| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashc9df6b36bf16969ac566c1b798362e4a e56eff34815153ae019a4bf63eb9746dd9ae2e5b 33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 21 Oct 2022 06:36:49 GMT
Expires: Fri, 21 Oct 2022 06:47:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Wvr-BjoNPFQ7t9J44SPnDxdtFX09Qm_s4tu_Jh0_-rAohyM7N_68xg==
Age: 3194
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash6b6481bf5f33b42cdd966d49d8b70107 03ed01a9dc82a7efaf3706691249d811f64719a4 1e42a2cd7e7ef655d17dea6423dff85d3f57111d9bd08d2f829535aa462eb11c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E42A2CD7E7EF655D17DEA6423DFF85D3F57111D9BD08D2F829535AA462EB11C"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17362
Expires: Fri, 21 Oct 2022 12:19:25 GMT
Date: Fri, 21 Oct 2022 07:30:03 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9dc4f23f82148797f6d8041bdda3c7f7 6841ded3e2dd94fd762316d01efd43f7aafb8354 e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17318
Expires: Fri, 21 Oct 2022 12:18:41 GMT
Date: Fri, 21 Oct 2022 07:30:03 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jquzG3tVCIN77QwuMGVodrlWHVtC5dwZShaJk6K0Z1KIt0f5LaviIeztOzGeAq+0/qHYirhex0I=
x-amz-request-id: 5C9NK68TV032FC3H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 21 Oct 2022 06:37:04 GMT
age: 3179
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 21 Oct 2022 07:30:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 21 Oct 2022 06:43:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 21 Oct 2022 07:42:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yR1l05udnseqN8FcUfgrcuVIUNYBXqtT3VJGewm9vvn6ljHn9MBV6g==
Age: 2784
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashbec4af23b2ad72256eefc3564003b85b 0915d0f9fc04ea9379045d511f57764157328938 d1e3b55b775eef721cdfdb46a0b8ec2d4f4e771063c26bbc6c14a453e0dbd97f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3407
Cache-Control: max-age=97760
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Etag: "6351180e-117"
Expires: Sat, 22 Oct 2022 10:39:24 GMT
Last-Modified: Thu, 20 Oct 2022 09:42:38 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash160ad2d6df2110d3aed423b805e14122 423d7b0f7f90cc67fe68123f1ca513681f2389e4 0014fee7a03faf9e66cea8ccfbeeeea7dcf739d86ab9ecc945eb29a4cadc51e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4007
Cache-Control: max-age=103411
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Etag: "63512bc8-117"
Expires: Sat, 22 Oct 2022 12:13:35 GMT
Last-Modified: Thu, 20 Oct 2022 11:06:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasha5dd4f71f4ddd5be9201466ed7a6c423 1d0832fb6e227d42137d319f728c8bc1414c816f 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3539
Cache-Control: max-age=92141
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Etag: "63510196-1d7"
Expires: Sat, 22 Oct 2022 09:05:45 GMT
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe6c3e0486533b0a2edffeca191cd7785 2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27 0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash160ad2d6df2110d3aed423b805e14122 423d7b0f7f90cc67fe68123f1ca513681f2389e4 0014fee7a03faf9e66cea8ccfbeeeea7dcf739d86ab9ecc945eb29a4cadc51e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5776
Cache-Control: max-age=105180
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Etag: "63512bc8-117"
Expires: Sat, 22 Oct 2022 12:43:04 GMT
Last-Modified: Thu, 20 Oct 2022 11:06:48 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe6c3e0486533b0a2edffeca191cd7785 2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27 0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash160ad2d6df2110d3aed423b805e14122 423d7b0f7f90cc67fe68123f1ca513681f2389e4 0014fee7a03faf9e66cea8ccfbeeeea7dcf739d86ab9ecc945eb29a4cadc51e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5776
Cache-Control: max-age=105180
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Etag: "63512bc8-117"
Expires: Sat, 22 Oct 2022 12:43:04 GMT
Last-Modified: Thu, 20 Oct 2022 11:06:48 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| push.services.mozilla.com/ | 35.161.231.36 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.161.231.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t8HMKZDfd9tRT0hhXq15gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gWCiPZjmtrvkqGPq+omdTmNQmtQ=
|
|
| cdn.discordapp.com/attachments/1011371469273575505/1015569338054475776/logo.png | 162.159.134.233 | 200 OK | 260 kB |
URL HTTP/2cdn.discordapp.com/attachments/1011371469273575505/1015569338054475776/logo.png IP162.159.134.233:0
File typePNG image data, 2000 x 1506, 8-bit/color RGBA, non-interlaced\012- data Size260 kB (259876 bytes) Hash990f94f69408f684441fb5a0ef548068 77f06a973b363e29d2a1966fbf302ae1626a5b9d 8c1237b3e11b97ea917fd346e9116bb14eda32e470511f8c3bb62465078cf530
GET /attachments/1011371469273575505/1015569338054475776/logo.png HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 07:30:04 GMT
content-type: image/png
content-length: 259876
cf-ray: 75d849287c83b518-OSL
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "990f94f69408f684441fb5a0ef548068"
expires: Sat, 21 Oct 2023 07:30:04 GMT
last-modified: Sat, 03 Sep 2022 10:29:58 GMT
vary: Accept-Encoding
cf-cache-status: MISS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-goog-generation: 1662200998594896
x-goog-hash: crc32c=tchFxg==, md5=mQ+U9pQI9oREH7Wg71SAaA==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 259876
x-guploader-uploadid: ADPycduiJqY5uAGmyarN3Sjj21LmQNEGlHlPj1NoKRrQF1Dbsb8wqNZT2eT2yrg8iXYX4mvEodCQDV77cLGf2iKCeR_FX_7D6YWS
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xdx33DUn3WDae6s6D%2FmuaHKx8784QEscHhyfr5UnW7oKR1%2BZ1S5HrNnmrlww66SrylGZq1EEAIMGgdVjMIKVKGAb61D9WqAry3XlnR9piTFWd2vmEe6Ncc9NZ57k9QFH0ZP9DQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashbec4af23b2ad72256eefc3564003b85b 0915d0f9fc04ea9379045d511f57764157328938 d1e3b55b775eef721cdfdb46a0b8ec2d4f4e771063c26bbc6c14a453e0dbd97f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3830
Cache-Control: max-age=98184
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 07:30:04 GMT
Etag: "6351180e-117"
Expires: Sat, 22 Oct 2022 10:46:28 GMT
Last-Modified: Thu, 20 Oct 2022 09:42:38 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdcbf142b7958e83961fc03b9676d1fc6 930f67e486f95de63450b6d73d1957aac204fb43 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17908
Expires: Fri, 21 Oct 2022 12:28:33 GMT
Date: Fri, 21 Oct 2022 07:30:05 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdcbf142b7958e83961fc03b9676d1fc6 930f67e486f95de63450b6d73d1957aac204fb43 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17908
Expires: Fri, 21 Oct 2022 12:28:33 GMT
Date: Fri, 21 Oct 2022 07:30:05 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdcbf142b7958e83961fc03b9676d1fc6 930f67e486f95de63450b6d73d1957aac204fb43 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17908
Expires: Fri, 21 Oct 2022 12:28:33 GMT
Date: Fri, 21 Oct 2022 07:30:05 GMT
Connection: keep-alive
|
|
| nowaygamers.pt/lr/scripts/xajax.js | 213.32.57.100 | 200 OK | 49 kB |
URL HTTP/2nowaygamers.pt/lr/scripts/xajax.js IP213.32.57.100:0
Hashd016e6018e2a068b02f93d0d2bd00625 cd9f4ef0c4b4436c4584e503324f819f1120fe3c c855569966b7642626548af19636c7354b65ea11749c6178f2350db20bf8e072
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/scripts/xajax.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/initial.js | 213.32.57.100 | 200 OK | 49 kB |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/initial.js IP213.32.57.100:0
Hashad3947638f3bcc092e7e7ab52e531ca7 61e3f5fae9ec0f876022467f8af493e826613989 48ed7cac63591d21b3ccfbc9e7be06b244adb38794f91e9542b77c396e8c0519
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/scripts/initial.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:04 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98b8db42-7c94-466e-b74a-050e96c7ba27.jpeg | 34.120.237.76 | 200 OK | 5.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98b8db42-7c94-466e-b74a-050e96c7ba27.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash65594d1dc13761dcc4674f03b629141f 440b895d33ade533ab57689cccfc533871958559 76eb16523cde78e0a7bc34e2a2d2a073b4569cd4b9ee5c28213497b1ea2893d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98b8db42-7c94-466e-b74a-050e96c7ba27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5029
x-amzn-requestid: 63037ba8-bfa6-4087-9486-d583348d79bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVCNwGl1IAMFuvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351e3f1-4fa2d43240e5f45624553bd3;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 00:12:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XMtaqkFsfMBVLVpUxpPan5ED2X1hyfc0CLhPuZ_2GVWZfW7e68NOBg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 00:23:25 GMT
age: 25600
etag: "440b895d33ade533ab57689cccfc533871958559"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1c6ab9a31e082a0c0eaab2a0f526495a c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a ca3a602c8af7b3e87957e54910663ea2bb72d008e14719af0f9fd7bd1a949f3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6551
x-amzn-requestid: 4deffe4d-e687-436e-938c-f8128bb84376
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zql_MG5QoAMFahg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340e9fa-66d4e2210fda5a80155f2466;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 03:09:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V5ilfg4GVL-HvWbuZrvFkZynDNCZDiBVNTDWjLdr2ZCLjH04NW3yqw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 07:30:12 GMT
age: 86393
etag: "c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/nav.js | 213.32.57.100 | 200 OK | 48 kB |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/nav.js IP213.32.57.100:0
Hasheb76d8427a6a413f463a4366ea4c343d 326e7ee385d2eca19b6219c0ccee0c99f3116fc1 3c5d124bdb7b7dd54038155f13536a1b3bf49f6dea642c0445d7ed4884e3d158
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/scripts/nav.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bade1dd-24b1-4bae-9ace-a120c6729946.jpeg | 34.120.237.76 | 200 OK | 2.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bade1dd-24b1-4bae-9ace-a120c6729946.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash76fdbaaa2ef28349492bdf0e44fa1208 6769eeb6762a3dd7dacf6a054fedf043acb463df 8c8b2db96e764f97aa91bd800b2a6f7bf6c9d96a9dd67f919f27b53074e339e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bade1dd-24b1-4bae-9ace-a120c6729946.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2305
x-amzn-requestid: d44cceea-ab77-400f-a7a6-ed80b9873106
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aE95TG2YoAMFiiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b76a1-57ed4d9437044cc1665e535b;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 03:12:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AsSDzjeB5RvDY9ZCxMe-b1bTQiQI6r2yB-PPBo9Qap4hWMINj4wmSA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 10:13:37 GMT
age: 76588
etag: "6769eeb6762a3dd7dacf6a054fedf043acb463df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/auaooilmerprmd | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/auaooilmerprmd IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/auaooilmerprmd HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:03 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.15.3/css/all.css | 172.64.132.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.15.3/css/all.css IP172.64.132.15:0
GET /releases/v5.15.3/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 07:30:04 GMT
content-type: text/css
x-amz-id-2: tKb9L1LeqQeQM8tznHRoTU242q/A1tUbgQlS/lSjqO/EHOC09PfBMp/jI5DtXmOJGgV5COsGRME=
x-amz-request-id: AEGNGY8CVPE2WKTA
last-modified: Wed, 30 Jun 2021 15:41:15 GMT
etag: W/"74bab4578692993514e7f882cc15c218"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 31104422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5gDvoJ1tomYuhBqXXYaRo5BNKQiBGjwMf14TcrVu3l6PwGhGQ6HdU5WFWoH3prMSBjVIQO8%2Bp6c2te6Nn%2FK3ahVRrtQWstgYutP7yCed%2BXNYMMOAmMjfR5UYb2Lw1slgDZFoNMAl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75d849287baa7488-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/jscolor.min.js | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/jscolor.min.js IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/scripts/jscolor.min.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:06 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap IP142.250.74.10:0
GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 07:30:04 GMT
date: Fri, 21 Oct 2022 07:30:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/images/games/csgo.png | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/images/games/csgo.png IP213.32.57.100:0
GET /lr/images/games/csgo.png HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/style/global.css.map?v05212021 | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/style/global.css.map?v05212021 IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/style/global.css.map?v05212021 HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/theme.js | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/theme.js IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/scripts/theme.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:06 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/sourcebans.js | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/scripts/sourcebans.js IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/scripts/sourcebans.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:04 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/style/global.css?v05212021 | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/themes/sourcebans-web-theme-fluent/style/global.css?v05212021 IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/themes/sourcebans-web-theme-fluent/style/global.css?v05212021 HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/scripts/contextMenoo.js | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/scripts/contextMenoo.js IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/scripts/contextMenoo.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.15.3/css/v4-shims.css | 172.64.132.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.15.3/css/v4-shims.css IP172.64.132.15:0
GET /releases/v5.15.3/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 07:30:04 GMT
content-type: text/css
x-amz-id-2: 0h7AhbF//78AL7g/LCDJ8XAXiA3Qi7U/s+XU23y/kDmw26shVV9/GG1z83Ihohoeq+sVH2b5ToA=
x-amz-request-id: 48X7R64YAMYCNCF7
last-modified: Wed, 30 Jun 2021 15:41:15 GMT
etag: W/"c55205bce667f5d812354fd1353e7389"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 31104423
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5D7EY9WVn33I9z9zgxg1hWIAxCIXZ9BbdjN9%2FNsj4b6BkbN2bWVIaZ2Q5xt9cGhps6Umo5DPgbB5Q0XJO3Dlqj%2FoeuGUtPevUH%2B6HZfVSo1eU2nwmT6zoWVYAjzvyxf30Arf635L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75d849287ba77488-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/scripts/mootools.js | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/scripts/mootools.js IP213.32.57.100:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /lr/scripts/mootools.js HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:04 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/images/logos/sb-large.png | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/images/logos/sb-large.png IP213.32.57.100:0
GET /lr/images/logos/sb-large.png HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| nowaygamers.pt/lr/images/logos/sb-large.png | 213.32.57.100 | 200 OK | 0 B |
URL HTTP/2nowaygamers.pt/lr/images/logos/sb-large.png IP213.32.57.100:0
GET /lr/images/logos/sb-large.png HTTP/1.1
Host: nowaygamers.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nowaygamers.pt/lr/auaooilmerprmd
Cookie: PHPSESSID=cc1eac700b1ee451b669d01e3782479a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
date: Fri, 21 Oct 2022 07:30:06 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|