Report - faztplay.com/

Report Overview

Submitted URL
faztplay.com/
IP
104.17.57.51
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-27 19:34:17
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	67 kB	143.204.55.68
use.fontawesome.com	942	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	1.0 kB	172.64.133.15
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	325 B	1.5 kB	143.204.55.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	122 kB	142.250.74.10
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	944 B	54.230.245.118
in.hotjar.com	1746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	465 B	882 B	54.229.35.143
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	933 B	104.18.11.207
faztplay.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.4 kB	1.5 MB	104.17.58.51
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.2 kB	142.250.74.3
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	3.8 kB	54.230.111.39
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.212.166.60
app.five9.com	20853	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	7.7 kB	198.105.202.32
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	643 B	559 B	216.239.32.36
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	65 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	faztplay.com/	Phishing
2022-09-27	medium	faztplay.com/theme/Master/FrontPage/js/frontend/min/scripts.min.d4bb94cd.js	Phishing
2022-09-27	medium	faztplay.com/	Phishing
2022-09-27	medium	faztplay.com/js/chat/five9-social-widget.js	Phishing
2022-09-27	medium	faztplay.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	faztplay.com/js/chat/five9-social-widget.js	76 kB	2023-03-07	2024-02-24
Pretty URL faztplay.com/js/chat/five9-social-widget.js IP 104.17.57.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:23 Last Seen2024-02-24 23:53:22 Times Seen6 Hash b9253f99843d9d9842bf80505cbed765 6dc87bd3ff73eb23e3ad6ae8b6cce1f8f802fbc7 97480138c4d63a547537f8bc3ae898de7a1db22887a7f134c6603e944a4531f6 Loading...

	faztplay.com/theme/Master/FrontPage/js/frontend/min/scripts.min.d4bb94cd.js	929 kB	2023-03-07	2023-03-14
Pretty URL faztplay.com/theme/Master/FrontPage/js/frontend/min/scripts.min.d4bb94cd.js IP 104.17.57.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:01:42 Last Seen2023-03-14 08:20:41 Times Seen1 Hash 626b18ae5e44dbcea8db009152cbea22 1086a62fded1f306cd7cd80020a77d3f0c0d599e 8a2aca9c9be5804118d9ef8c6a3491fc4082e049a9c8375e9ff147ce389b5126 Loading...

	faztplay.com/	373 B	2023-03-07	2023-03-17
Pretty URL faztplay.com/ IP 104.17.58.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:47 Last Seen2023-03-17 12:47:52 Times Seen1 Hash a3b189af167f1924fba66b31e769fd3a becbf139f4b63b10d348ac549d2a16673088af21 bb34ddcfc4645df2c8990248232401aeb7571f872df1b57cc0572ffb56ea47dc Loading...

	faztplay.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-18
Pretty URL faztplay.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.17.57.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-18 06:42:44 Times Seen54394 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	faztplay.com/	658 B	2023-03-08	2023-03-08
Pretty URL faztplay.com/ IP 104.17.58.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:40:02 Last Seen2023-03-08 02:40:02 Times Seen1 Hash 0c2af91509d6181504c94cc0d90faf71 2a86d189bb02253ab5068dc2fbb9a07895e3f6e0 f6037a377fb851a0341954a1bb16370d44cf6ce6fd9d2b824bd438bc984ba999 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z	154 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:40:02 Last Seen2023-03-08 02:40:02 Times Seen1 Hash 00ed3e6731f46d4257137c75ba04f319 2a6337af7f359142606e2e6b2491e3407d031005 36f2c737d11d48c6308714611337a8499f3b46b7dd2acc53b69126c025eca6ee Loading...

	unknown	0 B	2023-03-07	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 06:46:18 Times Seen36929034 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html	2.3 kB	2023-03-07	2023-03-17
Pretty URL vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:41 Last Seen2023-03-17 12:55:02 Times Seen1 Hash d92066afca578ed14865977d9feac035 2272d154325335dd33ffed8b26929039c6561771 fc200422a2125ba3391e529347524b6596dc8eb4cbb545e7db65ecde73f5bb28 Loading...

	faztplay.com/	204 B	2023-03-07	2024-02-24
Pretty URL faztplay.com/ IP 104.17.58.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:23 Last Seen2024-02-24 23:53:21 Times Seen4 Hash db0cce67863c86c9809edec53fac869a 9c03cdc8948bccf7e0a6c2ecd6be9627df710658 8d5b8619b368c6109448ac593b97a246d3f2fb0e75304e6ab75786aa95e5d0e1 Loading...

	static.hotjar.com/c/hotjar-916387.js?sv=7	4.6 kB	2023-03-08	2023-03-08
Pretty URL static.hotjar.com/c/hotjar-916387.js?sv=7 IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:40:02 Last Seen2023-03-08 02:40:02 Times Seen1 Hash a9eab12d48c6a39bfafea0ca4b799742 6214868fbb065f5fb9481f5d4a8eb03bbf6fa75b b1d54930418b7f48dab156212c10580261208942b278ac2a631f56cdfa112061 Loading...

		Size	First Seen	Last Seen
	#1 Eval - f43a635d5f2d1974937962e6b9234cc1	22 kB	2023-03-07	2023-09-17
Pretty Observations First Seen2023-03-07 14:01:42 Last Seen2023-09-17 06:27:28 Times Seen45 Hash f43a635d5f2d1974937962e6b9234cc1 d230e3ff46138787654874ef078de0c8f561662d eaff2afa14a3bad51931245ea2de119e5fdb11a48a5af6ab348a869588eb0b11 Loading...

	#2 Eval - 4f5885262e8544079071bf4876566be7	10 kB	2023-03-07	2024-03-19
Pretty Observations First Seen2023-03-07 14:01:42 Last Seen2024-03-19 06:42:38 Times Seen59 Hash 4f5885262e8544079071bf4876566be7 fb478d496b42b2e1294ce6a6600c6478b998a6e8 23669666145b59237c11e83d15e64cf78cbc32dee8f82fb46f0f3f4e3adb8e10 Loading...

	#3 Eval - 6d949c7ada6f94572e5581f4e0848ebd	558 kB	2023-03-07	2023-03-14
Pretty Observations First Seen2023-03-07 14:01:42 Last Seen2023-03-14 08:20:41 Times Seen1 Hash 6d949c7ada6f94572e5581f4e0848ebd 934a638dbc185e94934380805efd54238217c4a9 7591f7e0215dcf366e9ddf153eaa9dd4618a7b6905b0cff2b329a28987918842 Loading...

	#4 Eval - 59bd9ea439a8fb5867604733c63cd386	6.7 kB	2023-03-07	2023-06-02
Pretty Observations First Seen2023-03-07 14:01:42 Last Seen2023-06-02 04:21:11 Times Seen3 Hash 59bd9ea439a8fb5867604733c63cd386 1685d16a3f715c3a3473e5f68f6d6bd59c6f5b0d 2fbae045a7e058f5f253b10f4168a494020baf422a69dd4fa0ae5a443c65036e Loading...

	#5 Eval - a1fb4aaee1dcbfd24e6ec0fd67ab9645	23 kB	2023-03-07	2024-04-13
Pretty Observations First Seen2023-03-07 12:55:31 Last Seen2024-04-13 05:53:34 Times Seen884 Hash a1fb4aaee1dcbfd24e6ec0fd67ab9645 77558a30ff578aeb671e2bdb574df166751aa487 c84e4b2e9e47490ff3fa125e0aa933f617633649358da8861b4b430ab6ae9a70 Loading...

HTTP Transactions (60)

URL IP Response Size

faztplay.com/

104.17.58.51

301 Moved Permanently

0 B

URL HTTP/1.1
faztplay.com/
IP
104.17.58.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 27 Sep 2022 19:34:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 27 Sep 2022 20:34:05 GMT
Location: https://faztplay.com/
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7516acbf1ca0fab4-OSL

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 19:05:14 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wiwObIjjWPWWAxp5IbTAIctjh4y3Y2izFgQXelVsHTF3Ci4XxF2rTw==
Age: 1732

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2328
Expires: Tue, 27 Sep 2022 20:12:54 GMT
Date: Tue, 27 Sep 2022 19:34:06 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1ZRFdzMwfpYW9EeeCLRkf8qiKVt4fyITjScfzmc5v0En-U3Dmy71Jg==
age: 36593
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
17883491aa4a759d270aefa42730e0ba
8e2f48dbf2b1af81b843f1880b459fdeeb10abd8
03d112eafbd3be87bf30191f6c1eae2cf3f4a665b903f35efe40aca4253cc3da

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6282
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:06 GMT
Last-Modified: Tue, 27 Sep 2022 17:49:24 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

faztplay.com/img/logos/gamez/min/faztplay_dark.png

104.17.57.51

200 OK

2.3 kB

URL HTTP/2
faztplay.com/img/logos/gamez/min/faztplay_dark.png
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 413 x 44, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2290 bytes)
Hash
87fe3c88c65b586d05f7f0e86193b496
88bf0db737dfab5377a4a70f8dc11d9c822103c6
930327c22242ea16372de9fa7548d1913740071a5edf93451d70d56cfd29915a

HTTP Headers

GET /img/logos/gamez/min/faztplay_dark.png HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: image/png
content-length: 2290
last-modified: Tue, 27 Sep 2022 15:06:34 GMT
etag: "6333117a-8f2"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc37a4db512-OSL
X-Firefox-Spdy: h2

faztplay.com/img/logos/gamez/min/faztplay.png

104.17.57.51

200 OK

2.3 kB

URL HTTP/2
faztplay.com/img/logos/gamez/min/faztplay.png
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 413 x 44, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2290 bytes)
Hash
87fe3c88c65b586d05f7f0e86193b496
88bf0db737dfab5377a4a70f8dc11d9c822103c6
930327c22242ea16372de9fa7548d1913740071a5edf93451d70d56cfd29915a

HTTP Headers

GET /img/logos/gamez/min/faztplay.png HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: image/png
content-length: 2290
last-modified: Tue, 27 Sep 2022 15:06:34 GMT
etag: "6333117a-8f2"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc37a4cb512-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Oswald:200,300,400

142.250.74.10

200 OK

906 B

URL HTTP/2
fonts.googleapis.com/css?family=Oswald:200,300,400
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
906 B (906 bytes)
Hash
1e3af5032ea8f4af34f0dc818bee5f53
fb9f2f9d45c9262a0860df2ce04769d1ef25981b
141b340a01150de8a083242303dc7814088399ae027a8c67a27d5cdd01164f7a

HTTP Headers

GET /css?family=Oswald:200,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Noto+Sans

142.250.74.10

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=Noto+Sans
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1050 bytes)
Hash
a7dde38cb543f53fb0d78eee653648b5
298f3ee2e9c94ee8c2e74941b35928ee9f14b80c
6d8271ac5e391d1c7e819744abdf5c2760e9511d3b7a0daa19b6ac7eb8c5617e

HTTP Headers

GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css

104.17.57.51

200 OK

7.3 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
7.3 kB (7298 bytes)
Hash
f337ff6c35c301fc2b780f68cad448f4
6318f62ced0117539483222069a0876b05b926d1
2e1d2bd3a157e5231a81a128ee27a2f330285df36079d373c694e5f0fabc760b

HTTP Headers

GET /theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
vary: Accept-Encoding
etag: W/"63331179-c1f9"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc36a31b512-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:06 GMT
Last-Modified: Tue, 27 Sep 2022 17:48:38 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.212.166.60

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.212.166.60:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uEAiYdSZ31jEJxQMHmy55Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Kb/n8OiOa8MPdHdvAgPtsIb8UYk=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

faztplay.com/theme/Master/FrontPage/js/frontend/min/scripts.min.d4bb94cd.js

104.17.57.51

200 OK

302 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/js/frontend/min/scripts.min.d4bb94cd.js
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
302 kB (301466 bytes)
Hash
1e11c9db3fe5f100f02514f7b425f63e
2f0fdf2fa84effe276b9641de224e03baff97879
d8db033a6facd172278638b8a7ccb6e2dff09e78c28eba9877b5fd24d6c07252

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /theme/Master/FrontPage/js/frontend/min/scripts.min.d4bb94cd.js HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: W/"63331179-e2cac"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc37a4bb512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

faztplay.com/theme/Master/FrontPage/img/contentimages/game-plants-vs-zombies.jpg

104.17.57.51

200 OK

282 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/img/contentimages/game-plants-vs-zombies.jpg
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
282 kB (281947 bytes)
Hash
a4970b7341a7e0088191c1bfc13507ea
147d363221c276780245c227dbbc681b2d881814
34a75c5dac8b48d0401a4c2b3a0f397edaa9bec6a6521fdc4e63876907236fd7

HTTP Headers

GET /theme/Master/FrontPage/img/contentimages/game-plants-vs-zombies.jpg HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: image/jpeg
content-length: 281947
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: "63331179-44d5b"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc748e6b512-OSL
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/img/contentimages/game-tomb-raider-anniversary-01.jpg

104.17.57.51

200 OK

50 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/img/contentimages/game-tomb-raider-anniversary-01.jpg
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Size
50 kB (50544 bytes)
Hash
7de5d9feaea9e6e40572e47e9cbae47b
1d81eff277956c0bbd6410171ddce786a6f315f2
75b9487d0e6d4a9f6d116b94b6b94cc5f9d93b639e5e1b9067eff6300c296d22

HTTP Headers

GET /theme/Master/FrontPage/img/contentimages/game-tomb-raider-anniversary-01.jpg HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: image/jpeg
content-length: 50544
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: "63331179-c570"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc748f5b512-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans

142.250.74.10

200 OK

115 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
115 kB (115242 bytes)
Hash
e4798b408e67b14513bfb19e9d93a28b
d97e238fe1390138922a99d1ba3610bc39372897
f994cfba9b2740e4f4c2a27aa15e8f71ae08ae09756d3bedb2b225e7d7a8200d

HTTP Headers

GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/img/bg/min/mc-pricetable.jpg

104.17.57.51

200 OK

49 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/img/bg/min/mc-pricetable.jpg
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x636, components 3\012- data
Size
49 kB (48640 bytes)
Hash
40da5a281711a0c8cb2720c2c27ed6ec
36a8e71e84f67b59d5e0663d4756fd1a3d466375
62a6e4f72f7d43d1e31416bf85343964ac2e1cebf7eae0a6e47fc93daeee82ec

HTTP Headers

GET /theme/Master/FrontPage/img/bg/min/mc-pricetable.jpg HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: image/jpeg
content-length: 48640
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: "63331179-be00"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc758fab512-OSL
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/img/contentimages/game-syberia-2-01.jpg

104.17.57.51

200 OK

253 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/img/contentimages/game-syberia-2-01.jpg
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1655x972, components 3\012- data
Size
253 kB (252817 bytes)
Hash
03707872ef40988becb85cb1905980c9
0ec7450d5ba4095f4c1b88416e8f010592ec4adc
154622ce0c610891b15b20fbed72e3210157d1e238d8bbb6dfabae69d86dd7f7

HTTP Headers

GET /theme/Master/FrontPage/img/contentimages/game-syberia-2-01.jpg HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: image/jpeg
content-length: 252817
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: "63331179-3db91"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc748ecb512-OSL
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/img/contentimages/game-bejeweled-2.jpg

104.17.57.51

200 OK

239 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/img/contentimages/game-bejeweled-2.jpg
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
239 kB (239060 bytes)
Hash
7d2ff1ca6c9e795a764ff98b0b215223
9c53d9827c89d90636b4bf3c7c5a89b8e61f8986
11e5bbf0c905ab31cb969d6833bef1a95ab11038cd492827acd09ea56e9f0813

HTTP Headers

GET /theme/Master/FrontPage/img/contentimages/game-bejeweled-2.jpg HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: image/jpeg
content-length: 239060
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: "63331179-3a5d4"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc748e8b512-OSL
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/img/contentimages/game-commandos-3-01.jpg

104.17.57.51

200 OK

335 kB

URL HTTP/2
faztplay.com/theme/Master/FrontPage/img/contentimages/game-commandos-3-01.jpg
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x800, components 3\012- data
Size
335 kB (334641 bytes)
Hash
1c1c7eea1417d4456c1d153e3ed69e99
9c31097b0d8f30244f5bb56ca3e70b9d8c42fa3e
6f29629959e939bc6ebb86d480848a37552645d7b2d6f813ece393c1eddd2aef

HTTP Headers

GET /theme/Master/FrontPage/img/contentimages/game-commandos-3-01.jpg HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/theme/Master/FrontPage/css/frontend/theme/mc2-blue.045764dd.css
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: image/jpeg
content-length: 334641
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: "63331179-51b31"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc748f9b512-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5896
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:07 GMT
Last-Modified: Tue, 27 Sep 2022 17:55:51 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e461e6d1e1f02f378b7a7556f816afa4
21b06108344c6f13ea02040dbb48c49b73cf9aec
5be5f144a198da13735c59373e63e33050feb44777a4d29dcc4c41fc3131ffed

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2269
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:34:07 GMT
Last-Modified: Tue, 27 Sep 2022 18:56:18 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

static.hotjar.com/c/hotjar-916387.js?sv=7

54.230.111.39

200 OK

3.2 kB

URL HTTP/2
static.hotjar.com/c/hotjar-916387.js?sv=7
IP
54.230.111.39:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (3789)
Size
3.2 kB (3155 bytes)
Hash
da9fdd0c7fc49f3aae38a510bc119e61
74c0000f6f4266d9b3ca06089a7b181a3532db5c
ac7bc7fa0547d7b23c1cf31dd1df140fefc88b7fe0059b082422d3fb6064ed12

HTTP Headers

GET /c/hotjar-916387.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Tue, 27 Sep 2022 19:33:15 GMT
cache-control: max-age=60
etag: W/a9eab12d48c6a39bfafea0ca4b799742
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8mO33kBTMq9yIjUaw44Y7rl05pmqJdqPYRH6Fzvk-YlU16pehj80yg==
age: 59
X-Firefox-Spdy: h2

script.hotjar.com/modules.2be88a2123e5e486752f.js

143.204.55.68

200 OK

66 kB

URL HTTP/2
script.hotjar.com/modules.2be88a2123e5e486752f.js
IP
143.204.55.68:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
66 kB (66109 bytes)
Hash
7e2701357f0eb1f827cb083be72d15e4
24442ac41c56b745bad749b36fcc91eef08ad32e
f2026ad40dcd31b7b290b67b52e2a0e046a8c11a4fca0e5d8000965160e11d5e

HTTP Headers

GET /modules.2be88a2123e5e486752f.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 66109
date: Tue, 27 Sep 2022 09:49:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "7e2701357f0eb1f827cb083be72d15e4"
last-modified: Tue, 27 Sep 2022 09:48:56 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kUTFz6Dpscs3ZBBj3fBRfTL0xHR8MbVS9h3yIKDlG96oH_3hUWc27g==
age: 35101
X-Firefox-Spdy: h2

app.five9.com/five9_clients/consoles_latest/SocialWidget/five9-social-widget.css?_=1664307244976

198.105.202.32

200

4.7 kB

URL HTTP/1.1
app.five9.com/five9_clients/consoles_latest/SocialWidget/five9-social-widget.css?_=1664307244976
IP
198.105.202.32:0
ASN
#36776 FIVE9

File type
ASCII text, with very long lines (4699), with no line terminators
Size
4.7 kB (4699 bytes)
Hash
6c5391068240546bbedf8188cfb878a0
52e9861f788a24790a63a4a81e40495878e648aa
86815552a6ac093a94dde24b65658c956fd3d91415541dc467368fbc8ebd7e8a

HTTP Headers

GET /five9_clients/consoles_latest/SocialWidget/five9-social-widget.css?_=1664307244976 HTTP/1.1
Host: app.five9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://faztplay.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"4699-1661818672000"
Last-Modified: Tue, 30 Aug 2022 00:17:52 GMT
Content-Type: text/css
Content-Length: 4699
Date: Tue, 27 Sep 2022 19:34:07 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Set-Cookie: BIGipServer~VCC-WEB-INFRASTRUCTURE~defaultV10UIPool=!kCoR3fXN8KcWS2WUzZ/Q2DFm9b30ZwjFP3uq21YzAvCyIYOC/jURrQBWHXkJcm1BCrs+/FYAA6NgD0Q=; path=/; Httponly; Secure
TS01a861d0=0152c02c96159221511a4f52c5fb086f648111514357f934457e6048b98115494a9b1853337490e3cf96c1bb86e8d2c871739ec91c449679d30e20f6fe0fe61161c7767dd4; Path=/; Secure; HTTPOnly

app.five9.com/five9_clients/consoles_latest/SocialWidget/images/chat-small.png

198.105.202.32

200

589 B

URL HTTP/1.1
app.five9.com/five9_clients/consoles_latest/SocialWidget/images/chat-small.png
IP
198.105.202.32:0
ASN
#36776 FIVE9

File type
PNG image data, 76 x 76, 8-bit/color RGBA, non-interlaced\012- data
Size
589 B (589 bytes)
Hash
744afa0893ab886ca5faf1689d0938ef
255aaae6e2986e3b44b69297a61c14ab73b49ab9
2972dd804d7cf59ed7b67f73bec6d74b776774c8058d5f8e37a0e87e7ed07339

HTTP Headers

GET /five9_clients/consoles_latest/SocialWidget/images/chat-small.png HTTP/1.1
Host: app.five9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.five9.com/five9_clients/consoles_latest/SocialWidget/five9-social-widget.css?_=1664307244976
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"589-1661818672000"
Last-Modified: Tue, 30 Aug 2022 00:17:52 GMT
Content-Type: image/png
Content-Length: 589
Date: Tue, 27 Sep 2022 19:34:08 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Set-Cookie: BIGipServer~VCC-WEB-INFRASTRUCTURE~defaultV10UIPool=!gMJuzdldw+SAWgaUzZ/Q2DFm9b30Z/nDjDthz4Z9wbiesROPFfa+moEke8pvke7kjy9kUf2NnI2I2dM=; path=/; Httponly; Secure
TS01a861d0=0152c02c96691fc80a18586e0e4bcd2d9e844f94f3a519f51a107c8653c791e13c4c2348480168ece147ab143fcbbfe4ea8d71204b4304f85fbce2297133be2acd47dcd75a; Path=/; Secure; HTTPOnly

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
41d45b9f205927423e15ff2d55ff20f1
db65972e4848a94b58ca34e0467cd554706f0191
0f272c5dc2757b545f9f25dd35d4c318d0620228e47fdbe30aa97eb5732a4cfa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 19:34:08 GMT
Last-Modified: Tue, 27 Sep 2022 18:28:51 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -AT8JbXA9-QO_c9221Tx_KeD13ibgtvV2U_89WmW1PkSRbkVU4BniA==
Age: 3917

region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X&gtm=2oe9q0&_p=1398648515&cid=1576224051.1664307245&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664307245&sct=1&seg=0&dl=https%3A%2F%2Ffaztplay.com%2F&dt=faztplay.com%20-%20Home%20Page&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X&gtm=2oe9q0&_p=1398648515&cid=1576224051.1664307245&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664307245&sct=1&seg=0&dl=https%3A%2F%2Ffaztplay.com%2F&dt=faztplay.com%20-%20Home%20Page&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-MGKXPW4W8X&gtm=2oe9q0&_p=1398648515&cid=1576224051.1664307245&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664307245&sct=1&seg=0&dl=https%3A%2F%2Ffaztplay.com%2F&dt=faztplay.com%20-%20Home%20Page&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://faztplay.com
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://faztplay.com
date: Tue, 27 Sep 2022 19:34:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7

54.229.35.143

200 OK

595 B

URL HTTP/2
in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
IP
54.229.35.143:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
595 B (595 bytes)
Hash
b6994f030b5890b35008ed14fb3f9ba9
378c75ada8c4ab73557d114a1c112d804f754b8d
baca4bc67e93e9f2a92b8b30b41bd3c5a87f66f5898e10cffbe532d2d36a0c1b

HTTP Headers

POST /api/v2/client/sites/916387/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 146
Origin: https://faztplay.com
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Tue, 27 Sep 2022 22:09:55 GMT
Date: Tue, 27 Sep 2022 19:34:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Tue, 27 Sep 2022 22:09:55 GMT
Date: Tue, 27 Sep 2022 19:34:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Tue, 27 Sep 2022 22:09:55 GMT
Date: Tue, 27 Sep 2022 19:34:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Tue, 27 Sep 2022 22:09:55 GMT
Date: Tue, 27 Sep 2022 19:34:08 GMT
Connection: keep-alive

app.five9.com/five9_clients/consoles_latest/SocialWidget/images/external-link-32.png

198.105.202.32

200

389 B

URL HTTP/1.1
app.five9.com/five9_clients/consoles_latest/SocialWidget/images/external-link-32.png
IP
198.105.202.32:0
ASN
#36776 FIVE9

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
389 B (389 bytes)
Hash
decc232eb8ff2ea293a8f4f47baef28c
bec2c5b233c15a5d2a6075a80d059ee38f534034
a046fdd4444ac02d32b8c049847221419e8e5fb391d5a1b21b959d8d32caa82d

HTTP Headers

GET /five9_clients/consoles_latest/SocialWidget/images/external-link-32.png HTTP/1.1
Host: app.five9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.five9.com/five9_clients/consoles_latest/SocialWidget/five9-social-widget.css?_=1664307244976
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"389-1661818672000"
Last-Modified: Tue, 30 Aug 2022 00:17:52 GMT
Content-Type: image/png
Content-Length: 389
Date: Tue, 27 Sep 2022 19:34:08 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Set-Cookie: BIGipServer~VCC-WEB-INFRASTRUCTURE~defaultV10UIPool=!STJA/Lnzp9GWs5mUzZ/Q2DFm9b30Zyjc9W+OI53XpJX0irWS03yfaVSck15vlhBo4IACZyjecAi9Bg==; path=/; Httponly; Secure
TS01a861d0=0152c02c96424c2fdf12a61993696998685d264c02a4a25dfdb8e1285f3d0291dfe9fe20d9aaa13b58c3fdae9882937df0f51db01c275dbb5235fcf3e71e487b62c00417b6; Path=/; Secure; HTTPOnly

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13213 bytes)
Hash
62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 78681
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5319 bytes)
Hash
46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: d4c13fa8-eb03-4abf-9516-b74eac712b87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreHL5IAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-487923453bd27d6a744b5a31;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gGfaq_dx7NIHH43-iNn0Ah61HRLT8H3NxPGVoDvkKgBgy8zJWYwRuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 78290
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6390 bytes)
Hash
14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 65296
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9163 bytes)
Hash
deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 78290
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10318 bytes)
Hash
a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:02:24 GMT
age: 81104
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7455 bytes)
Hash
5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
age: 66493
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5980 bytes)
Hash
ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy0oyFx_T6CEuOQckEzvUQOUo307Jm_OgJzomWlMz9BhgD3eOaysdA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 18:16:32 GMT
age: 4663
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.9.0/css/all.css

172.64.133.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.9.0/css/all.css
IP
172.64.133.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://faztplay.com
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:07 GMT
content-type: text/css
x-amz-id-2: JjVvQNtmgobjrsMHygQVH49VP7I8dxxgA2gBdw5fRBzuCYLdJKSZ6B7Rtn6HO0j56Z6z82q1FGI=
x-amz-request-id: HBZ5AT5M6GCJBTQ1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UxP3GAwyWqfLH4jBey8vIojJl%2FEOnjvQFwHX%2FdINvD0Vehl%2BGx1zMAfwqISfOD3vDxihrBN9V0E8dRHQ5t0YGX5LQ85LI%2Bqe9NdoUDKvTm9pkLKEUaaAKNxH2ENEO5LYmEGcpZXT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7516acc42f5a06d5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

faztplay.com/

104.17.57.51

200 OK

0 B

URL HTTP/2
faztplay.com/
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; expires=Tue, 27-Sep-2022 23:34:06 GMT; Max-Age=14400; path=/; secure; HttpOnly
CakeCookie[lang]=eng; path=/; secure
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: DYNAMIC
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc0edafb512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

faztplay.com/js/chat/five9-social-widget.js

104.17.57.51

200 OK

0 B

URL HTTP/2
faztplay.com/js/chat/five9-social-widget.js
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/chat/five9-social-widget.js HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:06:34 GMT
etag: W/"6333117a-1294b"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc37a49b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css

104.18.11.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://faztplay.com
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f8025ed7519ab1f3a000534ebc927cda
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7516acc40c33b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/css/frontend/theme/basic-footer.0d715425.css

104.17.57.51

200 OK

0 B

URL HTTP/2
faztplay.com/theme/Master/FrontPage/css/frontend/theme/basic-footer.0d715425.css
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /theme/Master/FrontPage/css/frontend/theme/basic-footer.0d715425.css HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: W/"63331179-3a9"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc36a2cb512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

faztplay.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.17.57.51

200 OK

0 B

URL HTTP/2
faztplay.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 11:11:52 GMT
etag: W/"633188f8-4d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc38a5db512-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 29 Sep 2022 19:34:06 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Questrial

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Questrial
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Questrial HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Arimo

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Arimo
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Arimo HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Days+One

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Days+One
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Days+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/css/frontend/theme/basic-header.38078d4e.css

104.17.57.51

200 OK

0 B

URL HTTP/2
faztplay.com/theme/Master/FrontPage/css/frontend/theme/basic-header.38078d4e.css
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /theme/Master/FrontPage/css/frontend/theme/basic-header.38078d4e.css HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: W/"63331179-16b6"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc36a27b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

faztplay.com/theme/Master/FrontPage/css/frontend/theme/basic-main.752f10db.css

104.17.57.51

200 OK

0 B

URL HTTP/2
faztplay.com/theme/Master/FrontPage/css/frontend/theme/basic-main.752f10db.css
IP
104.17.57.51:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /theme/Master/FrontPage/css/frontend/theme/basic-main.752f10db.css HTTP/1.1
Host: faztplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Cookie: CAKEPHP=tl8ki4e0tki94it4u38092c0hf; CakeCookie[lang]=eng
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 27 Sep 2022 19:34:06 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 15:06:33 GMT
etag: W/"63331179-1cab"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: MISS
expires: Tue, 27 Sep 2022 23:34:06 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 7516acc36a2fb512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://faztplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 19:34:06 GMT
date: Tue, 27 Sep 2022 19:34:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP