 16 Oct 2022 22:39:13 GMT
ETag: "1f91900e4a01d264185393d7cffd3cec7bc14cd5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
images.dmca.com/Badges/DMCABadgeHelper.min.js
151.139.242.29200 OK 280 B URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js
IP 151.139.242.29:0
Hash 676eb336bf17b6d9ba8106a096fdd587
22d3b0769cd5aa177e723be2456b32509914fa7d
9e9dc74a53c9a60256b8d4db5b26d02599cea75d3d00e02f16bef59169477a69
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 06:31:45 GMT
content-type: application/javascript
content-length: 280
cache-control: max-age=2592000
etag: "26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
expires: Tue, 15 Nov 2022 06:31:21 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
content-encoding: gzip
vary: Accept-Encoding
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
images.dmca.com/Badges/dmca_protected_sml_120aj.png?ID=98ef0802-f318-4650-b9c7-945887c8d043
151.139.242.29200 OK 2.4 kB URL HTTP/2 images.dmca.com/Badges/dmca_protected_sml_120aj.png?ID=98ef0802-f318-4650-b9c7-945887c8d043
IP 151.139.242.29:0
File type PNG image data, 123 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 3044f51e717a191eac434d1e66372365
4b42dc332e14eec3393630582552650585b2ca6f
c12f11e5cd78b8c8c506e78406a74c7f5fd828b79bbfcba4d076ef3db9be6d17
GET /Badges/dmca_protected_sml_120aj.png?ID=98ef0802-f318-4650-b9c7-945887c8d043 HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 06:31:45 GMT
content-type: image/png
content-length: 2375
cache-control: max-age=2592000
etag: "5742b834e0ebca1:0"
last-modified: Tue, 04 May 2010 23:19:12 GMT
x-powered-by: ASP.NET
expires: Tue, 15 Nov 2022 06:31:45 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/dmca_protected_sml_120aj.png>; rel="canonical"
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
napgame24h.com/wp-content/themes/napgamemobi/style.css?ver=5.8.5
163.44.194.225200 OK 13 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/style.css?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
Hash 9cd3dded0a127b703dff83016ba527c5
9c64a4a039de7b45fe7e698dbd1acae6328097a5
eb894737353f745da59c55da8ae1b1da4e43950a60f10cdf164f8e5b71d9383e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/style.css?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Tue, 15 Dec 2020 08:45:23 GMT
ETag: "33e9-5b67cc78fe4d7"
Accept-Ranges: bytes
Content-Length: 13289
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106
163.44.194.225200 OK 1.2 kB URL HTTP/1.1 napgame24h.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (1156), with no line terminators
Hash c36a54231034d43c59838cffd223ae0e
2d28ea215858ad20b347db91ba63b877d506f751
2e36bd3bdbb929f427e79a6c84b7922b4375589386981eba29eb0cff57b02b1b
GET /wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Tue, 12 Oct 2021 20:46:56 GMT
ETag: "484-5ce2df2435608"
Accept-Ranges: bytes
Content-Length: 1156
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a239968682150ba8fb61f7b2101edba3
35724b1e7f236cddd2e9c542a0da63d9e915c310
e2cb65724d3870506a1efcfd90f43c61f87bb694b0c2cb07568bf1aaea7d1d98
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E2CB65724D3870506A1EFCFD90F43C61F87BB694B0C2CB07568BF1AAEA7D1D98"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sun, 16 Oct 2022 08:25:43 GMT
Date: Sun, 16 Oct 2022 06:31:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a239968682150ba8fb61f7b2101edba3
35724b1e7f236cddd2e9c542a0da63d9e915c310
e2cb65724d3870506a1efcfd90f43c61f87bb694b0c2cb07568bf1aaea7d1d98
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E2CB65724D3870506A1EFCFD90F43C61F87BB694B0C2CB07568BF1AAEA7D1D98"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sun, 16 Oct 2022 08:25:43 GMT
Date: Sun, 16 Oct 2022 06:31:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a239968682150ba8fb61f7b2101edba3
35724b1e7f236cddd2e9c542a0da63d9e915c310
e2cb65724d3870506a1efcfd90f43c61f87bb694b0c2cb07568bf1aaea7d1d98
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E2CB65724D3870506A1EFCFD90F43C61F87BB694B0C2CB07568BF1AAEA7D1D98"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sun, 16 Oct 2022 08:25:43 GMT
Date: Sun, 16 Oct 2022 06:31:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb91747-1466-4fb0-9c5c-e679a1294f9a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb91747-1466-4fb0-9c5c-e679a1294f9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9460ab18b402041fc437809f09b5ca07
83129b8fcd100f7de5e79f685c8dd49a226fb6bd
bbd9f2db14ede4b5711042f892621aaf6602ccec6be2bee07534b11f2b73e671
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb91747-1466-4fb0-9c5c-e679a1294f9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6248
x-amzn-requestid: 0170ca13-eaee-4645-b3ca-0e3db5067dbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEMw5HMVIAMF2Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b2805-272b5ffb16c194ba746d74b6;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:37:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: a8j08kCiCITu5kWwdriG13kuFbvBss29qGNLThJAa_EF-ux3OLP5gA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:37:49 GMT
age: 32036
etag: "83129b8fcd100f7de5e79f685c8dd49a226fb6bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a239968682150ba8fb61f7b2101edba3
35724b1e7f236cddd2e9c542a0da63d9e915c310
e2cb65724d3870506a1efcfd90f43c61f87bb694b0c2cb07568bf1aaea7d1d98
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E2CB65724D3870506A1EFCFD90F43C61F87BB694B0C2CB07568BF1AAEA7D1D98"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sun, 16 Oct 2022 08:25:43 GMT
Date: Sun, 16 Oct 2022 06:31:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eb39673-9b77-4a82-8d34-c0e1405dca47.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eb39673-9b77-4a82-8d34-c0e1405dca47.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0cabcd5467191890163abd8c081c0cb
37c76a9fe6833ee0fc50d92b2f8e32fc44d43e54
b3b17175a7899e8876d93a83271f9319b0cd76af7e091837b87aaba2ac2d3920
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eb39673-9b77-4a82-8d34-c0e1405dca47.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8757
x-amzn-requestid: c384db56-c2e0-4a61-ab03-0688422929c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL3_ESBIAMFUIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b2699-1a0f51aa005d4a5e4f4ec4df;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:05 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 99u5SW_yKsRfnCMwl1syMlGCm5OZ7kd6ewz8vIYxFrRvwLZEmjNs1g==
via: 1.1 58f9a50682bb94842197f3e957919c60.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 22:26:41 GMT
age: 29104
etag: "37c76a9fe6833ee0fc50d92b2f8e32fc44d43e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac5c50f8ffe0da11f1adb9f67d811cf
2b586d1c26208d6fe7df3a4cec286e28f21807ca
12414dcf4afa766503c9328fe626c2d1317a0d6838887e0dd30e9b56e85ea3d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8120
x-amzn-requestid: 42dc2299-203a-4269-a252-e239978fe80d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7EhLHX0IAMF89g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347813a-1357899758d9403e4b920418;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N64ALU7tuIg6L--gmnkJq08f3A2Vn0Cl3wlRBLim7RhWN_VnCftrng==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 03:49:28 GMT
age: 9737
etag: "2b586d1c26208d6fe7df3a4cec286e28f21807ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc2961d5-5c3c-41f9-9f68-1ffdbc852581.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc2961d5-5c3c-41f9-9f68-1ffdbc852581.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dba6e2332080f3b6c7edd6400a328d77
2fe9ab49ee40a2aec3084ed18ef457aecf3f3757
9cfbe2aa4d5544b278ac75bf3ebd12ee576ca054da2ddf1ead3529940891d386
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc2961d5-5c3c-41f9-9f68-1ffdbc852581.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8007
x-amzn-requestid: 308881cf-addb-4995-91fc-d8df1d91f3f2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEM1PHjMoAMFZZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b2821-5db9f4a67c2151ed1eb72837;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:37:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9uVVNK741OSPGLE1Jg_Qjdrpm_Xkp6CRFjtWDlxvcUtYO8hvadsydA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:53:43 GMT
age: 31082
etag: "2fe9ab49ee40a2aec3084ed18ef457aecf3f3757"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d61d4a8-676c-4b08-8677-2efc6972f950.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d61d4a8-676c-4b08-8677-2efc6972f950.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 844bf1a50554be9523ea9182c4b00479
71eb020b1ba536fccd126706f183fe4e9cb25cff
7effcdb6cc6a70456d662619a7a50a63dc29c2b3b57b269c81227bf1cd3603d4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d61d4a8-676c-4b08-8677-2efc6972f950.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8240
x-amzn-requestid: 8fb67ce4-dff5-4d84-baff-2e7362dc226b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aENlYEzmoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b2955-199d2b48763443ab750cbd1c;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:42:45 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2YVmAkJZRcV-7lfLFd-oi087ew7wG0lVItjubVFyeLeuDPpxOwT0Nw==
via: 1.1 78c1c4eb451e4790ed630b0d5a576590.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 22:09:55 GMT
age: 30110
etag: "71eb020b1ba536fccd126706f183fe4e9cb25cff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6b5c56d-f9ed-4fd9-bd17-7c3285ae2cbe.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6b5c56d-f9ed-4fd9-bd17-7c3285ae2cbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36eb39181ff1d7b347ca0d5b8cb3b92a
4963fb7e89b8699bd2639b91d2436e743b0ca60a
347b273449c69a1e2123e1ea403845a747b877ba2029f81bcb667638eb1015d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6b5c56d-f9ed-4fd9-bd17-7c3285ae2cbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4465
x-amzn-requestid: 7efc8cde-f6dd-406b-99d8-3a4f6819d76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z-WZIFDUIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6348d107-1a2a2a8d54f414a12a259201;Sampled=0
x-amzn-remapped-date: Fri, 14 Oct 2022 03:01:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AQ_VP9zjQRS22xrZt-opSHTMvLqQE35ba0nij_oDivXLBlDhkF3thg==
via: 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 01:39:43 GMT
age: 17522
etag: "4963fb7e89b8699bd2639b91d2436e743b0ca60a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
napgame24h.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
163.44.194.225200 OK 11 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:23 GMT
ETag: "2bd8-5d06c40a95adb"
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0
163.44.194.225200 OK 31 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "7918-5a35ef486bbe6"
Accept-Ranges: bytes
Content-Length: 31000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
163.44.194.225200 OK 81 kB URL HTTP/1.1 napgame24h.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 43c4bc05b5e3b0a6684a7c3a52e63590
ed6d95d525a710a82e8b8583e9ba7bce3b2a4722
9110fc122dda3067c424d9b8ff7747e2030b0bd9298f69a3683d399ad3373a6a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:04 GMT
ETag: "13abe-5d06c3f84c7c1"
Accept-Ranges: bytes
Content-Length: 80574
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
163.44.194.225200 OK 18 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:26 GMT
ETag: "4705-5d06c40dc26e1"
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106
163.44.194.225200 OK 6.1 kB URL HTTP/1.1 napgame24h.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (6091), with no line terminators
Hash db6afe5fc3125bfbb7631cdc894f95f7
cec78215c216e4bc1c03c1393f459fe1c972ee84
4b179562b883c1257aabbad3a5641f965dd7331faa31fe06382a5d8c62d5ee19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Tue, 12 Oct 2021 20:46:56 GMT
ETag: "17cb-5ce2df2435220"
Accept-Ranges: bytes
Content-Length: 6091
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/css/bootstrap.min.css?ver=v3.3.7
163.44.194.225200 OK 121 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/css/bootstrap.min.css?ver=v3.3.7
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/css/bootstrap.min.css?ver=v3.3.7 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "1d970-5a35ef486bbe6"
Accept-Ranges: bytes
Content-Length: 121200
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
163.44.194.225200 OK 90 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:23 GMT
ETag: "15db1-5d06c40a956f3"
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/js/jquery-3.2.1.min.js?ver=v3.2.1
163.44.194.225200 OK 87 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/jquery-3.2.1.min.js?ver=v3.2.1
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/js/jquery-3.2.1.min.js?ver=v3.2.1 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "15283-5a35ef487061e"
Accept-Ranges: bytes
Content-Length: 86659
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/js/functions.js?ver=1.0.0
163.44.194.225200 OK 4.0 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/functions.js?ver=1.0.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (1453)
Hash af26e5cdac75b55c47af0f18aa4677fe
fd4b9a1ea08033c13288d0dacab7eb00ea212c02
7e0cc43c8767e2531b3a572d67d5bf4e71ea501fa2f9dfc8ee58e249e5422fa3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/js/functions.js?ver=1.0.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Tue, 15 Dec 2020 08:43:18 GMT
ETag: "fcb-5b67cc01c64a8"
Accept-Ranges: bytes
Content-Length: 4043
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/css/mmenu.css?ver=5.3.2
163.44.194.225200 OK 62 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/css/mmenu.css?ver=5.3.2
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (511)
Hash b6254971c6aa4de2dbb5e6b6c2c7346e
9a84685b1a8ed4083dc57ad2819e78b8f3e1f3a6
53719ef33f1504282694027aa89b712216f55847efaddcaff24facd96c176139
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/css/mmenu.css?ver=5.3.2 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:45 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "f037-5a35ef486b7fe"
Accept-Ranges: bytes
Content-Length: 61495
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
163.44.194.225200 OK 1.4 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:23 GMT
ETag: "592-5d06c40a99574"
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16324, version 1.0\012- data
Hash f43fa5b4f6366eae0039e4e49db645de
d7fec074ba8b6e69bec4a995ea722d3d1513ad43
0aa6a7045a55ddcb25bbee4d1edcb864081cf59f7fc9bdc1ada22a32ed4ad3ad
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 22:19:54 GMT
expires: Wed, 11 Oct 2023 22:19:54 GMT
cache-control: public, max-age=31536000
age: 375112
last-modified: Tue, 19 Apr 2022 18:08:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuvMR6WR.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuvMR6WR.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12388, version 1.0\012- data
Hash 81fa753f79d8bb8e3ba128bd7d1d0806
a7b3a08bed83fdc9fa65a2cd1281c30d3f060f36
c000066f2b27add17d55cfec67196d43c6a529f550da7877663e34632c927bcf
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuvMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 01:26:38 GMT
expires: Thu, 12 Oct 2023 01:26:38 GMT
cache-control: public, max-age=31536000
age: 363908
last-modified: Tue, 19 Apr 2022 18:00:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/uploads/2020/04/icon-zalo.png
163.44.194.225200 OK 1.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-zalo.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash 416e435af0d9c1acae08c89e4efa6495
882e79e49f3115220effa8ab733cd066bed14415
546e9246244b4b6041b7ff8f6cee376d56c78300407b714cd56d32dee863847d
GET /wp-content/uploads/2020/04/icon-zalo.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:06 GMT
ETag: "737-5a46e6be0d12c"
Accept-Ranges: bytes
Content-Length: 1847
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/04/icon-sms.png
163.44.194.225200 OK 1.4 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-sms.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash d1a172233abffa4f1b1786d2ae8a8c2e
156c9093813f182dd9b6426ab8db60cc14a15969
8df192b053b6eccc3184c04ef79ac5624c09fd070409b817da7b59822edde4f5
GET /wp-content/uploads/2020/04/icon-sms.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:06 GMT
ETag: "57f-5a46e6bd714f8"
Accept-Ranges: bytes
Content-Length: 1407
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDurMR6WR.woff2
216.58.207.195200 OK 6.7 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDurMR6WR.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 6724, version 1.0\012- data
Hash 56eeb54771c5d85ff4d9682f114925ad
a2b8a3bf824b590a2e2e4f535807de938e26f6c4
3b5bacd677f193b76ddc1dfbb17ac72ddf29712adbba16270a2b8c5316daee2b
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDurMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 03:40:38 GMT
expires: Fri, 13 Oct 2023 03:40:38 GMT
cache-control: public, max-age=31536000
age: 269468
last-modified: Tue, 19 Apr 2022 18:20:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/uploads/2020/04/icon-fb-messenger.png
163.44.194.225200 OK 1.4 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-fb-messenger.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash 1eaa9e1e24cd27c4de986a2e21719b43
3c981533e69a2edd14ea7f93de4a930442b49e6d
3cb9fc7709ecfc51c6bfa4b90efa1ed7d178fea2153979a0cc7fc1a6bfab7990
GET /wp-content/uploads/2020/04/icon-fb-messenger.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:02 GMT
ETag: "5a6-5a46e6b98a47c"
Accept-Ranges: bytes
Content-Length: 1446
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/themes/napgamemobi/js/bootstrap.min.js?ver=v3.3.7
163.44.194.225200 OK 37 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/bootstrap.min.js?ver=v3.3.7
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/js/bootstrap.min.js?ver=v3.3.7 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "90b5-5a35ef4870236"
Accept-Ranges: bytes
Content-Length: 37045
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/js/mmenu.js?ver=5.3.2
163.44.194.225200 OK 56 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/mmenu.js?ver=5.3.2
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (10727)
Hash 290f02ef69a733f390a8cdb28548b0be
26af7e7a5eae3e1741348ec5939f72a3d01b0ebb
064bd21ee222d61650308ada9047a9bc63b1217a2b26217038f0b9b1ba1c2b74
GET /wp-content/themes/napgamemobi/js/mmenu.js?ver=5.3.2 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "d8f5-5a35ef487061e"
Accept-Ranges: bytes
Content-Length: 55541
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgame24h.com/wp-content/uploads/2020/04/nap-bigo-live-200x200.jpg
163.44.194.225200 OK 9.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/nap-bigo-live-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 165d22078ceffdea301c1f4937762196
c1ced175ef6d4cdb3dd0c6ed70dcb5b85132a2d0
e715e14ab145a02e354357b1517248724c8647d64290525d8e76852b9048dc9c
GET /wp-content/uploads/2020/04/nap-bigo-live-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2020 13:32:38 GMT
ETag: "2668-5a3f5484dc11a"
Accept-Ranges: bytes
Content-Length: 9832
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2021/12/shopnapgame24h.gif
163.44.194.225200 OK 98 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/12/shopnapgame24h.gif
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type GIF image data, version 89a, 683 x 173\012- data
Hash 84eeeebe63a173dc636eae28907d4739
aa37e1963e592d2357e1dd9bd6c229dcc7f67048
a4515549acd7951ba097970fb4de6e2f1a5e6b7279fbf1a8e107a4461f82df4c
GET /wp-content/uploads/2021/12/shopnapgame24h.gif HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2021 11:42:03 GMT
ETag: "1806d-5d250832e4f74"
Accept-Ranges: bytes
Content-Length: 98413
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
napgame24h.com/wp-content/uploads/2022/06/dich-vu-facebook-uy-tin-chat-luong-so-1-viet-nam-200x200.jpg
163.44.194.225200 OK 9.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/06/dich-vu-facebook-uy-tin-chat-luong-so-1-viet-nam-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 81153c319bdfaeaab07b84ab1d677d0a
2884ca081123233cbe8d29fffdb900099052a169
f240996c5d7cb99b44cfe9361eafccbeeec7aca0a2bd7912b8417ecd6d99f618
GET /wp-content/uploads/2022/06/dich-vu-facebook-uy-tin-chat-luong-so-1-viet-nam-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 05:02:17 GMT
ETag: "2604-5e27af0ca1412"
Accept-Ranges: bytes
Content-Length: 9732
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/04/nap-the-crasherorigin-200x200.jpg
163.44.194.225200 OK 12 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/nap-the-crasherorigin-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 2b3c80f252d62f19228752493291b9dd
81a591d193277d9d24a8c68ae6953d808b9834fc
d8ddc705e213e1c503d15934eb0b695836cd1b153f173baa8e478095558143de
GET /wp-content/uploads/2020/04/nap-the-crasherorigin-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2020 13:26:38 GMT
ETag: "2e16-5a3f532cbaf0f"
Accept-Ranges: bytes
Content-Length: 11798
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/06/dich-vu-mua-ban-paypal-uy-tin-so-1-viet-nam-ti-gia-tot-200x200.jpg
163.44.194.225200 OK 9.5 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/06/dich-vu-mua-ban-paypal-uy-tin-so-1-viet-nam-ti-gia-tot-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 079306553c577ff615161748b8cc9450
1780191e1eaf56a2f6bc2ba4305c394b6abc994b
bd1b6df92b2ba06cfb0c576f52b5a41af1758888711858e972fe91374449d9da
GET /wp-content/uploads/2022/06/dich-vu-mua-ban-paypal-uy-tin-so-1-viet-nam-ti-gia-tot-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Sat, 04 Jun 2022 03:59:39 GMT
ETag: "24ff-5e097449ea3ba"
Accept-Ranges: bytes
Content-Length: 9471
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/nap-the-gunny-mobi-200x200.jpg
163.44.194.225200 OK 13 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-the-gunny-mobi-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 72a18bbd47465ce828d796d59d8e95c2
40d007f4697660e508fdb31e2ebf2255a7d81adc
1392e2fb14ac253680f16885cb7537efd9725431532fe5ee3b8574aca072ad71
GET /wp-content/uploads/2020/05/nap-the-gunny-mobi-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 20:54:42 GMT
ETag: "3461-5a52934da97bd"
Accept-Ranges: bytes
Content-Length: 13409
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/themes/napgamemobi/fonts/fontawesome-webfont.woff2?v=4.7.0
163.44.194.225200 OK 77 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napgame24h.com/wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:46 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "12d68-5a35ef486bfce"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
napgame24h.com/wp-content/uploads/2020/05/nap-hago-200x200.jpg
163.44.194.225200 OK 13 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-hago-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 954cd492424c384d9a3e30b25852f7d4
407dcee768ade3b3e7dc7c32565439ec556e7e0e
25516e43a0e52065e8e43a6aa95262c13e6e8cb4dd25848cbbedc4e4ac58c874
GET /wp-content/uploads/2020/05/nap-hago-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Sat, 02 May 2020 20:15:03 GMT
ETag: "31cf-5a4aff405062d"
Accept-Ranges: bytes
Content-Length: 12751
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/nap-the-call-of-duty-mobile-vng-1.png
163.44.194.225200 OK 25 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-the-call-of-duty-mobile-vng-1.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 101 x 101, 8-bit/color RGBA, non-interlaced\012- data
Hash 511297658ce198c81407c4916299009c
dd1783214988c1c793fd738e9669d210b82be2b2
c405e1e2dc56878f7f94d50e2b65f0f8820a28be5bef3babad6253da9361f5cc
GET /wp-content/uploads/2020/05/nap-the-call-of-duty-mobile-vng-1.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Wed, 06 May 2020 18:47:09 GMT
ETag: "60c2-5a4ff30fca34e"
Accept-Ranges: bytes
Content-Length: 24770
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2021/11/youtube-premium-napgame24.jpg
163.44.194.225200 OK 26 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/11/youtube-premium-napgame24.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:11:21 19:31:27], baseline, precision 8, 200x200, components 3\012- data
Hash f91850c89b252dbb8097310ce1f8f118
452aec2f495f6b9b1e89dd24a5cfa7c4601a4404
0763d41b461166df3c521d742a32487703546d2d7e25f493113578e95936f341
GET /wp-content/uploads/2021/11/youtube-premium-napgame24.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 12:32:47 GMT
ETag: "6659-5d14bb4b03587"
Accept-Ranges: bytes
Content-Length: 26201
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2021/11/nap-anh-hung-tq-napgame24h-min.jpg
163.44.194.225200 OK 10 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/11/nap-anh-hung-tq-napgame24h-min.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash dcb97b4f8e419799cfa56aaab83dbb00
c921b4057816e95d643fa237e148b8260ed22a05
60ef26407f1497b1b1739ae6b4bfa3db3c9a24638c1ad772d672c32264d824bd
GET /wp-content/uploads/2021/11/nap-anh-hung-tq-napgame24h-min.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Fri, 26 Nov 2021 02:38:03 GMT
ETag: "27d5-5d1a7faf73a0b"
Accept-Ranges: bytes
Content-Length: 10197
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2021/11/lien-minh-toc-chien-napgame24h-e1637501920788.jpeg
163.44.194.225200 OK 10 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/11/lien-minh-toc-chien-napgame24h-e1637501920788.jpeg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 55190490feaa8ba5cc2a3a589c96d738
266c3794418941df688b0ae481c10d569e21517a
d4803a729e069df0daa9f2d4917a029e18f0963036367e16795c8b93fd16fb87
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/11/lien-minh-toc-chien-napgame24h-e1637501920788.jpeg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 13:38:40 GMT
ETag: "2759-5d14ca0494250"
Accept-Ranges: bytes
Content-Length: 10073
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/dang-video-tiktok-len-facebook-co-bi-ban-quyen-khong-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/dang-video-tiktok-len-facebook-co-bi-ban-quyen-khong-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 7cd5d258f2f56478e44ae7d5758d5a2c
44f61794a55d5fc282fed06a967798bd71689407
42026fc9dbfb32d7fc714d2726d4981b1419cc592c4b2e1b334d89f9a73ecbf9
GET /wp-content/uploads/2022/05/dang-video-tiktok-len-facebook-co-bi-ban-quyen-khong-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 07:12:53 GMT
ETag: "a58-5dfd0cd406708"
Accept-Ranges: bytes
Content-Length: 2648
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/thay-doi-ngon-ngu-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/thay-doi-ngon-ngu-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 54188fcb3fa1d8df2f8b70ebc4750475
43b0082a9a56849936823cd4feedf659cf4bc8f9
e8a44e5d987f5fc561a4d46ac53110a4a33c3f01de0e52246f524a75fa37f59e
GET /wp-content/uploads/2022/05/thay-doi-ngon-ngu-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 04:31:32 GMT
ETag: "a96-5dfce8c42a4b4"
Accept-Ranges: bytes
Content-Length: 2710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/ly-do-dang-video-len-tiktok-lai-bi-an-70x70.jpg
163.44.194.225200 OK 2.3 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/ly-do-dang-video-len-tiktok-lai-bi-an-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 23d6accffc9030c80f7ac93aa711f8bc
b1aaa74ad1b7ad096fb624137238f03e67b52f6e
eb6241c5c49bedec19ceccf07e200d4a9e361ea5acf4170090de505cc5efc094
GET /wp-content/uploads/2022/05/ly-do-dang-video-len-tiktok-lai-bi-an-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 03:56:44 GMT
ETag: "8ef-5dfce0fc13362"
Accept-Ranges: bytes
Content-Length: 2287
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/cach-an-tat-ca-video-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/cach-an-tat-ca-video-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 889cdc1b60b3b64e004b14c481e94acb
b7837ec76843801a32f766a4788b845913e154db
03bacdfe5fa16ce9db49d65b5de626d5486e461773b448473023eadee2839e38
GET /wp-content/uploads/2022/05/cach-an-tat-ca-video-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 03:32:31 GMT
ETag: "ac5-5dfcdb925b86c"
Accept-Ranges: bytes
Content-Length: 2757
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/cach-loai-bo-nguoi-theo-doi-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/cach-loai-bo-nguoi-theo-doi-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash a28d9d4a5beb1d528ffb3aa6c6748cf0
def73b43e76f6e09610aae958a4f692edd98e8d1
7352a8734bbe644ea1434dee58b39bbe2b71a87ebf9e76255767ef3877a67a97
GET /wp-content/uploads/2022/05/cach-loai-bo-nguoi-theo-doi-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 02:58:21 GMT
ETag: "a4a-5dfcd3ef5360b"
Accept-Ranges: bytes
Content-Length: 2634
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/cach-rut-tien-tu-cay-tien-hago-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-rut-tien-tu-cay-tien-hago-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash fc86f12f394c2563f2093ee59faa7ade
658d180d0fa1e912126f3a799381b2c783afd86b
5b6869ace02716e83a53df67bb700625d2fe9683c82adff9b764a5738df3bb50
GET /wp-content/uploads/2020/05/cach-rut-tien-tu-cay-tien-hago-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Sun, 17 May 2020 09:58:47 GMT
ETag: "a02-5a5d517af5171"
Accept-Ranges: bytes
Content-Length: 2562
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/cach-hack-kim-cuong-bigo-live-mien-phi-70x70.png
163.44.194.225200 OK 8.3 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-hack-kim-cuong-bigo-live-mien-phi-70x70.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b73fb5e437fa9b4510b58b557f5d5c8
d31ffb3584bdfb005ce1bf34420b25f221d4045c
3c60d6a05fcfc617be6e85d9dd1183c69f14fd5608c3c2bb0392c9359b4631d3
GET /wp-content/uploads/2020/05/cach-hack-kim-cuong-bigo-live-mien-phi-70x70.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 03:04:13 GMT
ETag: "2062-5a50622a286f6"
Accept-Ranges: bytes
Content-Length: 8290
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/05/cach-mo-khoa-tai-khoan-bigo-live-bi-block-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-mo-khoa-tai-khoan-bigo-live-bi-block-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 1ed6f8c9f5719c7512a81f3439b3e685
7e6c34adc5775d01f511b89f5c3783f27f6cf23e
2336f008c81cf23b6e1b8bf882c76b6e94ce44ac1b14206df2ba91fad82f22cf
GET /wp-content/uploads/2020/05/cach-mo-khoa-tai-khoan-bigo-live-bi-block-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2020 04:18:23 GMT
ETag: "aa4-5a56bc11dbe5f"
Accept-Ranges: bytes
Content-Length: 2724
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/06/meo-quay-vong-quay-viking-coin-master-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/06/meo-quay-vong-quay-viking-coin-master-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 2b3bf8b934901e418db08e6ca13d5cd0
ccb87d92cd0c872ae66358595719f362b5fe064d
c2a5fb362c0687237ce46ad6ec7812f461517ed0b66d8412c0950dfa807cccc9
GET /wp-content/uploads/2020/06/meo-quay-vong-quay-viking-coin-master-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Mon, 08 Jun 2020 04:29:12 GMT
ETag: "aa9-5a78b0d7c4448"
Accept-Ranges: bytes
Content-Length: 2729
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/06/cach-fix-loi-khong-vao-duoc-pubg-mobile-tren-iphone-ipad-70x70.jpg
163.44.194.225200 OK 2.9 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/06/cach-fix-loi-khong-vao-duoc-pubg-mobile-tren-iphone-ipad-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 5ebcd4d43e114734d575b7e063963f10
1b68f62cda179aee6e160c7c50405fdc13ec09c9
cb5f963fc55d74db39a130016b8d3edac32bc3940971eb6adf267cab607f624b
GET /wp-content/uploads/2020/06/cach-fix-loi-khong-vao-duoc-pubg-mobile-tren-iphone-ipad-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 05:59:32 GMT
ETag: "b49-5a8f669b4d2cf"
Accept-Ranges: bytes
Content-Length: 2889
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/dang-xuat-thoat-tai-khoan-bigo-live-tren-android-70x70.jpg
163.44.194.225200 OK 2.2 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/dang-xuat-thoat-tai-khoan-bigo-live-tren-android-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 26e08edaef56c699d2af590fb9f15e0f
10185c50d9766872f5c7073a3538e8de4a135287
8b3235d772c5710a2d08fb350d222fc7532299ecf204c99794edb19525813878
GET /wp-content/uploads/2020/05/dang-xuat-thoat-tai-khoan-bigo-live-tren-android-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2020 03:13:00 GMT
ETag: "8b9-5a56ad74dc779"
Accept-Ranges: bytes
Content-Length: 2233
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/an-video-tiktok-co-bi-bop-tuong-tac-khong-70x70.jpg
163.44.194.225200 OK 2.3 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/an-video-tiktok-co-bi-bop-tuong-tac-khong-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 17a39f2f1f2bf23c43b6b4775acab4e3
86f7e10e6dd6e555fef570ddbe568a9a3937d515
6db35742f4eb8e271f0eaed383db06d0735d06bd31d4322f0e1eede397004727
GET /wp-content/uploads/2022/05/an-video-tiktok-co-bi-bop-tuong-tac-khong-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Wed, 18 May 2022 12:56:31 GMT
ETag: "8ed-5df48c954dd54"
Accept-Ranges: bytes
Content-Length: 2285
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/1-video-tiktok-dai-toi-da-bao-nhieu-phut1-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/1-video-tiktok-dai-toi-da-bao-nhieu-phut1-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash cdc6a6af0ef827174b4a1b9132c25374
604f96a386b043bb5671c46a4149c8b395584eeb
cff5e83f229ee201d13163555e1af1cd6615468dbdabfab375325de2ebc4f7f9
GET /wp-content/uploads/2022/05/1-video-tiktok-dai-toi-da-bao-nhieu-phut1-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Tue, 17 May 2022 06:17:15 GMT
ETag: "a35-5df2f178cddce"
Accept-Ranges: bytes
Content-Length: 2613
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/cach-check-ai-da-xem-video-tiktok-cua-minh-70x70.jpg
163.44.194.225200 OK 2.4 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/cach-check-ai-da-xem-video-tiktok-cua-minh-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 99187a334f4af3bff9b2afc8878ac856
cc3968d0562315c04258d66ee411778d8e210603
b3d3d46d754c3561fcae1f1a4ed541d490d5af34461568dd18cd5f4f10050222
GET /wp-content/uploads/2022/05/cach-check-ai-da-xem-video-tiktok-cua-minh-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Tue, 17 May 2022 03:42:35 GMT
ETag: "930-5df2cee77251f"
Accept-Ranges: bytes
Content-Length: 2352
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/cach-dung-pet-hieu-qua-nhat-trong-coin-master-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-dung-pet-hieu-qua-nhat-trong-coin-master-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 2f20f33eeedf9cd6d331208abe7a2045
3f88145b06c09b1f71fb258b52d683814790ab28
fed9daf261c8f569dd2bbf1f06685b3225a4f3f53514192669db051fa9550364
GET /wp-content/uploads/2020/05/cach-dung-pet-hieu-qua-nhat-trong-coin-master-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Fri, 29 May 2020 09:58:49 GMT
ETag: "a8a-5a6c67de91136"
Accept-Ranges: bytes
Content-Length: 2698
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/04/icon-phone.gif
163.44.194.225200 OK 10 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-phone.gif
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type GIF image data, version 89a, 100 x 100\012- data
Hash f2922d4689079bab2ff9a8f82bf866dd
0d1e6f807318cc9d998d31a7dbd6abf3e010cb24
7dc774d75b5f7c14836da41e4537493ac7ad5fe429d381f01a3fe3fbaac0a575
GET /wp-content/uploads/2020/04/icon-phone.gif HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:02 GMT
ETag: "285a-5a46e6ba542fa"
Accept-Ranges: bytes
Content-Length: 10330
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 16 Oct 2022 04:41:09 GMT
expires: Sun, 16 Oct 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 6639
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgame24h.com/wp-content/uploads/2020/05/nap-game-gia-re.png
163.44.194.225200 OK 1.8 MB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-game-gia-re.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 1135 x 640, 8-bit/color RGBA, non-interlaced\012- data
Size 1.8 MB (1766799 bytes)
Hash e27126345c1aa8a9797157a705132267
0f23202abb4a9a72b4cf4550c0b8cf8040ff583c
3403277775bb9c8b2a31f4e04e74a9b4459980e8d9c24c7bd220f86af14cae38
GET /wp-content/uploads/2020/05/nap-game-gia-re.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
Last-Modified: Fri, 11 Dec 2020 20:46:42 GMT
ETag: "1af58f-5b63663d1c8a7"
Accept-Ranges: bytes
Content-Length: 1766799
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.66200 OK 54 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (2776)
Hash 8c15049107bf3079b6303cd23d4a42e7
6029e9a54aa525eed7ddde9cf4d2c694a634abfb
7357ebed8ebc2385fca12c16fcefa110471be71eab50088696e400cc647488fe
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 16 Oct 2022 06:31:48 GMT
expires: Sun, 16 Oct 2022 06:31:48 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 2730812826763341049
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54255
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-32x32.png
163.44.194.225200 OK 2.1 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-32x32.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cd6ae74dd94a4f996e77f3b84f8f3e7
f1033b4ea45e05329ae489a4920c95da9a255e6f
62f585d7bc592193ccb203604a9334d3a163a20f5b952b25c965e53529cdcf33
GET /wp-content/uploads/2021/12/cropped-napgame24h-32x32.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2021 11:00:14 GMT
ETag: "845-5d24fed9d6e94"
Accept-Ranges: bytes
Content-Length: 2117
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html
216.58.207.226200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20221012/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Sun, 16 Oct 2022 06:06:14 GMT
expires: Sun, 30 Oct 2022 06:06:14 GMT
cache-control: public, max-age=1209600
age: 1535
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f1ddf48f38bb4cbabd67c207aa0f407
51f08476ed6b1789da55cdc10287034a24eff6f4
927a97847f88ad2ecae86fef7050c64db6f17d3d4f054546531f8669cece5262
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 695cea3df950db7392b70395df1d8b05
b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823
4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b71c1dfe563720287179a76edf29c680
6096cc371998151d37a2f7698b0fe0371bb43269
7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=napgame24h.com&callback=_gfp_s_&client=ca-pub-8261059927067742&gpid_exp=1
172.217.21.162200 OK 255 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=napgame24h.com&callback=_gfp_s_&client=ca-pub-8261059927067742&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (395), with no line terminators
Hash 6ef9ec8cbad90d879b38a584d8f6c159
34d45c76c47c72ecd511d24fde3c5387c3992f88
db1b7ad2ac841eac64385e8f95545ad7871cf57665391c9fecd39f2393000bd0
GET /gampad/cookie.js?domain=napgame24h.com&callback=_gfp_s_&client=ca-pub-8261059927067742&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 06:31:49 GMT
server: cafe
cache-control: private
content-length: 255
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=napgame24h.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=napgame24h.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=napgame24h.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 06:31:49 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=napgame24h.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=napgame24h.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=napgame24h.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 06:31:49 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f1ddf48f38bb4cbabd67c207aa0f407
51f08476ed6b1789da55cdc10287034a24eff6f4
927a97847f88ad2ecae86fef7050c64db6f17d3d4f054546531f8669cece5262
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 695cea3df950db7392b70395df1d8b05
b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823
4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b71c1dfe563720287179a76edf29c680
6096cc371998151d37a2f7698b0fe0371bb43269
7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8e6f6976c2624725b3157701bdab1087
f121ac64525ed4b42198c684b9315ff6dea0d28c
1e0f4f65292b9f008855697bd235d1eb72a1a7205ce07de3e94092f123b79c59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 16 Oct 2022 06:31:49 GMT
expires: Sun, 16 Oct 2022 06:31:49 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 17:01:44 GMT
expires: Wed, 11 Oct 2023 17:01:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 394205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 231a5834edd086a67640c2c0cc18c55c
3427d0baffebad62c95754da193be354ca2b270c
2533d2d520b731b0073fcd224375cdd6dc2fde77908f93dcb0c659ec6dc7501b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 06:31:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 352a7b5f913a08b644680e6bdcdfa56c
7d6707d985b0c60644cd4aea728acea9fb7cf3f5
906a889720a1d8a9d3f820b87f49895ce4e04fd019e07d3b58bd11e79c5db38c
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 16 Oct 2022 06:31:49 GMT
date: Sun, 16 Oct 2022 06:31:49 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-pFBX18vJXYRflkhO3qKqhw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-192x192.png
163.44.194.225200 OK 37 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-192x192.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 365c1363c283e5989b8a319c87c7fd22
48676f2230e7d815c9b7caedd3ae0f63db4dc335
6128f41e34dd21b72763568315446d860695e6e6022257702d907b1ad76a4b29
GET /wp-content/uploads/2021/12/cropped-napgame24h-192x192.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 06:31:48 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2021 11:00:14 GMT
ETag: "91a9-5d24fed9cf193"
Accept-Ranges: bytes
Content-Length: 37289
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/07/napgamelienquan.jpg
163.44.194.225404 Not Found 0 B URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/07/napgamelienquan.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
GET /wp-content/uploads/2020/07/napgamelienquan.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 16 Oct 2022 06:31:47 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://napgame24h.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Open+Sans+Condensed:700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans+Condensed:700&display=swap
IP 142.250.74.10:0
GET /css?family=Open+Sans+Condensed:700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 06:31:44 GMT
date: Sun, 16 Oct 2022 06:31:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2