r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9104
Expires: Mon, 26 Sep 2022 06:24:08 GMT
Date: Mon, 26 Sep 2022 03:52:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 03:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x_MlhTjVgiIp-2SdUznW7RDRrPBSDxMFF8S0C9TFxJyfX5_Fq2gtIQ==
Age: 2226
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1Qci95vfreCt5tzILcU9q5Vo0P1eyGTmT_SUvws5gn_Y8t6Fb9Qb-w==
age: 83830
X-Firefox-Spdy: h2
napgame24h.com/
163.44.194.225301 Moved Permanently 231 B IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d725bc2f479ac7ccb6b329078bdc1b0
2329793a2d0dafb2a0f320b1967e54f85535cd1e
57e6ff70a223892655ebfd7c2b457c983f5d109e2332d310c37e7333e9f96cc7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 03:52:24 GMT
Server: Apache
Location: https://napgame24h.com/
Content-Length: 231
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 03:52:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 03:04:17 GMT
Expires: Mon, 26 Sep 2022 03:22:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rdK61XWAovo6xW_Qf2WF87wOwEGkVWL4pV-FC10AwLr7d28T9DHA6w==
Age: 2888
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6456
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:25 GMT
Last-Modified: Mon, 26 Sep 2022 02:04:49 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.213.92.18101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.92.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EE7ARPDpBCvQhkCQA/NKSA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yIA/cwb9k3oBaSAuAWtd2DWnC3Q=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-164997393-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-164997393-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash a8eca457563a4b3cb239318a1589f934
94fa2e41a47057470058f89b8069f12c94bdc44b
2f4b40d2c1e403e8e31bc09267d00519d8d16905cc9e6df9fa69805522507122
GET /gtag/js?id=UA-164997393-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 03:52:25 GMT
expires: Mon, 26 Sep 2022 03:52:25 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgame24h.com/
163.44.194.225200 OK 45 kB IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1904)
Hash 16e995210e6d7a9ea0477cd6c33cf363
4d4b0bbc682889ec5af3057e78655556f6f19d5a
f616e00dcce08051d19dd52bfec782d884638fa51607968a0a798b7cc75418d1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:25 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Link: <https://napgame24h.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 28fe7dcd7cee9376aaf7cfe5a58c4309
131a11c65e7ac975ea84309062b14d2a81cf5058
5aa7b33653874c3f019e0673b2b83ff26074bb0169d226207948968904f70f14
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 26 Sep 2022 03:52:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 25 Sep 2022 21:30:20 GMT
Expires: Mon, 26 Sep 2022 21:30:20 GMT
ETag: "131a11c65e7ac975ea84309062b14d2a81cf5058"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 28fe7dcd7cee9376aaf7cfe5a58c4309
131a11c65e7ac975ea84309062b14d2a81cf5058
5aa7b33653874c3f019e0673b2b83ff26074bb0169d226207948968904f70f14
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 26 Sep 2022 03:52:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 25 Sep 2022 21:30:20 GMT
Expires: Mon, 26 Sep 2022 21:30:20 GMT
ETag: "131a11c65e7ac975ea84309062b14d2a81cf5058"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
images.dmca.com/Badges/DMCABadgeHelper.min.js
151.139.242.29200 OK 280 B URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js
IP 151.139.242.29:0
Hash 676eb336bf17b6d9ba8106a096fdd587
22d3b0769cd5aa177e723be2456b32509914fa7d
9e9dc74a53c9a60256b8d4db5b26d02599cea75d3d00e02f16bef59169477a69
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 03:52:26 GMT
content-type: application/javascript
content-length: 280
cache-control: max-age=2592000
etag: "26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
expires: Wed, 26 Oct 2022 03:51:33 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
content-encoding: gzip
vary: Accept-Encoding
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
images.dmca.com/Badges/dmca_protected_sml_120aj.png?ID=98ef0802-f318-4650-b9c7-945887c8d043
151.139.242.29200 OK 2.4 kB URL HTTP/2 images.dmca.com/Badges/dmca_protected_sml_120aj.png?ID=98ef0802-f318-4650-b9c7-945887c8d043
IP 151.139.242.29:0
File type PNG image data, 123 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 3044f51e717a191eac434d1e66372365
4b42dc332e14eec3393630582552650585b2ca6f
c12f11e5cd78b8c8c506e78406a74c7f5fd828b79bbfcba4d076ef3db9be6d17
GET /Badges/dmca_protected_sml_120aj.png?ID=98ef0802-f318-4650-b9c7-945887c8d043 HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 03:52:26 GMT
content-type: image/png
content-length: 2375
cache-control: max-age=2592000
etag: "5742b834e0ebca1:0"
last-modified: Tue, 04 May 2010 23:19:12 GMT
x-powered-by: ASP.NET
expires: Wed, 26 Oct 2022 03:52:26 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/dmca_protected_sml_120aj.png>; rel="canonical"
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
napgame24h.com/wp-content/themes/napgamemobi/style.css?ver=5.8.5
163.44.194.225200 OK 13 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/style.css?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
Hash 9cd3dded0a127b703dff83016ba527c5
9c64a4a039de7b45fe7e698dbd1acae6328097a5
eb894737353f745da59c55da8ae1b1da4e43950a60f10cdf164f8e5b71d9383e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/style.css?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Tue, 15 Dec 2020 08:45:23 GMT
ETag: "33e9-5b67cc78fe4d7"
Accept-Ranges: bytes
Content-Length: 13289
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106
163.44.194.225200 OK 1.2 kB URL HTTP/1.1 napgame24h.com/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (1156), with no line terminators
Hash c36a54231034d43c59838cffd223ae0e
2d28ea215858ad20b347db91ba63b877d506f751
2e36bd3bdbb929f427e79a6c84b7922b4375589386981eba29eb0cff57b02b1b
GET /wp-content/plugins/table-of-contents-plus/screen.min.css?ver=2106 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Tue, 12 Oct 2021 20:46:56 GMT
ETag: "484-5ce2df2435608"
Accept-Ranges: bytes
Content-Length: 1156
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0
163.44.194.225200 OK 31 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "7918-5a35ef486bbe6"
Accept-Ranges: bytes
Content-Length: 31000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
163.44.194.225200 OK 11 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:23 GMT
ETag: "2bd8-5d06c40a95adb"
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
163.44.194.225200 OK 18 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:26 GMT
ETag: "4705-5d06c40dc26e1"
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106
163.44.194.225200 OK 6.1 kB URL HTTP/1.1 napgame24h.com/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (6091), with no line terminators
Hash db6afe5fc3125bfbb7631cdc894f95f7
cec78215c216e4bc1c03c1393f459fe1c972ee84
4b179562b883c1257aabbad3a5641f965dd7331faa31fe06382a5d8c62d5ee19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Tue, 12 Oct 2021 20:46:56 GMT
ETag: "17cb-5ce2df2435220"
Accept-Ranges: bytes
Content-Length: 6091
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12336
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 03:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12336
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 03:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12336
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 03:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12336
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 03:52:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:02:10 GMT
age: 21017
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
age: 18151
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 720fc80bd0ff9b71f20c8e0c13e1084e
6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50
e84bcabd01425354050fe8ba5f4b29a97f05e6f5f15d26d0706c174136de30e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: 9255ee80-ae19-4b47-882b-01e663e857ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG-EmZoAMFyWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-70cc0bc87ed2480879ba081a;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Md06h9jRAN491M1gOjvAXN4Zp2msjqH-dYNVxyH6xJ2G8pf50tyHeQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:56 GMT
age: 19171
etag: "6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 22492
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a75be68e82e6a0ba74932fbe74c7b30
36310320605833289e78cd248c45915363a0a0c3
56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:28:23 GMT
age: 19444
etag: "36310320605833289e78cd248c45915363a0a0c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 20531
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
napgame24h.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
163.44.194.225200 OK 81 kB URL HTTP/1.1 napgame24h.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 43c4bc05b5e3b0a6684a7c3a52e63590
ed6d95d525a710a82e8b8583e9ba7bce3b2a4722
9110fc122dda3067c424d9b8ff7747e2030b0bd9298f69a3683d399ad3373a6a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:04 GMT
ETag: "13abe-5d06c3f84c7c1"
Accept-Ranges: bytes
Content-Length: 80574
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-content/themes/napgamemobi/css/mmenu.css?ver=5.3.2
163.44.194.225200 OK 62 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/css/mmenu.css?ver=5.3.2
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (511)
Hash b6254971c6aa4de2dbb5e6b6c2c7346e
9a84685b1a8ed4083dc57ad2819e78b8f3e1f3a6
53719ef33f1504282694027aa89b712216f55847efaddcaff24facd96c176139
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/css/mmenu.css?ver=5.3.2 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "f037-5a35ef486b7fe"
Accept-Ranges: bytes
Content-Length: 61495
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
163.44.194.225200 OK 90 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:23 GMT
ETag: "15db1-5d06c40a956f3"
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-content/themes/napgamemobi/css/bootstrap.min.css?ver=v3.3.7
163.44.194.225200 OK 121 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/css/bootstrap.min.css?ver=v3.3.7
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/css/bootstrap.min.css?ver=v3.3.7 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:26 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "1d970-5a35ef486bbe6"
Accept-Ranges: bytes
Content-Length: 121200
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napgame24h.com/wp-content/themes/napgamemobi/js/functions.js?ver=1.0.0
163.44.194.225200 OK 4.0 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/functions.js?ver=1.0.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (1453)
Hash af26e5cdac75b55c47af0f18aa4677fe
fd4b9a1ea08033c13288d0dacab7eb00ea212c02
7e0cc43c8767e2531b3a572d67d5bf4e71ea501fa2f9dfc8ee58e249e5422fa3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/js/functions.js?ver=1.0.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Tue, 15 Dec 2020 08:43:18 GMT
ETag: "fcb-5b67cc01c64a8"
Accept-Ranges: bytes
Content-Length: 4043
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
napgame24h.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
163.44.194.225200 OK 1.4 kB URL HTTP/1.1 napgame24h.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.8.5 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Wed, 10 Nov 2021 09:57:23 GMT
ETag: "592-5d06c40a99574"
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16324, version 1.0\012- data
Hash f43fa5b4f6366eae0039e4e49db645de
d7fec074ba8b6e69bec4a995ea722d3d1513ad43
0aa6a7045a55ddcb25bbee4d1edcb864081cf59f7fc9bdc1ada22a32ed4ad3ad
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:19:53 GMT
expires: Wed, 20 Sep 2023 22:19:53 GMT
cache-control: public, max-age=31536000
age: 451954
last-modified: Tue, 19 Apr 2022 18:08:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuvMR6WR.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuvMR6WR.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12388, version 1.0\012- data
Hash 81fa753f79d8bb8e3ba128bd7d1d0806
a7b3a08bed83fdc9fa65a2cd1281c30d3f060f36
c000066f2b27add17d55cfec67196d43c6a529f550da7877663e34632c927bcf
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuvMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 01:23:27 GMT
expires: Thu, 21 Sep 2023 01:23:27 GMT
cache-control: public, max-age=31536000
age: 440940
last-modified: Tue, 19 Apr 2022 18:00:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/themes/napgamemobi/js/mmenu.js?ver=5.3.2
163.44.194.225200 OK 56 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/mmenu.js?ver=5.3.2
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (10727)
Hash 290f02ef69a733f390a8cdb28548b0be
26af7e7a5eae3e1741348ec5939f72a3d01b0ebb
064bd21ee222d61650308ada9047a9bc63b1217a2b26217038f0b9b1ba1c2b74
GET /wp-content/themes/napgamemobi/js/mmenu.js?ver=5.3.2 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "d8f5-5a35ef487061e"
Accept-Ranges: bytes
Content-Length: 55541
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Open+Sans+Condensed:700&display=swap
142.250.74.10200 OK 87 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans+Condensed:700&display=swap
IP 142.250.74.10:0
Hash 5f3eba37e30461b229881c45f37a72bc
d2c202845b39f641abcb870f6a0cef197d286fad
b55510d5ceed484b1e7dab8b4d42cf0ae1ff00940fb50a5c069994dd9e5d3896
GET /css?family=Open+Sans+Condensed:700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 03:52:25 GMT
date: Mon, 26 Sep 2022 03:52:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/themes/napgamemobi/js/bootstrap.min.js?ver=v3.3.7
163.44.194.225200 OK 37 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/js/bootstrap.min.js?ver=v3.3.7
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/js/bootstrap.min.js?ver=v3.3.7 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "90b5-5a35ef4870236"
Accept-Ranges: bytes
Content-Length: 37045
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDurMR6WR.woff2
142.250.74.163200 OK 6.7 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDurMR6WR.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 6724, version 1.0\012- data
Hash 56eeb54771c5d85ff4d9682f114925ad
a2b8a3bf824b590a2e2e4f535807de938e26f6c4
3b5bacd677f193b76ddc1dfbb17ac72ddf29712adbba16270a2b8c5316daee2b
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDurMR6WR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 02:46:54 GMT
expires: Fri, 22 Sep 2023 02:46:54 GMT
cache-control: public, max-age=31536000
age: 349533
last-modified: Tue, 19 Apr 2022 18:20:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/uploads/2020/07/napgamelienquan.jpg
163.44.194.225404 Not Found 24 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/07/napgamelienquan.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash 63ef976267c48c3e9654072a2d8646cd
87759142358b57ac8a3f92c9484b7cbdd4fb781e
d3a82304bbae2a3523b8fe63b0b780278c885190abbb2ebabeadcfdce5bd8a9d
GET /wp-content/uploads/2020/07/napgamelienquan.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://napgame24h.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgame24h.com/wp-content/uploads/2021/12/shopnapgame24h.gif
163.44.194.225200 OK 98 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/12/shopnapgame24h.gif
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type GIF image data, version 89a, 683 x 173\012- data
Hash 84eeeebe63a173dc636eae28907d4739
aa37e1963e592d2357e1dd9bd6c229dcc7f67048
a4515549acd7951ba097970fb4de6e2f1a5e6b7279fbf1a8e107a4461f82df4c
GET /wp-content/uploads/2021/12/shopnapgame24h.gif HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2021 11:42:03 GMT
ETag: "1806d-5d250832e4f74"
Accept-Ranges: bytes
Content-Length: 98413
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
napgame24h.com/wp-content/uploads/2020/04/nap-bigo-live-200x200.jpg
163.44.194.225200 OK 9.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/nap-bigo-live-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 165d22078ceffdea301c1f4937762196
c1ced175ef6d4cdb3dd0c6ed70dcb5b85132a2d0
e715e14ab145a02e354357b1517248724c8647d64290525d8e76852b9048dc9c
GET /wp-content/uploads/2020/04/nap-bigo-live-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2020 13:32:38 GMT
ETag: "2668-5a3f5484dc11a"
Accept-Ranges: bytes
Content-Length: 9832
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/04/nap-the-crasherorigin-200x200.jpg
163.44.194.225200 OK 12 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/nap-the-crasherorigin-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 2b3c80f252d62f19228752493291b9dd
81a591d193277d9d24a8c68ae6953d808b9834fc
d8ddc705e213e1c503d15934eb0b695836cd1b153f173baa8e478095558143de
GET /wp-content/uploads/2020/04/nap-the-crasherorigin-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2020 13:26:38 GMT
ETag: "2e16-5a3f532cbaf0f"
Accept-Ranges: bytes
Content-Length: 11798
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/nap-the-call-of-duty-mobile-vng-1.png
163.44.194.225200 OK 25 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-the-call-of-duty-mobile-vng-1.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 101 x 101, 8-bit/color RGBA, non-interlaced\012- data
Hash 511297658ce198c81407c4916299009c
dd1783214988c1c793fd738e9669d210b82be2b2
c405e1e2dc56878f7f94d50e2b65f0f8820a28be5bef3babad6253da9361f5cc
GET /wp-content/uploads/2020/05/nap-the-call-of-duty-mobile-vng-1.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Wed, 06 May 2020 18:47:09 GMT
ETag: "60c2-5a4ff30fca34e"
Accept-Ranges: bytes
Content-Length: 24770
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2022/06/dich-vu-facebook-uy-tin-chat-luong-so-1-viet-nam-200x200.jpg
163.44.194.225200 OK 9.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/06/dich-vu-facebook-uy-tin-chat-luong-so-1-viet-nam-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 81153c319bdfaeaab07b84ab1d677d0a
2884ca081123233cbe8d29fffdb900099052a169
f240996c5d7cb99b44cfe9361eafccbeeec7aca0a2bd7912b8417ecd6d99f618
GET /wp-content/uploads/2022/06/dich-vu-facebook-uy-tin-chat-luong-so-1-viet-nam-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 05:02:17 GMT
ETag: "2604-5e27af0ca1412"
Accept-Ranges: bytes
Content-Length: 9732
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/themes/napgamemobi/fonts/fontawesome-webfont.woff2?v=4.7.0
163.44.194.225200 OK 77 kB URL HTTP/1.1 napgame24h.com/wp-content/themes/napgamemobi/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/napgamemobi/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napgame24h.com/wp-content/themes/napgamemobi/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Thu, 16 Apr 2020 02:11:48 GMT
ETag: "12d68-5a35ef486bfce"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
napgame24h.com/wp-content/uploads/2020/05/nap-the-gunny-mobi-200x200.jpg
163.44.194.225200 OK 13 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-the-gunny-mobi-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 72a18bbd47465ce828d796d59d8e95c2
40d007f4697660e508fdb31e2ebf2255a7d81adc
1392e2fb14ac253680f16885cb7537efd9725431532fe5ee3b8574aca072ad71
GET /wp-content/uploads/2020/05/nap-the-gunny-mobi-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 20:54:42 GMT
ETag: "3461-5a52934da97bd"
Accept-Ranges: bytes
Content-Length: 13409
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/06/dich-vu-mua-ban-paypal-uy-tin-so-1-viet-nam-ti-gia-tot-200x200.jpg
163.44.194.225200 OK 9.5 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/06/dich-vu-mua-ban-paypal-uy-tin-so-1-viet-nam-ti-gia-tot-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 079306553c577ff615161748b8cc9450
1780191e1eaf56a2f6bc2ba4305c394b6abc994b
bd1b6df92b2ba06cfb0c576f52b5a41af1758888711858e972fe91374449d9da
GET /wp-content/uploads/2022/06/dich-vu-mua-ban-paypal-uy-tin-so-1-viet-nam-ti-gia-tot-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Sat, 04 Jun 2022 03:59:39 GMT
ETag: "24ff-5e097449ea3ba"
Accept-Ranges: bytes
Content-Length: 9471
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2021/11/youtube-premium-napgame24.jpg
163.44.194.225200 OK 26 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/11/youtube-premium-napgame24.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:11:21 19:31:27], baseline, precision 8, 200x200, components 3\012- data
Hash f91850c89b252dbb8097310ce1f8f118
452aec2f495f6b9b1e89dd24a5cfa7c4601a4404
0763d41b461166df3c521d742a32487703546d2d7e25f493113578e95936f341
GET /wp-content/uploads/2021/11/youtube-premium-napgame24.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 12:32:47 GMT
ETag: "6659-5d14bb4b03587"
Accept-Ranges: bytes
Content-Length: 26201
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/nap-hago-200x200.jpg
163.44.194.225200 OK 13 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-hago-200x200.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 954cd492424c384d9a3e30b25852f7d4
407dcee768ade3b3e7dc7c32565439ec556e7e0e
25516e43a0e52065e8e43a6aa95262c13e6e8cb4dd25848cbbedc4e4ac58c874
GET /wp-content/uploads/2020/05/nap-hago-200x200.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Sat, 02 May 2020 20:15:03 GMT
ETag: "31cf-5a4aff405062d"
Accept-Ranges: bytes
Content-Length: 12751
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2021/11/nap-anh-hung-tq-napgame24h-min.jpg
163.44.194.225200 OK 10 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/11/nap-anh-hung-tq-napgame24h-min.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash dcb97b4f8e419799cfa56aaab83dbb00
c921b4057816e95d643fa237e148b8260ed22a05
60ef26407f1497b1b1739ae6b4bfa3db3c9a24638c1ad772d672c32264d824bd
GET /wp-content/uploads/2021/11/nap-anh-hung-tq-napgame24h-min.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Fri, 26 Nov 2021 02:38:03 GMT
ETag: "27d5-5d1a7faf73a0b"
Accept-Ranges: bytes
Content-Length: 10197
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2021/11/lien-minh-toc-chien-napgame24h-e1637501920788.jpeg
163.44.194.225200 OK 10 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/11/lien-minh-toc-chien-napgame24h-e1637501920788.jpeg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 55190490feaa8ba5cc2a3a589c96d738
266c3794418941df688b0ae481c10d569e21517a
d4803a729e069df0daa9f2d4917a029e18f0963036367e16795c8b93fd16fb87
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/11/lien-minh-toc-chien-napgame24h-e1637501920788.jpeg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 13:38:40 GMT
ETag: "2759-5d14ca0494250"
Accept-Ranges: bytes
Content-Length: 10073
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/dang-video-tiktok-len-facebook-co-bi-ban-quyen-khong-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/dang-video-tiktok-len-facebook-co-bi-ban-quyen-khong-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 7cd5d258f2f56478e44ae7d5758d5a2c
44f61794a55d5fc282fed06a967798bd71689407
42026fc9dbfb32d7fc714d2726d4981b1419cc592c4b2e1b334d89f9a73ecbf9
GET /wp-content/uploads/2022/05/dang-video-tiktok-len-facebook-co-bi-ban-quyen-khong-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 07:12:53 GMT
ETag: "a58-5dfd0cd406708"
Accept-Ranges: bytes
Content-Length: 2648
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/thay-doi-ngon-ngu-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/thay-doi-ngon-ngu-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 54188fcb3fa1d8df2f8b70ebc4750475
43b0082a9a56849936823cd4feedf659cf4bc8f9
e8a44e5d987f5fc561a4d46ac53110a4a33c3f01de0e52246f524a75fa37f59e
GET /wp-content/uploads/2022/05/thay-doi-ngon-ngu-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 04:31:32 GMT
ETag: "a96-5dfce8c42a4b4"
Accept-Ranges: bytes
Content-Length: 2710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/ly-do-dang-video-len-tiktok-lai-bi-an-70x70.jpg
163.44.194.225200 OK 2.3 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/ly-do-dang-video-len-tiktok-lai-bi-an-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 23d6accffc9030c80f7ac93aa711f8bc
b1aaa74ad1b7ad096fb624137238f03e67b52f6e
eb6241c5c49bedec19ceccf07e200d4a9e361ea5acf4170090de505cc5efc094
GET /wp-content/uploads/2022/05/ly-do-dang-video-len-tiktok-lai-bi-an-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 03:56:44 GMT
ETag: "8ef-5dfce0fc13362"
Accept-Ranges: bytes
Content-Length: 2287
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/cach-an-tat-ca-video-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/cach-an-tat-ca-video-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 889cdc1b60b3b64e004b14c481e94acb
b7837ec76843801a32f766a4788b845913e154db
03bacdfe5fa16ce9db49d65b5de626d5486e461773b448473023eadee2839e38
GET /wp-content/uploads/2022/05/cach-an-tat-ca-video-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 03:32:31 GMT
ETag: "ac5-5dfcdb925b86c"
Accept-Ranges: bytes
Content-Length: 2757
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/cach-loai-bo-nguoi-theo-doi-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/cach-loai-bo-nguoi-theo-doi-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash a28d9d4a5beb1d528ffb3aa6c6748cf0
def73b43e76f6e09610aae958a4f692edd98e8d1
7352a8734bbe644ea1434dee58b39bbe2b71a87ebf9e76255767ef3877a67a97
GET /wp-content/uploads/2022/05/cach-loai-bo-nguoi-theo-doi-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 02:58:21 GMT
ETag: "a4a-5dfcd3ef5360b"
Accept-Ranges: bytes
Content-Length: 2634
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/cach-hack-kim-cuong-bigo-live-mien-phi-70x70.png
163.44.194.225200 OK 8.3 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-hack-kim-cuong-bigo-live-mien-phi-70x70.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b73fb5e437fa9b4510b58b557f5d5c8
d31ffb3584bdfb005ce1bf34420b25f221d4045c
3c60d6a05fcfc617be6e85d9dd1183c69f14fd5608c3c2bb0392c9359b4631d3
GET /wp-content/uploads/2020/05/cach-hack-kim-cuong-bigo-live-mien-phi-70x70.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 03:04:13 GMT
ETag: "2062-5a50622a286f6"
Accept-Ranges: bytes
Content-Length: 8290
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/05/cach-rut-tien-tu-cay-tien-hago-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-rut-tien-tu-cay-tien-hago-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash fc86f12f394c2563f2093ee59faa7ade
658d180d0fa1e912126f3a799381b2c783afd86b
5b6869ace02716e83a53df67bb700625d2fe9683c82adff9b764a5738df3bb50
GET /wp-content/uploads/2020/05/cach-rut-tien-tu-cay-tien-hago-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Sun, 17 May 2020 09:58:47 GMT
ETag: "a02-5a5d517af5171"
Accept-Ranges: bytes
Content-Length: 2562
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/06/meo-quay-vong-quay-viking-coin-master-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/06/meo-quay-vong-quay-viking-coin-master-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 2b3bf8b934901e418db08e6ca13d5cd0
ccb87d92cd0c872ae66358595719f362b5fe064d
c2a5fb362c0687237ce46ad6ec7812f461517ed0b66d8412c0950dfa807cccc9
GET /wp-content/uploads/2020/06/meo-quay-vong-quay-viking-coin-master-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Mon, 08 Jun 2020 04:29:12 GMT
ETag: "aa9-5a78b0d7c4448"
Accept-Ranges: bytes
Content-Length: 2729
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/cach-mo-khoa-tai-khoan-bigo-live-bi-block-70x70.jpg
163.44.194.225200 OK 2.7 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-mo-khoa-tai-khoan-bigo-live-bi-block-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 1ed6f8c9f5719c7512a81f3439b3e685
7e6c34adc5775d01f511b89f5c3783f27f6cf23e
2336f008c81cf23b6e1b8bf882c76b6e94ce44ac1b14206df2ba91fad82f22cf
GET /wp-content/uploads/2020/05/cach-mo-khoa-tai-khoan-bigo-live-bi-block-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Tue, 12 May 2020 04:18:23 GMT
ETag: "aa4-5a56bc11dbe5f"
Accept-Ranges: bytes
Content-Length: 2724
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/06/cach-fix-loi-khong-vao-duoc-pubg-mobile-tren-iphone-ipad-70x70.jpg
163.44.194.225200 OK 2.9 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/06/cach-fix-loi-khong-vao-duoc-pubg-mobile-tren-iphone-ipad-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 5ebcd4d43e114734d575b7e063963f10
1b68f62cda179aee6e160c7c50405fdc13ec09c9
cb5f963fc55d74db39a130016b8d3edac32bc3940971eb6adf267cab607f624b
GET /wp-content/uploads/2020/06/cach-fix-loi-khong-vao-duoc-pubg-mobile-tren-iphone-ipad-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Fri, 26 Jun 2020 05:59:32 GMT
ETag: "b49-5a8f669b4d2cf"
Accept-Ranges: bytes
Content-Length: 2889
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/05/cach-tai-va-cai-dat-hago-tren-dien-thoai-70x70.jpg
163.44.194.225200 OK 2.6 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/cach-tai-va-cai-dat-hago-tren-dien-thoai-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash e586b63b0997704b92b59fcda4fbdfb2
6bd36211e0dd378cdd5657ee6e089f0045794b17
f448b61980543b7a10eb8371fed2aac95fafac43e2cc024049a57dfedf6ac0a8
GET /wp-content/uploads/2020/05/cach-tai-va-cai-dat-hago-tren-dien-thoai-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Wed, 13 May 2020 07:49:05 GMT
ETag: "a24-5a582d0780fc1"
Accept-Ranges: bytes
Content-Length: 2596
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/07/pubg-mobile-barrel-extender-cuc-ky-co-loi-cho-combo-m416-voi-6x-70x70.jpg
163.44.194.225200 OK 3.2 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/07/pubg-mobile-barrel-extender-cuc-ky-co-loi-cho-combo-m416-voi-6x-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 6f1520cd98752adffb0e4759a985a20a
0e2ce888b21a91825afecf8e2955e8f5638d6108
24b0cbe425fd5657d9c1da707b868798e4c3cdeae021d5daec5423e71a688a36
GET /wp-content/uploads/2020/07/pubg-mobile-barrel-extender-cuc-ky-co-loi-cho-combo-m416-voi-6x-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Sat, 11 Jul 2020 09:53:16 GMT
ETag: "ca5-5aa276d3fdf7e"
Accept-Ranges: bytes
Content-Length: 3237
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/07/3-cach-nhan-mien-phi-uc-trong-pubg-mobile-0-19-0-70x70.jpg
163.44.194.225200 OK 2.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/07/3-cach-nhan-mien-phi-uc-trong-pubg-mobile-0-19-0-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash e3aab6c3c34ae640a8b66367d76a7922
6ef28e484684380a982046008909ca8f701a73f2
e254b2c59fedf809c19d9625237d55cccf4f4f74bf313edb51ff72d73e3e3c2d
GET /wp-content/uploads/2020/07/3-cach-nhan-mien-phi-uc-trong-pubg-mobile-0-19-0-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Mon, 20 Jul 2020 08:59:12 GMT
ETag: "adf-5aadbb8701d01"
Accept-Ranges: bytes
Content-Length: 2783
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2022/05/cach-tat-quyen-rieng-tu-tren-tiktok-70x70.jpg
163.44.194.225200 OK 2.3 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2022/05/cach-tat-quyen-rieng-tu-tren-tiktok-70x70.jpg
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 7b4370d9734990387138807f0e8a71f3
dd318eb66ee3c00e23f0d2e89f9a0f3363e57448
de02372e67b55966ad89f62f362ef3b680eeadc49abfd36e7094dcd91596c47a
GET /wp-content/uploads/2022/05/cach-tat-quyen-rieng-tu-tren-tiktok-70x70.jpg HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 05:25:07 GMT
ETag: "908-5dedde5c524bf"
Accept-Ranges: bytes
Content-Length: 2312
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
napgame24h.com/wp-content/uploads/2020/07/cach-tao-va-gia-nhap-clan-trong-pubg-mobile-70x70.png
163.44.194.225200 OK 12 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/07/cach-tao-va-gia-nhap-clan-trong-pubg-mobile-70x70.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 25fd645f173ac4fe815800a7d0aadec1
9a4de90d14d7926f43bbed68af20075d2042da0e
76956452806a6e710767252f3ad7e441b491eedfe3a16a6c06985d924d670bac
GET /wp-content/uploads/2020/07/cach-tao-va-gia-nhap-clan-trong-pubg-mobile-70x70.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:28 GMT
Server: Apache
Last-Modified: Tue, 07 Jul 2020 09:01:35 GMT
ETag: "2f06-5a9d63d07c25a"
Accept-Ranges: bytes
Content-Length: 12038
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/04/icon-phone.gif
163.44.194.225200 OK 10 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-phone.gif
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type GIF image data, version 89a, 100 x 100\012- data
Hash f2922d4689079bab2ff9a8f82bf866dd
0d1e6f807318cc9d998d31a7dbd6abf3e010cb24
7dc774d75b5f7c14836da41e4537493ac7ad5fe429d381f01a3fe3fbaac0a575
GET /wp-content/uploads/2020/04/icon-phone.gif HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:29 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:02 GMT
ETag: "285a-5a46e6ba542fa"
Accept-Ranges: bytes
Content-Length: 10330
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
napgame24h.com/wp-content/uploads/2020/04/icon-sms.png
163.44.194.225200 OK 1.4 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-sms.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash d1a172233abffa4f1b1786d2ae8a8c2e
156c9093813f182dd9b6426ab8db60cc14a15969
8df192b053b6eccc3184c04ef79ac5624c09fd070409b817da7b59822edde4f5
GET /wp-content/uploads/2020/04/icon-sms.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:29 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:06 GMT
ETag: "57f-5a46e6bd714f8"
Accept-Ranges: bytes
Content-Length: 1407
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/04/icon-zalo.png
163.44.194.225200 OK 1.8 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-zalo.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash 416e435af0d9c1acae08c89e4efa6495
882e79e49f3115220effa8ab733cd066bed14415
546e9246244b4b6041b7ff8f6cee376d56c78300407b714cd56d32dee863847d
GET /wp-content/uploads/2020/04/icon-zalo.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:29 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:06 GMT
ETag: "737-5a46e6be0d12c"
Accept-Ranges: bytes
Content-Length: 1847
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2020/04/icon-fb-messenger.png
163.44.194.225200 OK 1.4 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/04/icon-fb-messenger.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash 1eaa9e1e24cd27c4de986a2e21719b43
3c981533e69a2edd14ea7f93de4a930442b49e6d
3cb9fc7709ecfc51c6bfa4b90efa1ed7d178fea2153979a0cc7fc1a6bfab7990
GET /wp-content/uploads/2020/04/icon-fb-messenger.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:29 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 14:04:02 GMT
ETag: "5a6-5a46e6b98a47c"
Accept-Ranges: bytes
Content-Length: 1446
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 02:41:09 GMT
expires: Mon, 26 Sep 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 4280
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j97&a=573419832&t=pageview&_s=1&dl=https%3A%2F%2Fnapgame24h.com%2F&ul=en-us&de=UTF-8&dt=N%E1%BA%A1p%20Game%2024h%20-%20SHOP%20N%E1%BA%A0P%20TH%E1%BA%BA%20GAME%20GI%C3%81%20R%E1%BA%BA%2C%20UY%20T%C3%8DN%20S%E1%BB%90%20%231&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1946965089&gjid=1847865314&cid=1907774800.1664164348&tid=UA-164997393-1&_gid=1659048198.1664164348&_r=1>m=2ou9l0&z=1025516514
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j97&a=573419832&t=pageview&_s=1&dl=https%3A%2F%2Fnapgame24h.com%2F&ul=en-us&de=UTF-8&dt=N%E1%BA%A1p%20Game%2024h%20-%20SHOP%20N%E1%BA%A0P%20TH%E1%BA%BA%20GAME%20GI%C3%81%20R%E1%BA%BA%2C%20UY%20T%C3%8DN%20S%E1%BB%90%20%231&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1946965089&gjid=1847865314&cid=1907774800.1664164348&tid=UA-164997393-1&_gid=1659048198.1664164348&_r=1>m=2ou9l0&z=1025516514
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j97&a=573419832&t=pageview&_s=1&dl=https%3A%2F%2Fnapgame24h.com%2F&ul=en-us&de=UTF-8&dt=N%E1%BA%A1p%20Game%2024h%20-%20SHOP%20N%E1%BA%A0P%20TH%E1%BA%BA%20GAME%20GI%C3%81%20R%E1%BA%BA%2C%20UY%20T%C3%8DN%20S%E1%BB%90%20%231&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1946965089&gjid=1847865314&cid=1907774800.1664164348&tid=UA-164997393-1&_gid=1659048198.1664164348&_r=1>m=2ou9l0&z=1025516514 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://napgame24h.com
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://napgame24h.com
date: Mon, 26 Sep 2022 03:52:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.226200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.226:0
File type ASCII text, with very long lines (2903)
Hash fc3597f9723f80f9569cc072df2af806
37bf5031df0336b30236304f9766d1e276cb2932
4ecd05f8d6e749b816afc9b7b45058910ead1bf679521f0a09eabcc8546df4c4
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Mon, 26 Sep 2022 03:52:29 GMT
expires: Mon, 26 Sep 2022 03:52:29 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 12239968982365997028
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57778
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-32x32.png
163.44.194.225200 OK 2.1 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-32x32.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cd6ae74dd94a4f996e77f3b84f8f3e7
f1033b4ea45e05329ae489a4920c95da9a255e6f
62f585d7bc592193ccb203604a9334d3a163a20f5b952b25c965e53529cdcf33
GET /wp-content/uploads/2021/12/cropped-napgame24h-32x32.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:29 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2021 11:00:14 GMT
ETag: "845-5d24fed9d6e94"
Accept-Ranges: bytes
Content-Length: 2117
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-192x192.png
163.44.194.225200 OK 37 kB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2021/12/cropped-napgame24h-192x192.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 365c1363c283e5989b8a319c87c7fd22
48676f2230e7d815c9b7caedd3ae0f63db4dc335
6128f41e34dd21b72763568315446d860695e6e6022257702d907b1ad76a4b29
GET /wp-content/uploads/2021/12/cropped-napgame24h-192x192.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:29 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2021 11:00:14 GMT
ETag: "91a9-5d24fed9cf193"
Accept-Ranges: bytes
Content-Length: 37289
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
142.250.74.34200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220921/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Mon, 26 Sep 2022 03:27:23 GMT
expires: Mon, 10 Oct 2022 03:27:23 GMT
cache-control: public, max-age=1209600
age: 1506
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napgame24h.com/wp-content/uploads/2020/05/nap-game-gia-re.png
163.44.194.225200 OK 1.8 MB URL HTTP/1.1 napgame24h.com/wp-content/uploads/2020/05/nap-game-gia-re.png
IP 163.44.194.225:0
ASN #131392 GMO-Z.com Runsystem Joint Stock Company
File type PNG image data, 1135 x 640, 8-bit/color RGBA, non-interlaced\012- data
Size 1.8 MB (1766799 bytes)
Hash e27126345c1aa8a9797157a705132267
0f23202abb4a9a72b4cf4550c0b8cf8040ff583c
3403277775bb9c8b2a31f4e04e74a9b4459980e8d9c24c7bd220f86af14cae38
GET /wp-content/uploads/2020/05/nap-game-gia-re.png HTTP/1.1
Host: napgame24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 03:52:27 GMT
Server: Apache
Last-Modified: Fri, 11 Dec 2020 20:46:42 GMT
ETag: "1af58f-5b63663d1c8a7"
Accept-Ranges: bytes
Content-Length: 1766799
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 83ce30306f9844b38a8e5d4c9146e333
a2a8a135c949784b4d2153954593411074fd0425
939a3899d3ba41e4868adabbfe5f0c49ecaa1bce8b1cb109327dc2dd6311ad5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=napgame24h.com&callback=_gfp_s_&client=ca-pub-8261059927067742
172.217.21.162200 OK 201 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=napgame24h.com&callback=_gfp_s_&client=ca-pub-8261059927067742
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash f4e7b04820efa48e36bcfca608f68649
99e2552eaa5a524b8936dc0cd2dcf1c299cc79cb
218805cde09867bd36b29c41a0e469b6a95e5b761765db4a39fbaa4959b75662
GET /gampad/cookie.js?domain=napgame24h.com&callback=_gfp_s_&client=ca-pub-8261059927067742 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 26 Sep 2022 03:52:30 GMT
server: cafe
cache-control: private
content-length: 201
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=napgame24h.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=napgame24h.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=napgame24h.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 26 Sep 2022 03:52:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=napgame24h.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=napgame24h.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=napgame24h.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 26 Sep 2022 03:52:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 83ce30306f9844b38a8e5d4c9146e333
a2a8a135c949784b4d2153954593411074fd0425
939a3899d3ba41e4868adabbfe5f0c49ecaa1bce8b1cb109327dc2dd6311ad5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a347d1a00b963f1d6a2a1ede4a5a7922
f853fc68ad2d4adf3742b5e437fe1e74262f1f70
c156ac5fa69d56ee8d64ae91fcff3b209d11e98d28614b8b2c908a3981174af8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 26 Sep 2022 03:52:30 GMT
expires: Mon, 26 Sep 2022 03:52:30 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 13:42:03 GMT
expires: Mon, 25 Sep 2023 13:42:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 51027
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 03:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 97bb7acbdbf85cf691164766aef5ea70
12e1d1b0b89a034980819c1b51839afcbc8f1be4
b72f9f25f0dbbd115ca51a726f30e7b1139178f3ed0ecde21ed032b10d08959e
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgame24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 26 Sep 2022 03:52:30 GMT
date: Mon, 26 Sep 2022 03:52:30 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-_emN9y-X_blKZKfiC8dqvg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 431ff1171a3d7c60a31cc1c3f62164ee
4b32113aaf50132b38c8034017a6eb5a32d7040b
65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 23:15:06 GMT
age: 16647
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2