Report - my.teamos.xyz/00130430e9f89939a63075bb5a87675d/announce7:comment39:Downloaded

Report Overview

Submitted URL
my.teamos.xyz/00130430e9f89939a63075bb5a87675d/announce7:comment39:Downloaded
IP
104.21.71.43
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 14:31:42
Access
public
Website Title
Team OS : Your Only Destination To Custom OS !!
Final URL
www.teamos.xyz/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
etiquettegrapesdoleful.com	unknown	unknown	No data	No data	2.5 kB	5.6 kB	172.240.127.234
secure.gravatar.com	1671	2004-07-15	2012-05-22	2024-04-15	916 B	4.3 kB	192.0.73.2
static.nulled.to	unknown	unknown	2015-08-27	2024-03-24	438 B	23 kB	104.22.26.201
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-16	429 B	421 B	3.123.64.179
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-04-17	492 B	8.8 kB	104.16.80.73
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-15	411 B	87 kB	188.114.97.1
instrumenttactics.com	unknown	2022-01-23	2022-01-23	2024-03-25	1.3 kB	106 kB	172.240.108.84
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-17	874 B	162 kB	142.250.147.97
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-04-17	338 B	942 B	143.204.53.97
quizmastersnag.com	unknown	unknown	No data	No data	7.8 kB	22 kB	172.240.127.234
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-17	436 B	2.2 kB	172.217.19.74
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-04-16	2.4 kB	526 kB	45.133.44.10
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-17	429 B	32 kB	142.250.74.170
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-17	541 B	49 kB	216.58.207.227
teamos.xyz	unknown	2022-01-12	2022-01-13	2024-04-15	467 B	174 kB	172.67.143.25
www.teamos.xyz	unknown	2022-01-12	2022-04-13	2024-04-10	14 kB	1.2 MB	172.67.143.25
my.teamos.xyz	unknown	2022-01-12	2022-04-13	2024-03-31	531 B	49 kB	172.67.143.25

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	instrumenttactics.com	Sinkholed
2024-04-17	medium	instrumenttactics.com	Sinkholed
2024-04-17	medium	instrumenttactics.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	unknown	357 B	2023-03-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:17:48 Last Seen2024-04-29 04:36:19 Times Seen256 Hash 00f88953f2d2d6770a8c26b60786c7a6 6cafe6508c1f114bf474f948fc6776a6131f3a72 1d996072b68082027d84ea8ccd0588497eb43fbfc4a2b2225bb443ff1424f4cc Loading...

	www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c	249 kB	2024-04-17	2024-04-17
Pretty URL www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c IP 142.250.147.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:50 Last Seen2024-04-17 16:31:51 Times Seen2 Hash fb8f2afc8433bb1d8c5a06e03e5e6032 487a4c0596768868525680cb80e16d59cd29e1b1 081239a57447e76063940218be9e502df0067ddad6a96f803659f3081a0f9615 Loading...

	unknown	145 B	2023-03-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:17:49 Last Seen2024-04-29 04:36:19 Times Seen254 Hash 56345684a4f92ef41f648d4d85464d99 a8c16ba1be3fb3c3dc7eff8358d223fc86cc3bde aa59fc72954112cea004fa466abb1ad524db3fa8321764f9699745769aea8d95 Loading...

	unknown	3.3 kB	2024-04-17	2024-04-17
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:50 Last Seen2024-04-17 16:31:50 Times Seen1 Hash 9a050331232c8bc34a40108cac8043bb 4862a002449943f12938675285b8c748c648e5cc b9da79107e6fd231d9a0d8858b922e4e5edfa7d7025944589525cb4efde6dbb7 Loading...

	instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js	27 kB	2024-04-17	2024-04-17
Pretty URL instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js IP 172.240.108.84 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:50 Last Seen2024-04-17 16:31:51 Times Seen2 Hash e49365f96d047e14669e04d8294ceaa0 475b07889d457b071098b5d95cfc951351d1f8c8 e7bf41dc54e114f4f17f494f0ecf792a2035d128ae36a6239f54cdba1da4d63c Loading...

	unknown	206 B	2023-03-07	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-29 04:36:19 Times Seen256 Hash 2700edffedbdaa40ab6a216ae8ced12f 573cb508bb36874954aa08c362370776cf73963c 35725d60531c253a1c499e18c6164aa07bcd1da0fa6e20e193b427e5970d8d09 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-30
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-30 12:49:21 Times Seen342931 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e	3.4 kB	2023-03-09	2024-04-29
Pretty URL www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:27:16 Last Seen2024-04-29 04:36:19 Times Seen643 Hash 57c077607d1b4ba5bfeac6740d6e9576 8ce714d869d8f3b46eb3a7c7689920e1a85b0808 c803ce6d437915781a624a97755010f88deffd73bcf1a8e40fe98fc2d0e1ca3d Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-04-30
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-04-30 12:34:20 Times Seen1352 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e	43 kB	2023-03-07	2024-04-29
Pretty URL www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:34 Last Seen2024-04-29 04:36:19 Times Seen762 Hash 372b0c5f17990ad741c3d02593f63fe8 4e577cb859755cbf104a2334e6307a5291558689 ef5f0b7e161099d503298ab2d66a927f48401f992d188cd04415419b41dcd0b1 Loading...

	unknown	14 kB	2023-03-07	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-29 04:36:19 Times Seen256 Hash b5bf3196e186c65f858bc7e486cf9cba 917caf23e7cac4ba0613ae06e6bf1b72c0e69c98 bb8411520f5e4a207375f13c7266dbdf5fb56fd58fa695c0d486ddf476346d02 Loading...

	instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js	31 kB	2024-04-17	2024-04-17
Pretty URL instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:51 Last Seen2024-04-17 16:31:51 Times Seen2 Hash 46b3fb2f654850a95084f5161fb2a109 5d7bad7e302a2fbaea6f40741ed8387b32675ec9 90595703b749a5d309babd07d0ca74c4fa6bf049d448d80b060ef579a94b2d60 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-04-30
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-30 12:37:23 Times Seen140390 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	20 kB	2023-10-13	2024-04-29
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51:00 Last Seen2024-04-29 05:41:51 Times Seen28476 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js	82 kB	2024-04-17	2024-04-17
Pretty URL instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:51 Last Seen2024-04-17 16:31:51 Times Seen2 Hash a8fe0d8105db72f18cd823f39344ed12 b988df32587cfd17be85f9f2186ca6d8b4d4e3ac ac38883202642871e28c80b72108f147581c672803fd0431233c11b74b1b8c3b Loading...

	unknown	109 B	2024-04-13	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 00:57:00 Last Seen2024-04-29 04:36:19 Times Seen11 Hash 7ed74a97f1b51107642cbd354e8e9537 368722c30c49ed7ad343dd7986cc1e975ff7473b bdbbe3d74c92fb34f7cf7f5b502d5a0f9c5c91129b2fc95bc836c3eb10a8cf90 Loading...

	unknown	2.1 kB	2023-03-07	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-29 04:36:19 Times Seen259 Hash 3a3fa1f807c678e04fa94fa684069231 c26e333abe0f139338a79d09557d433bab245107 95464e5d88d803be95b2ee15ce8668f1dc99b75f6aadd4379bc9fbcfba665ba5 Loading...

	unknown	710 B	2023-03-07	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-29 04:36:19 Times Seen256 Hash 44f474ad795f2c9a6ba3e00ba7d3e0ce fca7a12113dc770c62721146decd70697384e78f b23f5c96634b513c51b13397c53b235960fed3f771e72923c0d557e4e0830e5c Loading...

	www.googletagmanager.com/gtag/js?id=UA-77872044-1	202 kB	2024-04-17	2024-04-17
Pretty URL www.googletagmanager.com/gtag/js?id=UA-77872044-1 IP 142.250.147.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:51 Last Seen2024-04-17 16:31:51 Times Seen2 Hash befdddb674ad50e442ac2200cb3874d3 ec87673cc29276339801782d6e382c895770cb01 34bfe4e565b81ab60e9e6dd4bbca27d0c38018fdf50dea3969158834cb9cbdce Loading...

	unknown	4.9 kB	2024-04-17	2024-04-17
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 16:31:51 Last Seen2024-04-17 16:31:51 Times Seen1 Hash 21690e8b34f16cca39525666b75296fc 496d5197029e3269049f1bcb0b484aecf361ee7b 73db8741a8adb29a7d14b265a600ed62965b58bb6f23b580fb2c3d30e01c8775 Loading...

	www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e	214 kB	2023-03-12	2024-04-29
Pretty URL www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:31:50 Last Seen2024-04-29 04:36:19 Times Seen617 Hash d0ab265a4f68a45efc52408bd69a7f25 c57033113a290427c17a5cd1c94b1829aac06fed abedeb2dbbfa0642370887c7fd082a1774f4e1f8129a4d9adba2908fe9e8b4d3 Loading...

	www.teamos.xyz/js/xf/notice.min.js?_v=099e916e	3.7 kB	2023-03-09	2024-04-29
Pretty URL www.teamos.xyz/js/xf/notice.min.js?_v=099e916e IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:27:16 Last Seen2024-04-29 04:36:19 Times Seen647 Hash b725cc9681612e5c4a6de094bbe33bd9 c2bd0760c401cf86e15fc2b941b14fa7901633e3 a5dcfd1d44af85302c19886c111e277273cca860febaae5f8cdb0de61733b44b Loading...

	www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-30
Pretty URL www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.143.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-30 12:29:12 Times Seen43302 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	www.teamos.xyz/sandbox%20eval%20code	147 B	2023-04-11	2024-04-30
Pretty URL www.teamos.xyz/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-30 12:49:21 Times Seen343436 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2711fceaffbc4adbdef1e52afbde54de	15 kB	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-29 04:36:19 Times Seen295 Hash 2711fceaffbc4adbdef1e52afbde54de 62a2235b484940a2478213c3ff460153c3071fc3 21d093407e762467a0eb2435e960d0848f2a22eaa9c174a751b0a2203ec0fff7 Loading...

	#2 Eval - 8aab8da8a9d20611e8867a396e6cf972	2.1 kB	2024-04-17	2024-04-17
Pretty Observations First Seen2024-04-17 16:31:51 Last Seen2024-04-17 16:31:51 Times Seen1 Hash 8aab8da8a9d20611e8867a396e6cf972 fd2d13411566ccc10e23b3f38e0f4dfaefa8307c 4fbf11d6802b773748c344c19d0c02d58b799055af5438d386d1b5aef08c02be Loading...

HTTP Transactions (52)

URL IP Response Size

www.teamos.xyz/styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3

172.67.143.25

200 OK

169 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
Web Open Font Format (Version 2), TrueType, length 168768, version 331.-31261
Size
169 kB (168768 bytes)
Hash
d8689b99dce7c881d3130f3c91cfefdf
fb005c93930c13b3a5f449bbc75ba5ee23f609fa
4de49631fe60b17010f7cda29a6236ca6ad6102ea204e5c31d2c1e79ee276938

HTTP Headers

GET /styles/fonts/fa/fa-regular-400.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: font/woff2
content-length: 168768
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-29340"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GSbZ9Wiik9tHzJyZHVgbWezumEQC7Zaju3zaUXS69WtkiEhhSMzShXzy%2F%2BZjYqOPZZCtfiXNn4mIYtZCklJo5FcpqDu9DmVOEp9rrpBRqJlJzoFc3JtO1vUdbvmYje1kKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21cf268f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3

172.67.143.25

200 OK

137 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
Web Open Font Format (Version 2), TrueType, length 136824, version 331.-31261
Size
137 kB (136824 bytes)
Hash
978b27ec5d8b81d2b15aa28aaaae1fcb
76625967fe113a088e0627605b9d1bbfb8a5e47c
943efdb4b38963df0653d778f233b55db3e19f44794e4ff944e33b8849dcdb3c

HTTP Headers

GET /styles/fonts/fa/fa-solid-900.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: font/woff2
content-length: 136824
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-21678"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dopO%2FhssVQAap1NF%2FxizCVMy3q5xLYKj5ArFszIIHg9TjyoBKrZllbn%2BPWJW6iHYKUdp17eY5vv3bLsSH4cCyfe4Oh7MR6xdaQPV80uegS0LcTY111dIyvCtV80sNReZww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21df308f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3

172.67.143.25

200 OK

77 kB

URL GET HTTP/3
www.teamos.xyz/styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76740, version 331.-31261
Size
77 kB (76740 bytes)
Hash
0511670fe2f5405105a6760294c5c51d
61cb879dec4fa97ece0d2a26cd6767c66117841b
c2497d559960ba9e1c68f41674e8bc980d3b229155e068bc7f42f157f81c4388

HTTP Headers

GET /styles/fonts/fa/fa-brands-400.woff2?_v=5.15.3 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: font/woff2
content-length: 76740
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
etag: "63926c70-12bc4"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uFTqQvrZ8AZ%2F41jPG2mIrhAAurJXMkoZfJulzvs538lkT0NfvV1KmE3g68dHVtZX438P%2FpqENC%2BqPGrJZtxHE72AC1phVCHm1FKAvrImPtHdS9rFatq%2BAvosz2MDn6iBLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21df378f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/assets/logo/TeamOSBanner.png

172.67.143.25

200 OK

42 kB

URL GET HTTP/3
www.teamos.xyz/data/assets/logo/TeamOSBanner.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
PNG image data, 440 x 190, 8-bit/color RGBA, non-interlaced
Size
42 kB (41495 bytes)
Hash
6d2647b327cb54f616dcbec207599df0
4e3e0baad833e44a3eb1e2052d3e78fd828180bf
b6201f6ed7ee1358eaad1b0dc43a16dd215f1175ceef43a3169c2e51b3a737a8

HTTP Headers

GET /data/assets/logo/TeamOSBanner.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/png
content-length: 41495
last-modified: Sun, 08 Jan 2023 06:26:05 GMT
etag: "63ba61fd-a217"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3625
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mr72Px%2BD6tDJJc1GtGT59q5z2gotnkxel2mg3J1VOUTuRdgHV%2BeU7z2OpgUzuuDj1G%2BIjke82TtEvv2SZaFiCHWNeiHjFj4B59oPW4k%2BxA3rMrnbLdKAbK4J1TC7v26cvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21df438f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/xfa/customusernameicons/icons/star.png

172.67.143.25

200 OK

670 B

URL GET HTTP/3
www.teamos.xyz/data/xfa/customusernameicons/icons/star.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
670 B (670 bytes)
Hash
c8ca219ff43a2fb1dea67de2582123af
8fd08b1c430aa569e93d7fcd42f2f03b4ce57c02
9d3d2d2933fa0190f4ded95fabb5bde04bd1bbb0f040a8de93aeb0deda699b73

HTTP Headers

GET /data/xfa/customusernameicons/icons/star.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/png
content-length: 670
last-modified: Sun, 07 May 2023 17:28:57 GMT
etag: "6457dfd9-29e"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IDFATVqpWrklhuVymu1ES246SHvxxgWzYWJqAu57fCtwZy3YtJkhTD9GReAJ8QsFm28CJjcOX5FQRAoICqKyWJhUVM2fySOC%2Bjjv44pcFJZR8pxvxR4EndE%2FPgLSPL2ASQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21df4b8f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/xfa/customusernameicons/icons/award_star_bronze_3.png

172.67.143.25

200 OK

754 B

URL GET HTTP/3
www.teamos.xyz/data/xfa/customusernameicons/icons/award_star_bronze_3.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
754 B (754 bytes)
Hash
e0f1ca429f69bce053887f5b2d6277c3
5553b3e71653a9293e4666248db8b0f62d44276a
c9af4cee1f127bf6fcc71df50a2c73c31dd1f11194561b5c0a8e8723fabe59b4

HTTP Headers

GET /data/xfa/customusernameicons/icons/award_star_bronze_3.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/png
content-length: 754
last-modified: Sun, 07 May 2023 17:28:57 GMT
etag: "6457dfd9-2f2"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3625
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fiMfD1avp0WRwYjtDTLJzSo8Q9FeWdb902P5dF18PllJfpQACYp%2F8ONcCE2DGTLI62Jbnuk%2FEzQWazA2emqpiWKvVxSXd5ON4KKJnxx1qYRVk65ZXbBfwrx8Pfn7nKI0Ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21ef4e8f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1713088796&k=034405c740f279c15adbbc41dfccb627ca90db04

172.67.143.25

200 OK

66 kB

URL GET HTTP/3
www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1713088796&k=034405c740f279c15adbbc41dfccb627ca90db04
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
ASCII text, with very long lines (63233)
Size
66 kB (65971 bytes)
Hash
ca8b60ddaf8efe6e6e2c8238947a2a20
7efd8f6ce98cf1dbe6f55729d7be5eea309846a4
86d0e326cd98c5c555669c9d8621176c085ca0646bb10479a4a8e1e8244b96e5

HTTP Headers

GET /css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1713088796&k=034405c740f279c15adbbc41dfccb627ca90db04 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: text/css; charset=utf-8
x-frame-options: SAMEORIGIN
expires: Thu, 17 Apr 2025 14:31:15 GMT
last-modified: Sun, 14 Apr 2024 09:59:56 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3CSO7okAIf4y7Ix9%2BTnoJjrv8mr1Ns5NNwkIj91OHsgmApnFmbNCb45bmof8LquMSCmV80fEHRDPgC8OmsFmfCTNR8w5rMsJZvP0jqZfw0M8MUWapDRErDM75Lm7jTAZHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e21df3a8f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/images/dUy8t.gif

172.67.143.25

200 OK

23 kB

URL GET HTTP/3
www.teamos.xyz/images/dUy8t.gif
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
GIF image data, version 89a, 90 x 68
Size
23 kB (22768 bytes)
Hash
38be94eee10c04d248dc14b49a940b93
9d4fece605fc55c0ca18443c3018da3c34e40f05
8928b33dafb9036f74c4298b1e4097b90844fbed60bd41b8b9e3bbe4dcbda25b

HTTP Headers

GET /images/dUy8t.gif HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/css.php?css=public%3Anormalize.css%2Cpublic%3Afa.css%2Cpublic%3Acore.less%2Cpublic%3Aapp.less&s=8&l=1&d=1713088796&k=034405c740f279c15adbbc41dfccb627ca90db04
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/gif
content-length: 22768
last-modified: Sun, 07 May 2023 10:55:46 GMT
etag: "645783b2-58f0"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3381
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=beABRQmJ6aAivbnKwKGPlhGbuaWCpY8uUThqgUQRXcyyuyt7gHx8mWqOxH4jEDnMAPTg4NQ77nNn836680YMRq519kP2WqvYkJ9xGjT2HZI2BggaXkNi9JCQ7eI27klf6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e238ab98f5a-CPH
alt-svc: h3=":443"; ma=86400

static.nulled.to/public/assets/sparkling.gif

104.22.26.201

200 OK

22 kB

URL GET HTTP/2
static.nulled.to/public/assets/sparkling.gif
IP
104.22.26.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectnulled.to
Fingerprint44:46:C8:BF:F9:14:DB:72:14:4D:F3:79:E8:D7:7B:B1:15:54:01:DB
ValidityMon, 25 Mar 2024 17:49:52 GMT - Sun, 23 Jun 2024 17:49:51 GMT

File type
GIF image data, version 89a, 90 x 68
Size
22 kB (22261 bytes)
Hash
9d12fda22494e741af8e7bac0ce59cd3
a44f4760c90068f8ad753e198a8d9b4987888cec
d053beda954a4ecaef2c6aea4c68aa7a524d8c79056f68ec44c96636a1fe18f5

HTTP Headers

GET /public/assets/sparkling.gif HTTP/1.1
Host: static.nulled.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/gif
content-length: 22261
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "57570fc0-56f5"
last-modified: Tue, 07 Jun 2016 18:17:36 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=2678400
cf-cache-status: HIT
age: 785022
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e240e05930b-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:56:44 GMT
expires: Wed, 16 Apr 2025 09:56:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 102871
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 561375
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

my.teamos.xyz/00130430e9f89939a63075bb5a87675d/announce7:comment39:Downloaded

172.67.143.25

302 Found

48 kB

URL User Request GET HTTP/2
my.teamos.xyz/00130430e9f89939a63075bb5a87675d/announce7:comment39:Downloaded
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /00130430e9f89939a63075bb5a87675d/announce7:comment39:Downloaded HTTP/1.1
Host: my.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 17 Apr 2024 14:31:14 GMT
location: https://teamos.xyz
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=McE7Y6nk8Mchfa1HEqMS%2BY%2FUOmuW1QnJTcKBvqs0Q5eXeWRpX1441D59xVNGicOUY%2FYjYWDStBxwTU8KwXlu%2BkAqfXJSfQzcJaMGF%2F8Q7wKcvHMV4PWn2%2BxqSedCXBmP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e1dee906dee-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js

172.240.108.84

200 OK

9.8 kB

URL GET HTTP/1.1
instrumenttactics.com/7326f362b41f2b6bdb387bd9014ae95b/invoke.js
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (26582), with no line terminators
Size
9.8 kB (9797 bytes)
Hash
e49365f96d047e14669e04d8294ceaa0
475b07889d457b071098b5d95cfc951351d1f8c8
e7bf41dc54e114f4f17f494f0ecf792a2035d128ae36a6239f54cdba1da4d63c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /7326f362b41f2b6bdb387bd9014ae95b/invoke.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: efb75d083d6652c2bf2f357d55373d54
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.teamos.xyz/data/avatars/s/86/86944.jpg?1703619014

172.67.143.25

200 OK

1.0 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/86/86944.jpg?1703619014
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
PNG image data, 48 x 48, 8-bit colormap, non-interlaced
Size
1.0 kB (1015 bytes)
Hash
b8d640536f661ae127bcababccd0ebd9
da748443dd5f255ac38fae38470328f2bb65ebf1
524e705c6241d6e1c8e8a5843f33ceba1075dbf35fc7d551c47282e83ebcbe0d

HTTP Headers

GET /data/avatars/s/86/86944.jpg?1703619014 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/jpeg
content-length: 1015
last-modified: Tue, 26 Dec 2023 19:30:14 GMT
etag: "658b29c6-3f7"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6870
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zKGa46pgFO4l1NAwwmRgwa2rYTaq8%2FdTnMWbioHn7Gjt2pYnsuZbFJyd8%2FJsY353C2VguSG17Jv0mhqyGWf%2BuTDRgsl0yFSXx77nmGTr30DR25qdMG91cb38ZQwjIp5ryw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e24dd8f8f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/1244/1244182.jpg?1712727528

172.67.143.25

200 OK

1.6 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/1244/1244182.jpg?1712727528
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 48x48, components 3
Size
1.6 kB (1621 bytes)
Hash
b2271a2753fe1e2e8850cb6bd2ad803b
ef06a77553587bcf39dbc203c6851a0c58887c17
2fda6fb8726e7834300f2e0d3fb900bc88cf8d325ade337035a39c83d297ee91

HTTP Headers

GET /data/avatars/s/1244/1244182.jpg?1712727528 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/jpeg
content-length: 1621
last-modified: Wed, 10 Apr 2024 05:38:49 GMT
etag: "661625e9-655"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6870
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=45jUcvseTwRbCMupGjqEWTHMy%2BWAhostDL9Gfcwc9kmK65WmxUS9YCtihot0dXp16A2GXYAapMZtAaCoeTO1CYmg59MSDNoijYdZT3fpCQl64bpvqUw9UGec18NKrd2sJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e24dd9a8f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e

172.67.143.25

200 OK

14 kB

URL GET HTTP/3
www.teamos.xyz/js/vendor/vendor-compiled.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JavaScript source, ASCII text, with very long lines (15908)
Size
14 kB (14198 bytes)
Hash
372b0c5f17990ad741c3d02593f63fe8
4e577cb859755cbf104a2334e6307a5291558689
ef5f0b7e161099d503298ab2d66a927f48401f992d188cd04415419b41dcd0b1

HTTP Headers

GET /js/vendor/vendor-compiled.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=43704
etag: W/"63926c70-aab8"
expires: Fri, 19 Apr 2024 08:41:06 GMT
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
strict-transport-security: max-age=15768000
vary: Accept-Encoding
cf-cache-status: HIT
age: 451985
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHn655zgPduxlwO9L60cqpDH4aDlJayv1Mx5WKZHwBayC7gG0qldqmJNAQmdhQtV5kWvN8Ki40iYNW16wJ%2FzVkxaY522BI2ZeCYR7RAsTxiu%2BVidwxs7jk1QhtNCvDQpbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e23db698f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/data/avatars/s/10/10154.jpg?1710632396

172.67.143.25

200 OK

2.0 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/10/10154.jpg?1710632396
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 48x48, components 3
Size
2.0 kB (1962 bytes)
Hash
1ae90eb6ef7b7b1f2e89b12bc6e186e5
760bdb0af23e710f1c21b8055fd884c3bb5c230c
5107dc58275b02e4e30fd32ac7d95ff9acf247a78ced068285ad97813e378a60

HTTP Headers

GET /data/avatars/s/10/10154.jpg?1710632396 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/jpeg
content-length: 1962
last-modified: Sat, 16 Mar 2024 23:39:58 GMT
etag: "65f62dce-7aa"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6870
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N8JXG0YFl1VuqcKMA%2BSVOa3ftsQ%2B72ekMNKKmHUAQU8%2BIX6LnXd9LUrYi3dCwP0y51JUFhJqgezgRRoiaafjDf51eDJMNTJH%2FoneWVjat%2FNmj6nuVifS9gdCg1tJEpkXyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e24dd978f5a-CPH
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=UA-77872044-1

142.250.147.97

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-77872044-1
IP
142.250.147.97:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (72929 bytes)
Hash
befdddb674ad50e442ac2200cb3874d3
ec87673cc29276339801782d6e382c895770cb01
34bfe4e565b81ab60e9e6dd4bbca27d0c38018fdf50dea3969158834cb9cbdce

HTTP Headers

GET /gtag/js?id=UA-77872044-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 14:31:15 GMT
expires: Wed, 17 Apr 2024 14:31:15 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72929
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
b02330fe70e031c54a12c30e8436d13c
5983227c1b6fd73a71c0fb01854174aae24bc991
d8d2ee03769735fe68e9b9a89f3c508e8789c127b892dd6856141c874740c2e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 14:31:16 GMT
Last-Modified: Wed, 17 Apr 2024 13:05:06 GMT
Server: ECAcc (ska/F6E1)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r7pVxcR9R_cW4rSssQTWgKIDPa-pYpKux8tSK98PHFWM2LvZg2pHnQ==
Age: 5171

proftrafficcounter.com/stats

3.123.64.179

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.123.64.179:443
ASN
#16509 AMAZON-02

Requested by
https://www.teamos.xyz/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
23da430aa39793e44f584a017caff912
b3d7ac755d0fff0f5e15c6f4f4fa584bb860b482
e6c6593515b9a6aa3db30c72bb5b5dd7f5ba7fec4b6c159f7ccc67fa6451cddf

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:16 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.teamos.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3228bf42-03c4-4f47-89dd-46b99d97c5ce:2:1; expires=Sat, 15 Apr 2034 14:31:16 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c

142.250.147.97

200 OK

88 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c
IP
142.250.147.97:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
88 kB (88156 bytes)
Hash
fb8f2afc8433bb1d8c5a06e03e5e6032
487a4c0596768868525680cb80e16d59cd29e1b1
081239a57447e76063940218be9e502df0067ddad6a96f803659f3081a0f9615

HTTP Headers

GET /gtag/js?id=G-ZMK4J7B2XT&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 14:31:16 GMT
expires: Wed, 17 Apr 2024 14:31:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88156
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.teamos.xyz/css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anode_list.less%2Cpublic%3Anotices.less%2Cpublic%3Ashare_controls.less%2Cpublic%3Awidget_xentorrent_sidebar_tracker_stats.less%2Cpublic%3Aextra.less&s=8&l=1&d=1713088796&k=2b4c77b1bba55e2f6c2b40c9fe2cf79d1b72fe52

172.67.143.25

200 OK

47 kB

URL GET HTTP/3
www.teamos.xyz/css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anode_list.less%2Cpublic%3Anotices.less%2Cpublic%3Ashare_controls.less%2Cpublic%3Awidget_xentorrent_sidebar_tracker_stats.less%2Cpublic%3Aextra.less&s=8&l=1&d=1713088796&k=2b4c77b1bba55e2f6c2b40c9fe2cf79d1b72fe52
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
ASCII text, with very long lines (49132)
Size
47 kB (46981 bytes)
Hash
394c418197beab6a31b3281f3342bfac
3af77160350ff52f8d36b47365a118279f412ccb
0573e5c09f0c4164784b44f27da20fe3a50fb04b98ab1fadd5348b82543d0194

HTTP Headers

GET /css.php?css=public%3Acxf_top_navigation.less%2Cpublic%3Anode_list.less%2Cpublic%3Anotices.less%2Cpublic%3Ashare_controls.less%2Cpublic%3Awidget_xentorrent_sidebar_tracker_stats.less%2Cpublic%3Aextra.less&s=8&l=1&d=1713088796&k=2b4c77b1bba55e2f6c2b40c9fe2cf79d1b72fe52 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: text/css; charset=utf-8
x-frame-options: SAMEORIGIN
expires: Thu, 17 Apr 2025 14:31:15 GMT
last-modified: Sun, 14 Apr 2024 09:59:56 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UXiEP4CDo8hjzlWZdP0jhsQvHLeuMpAR791GxnKvXKIPM3M7IJXlbRGGRtrIzlhAaLoO3CuTtq6fjNclp%2FjjEi%2BiL4EB3tbT5fLxtvnKfCkboP5F0eFs%2BBBgT4%2BZjTvGog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e21df418f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js

192.243.59.20

200 OK

12 kB

URL GET HTTP/1.1
instrumenttactics.com/ae333e82cfaead9ba22e64954c139352/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, ASCII text, with very long lines (31316), with no line terminators
Size
12 kB (11846 bytes)
Hash
46b3fb2f654850a95084f5161fb2a109
5d7bad7e302a2fbaea6f40741ed8387b32675ec9
90595703b749a5d309babd07d0ca74c4fa6bf049d448d80b060ef579a94b2d60

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ae333e82cfaead9ba22e64954c139352/invoke.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 17 Apr 2024 14:31:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9fe5c23b7c26b31a8f7aeda81f628c2f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

quizmastersnag.com/ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4

172.240.127.234

200 OK

18 kB

URL GET HTTP/1.1
quizmastersnag.com/ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectquizmastersnag.com
Fingerprint84:E1:CD:5D:16:03:55:C9:3E:9E:2D:45:AA:7B:82:69:00:CB:B8:93
ValidityTue, 16 Apr 2024 09:59:59 GMT - Mon, 15 Jul 2024 09:59:58 GMT

File type
JSON text data
Size
18 kB (17735 bytes)
Hash
fd0ee18f88b6dea4c1cb29d5bf3ba34d
283d692ea87a9ba80aaed8f70bb09fb76f8e415f
4a70b0d6d1b7a9df7151c46e3808353c197f0a7adf9a2820fb46a2f318e715b8

HTTP Headers

GET /ntv.json?key=7326f362b41f2b6bdb387bd9014ae95b&vstc=4 HTTP/1.1
Host: quizmastersnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:16 GMT
Content-Type: application/json
Content-Length: 17735
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17773605; expires=Thu, 18 Apr 2024 14:31:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 18 Apr 2024 14:31:16 GMT; secure; SameSite=None
uncs=1; expires=Thu, 18 Apr 2024 14:31:16 GMT; secure; SameSite=None
pdhtkv49=true; expires=Thu, 18 Apr 2024 14:31:16 GMT; secure; SameSite=None
uncs49=1; expires=Thu, 18 Apr 2024 14:31:16 GMT; secure; SameSite=None
nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991488,4991489]; expires=Wed, 17 Apr 2024 14:31:21 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7839619fd612aa6b19410a3f526b735e
Strict-Transport-Security: max-age=0; includeSubdomains

fonts.googleapis.com/css?family=Open+Sans:400,700

172.217.19.74

200 OK

1.6 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,700
IP
172.217.19.74:443
ASN
#15169 GOOGLE

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (1572)
Size
1.6 kB (1580 bytes)
Hash
b69c29c8c917c014d6f4b79752d8ce0b
71a580b2e8792ba930815bcca3bda73e7715ca3f
5cccc465f4c8cdcec789a0b28846823f18646206351bc9ff794f1aec7f58f5b0

HTTP Headers

GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 14:31:15 GMT
date: Wed, 17 Apr 2024 14:31:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLgmLIbQ%2FORdBFJt09k56Me1iMMUtw3Ky7it6kqqtnUqa6q63qmp6MIMEF2ZOM4EVPnW%2BSDa7Loj%2FARSYLIgEhfcshAW%2FehZylx%2BDog%2B73vfpewffeV1%2Fu2XPiw9LTtXfVSEhJl5Ybbv3Vjzzver0rEjusD1eCj4PW9boevNEJGu5r9ZtRuK2WfNdzXc%2F16utCRz01XKpIiPRRx2t03EbLb3jLLQz1%2F2tjHRjqgA%2FOyQIEL2tPnUWIcIok%2FnEtMtuZSl9%2FO7aSZkpjwA8%2FSLYTlSeI57CnHfSSw8tuKHOy%2FgQqOZjJhRr828hESZxfn4Alh5ciwQb7M51MIkrA%2BPPIB1NEcgpBpwjVPQh%2BQoCQ49YmkvjBLaVzuvMPSyu2JLWLvyDyktTOFpHEj1elGNbvKmkzoRKDYa%2BAGE4h%2BlOk9gjZ6ApEfoQw%2BwKC%2F06WLrpI4v1NIxUEL2azCzGF6E0hozGocWCrTziwPQc2dRDz03roeV7b5SF1Vzph2OTtiAXc9Wi751HPDVZgw0reGFk6RijHCPUuUr2LbfH1yfICtP0FZquA4Q5MVhLnvV0MeIE8IsgNQU4JckGQZwT5oDjg0vimeMClscy7zP5lbhYTlfX36IHK%2BlFCQPUYmhd76Tl5qVqR82LrFWxHp%2FV20w96zcBnLa%2Fns4Bx1lxpM95xvRaNOssMRhQQ5sps6pEoydWLT5GKkjz7ZwpGj2DkEUKxAGo90LwA3SowSh5mEY2VaQx3RuCqQJrVkO04e%2FKcXJ1Z1L12BVF4fCMb%2FXHz8eJnCHWBVBf4RDwl6Mv7kzsqJ%2Ft3VG7IT5tpJmIxopV9dzOaRc88fCfayZXmG2tm%2FP2bYUVU8NH7kcm6NOEi6Rvyw6rgPNLrSocR%2BXnDfBix29ZsrVqd2LR7%2B631jTjVkTFCJVNQUZLa8Q5CUZIXzj6fvcxr9isIPYW2BWJ7TC4DQh0hTHdh0rl%2Bowi0nPew1EFui4n22fxQCgIZzWvKCpj%2F1GyOJ5pWt6ko9sx99HUNNLuHJC4w0AUGsgCVYxj73CRL9fGN376t4jswWZswqWv7TGr5zWzN1Y%2BUpCvKCjkwonK96dKgs%2By12zRqs5a%2F0gs8TqnfCvwgoE1kpuy9fNb6GwAA%2F%2F8BAAD%2F%2F8VzTGJ9BAAA

172.240.127.234

200 OK

7 B

URL GET HTTP/1.1
quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLgmLIbQ%2FORdBFJt09k56Me1iMMUtw3Ky7it6kqqtnUqa6q63qmp6MIMEF2ZOM4EVPnW%2BSDa7Loj%2FARSYLIgEhfcshAW%2FehZylx%2BDog%2B73vfpewffeV1%2Fu2XPiw9LTtXfVSEhJl5Ybbv3Vjzzver0rEjusD1eCj4PW9boevNEJGu5r9ZtRuK2WfNdzXc%2F16utCRz01XKpIiPRRx2t03EbLb3jLLQz1%2F2tjHRjqgA%2FOyQIEL2tPnUWIcIok%2FnEtMtuZSl9%2FO7aSZkpjwA8%2FSLYTlSeI57CnHfSSw8tuKHOy%2FgQqOZjJhRr828hESZxfn4Alh5ciwQb7M51MIkrA%2BPPIB1NEcgpBpwjVPQh%2BQoCQ49YmkvjBLaVzuvMPSyu2JLWLvyDyktTOFpHEj1elGNbvKmkzoRKDYa%2BAGE4h%2BlOk9gjZ6ApEfoQw%2BwKC%2F06WLrpI4v1NIxUEL2azCzGF6E0hozGocWCrTziwPQc2dRDz03roeV7b5SF1Vzph2OTtiAXc9Wi751HPDVZgw0reGFk6RijHCPUuUr2LbfH1yfICtP0FZquA4Q5MVhLnvV0MeIE8IsgNQU4JckGQZwT5oDjg0vimeMClscy7zP5lbhYTlfX36IHK%2BlFCQPUYmhd76Tl5qVqR82LrFWxHp%2FV20w96zcBnLa%2Fns4Bx1lxpM95xvRaNOssMRhQQ5sps6pEoydWLT5GKkjz7ZwpGj2DkEUKxAGo90LwA3SowSh5mEY2VaQx3RuCqQJrVkO04e%2FKcXJ1Z1L12BVF4fCMb%2FXHz8eJnCHWBVBf4RDwl6Mv7kzsqJ%2Ft3VG7IT5tpJmIxopV9dzOaRc88fCfayZXmG2tm%2FP2bYUVU8NH7kcm6NOEi6Rvyw6rgPNLrSocR%2BXnDfBix29ZsrVqd2LR7%2B631jTjVkTFCJVNQUZLa8Q5CUZIXzj6fvcxr9isIPYW2BWJ7TC4DQh0hTHdh0rl%2Bowi0nPew1EFui4n22fxQCgIZzWvKCpj%2F1GyOJ5pWt6ko9sx99HUNNLuHJC4w0AUGsgCVYxj73CRL9fGN376t4jswWZswqWv7TGr5zWzN1Y%2BUpCvKCjkwonK96dKgs%2By12zRqs5a%2F0gs8TqnfCvwgoE1kpuy9fNb6GwAA%2F%2F8BAAD%2F%2F8VzTGJ9BAAA
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectquizmastersnag.com
Fingerprint84:E1:CD:5D:16:03:55:C9:3E:9E:2D:45:AA:7B:82:69:00:CB:B8:93
ValidityTue, 16 Apr 2024 09:59:59 GMT - Mon, 15 Jul 2024 09:59:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXseLgmLIbQ%2FORdBFJt09k56Me1iMMUtw3Ky7it6kqqtnUqa6q63qmp6MIMEF2ZOM4EVPnW%2BSDa7Loj%2FARSYLIgEhfcshAW%2FehZylx%2BDog%2B73vfpewffeV1%2Fu2XPiw9LTtXfVSEhJl5Ybbv3Vjzzver0rEjusD1eCj4PW9boevNEJGu5r9ZtRuK2WfNdzXc%2F16utCRz01XKpIiPRRx2t03EbLb3jLLQz1%2F2tjHRjqgA%2FOyQIEL2tPnUWIcIok%2FnEtMtuZSl9%2FO7aSZkpjwA8%2FSLYTlSeI57CnHfSSw8tuKHOy%2FgQqOZjJhRr828hESZxfn4Alh5ciwQb7M51MIkrA%2BPPIB1NEcgpBpwjVPQh%2BQoCQ49YmkvjBLaVzuvMPSyu2JLWLvyDyktTOFpHEj1elGNbvKmkzoRKDYa%2BAGE4h%2BlOk9gjZ6ApEfoQw%2BwKC%2F06WLrpI4v1NIxUEL2azCzGF6E0hozGocWCrTziwPQc2dRDz03roeV7b5SF1Vzph2OTtiAXc9Wi751HPDVZgw0reGFk6RijHCPUuUr2LbfH1yfICtP0FZquA4Q5MVhLnvV0MeIE8IsgNQU4JckGQZwT5oDjg0vimeMClscy7zP5lbhYTlfX36IHK%2BlFCQPUYmhd76Tl5qVqR82LrFWxHp%2FV20w96zcBnLa%2Fns4Bx1lxpM95xvRaNOssMRhQQ5sps6pEoydWLT5GKkjz7ZwpGj2DkEUKxAGo90LwA3SowSh5mEY2VaQx3RuCqQJrVkO04e%2FKcXJ1Z1L12BVF4fCMb%2FXHz8eJnCHWBVBf4RDwl6Mv7kzsqJ%2Ft3VG7IT5tpJmIxopV9dzOaRc88fCfayZXmG2tm%2FP2bYUVU8NH7kcm6NOEi6Rvyw6rgPNLrSocR%2BXnDfBix29ZsrVqd2LR7%2B631jTjVkTFCJVNQUZLa8Q5CUZIXzj6fvcxr9isIPYW2BWJ7TC4DQh0hTHdh0rl%2Bowi0nPew1EFui4n22fxQCgIZzWvKCpj%2F1GyOJ5pWt6ko9sx99HUNNLuHJC4w0AUGsgCVYxj73CRL9fGN376t4jswWZswqWv7TGr5zWzN1Y%2BUpCvKCjkwonK96dKgs%2By12zRqs5a%2F0gs8TqnfCvwgoE1kpuy9fNb6GwAA%2F%2F8BAAD%2F%2F8VzTGJ9BAAA HTTP/1.1
Host: quizmastersnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991488,4991489]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ff2f5db29db39612e21adb72e59ed434
Strict-Transport-Security: max-age=0; includeSubdomains

etiquettegrapesdoleful.com/watch.644344770571.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2F&tz=0&dev=e&res=14.2071&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1

172.240.127.234

307 Temporary Redirect

0 B

URL GET HTTP/1.1
etiquettegrapesdoleful.com/watch.644344770571.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2F&tz=0&dev=e&res=14.2071&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectetiquettegrapesdoleful.com
Fingerprint5C:69:F8:D7:E0:C4:5A:3E:2F:F6:27:34:57:43:22:21:9A:2A:44:DF
ValidityTue, 16 Apr 2024 13:42:24 GMT - Mon, 15 Jul 2024 13:42:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.644344770571.js?key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&refer=https%3A%2F%2Fwww.teamos.xyz%2F&tz=0&dev=e&res=14.2071&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1 HTTP/1.1
Host: etiquettegrapesdoleful.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Location: https://etiquettegrapesdoleful.com/watch.644344770571.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1713364336&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=52cbddb2959aa95482c0f7e8d9721b6917d7ec2a0f3f6f3374bd895e90b52d8f5e20eb5ceafea1e5d7b8f67488a6a974c98eb02e059316654b6fac9b5586a959a81708b30fc1cc5bbe4428dea9e86b49b6d93cfb211a4e52762cdcc97e9a905807&tz=0&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1
Set-Cookie: u_pl=17155452; expires=Thu, 18 Apr 2024 14:31:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.vK4tJsWTw5CV2VlEaDdK8WeL0wD9fKt6UhZ2fr9PJ1M; expires=Wed, 17 Apr 2024 14:32:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6943e5de37414366ef4cde75de7e07ed
Strict-Transport-Security: max-age=0; includeSubdomains

quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXkcPehDD3vbgIAi6yKS7Z9KTcQ9ijJHguFl3Fb1JVVf1pEx1V1vVPT2ZU3BB9jiCCApC55tkg%2Bsi%2BgNcpLMgsiBkbjlszt6FsEfpMTj6oPt93%2Ftew%2Ffe6y%2F28zPiI6en6%2B%2FpsVSKLq%2B03OYrH3vetWZfJvmoOVoNPgk615pm%2BHovaLmvNt8R4Y5e9l3PdT3Xa25IIyI9Wq5FyPR%2Bz2v13FbHb3krHYzM%2F7nNHVjqgA%2FPyBIknzUeOpchwwpJ%2FNO6sDuZTl97O84VzbTBkB99mOwkukgQL2BkHETJ0UU3tD3ZeACdHM7tQg%2F%2FbWRyRpzfHoAlRxcmwYYHc59MQSRg%2FDkUwwpCVZC0QqhvQ%2FITAoQc17eQxHeva1PQ3X9UWqsz0jj%2FC7KYkcbjy0jiH9eUHDVvaZVnUicWo6iEHFWQgwppfoxsfAmyOEaYfQ7J%2FyDL530k8cGWVRqSl%2FPZpawgowpKTECtg7x%2BpIM8cpCnDmJ%2B2gw9z%2Bu6PKTuai8M27wrWMBdj3Yjj3pusIo8rO1NkKUThGqC0OwhNXvYkV%2BerCzB5L%2FCbpew3IHNZsR5fw9DXqIQBIUlKChBIQmKjKAYlodcWd%2BWd7myOfMusn%2BR2%2BVUZ4N9eqizgUgIqJnA8HI%2FPSMv1Ctynu%2B8jB1x2uy2%2FSBqBz7reJHPAsZZe7XLeM%2F1OlT0VhisLCHtpfnUYzkjV84%2FQypn5Ok%2FUzB6DKuOEcol0NwDLUrQ7RLj5F4maKxta7Q7Btcl0qyBbNfZV2fkyvxEfTmDCB%2BRi0BoSqSmxKfyIcFA3Zne1AU5uKkLS37eSjMZyzGtz3cro5l45t67YrfQhm%2Bu28n3b4a1UMP7Hwib9WnCZTKw5Ic1ybkwG9qEgvyyaT8S7EZut9dyk%2BRp%2F8ZbG5txaoS1UicVqDzZeoKwHuzJS%2FP%2F8urX30GaCiYvEecLp1JXCNM92HRRs5rAqAVn6VMo8nJqfLYoKkmgxIJTVsL%2Bh7MFnhpaf01luW%2FvYGAaoNltJHGJoSkxVCWomsDmz06z1Dx64%2Fdv6vgWTDWmTJnGAVNGfTUj%2FauX6heZr7tGDqysb952adBb8bpdKrqs469Ggccp9TuBHwS0jczOohcfd%2F4GAAD%2F%2FwEAAP%2F%2FYG67%2FnsEAAA%3D

172.240.127.234

200 OK

7 B

URL GET HTTP/1.1
quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXkcPehDD3vbgIAi6yKS7Z9KTcQ9ijJHguFl3Fb1JVVf1pEx1V1vVPT2ZU3BB9jiCCApC55tkg%2Bsi%2BgNcpLMgsiBkbjlszt6FsEfpMTj6oPt93%2Ftew%2Ffe6y%2F28zPiI6en6%2B%2FpsVSKLq%2B03OYrH3vetWZfJvmoOVoNPgk615pm%2BHovaLmvNt8R4Y5e9l3PdT3Xa25IIyI9Wq5FyPR%2Bz2v13FbHb3krHYzM%2F7nNHVjqgA%2FPyBIknzUeOpchwwpJ%2FNO6sDuZTl97O84VzbTBkB99mOwkukgQL2BkHETJ0UU3tD3ZeACdHM7tQg%2F%2FbWRyRpzfHoAlRxcmwYYHc59MQSRg%2FDkUwwpCVZC0QqhvQ%2FITAoQc17eQxHeva1PQ3X9UWqsz0jj%2FC7KYkcbjy0jiH9eUHDVvaZVnUicWo6iEHFWQgwppfoxsfAmyOEaYfQ7J%2FyDL530k8cGWVRqSl%2FPZpawgowpKTECtg7x%2BpIM8cpCnDmJ%2B2gw9z%2Bu6PKTuai8M27wrWMBdj3Yjj3pusIo8rO1NkKUThGqC0OwhNXvYkV%2BerCzB5L%2FCbpew3IHNZsR5fw9DXqIQBIUlKChBIQmKjKAYlodcWd%2BWd7myOfMusn%2BR2%2BVUZ4N9eqizgUgIqJnA8HI%2FPSMv1Ctynu%2B8jB1x2uy2%2FSBqBz7reJHPAsZZe7XLeM%2F1OlT0VhisLCHtpfnUYzkjV84%2FQypn5Ok%2FUzB6DKuOEcol0NwDLUrQ7RLj5F4maKxta7Q7Btcl0qyBbNfZV2fkyvxEfTmDCB%2BRi0BoSqSmxKfyIcFA3Zne1AU5uKkLS37eSjMZyzGtz3cro5l45t67YrfQhm%2Bu28n3b4a1UMP7Hwib9WnCZTKw5Ic1ybkwG9qEgvyyaT8S7EZut9dyk%2BRp%2F8ZbG5txaoS1UicVqDzZeoKwHuzJS%2FP%2F8urX30GaCiYvEecLp1JXCNM92HRRs5rAqAVn6VMo8nJqfLYoKkmgxIJTVsL%2Bh7MFnhpaf01luW%2FvYGAaoNltJHGJoSkxVCWomsDmz06z1Dx64%2Fdv6vgWTDWmTJnGAVNGfTUj%2FauX6heZr7tGDqysb952adBb8bpdKrqs469Ggccp9TuBHwS0jczOohcfd%2F4GAAD%2F%2FwEAAP%2F%2FYG67%2FnsEAAA%3D
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectquizmastersnag.com
Fingerprint84:E1:CD:5D:16:03:55:C9:3E:9E:2D:45:AA:7B:82:69:00:CB:B8:93
ValidityTue, 16 Apr 2024 09:59:59 GMT - Mon, 15 Jul 2024 09:59:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXkcPehDD3vbgIAi6yKS7Z9KTcQ9ijJHguFl3Fb1JVVf1pEx1V1vVPT2ZU3BB9jiCCApC55tkg%2Bsi%2BgNcpLMgsiBkbjlszt6FsEfpMTj6oPt93%2Ftew%2Ffe6y%2F28zPiI6en6%2B%2FpsVSKLq%2B03OYrH3vetWZfJvmoOVoNPgk615pm%2BHovaLmvNt8R4Y5e9l3PdT3Xa25IIyI9Wq5FyPR%2Bz2v13FbHb3krHYzM%2F7nNHVjqgA%2FPyBIknzUeOpchwwpJ%2FNO6sDuZTl97O84VzbTBkB99mOwkukgQL2BkHETJ0UU3tD3ZeACdHM7tQg%2F%2FbWRyRpzfHoAlRxcmwYYHc59MQSRg%2FDkUwwpCVZC0QqhvQ%2FITAoQc17eQxHeva1PQ3X9UWqsz0jj%2FC7KYkcbjy0jiH9eUHDVvaZVnUicWo6iEHFWQgwppfoxsfAmyOEaYfQ7J%2FyDL530k8cGWVRqSl%2FPZpawgowpKTECtg7x%2BpIM8cpCnDmJ%2B2gw9z%2Bu6PKTuai8M27wrWMBdj3Yjj3pusIo8rO1NkKUThGqC0OwhNXvYkV%2BerCzB5L%2FCbpew3IHNZsR5fw9DXqIQBIUlKChBIQmKjKAYlodcWd%2BWd7myOfMusn%2BR2%2BVUZ4N9eqizgUgIqJnA8HI%2FPSMv1Ctynu%2B8jB1x2uy2%2FSBqBz7reJHPAsZZe7XLeM%2F1OlT0VhisLCHtpfnUYzkjV84%2FQypn5Ok%2FUzB6DKuOEcol0NwDLUrQ7RLj5F4maKxta7Q7Btcl0qyBbNfZV2fkyvxEfTmDCB%2BRi0BoSqSmxKfyIcFA3Zne1AU5uKkLS37eSjMZyzGtz3cro5l45t67YrfQhm%2Bu28n3b4a1UMP7Hwib9WnCZTKw5Ic1ybkwG9qEgvyyaT8S7EZut9dyk%2BRp%2F8ZbG5txaoS1UicVqDzZeoKwHuzJS%2FP%2F8urX30GaCiYvEecLp1JXCNM92HRRs5rAqAVn6VMo8nJqfLYoKkmgxIJTVsL%2Bh7MFnhpaf01luW%2FvYGAaoNltJHGJoSkxVCWomsDmz06z1Dx64%2Fdv6vgWTDWmTJnGAVNGfTUj%2FauX6heZr7tGDqysb952adBb8bpdKrqs469Ggccp9TuBHwS0jczOohcfd%2F4GAAD%2F%2FwEAAP%2F%2FYG67%2FnsEAAA%3D HTTP/1.1
Host: quizmastersnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991488,4991489]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f6137950afa7db4534a916b32459f61d
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png

45.133.44.10

200 OK

120 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
120 kB (119965 bytes)
Hash
c5a83c3079df6439410f74f3e8de6930
66dab231922cc92db7c41f49d7bdb7da1dfde08a
ee0745b5678c7e4277047ba8f87d53ee77e60a4985dace65c73b970521dbf1f8

HTTP Headers

GET /si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:16 GMT
content-type: image/png
content-length: 119965
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:15 GMT
etag: "65f95767-1d49d"
expires: Fri, 19 Apr 2024 14:31:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/e9/a2/69/e9a2692a7f6e352e4de9bff4b0dab32e/1708428530.jpg

45.133.44.10

200 OK

33 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/e9/a2/69/e9a2692a7f6e352e4de9bff4b0dab32e/1708428530.jpg
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
Size
33 kB (32832 bytes)
Hash
cdbbadb83ecf643a0b5c9ef7846ab9c3
24c6e4bca3ba0fbcd565d78c9fc43845ccaefe49
dceab225beffee06592a8c6439fcd74df2e3cb73d143c6fadec84591baaefbbe

HTTP Headers

GET /cti/e9/a2/69/e9a2692a7f6e352e4de9bff4b0dab32e/1708428530.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:16 GMT
content-type: image/jpeg
content-length: 32832
server: nginx/1.21.6
last-modified: Tue, 20 Feb 2024 11:28:59 GMT
etag: "65d48cfb-8040"
expires: Fri, 19 Apr 2024 14:31:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png

45.133.44.10

200 OK

105 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
105 kB (104949 bytes)
Hash
440d0ebcc9ae01aba77f74d9015ff0b3
9065b873ac93b45da1765682071eaaf6efe12e5c
7834596c29b94d74435163b3875c5042082912c1aff529986b0235cd9b7b27cc

HTTP Headers

GET /si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:16 GMT
content-type: image/png
content-length: 104949
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:37 GMT
etag: "65f9577d-199f5"
expires: Fri, 19 Apr 2024 14:31:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png

45.133.44.10

200 OK

184 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size
184 kB (183812 bytes)
Hash
adc709f858c8b4ff4ce26a2757b75131
c91b170aba4aafdca5690d29e17f61b6505e15c1
ad475e95022da6d65aec3479ad3b4ff6d36dc85bbc634d750cdd575ea1a985ce

HTTP Headers

GET /si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: image/png
content-length: 183812
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 19:50:20 GMT
etag: "65cd197c-2ce04"
expires: Fri, 19 Apr 2024 14:31:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

etiquettegrapesdoleful.com/watch.644344770571.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1713364336&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=52cbddb2959aa95482c0f7e8d9721b6917d7ec2a0f3f6f3374bd895e90b52d8f5e20eb5ceafea1e5d7b8f67488a6a974c98eb02e059316654b6fac9b5586a959a81708b30fc1cc5bbe4428dea9e86b49b6d93cfb211a4e52762cdcc97e9a905807&tz=0&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1

172.240.127.234

200 OK

2.0 kB

URL GET HTTP/1.1
etiquettegrapesdoleful.com/watch.644344770571.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1713364336&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=52cbddb2959aa95482c0f7e8d9721b6917d7ec2a0f3f6f3374bd895e90b52d8f5e20eb5ceafea1e5d7b8f67488a6a974c98eb02e059316654b6fac9b5586a959a81708b30fc1cc5bbe4428dea9e86b49b6d93cfb211a4e52762cdcc97e9a905807&tz=0&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectetiquettegrapesdoleful.com
Fingerprint5C:69:F8:D7:E0:C4:5A:3E:2F:F6:27:34:57:43:22:21:9A:2A:44:DF
ValidityTue, 16 Apr 2024 13:42:24 GMT - Mon, 15 Jul 2024 13:42:23 GMT

File type
JavaScript source, ASCII text, with very long lines (2456)
Size
2.0 kB (1991 bytes)
Hash
ff5f34d3d2f5f88e713abaf3b221c4e0
104e282db88d90a0004f58bc7fba4aee345923b6
3bc906bd55f071b9a22c8c70567feaea2a7259fb5944d0931920300305b8e036

HTTP Headers

GET /watch.644344770571.js?dev=e&key=ae333e82cfaead9ba22e64954c139352&kw=%5B%22team%22%2C%22os%22%2C%22your%22%2C%22only%22%2C%22destination%22%2C%22to%22%2C%22custom%22%2C%22os%22%5D&pst=1713364336&refer=https%3A%2F%2Fwww.teamos.xyz%2F&res=14.2071&rmtc=t&shu=52cbddb2959aa95482c0f7e8d9721b6917d7ec2a0f3f6f3374bd895e90b52d8f5e20eb5ceafea1e5d7b8f67488a6a974c98eb02e059316654b6fac9b5586a959a81708b30fc1cc5bbe4428dea9e86b49b6d93cfb211a4e52762cdcc97e9a905807&tz=0&uuid=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1 HTTP/1.1
Host: etiquettegrapesdoleful.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
Referer: https://www.teamos.xyz/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17155452; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzE1NTQ1MiwiayI6ImFlMzMzZTgyY2ZhZWFkOWJhMjJlNjQ5NTRjMTM5MzUyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODMyNTYxLCJwaWQiOjM4NzE4NCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOCwiYWlkIjoyMywicHQiOjQsInBrIjoiYXM3MnhuaXRqIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vd3d3LnRlYW1vcy54eXovIiwiYXIiOltdfX0.vK4tJsWTw5CV2VlEaDdK8WeL0wD9fKt6UhZ2fr9PJ1M
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.teamos.xyz
Access-Control-Allow-Origin: https://www.teamos.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3228bf42-03c4-4f47-89dd-46b99d97c5ce:2:1; expires=Wed, 24 Apr 2024 14:31:17 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 18 Apr 2024 14:31:17 GMT; secure; SameSite=None
uncs=1; expires=Thu, 18 Apr 2024 14:31:17 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 18 Apr 2024 14:31:17 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 18 Apr 2024 14:31:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c78d7fda7fd2ab3e221cabb4ddbda7c1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png

45.133.44.10

200 OK

83 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Size
83 kB (83250 bytes)
Hash
e2db62f8c7c073ee43e4382876b3cc4d
19830817a43cc0243bad5879e25880cd0844f3bf
738f55ce5602c33c43090eebd3c79b7c4ab03c81363a5a01652b04c36e765817

HTTP Headers

GET /cti/6f/1e/cd/6f1ecdc7ddfb24d6b0ef005e14aecdbe/1627917247.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: image/png
content-length: 83250
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 15:14:15 GMT
etag: "61080bc7-14532"
expires: Fri, 19 Apr 2024 14:31:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSujuNFQXHJbQ%2FORdBFJt09k56Me1iMMUtw3Ky7it6kqqtnUqa6q63qmp6MIMEF2YOHEbzoqfNNssF1WfQHuMhkQSQgpG85JODNu5Cz9BgcfdC873vfa%2Fjee%2FXlnj0nPiw9XXtXjYSUdGm54dZf%2Fcjzrte7IrHD%2BnAl%2BDhoXa%2FrwRudoOG%2BVr8ZhdtqyXc91%2FVcr74udNRTw6VKhEgfdbxGx220%2FIa33MJQ%2F58b68BQB3xwTq5A8LL21FmECKdI4h%2FXIrOdqfT1t2MraaY0Bvzwg2Q7UXmCeA572kEvObzshjIn60%2BgkoOZXajBv41MlMT59QlYcnhpEmywP%2FPJJKIEjD%2BPfDBFJKcQdIpQ3YPgJwQIOW5tIokf3FI6pzv%2FqLRSS1K7%2BAsiL0ntbBFJ%2FHhVimH9rpI2EyoxGPYKiOEUoj9Fao%2BQjRYg8iOE2RcQ%2FHeydNFFEu9vGqkgeDGbXYgpRG8KGY1BjQNbfcKB7TmwqYOYn9ZDz%2FPaLg%2Bpu9IJwyZvRyzgrkfbPY96brACG1b2xsjSMUI5Rqh3kepdbIuvT5avQNtfYLYKGO7AZCVx3tvFgBfII4LcEOSUIBcEeUaQD4oDLo1vigdcGsu8y%2Bxf5mYxUVl%2Fjx6orB8lBFSPoXmxl56Tl6oVOS%2B2XsF2dFpvN%2F2g1wx81vJ6PgsYZ82VNuMd12vRqLPMYEQBYRZmU49ESa5efIpUlOTZP1MwegQjjxCKK6DWA80L0K0Co%2BRhFtFYmcZwZwSuCqRZDdmOsyfPydXZibrXCKLw%2BEY2%2BuPm48XPEOoCqS7wiXhK0Jf3J3dUTvbvqNyQnzbTTMRiRKvz3c1oFj3z8J1oJ1eab6yZ8fdvhpVQwUfvRybr0oSLpG%2FID6uC80ivKx1G5OcN82HEbluztWp1YtPu7bfWN%2BJUR8YIlUxBRUlqxzsIRUleOPt89jKv2a8g9BTaFojtMbkMCHWEMN2FSec1owi0nHOWLiC3xUT7bF6UgkBGc05ZAfMfzuZ4omn1NxXFnrmPvq6BZveQxAUGusBAFqByDGOfm2SpPr7x27dVfAcmaxMmdW2fSS2%2Fqda8MNt1SbqirJADI6qrN10adJa9dptGbdbyV3qBxyn1W4EfBLSJzJS9l89afwMAAP%2F%2FAQAA%2F%2F%2BPBJ67fQQAAA%3D%3D

172.240.253.132

200 OK

7 B

URL GET HTTP/1.1
quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSujuNFQXHJbQ%2FORdBFJt09k56Me1iMMUtw3Ky7it6kqqtnUqa6q63qmp6MIMEF2YOHEbzoqfNNssF1WfQHuMhkQSQgpG85JODNu5Cz9BgcfdC873vfa%2Fjee%2FXlnj0nPiw9XXtXjYSUdGm54dZf%2Fcjzrte7IrHD%2BnAl%2BDhoXa%2FrwRudoOG%2BVr8ZhdtqyXc91%2FVcr74udNRTw6VKhEgfdbxGx220%2FIa33MJQ%2F58b68BQB3xwTq5A8LL21FmECKdI4h%2FXIrOdqfT1t2MraaY0Bvzwg2Q7UXmCeA572kEvObzshjIn60%2BgkoOZXajBv41MlMT59QlYcnhpEmywP%2FPJJKIEjD%2BPfDBFJKcQdIpQ3YPgJwQIOW5tIokf3FI6pzv%2FqLRSS1K7%2BAsiL0ntbBFJ%2FHhVimH9rpI2EyoxGPYKiOEUoj9Fao%2BQjRYg8iOE2RcQ%2FHeydNFFEu9vGqkgeDGbXYgpRG8KGY1BjQNbfcKB7TmwqYOYn9ZDz%2FPaLg%2Bpu9IJwyZvRyzgrkfbPY96brACG1b2xsjSMUI5Rqh3kepdbIuvT5avQNtfYLYKGO7AZCVx3tvFgBfII4LcEOSUIBcEeUaQD4oDLo1vigdcGsu8y%2Bxf5mYxUVl%2Fjx6orB8lBFSPoXmxl56Tl6oVOS%2B2XsF2dFpvN%2F2g1wx81vJ6PgsYZ82VNuMd12vRqLPMYEQBYRZmU49ESa5efIpUlOTZP1MwegQjjxCKK6DWA80L0K0Co%2BRhFtFYmcZwZwSuCqRZDdmOsyfPydXZibrXCKLw%2BEY2%2BuPm48XPEOoCqS7wiXhK0Jf3J3dUTvbvqNyQnzbTTMRiRKvz3c1oFj3z8J1oJ1eab6yZ8fdvhpVQwUfvRybr0oSLpG%2FID6uC80ivKx1G5OcN82HEbluztWp1YtPu7bfWN%2BJUR8YIlUxBRUlqxzsIRUleOPt89jKv2a8g9BTaFojtMbkMCHWEMN2FSec1owi0nHOWLiC3xUT7bF6UgkBGc05ZAfMfzuZ4omn1NxXFnrmPvq6BZveQxAUGusBAFqByDGOfm2SpPr7x27dVfAcmaxMmdW2fSS2%2Fqda8MNt1SbqirJADI6qrN10adJa9dptGbdbyV3qBxyn1W4EfBLSJzJS9l89afwMAAP%2F%2FAQAA%2F%2F%2BPBJ67fQQAAA%3D%3D
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectquizmastersnag.com
Fingerprint84:E1:CD:5D:16:03:55:C9:3E:9E:2D:45:AA:7B:82:69:00:CB:B8:93
ValidityTue, 16 Apr 2024 09:59:59 GMT - Mon, 15 Jul 2024 09:59:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSujuNFQXHJbQ%2FORdBFJt09k56Me1iMMUtw3Ky7it6kqqtnUqa6q63qmp6MIMEF2YOHEbzoqfNNssF1WfQHuMhkQSQgpG85JODNu5Cz9BgcfdC873vfa%2Fjee%2FXlnj0nPiw9XXtXjYSUdGm54dZf%2Fcjzrte7IrHD%2BnAl%2BDhoXa%2FrwRudoOG%2BVr8ZhdtqyXc91%2FVcr74udNRTw6VKhEgfdbxGx220%2FIa33MJQ%2F58b68BQB3xwTq5A8LL21FmECKdI4h%2FXIrOdqfT1t2MraaY0Bvzwg2Q7UXmCeA572kEvObzshjIn60%2BgkoOZXajBv41MlMT59QlYcnhpEmywP%2FPJJKIEjD%2BPfDBFJKcQdIpQ3YPgJwQIOW5tIokf3FI6pzv%2FqLRSS1K7%2BAsiL0ntbBFJ%2FHhVimH9rpI2EyoxGPYKiOEUoj9Fao%2BQjRYg8iOE2RcQ%2FHeydNFFEu9vGqkgeDGbXYgpRG8KGY1BjQNbfcKB7TmwqYOYn9ZDz%2FPaLg%2Bpu9IJwyZvRyzgrkfbPY96brACG1b2xsjSMUI5Rqh3kepdbIuvT5avQNtfYLYKGO7AZCVx3tvFgBfII4LcEOSUIBcEeUaQD4oDLo1vigdcGsu8y%2Bxf5mYxUVl%2Fjx6orB8lBFSPoXmxl56Tl6oVOS%2B2XsF2dFpvN%2F2g1wx81vJ6PgsYZ82VNuMd12vRqLPMYEQBYRZmU49ESa5efIpUlOTZP1MwegQjjxCKK6DWA80L0K0Co%2BRhFtFYmcZwZwSuCqRZDdmOsyfPydXZibrXCKLw%2BEY2%2BuPm48XPEOoCqS7wiXhK0Jf3J3dUTvbvqNyQnzbTTMRiRKvz3c1oFj3z8J1oJ1eab6yZ8fdvhpVQwUfvRybr0oSLpG%2FID6uC80ivKx1G5OcN82HEbluztWp1YtPu7bfWN%2BJUR8YIlUxBRUlqxzsIRUleOPt89jKv2a8g9BTaFojtMbkMCHWEMN2FSec1owi0nHOWLiC3xUT7bF6UgkBGc05ZAfMfzuZ4omn1NxXFnrmPvq6BZveQxAUGusBAFqByDGOfm2SpPr7x27dVfAcmaxMmdW2fSS2%2Fqda8MNt1SbqirJADI6qrN10adJa9dptGbdbyV3qBxyn1W4EfBLSJzJS9l89afwMAAP%2F%2FAQAA%2F%2F%2BPBJ67fQQAAA%3D%3D HTTP/1.1
Host: quizmastersnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991488,4991489]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fd4ee3bb28c8fccd7816d6d5284f265c
Strict-Transport-Security: max-age=0; includeSubdomains

static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317

104.16.80.73

200 OK

8.4 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
gzip compressed data, from Unix
Size
8.4 kB (8383 bytes)
Hash
0932da0f39849642c7d15a7d7d783e32
76f70cdf6c235d175528c7af0e1fd411a645b885
dc7af88549bfa33d5c7fea1132c60253c69006737cad202bde6509fdcf7409cd

HTTP Headers

GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e224d7d8f5c-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

secure.gravatar.com/avatar/847e8f32748307eb83936d65dcd58523?s=48

192.0.73.2

200 OK

2.0 kB

URL GET HTTP/2
secure.gravatar.com/avatar/847e8f32748307eb83936d65dcd58523?s=48
IP
192.0.73.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.teamos.xyz/
Certificate
IssuerSectigo Limited
Subject*.gravatar.com
Fingerprint28:34:17:4E:69:95:4B:B9:70:DF:D4:0F:AA:2C:8D:60:F2:45:E7:D0
ValidityTue, 05 Dec 2023 00:00:00 GMT - Sat, 04 Jan 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 48x48, components 3
Size
2.0 kB (1978 bytes)
Hash
85126f65e11ccf3d506cae02797ac9a3
8913489d899afa683043212fd369a8da7ff37772
a773483cd9e42bbd8e4af8d5e548f44e4bdb875cf718db022c34c4ff2d0f407e

HTTP Headers

GET /avatar/847e8f32748307eb83936d65dcd58523?s=48 HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: image/jpeg
content-length: 1978
last-modified: Fri, 08 Mar 2013 11:46:09 GMT
link: <https://gravatar.com/avatar/847e8f32748307eb83936d65dcd58523?s=48>; rel="canonical"
content-disposition: inline; filename="847e8f32748307eb83936d65dcd58523.jpeg"
access-control-allow-origin: *
expires: Wed, 17 Apr 2024 14:36:17 GMT
cache-control: max-age=300
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
accept-ranges: bytes
X-Firefox-Spdy: h2

secure.gravatar.com/avatar/aab23722a3c03a6bf561bca5eb4df15a?s=48

192.0.73.2

200 OK

1.3 kB

URL GET HTTP/2
secure.gravatar.com/avatar/aab23722a3c03a6bf561bca5eb4df15a?s=48
IP
192.0.73.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.teamos.xyz/
Certificate
IssuerSectigo Limited
Subject*.gravatar.com
Fingerprint28:34:17:4E:69:95:4B:B9:70:DF:D4:0F:AA:2C:8D:60:F2:45:E7:D0
ValidityTue, 05 Dec 2023 00:00:00 GMT - Sat, 04 Jan 2025 23:59:59 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1328 bytes)
Hash
9c069dcdfba32b68df2be543afd27f73
11f758e2041539a143094a45773938628b7d802e
54c99a97a58d5367e38fe24be6aa450086051852d13c60bd73285227161e8878

HTTP Headers

GET /avatar/aab23722a3c03a6bf561bca5eb4df15a?s=48 HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: image/png
content-length: 1328
last-modified: Fri, 16 Mar 2018 20:44:24 GMT
link: <https://gravatar.com/avatar/aab23722a3c03a6bf561bca5eb4df15a?s=48>; rel="canonical"
content-disposition: inline; filename="aab23722a3c03a6bf561bca5eb4df15a.png"
access-control-allow-origin: *
expires: Wed, 17 Apr 2024 14:36:17 GMT
cache-control: max-age=300
x-nc: HIT arn 2
alt-svc: h3=":443"; ma=86400
accept-ranges: bytes
X-Firefox-Spdy: h2

www.teamos.xyz/data/assets/logo/TeamOS.png

172.67.143.25

200 OK

21 kB

URL GET HTTP/3
www.teamos.xyz/data/assets/logo/TeamOS.png
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
21 kB (20927 bytes)
Hash
86270c1741a9db8f95b7d6fdef2c62b4
17a3a90ec7e9d33dd84a77509446bf64d73d2e9e
83c1feff94030b6ddf0e2105ef24f444520c4e0fe3a0e6bf618eced3d2725bd2

HTTP Headers

GET /data/assets/logo/TeamOS.png HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1; _ga_ZMK4J7B2XT=GS1.1.1713364276.1.0.1713364276.0.0.0; _ga=GA1.1.599413745.1713364277; m5a4xojbcp2nx3gptmm633qal3gzmadn=quizmastersnag.com; pp_main_a1e8916f3df739635783bc00fa07bfe6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: image/png
content-length: 20927
last-modified: Fri, 14 May 2021 15:05:04 GMT
etag: "609e91a0-51bf"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3625
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GvTUqm%2FVG1rNf011CN8Q1CvuRHn8XNeBd7JnKgdLRkCT0cpOhKuZkd26qSZWFdfYS2xAgsxCRtShvuP7PdQWawb5kU2KyonOpC7iTdnQvnPcO%2BoDtpCO29feUzFxfQYYTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e2cee5a8f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/job.php

172.67.143.25

200 OK

9.7 kB

URL POST HTTP/3
www.teamos.xyz/job.php
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JSON text data
Size
9.7 kB (9659 bytes)
Hash
70f7be64c25ab759c99977732dbab7f1
9462ce9dd8476f17b791c67f44f8fff8eb2dbdde
f779de80f6ebd5d15cb3209e82969f8ad90e4ba02899e24c1796f2c9aca80343

HTTP Headers

POST /job.php HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1; _ga_ZMK4J7B2XT=GS1.1.1713364276.1.0.1713364276.0.0.0; _ga=GA1.1.599413745.1713364277; m5a4xojbcp2nx3gptmm633qal3gzmadn=quizmastersnag.com; pp_main_a1e8916f3df739635783bc00fa07bfe6=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Wed, 17 Apr 2024 14:31:17 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OAtTSDiqWDtTWD4osd%2FErR%2BOB01r8v5an0RSRKaUm9zQY6%2FhFqgJ1%2FbUc9uody%2BaDHXCgbbgctnpNEgojiH7DiAsPWfoIi3XmYBUcGrHv0Bhm3dObzCXJfxfegpvgKS2ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e2cee5e8f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/favicon.ico

172.67.143.25

200 OK

180 kB

URL GET HTTP/3
www.teamos.xyz/favicon.ico
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
MS Windows icon resource - 9 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel
Size
180 kB (180396 bytes)
Hash
6d9396dc55f2e528b53aa081b562f91f
aba25e72d54c60252f233a4bcf2c5773a11e6359
f2678bc111d1e4768f668ea1d1d8bc086371b13f66688831fb7e5706f7d29638

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1; _ga_ZMK4J7B2XT=GS1.1.1713364276.1.0.1713364276.0.0.0; _ga=GA1.1.599413745.1713364277; m5a4xojbcp2nx3gptmm633qal3gzmadn=quizmastersnag.com; pp_main_a1e8916f3df739635783bc00fa07bfe6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:17 GMT
content-type: image/x-icon
last-modified: Sun, 05 May 2019 15:07:05 GMT
vary: Accept-Encoding
etag: W/"5ccefc19-2c0ac"
expires: Mon, 22 Apr 2024 02:40:16 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 874859
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4v867Begle9N9SzNgAN9xedKBL7JItfmLXXkQa91aZiDdWIfWw71Xx9BmbEWfb%2F8zyJbDuReQI%2FhUQpsMvuFehD1ZbvhD2s1leEtOuLbpWSSQzc9lv5Cq%2Bk9RhNWkBE8Dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e2cee5c8f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js

192.243.59.20

200 OK

82 kB

URL GET HTTP/1.1
instrumenttactics.com/a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectinstrumenttactics.com
FingerprintB3:B4:C7:34:36:45:7C:C8:57:0A:23:0A:32:B1:C8:72:96:4D:85:25
ValidityThu, 14 Mar 2024 07:34:53 GMT - Wed, 12 Jun 2024 07:34:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
82 kB (82504 bytes)
Hash
a8fe0d8105db72f18cd823f39344ed12
b988df32587cfd17be85f9f2186ca6d8b4d4e3ac
ac38883202642871e28c80b72108f147581c672803fd0431233c11b74b1b8c3b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a1/e8/91/a1e8916f3df739635783bc00fa07bfe6.js HTTP/1.1
Host: instrumenttactics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 17 Apr 2024 14:31:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2967-layer=1; expires=Mon, 22 Apr 2024 05:31:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7f6c0323a087f98ede38e4d65a69748e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e

172.67.143.25

200 OK

214 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/core-compiled.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JavaScript source, ASCII text, with very long lines (16424)
Size
214 kB (213517 bytes)
Hash
d0ab265a4f68a45efc52408bd69a7f25
c57033113a290427c17a5cd1c94b1829aac06fed
abedeb2dbbfa0642370887c7fd082a1774f4e1f8129a4d9adba2908fe9e8b4d3

HTTP Headers

GET /js/xf/core-compiled.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=213917
etag: W/"63926c70-3439d"
expires: Fri, 19 Apr 2024 08:41:06 GMT
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
strict-transport-security: max-age=15768000
vary: Accept-Encoding
cf-cache-status: HIT
age: 451868
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZW9omZerqUOc%2BQgUrlITO7Op1Q9Yt%2F5CnYF3PO45uXRV5aT5YdrZ%2Br%2FoeEYcp%2B4HSq1sot4QFKJVvF5pXIuxivEaFEoAM7XAdGAJRSjfdFgh4iEpIbe%2BA1xk8ODKe1F7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e23db658f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/cdn-cgi/rum?

172.67.143.25

204 No Content

0 B

URL POST HTTP/3
www.teamos.xyz/cdn-cgi/rum?
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1026
Origin: https://www.teamos.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3228bf42-03c4-4f47-89dd-46b99d97c5ce%3A2%3A1; _ga_ZMK4J7B2XT=GS1.1.1713364276.1.0.1713364276.0.0.0; _ga=GA1.1.599413745.1713364277; m5a4xojbcp2nx3gptmm633qal3gzmadn=quizmastersnag.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Wed, 17 Apr 2024 14:31:16 GMT
access-control-allow-origin: https://www.teamos.xyz
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 875d1e2a59ab8f5a-CPH
x-frame-options: DENY
x-content-type-options: nosniff

www.teamos.xyz/data/avatars/s/36/36463.jpg?1442985987

172.67.143.25

200 OK

1.5 kB

URL GET HTTP/3
www.teamos.xyz/data/avatars/s/36/36463.jpg?1442985987
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 48x48, components 3
Size
1.5 kB (1473 bytes)
Hash
1267c24a9de6a7a03fdbf303c317d3a0
edf062c21532397900b7995e9f99a950ed342912
f79cbe5f7501e2c225e6fa9d4aef2a1c95c1ba692c1fe7530aeb45a214af6f5c

HTTP Headers

GET /data/avatars/s/36/36463.jpg?1442985987 HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: image/jpeg
content-length: 1473
last-modified: Sat, 04 May 2019 23:42:22 GMT
etag: "5cce235e-5c1"
strict-transport-security: max-age=15768000
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e8KXt35d9DcmwEDrI%2B6vUieiiegJo8PPIGHHZGMtwmBEvxeMkA0Qx1xRETOTL3OsIKtF7iK6xiD2vaSvC0RECYKYNG1I5Gqq5ijGbhGV3HTGdL47OoBxxsBOnNamXiOYUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e24ad318f5a-CPH
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/

172.67.143.25

200 OK

174 kB

URL User Request GET HTTP/3
www.teamos.xyz/
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type

Size
174 kB (173746 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
last-modified: Wed, 17 Apr 2024 14:31:15 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: private, no-cache, max-age=0
vary: Accept-Encoding
set-cookie: xf_csrf=0fW_r2jaTgerTFZe; path=/; secure
xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp; path=/; secure; HttpOnly
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
priority: u=1,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YfIIMUaibMRPC5hu8tN9eDvti7i%2BNAD%2FvTmuWKKhEfLTeeGZAiPq6XeYb546HfJygM78C3GS%2BSUuOpOW5vwfFuERHcOvWa6F9DXbw%2BYN%2FwHUglVeRLMIqaFnv86dVeQaPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e1f8ad28f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

188.114.97.1

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 14:31:16 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 07e9ae7bc2119205458542e4ce1c80b1
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 17 Apr 2024 14:31:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mij11fyUSCaaZNbNV86z97cxb6cwJTzNZQMhz4zFKmW87NfhlRq9Wz4QN2P2sVH11MJOkYIk4ZeoLN7qQCw3%2FC%2FBoLxVCcy82nOSYyKL1uK0dWWSCvB4AHdVkZSbqiI4k98HW85DUCMOtvNSnuayQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e2899401d1e-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.teamos.xyz/js/xf/notice.min.js?_v=099e916e

172.67.143.25

200 OK

3.7 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/notice.min.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JavaScript source, ASCII text, with very long lines (3758), with no line terminators
Size
3.7 kB (3662 bytes)
Hash
dfe0222d5d182d0d6a9b43d5a6c7a39e
f0455388d72298f16ca08c8dcf5b85e18d54f659
c9a0822314b301039409542c323db4e053f62525ce8c5aa63c46a9c3a8a46ceb

HTTP Headers

GET /js/xf/notice.min.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
vary: Accept-Encoding
etag: W/"63926c70-e4e"
expires: Fri, 19 Apr 2024 08:41:06 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 449916
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gefw0gKsYQQkG5ytY5SWqDLsSQC%2Bum5Yp2yXVMrscISlR11PweOK5vAMq8b11O6XBmAE3A0BOScOcMCHadLxuKY5ZcWuzfbR4wEXzY1AZ51WTMjKLUlTCbUuW69R1O7%2Ffw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e23db648f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e

172.67.143.25

200 OK

3.4 kB

URL GET HTTP/3
www.teamos.xyz/js/xf/preamble.min.js?_v=099e916e
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JavaScript source, ASCII text, with very long lines (3549), with no line terminators
Size
3.4 kB (3379 bytes)
Hash
cb73021081c1542f2179421a07600c5f
3e1a9cfbcceabb20985ad1d294754a0cda74defe
497c070b11794ae6950d47f244ac42c4669cb9b4126162ad7417ea970a21da3b

HTTP Headers

GET /js/xf/preamble.min.js?_v=099e916e HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 23:00:00 GMT
vary: Accept-Encoding
etag: W/"63926c70-d33"
expires: Fri, 19 Apr 2024 08:41:06 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 451868
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TscAPH0ZBluardp7%2BO7El39BjTUfior9WW6lPDlo3ays%2ByKwyErpnTSB5E5%2B1hs9X0pmtm5mOEMr57sJmlXdgHGdEqkD%2Fjosqh1LFUnl2WGXDFpjDrOJS3HRfDGM%2BleVgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e23eb9b8f5a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

teamos.xyz/

172.67.143.25

301 Moved Permanently

174 kB

URL User Request GET HTTP/2
teamos.xyz/
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type

Size
174 kB (173746 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: text/html
location: https://www.teamos.xyz/
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZAZ1uOVFWnKNhl8P8yvPI2mcCe49kW5KrySavZTJQErYbGwZDExCiY2fToPVAZ67x%2Bur03T9n0k7ERBQ%2BHHrhuze%2BtGVVGw2EM1SPz3k8trJBFAjT53pAVPWKeXi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d1e1e8f996dee-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3t%2F8LgqKIbc9OBdBF5l090x6Mu5hMcYswXGz7ip6k6qunkmZ6q62qmt6MoIEF2Qvwghe9NT5Jtnguiz6B7jIZEEkIKRvOSTgzbuQs%2FRscPRB93uvvlfwve%2BrL%2FfsOfFh6enau2okpKRLyw23%2FupHnne93hWJHdaHK8HHQet6XQ%2Fe6AQN97X6zSjcVku%2B67mu53r1daGjnhouVSBE%2BqjjNTpuo%2BU3vOUWhvq%2FvbEODHXAB%2BdkAYKXtafOIkQ4RRL%2FuBaZ7Uylr78dW0kzpTHghx8k24nKE8Tzsqcd9JLDy2koc7L%2BBCo5mNGFGvwzyERJnF%2BfgCWHlyTBBvsznkwiSsD488gHU0RyCkGnCNU9CH5CgJDj1iaS%2BMEtpXO68wylFVqS2sVfEHlJameLSOLHq1IM63eVtJlQicGwV0AMpxD9KVJ7hGx0BSI%2FQph9AcF%2FJ0sXXSTx%2FqaRCoIXs92FmEL0ppDRGNQ4sNUnHNieA5s6iPlpPfQ8r%2B3ykLornTBs8nbEAu56tN3zqOcGK7BhRW%2BMLB0jlGOEehep3sW2%2BPpkeQHa%2FgKzVcBwByYrifPeLga8QB4R5IYgpwS5IMgzgnxQHHBpfFM84NJY5l1m%2FzI3i4nK%2Bnv0QGX9KCGgegzNi730nLxUSeS82HoF29Fpvd30g14z8FnL6%2FksYJw1V9qMd1yvRaPOMoMRBYS5Mtt6JEpy9eJTpKIk%2F%2F8zBaNHMPIIoVgAtR5oXoBuFRglD7OIxso0hjsjcFUgzWrIdpw9eU6uzizqXnMQhcc3stEfNx8vfoZQF0h1gU%2FEU4K%2BvD%2B5o3Kyf0flhvy0mWYiFiNa2Xc3o1n0v4fvRDu50nxjzYy%2FfzOsgKp89H5ksi5NuEj6hvywKjiP9LrSYUR%2B3jAfRuy2NVurVic27d5%2Ba30jTnVkjFDJFFSUpHa8g1CU5IWzz2cv85r9CkJPoW2B2B6Ty4BQRwjTXZh0zt8oAi3nMyytIbfFRPtsfigFgYzmPWUFzL96Nq8nmla3qSj2zH30dQ00u4ckLjDQBQayAJVjGPvcJEv18Y3fvq3iOzBZmzCpa%2FtMavlNJfOV6kdK0hXlM9WNqFxvujToLHvtNo3arOWv9AKPU%2Bq3Aj8IaBOZKXsvn7X%2BBgAA%2F%2F8BAAD%2F%2F0DauxV9BAAA

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
quizmastersnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3t%2F8LgqKIbc9OBdBF5l090x6Mu5hMcYswXGz7ip6k6qunkmZ6q62qmt6MoIEF2Qvwghe9NT5Jtnguiz6B7jIZEEkIKRvOSTgzbuQs%2FRscPRB93uvvlfwve%2BrL%2FfsOfFh6enau2okpKRLyw23%2FupHnne93hWJHdaHK8HHQet6XQ%2Fe6AQN97X6zSjcVku%2B67mu53r1daGjnhouVSBE%2BqjjNTpuo%2BU3vOUWhvq%2FvbEODHXAB%2BdkAYKXtafOIkQ4RRL%2FuBaZ7Uylr78dW0kzpTHghx8k24nKE8Tzsqcd9JLDy2koc7L%2BBCo5mNGFGvwzyERJnF%2BfgCWHlyTBBvsznkwiSsD488gHU0RyCkGnCNU9CH5CgJDj1iaS%2BMEtpXO68wylFVqS2sVfEHlJameLSOLHq1IM63eVtJlQicGwV0AMpxD9KVJ7hGx0BSI%2FQph9AcF%2FJ0sXXSTx%2FqaRCoIXs92FmEL0ppDRGNQ4sNUnHNieA5s6iPlpPfQ8r%2B3ykLornTBs8nbEAu56tN3zqOcGK7BhRW%2BMLB0jlGOEehep3sW2%2BPpkeQHa%2FgKzVcBwByYrifPeLga8QB4R5IYgpwS5IMgzgnxQHHBpfFM84NJY5l1m%2FzI3i4nK%2Bnv0QGX9KCGgegzNi730nLxUSeS82HoF29Fpvd30g14z8FnL6%2FksYJw1V9qMd1yvRaPOMoMRBYS5Mtt6JEpy9eJTpKIk%2F%2F8zBaNHMPIIoVgAtR5oXoBuFRglD7OIxso0hjsjcFUgzWrIdpw9eU6uzizqXnMQhcc3stEfNx8vfoZQF0h1gU%2FEU4K%2BvD%2B5o3Kyf0flhvy0mWYiFiNa2Xc3o1n0v4fvRDu50nxjzYy%2FfzOsgKp89H5ksi5NuEj6hvywKjiP9LrSYUR%2B3jAfRuy2NVurVic27d5%2Ba30jTnVkjFDJFFSUpHa8g1CU5IWzz2cv85r9CkJPoW2B2B6Ty4BQRwjTXZh0zt8oAi3nMyytIbfFRPtsfigFgYzmPWUFzL96Nq8nmla3qSj2zH30dQ00u4ckLjDQBQayAJVjGPvcJEv18Y3fvq3iOzBZmzCpa%2FtMavlNJfOV6kdK0hXlM9WNqFxvujToLHvtNo3arOWv9AKPU%2Bq3Aj8IaBOZKXsvn7X%2BBgAA%2F%2F8BAAD%2F%2F0DauxV9BAAA
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://www.teamos.xyz/
Certificate
IssuerLet's Encrypt
Subjectquizmastersnag.com
Fingerprint84:E1:CD:5D:16:03:55:C9:3E:9E:2D:45:AA:7B:82:69:00:CB:B8:93
ValidityTue, 16 Apr 2024 09:59:59 GMT - Mon, 15 Jul 2024 09:59:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReu3t%2F8LgqKIbc9OBdBF5l090x6Mu5hMcYswXGz7ip6k6qunkmZ6q62qmt6MoIEF2Qvwghe9NT5Jtnguiz6B7jIZEEkIKRvOSTgzbuQs%2FRscPRB93uvvlfwve%2BrL%2FfsOfFh6enau2okpKRLyw23%2FupHnne93hWJHdaHK8HHQet6XQ%2Fe6AQN97X6zSjcVku%2B67mu53r1daGjnhouVSBE%2BqjjNTpuo%2BU3vOUWhvq%2FvbEODHXAB%2BdkAYKXtafOIkQ4RRL%2FuBaZ7Uylr78dW0kzpTHghx8k24nKE8Tzsqcd9JLDy2koc7L%2BBCo5mNGFGvwzyERJnF%2BfgCWHlyTBBvsznkwiSsD488gHU0RyCkGnCNU9CH5CgJDj1iaS%2BMEtpXO68wylFVqS2sVfEHlJameLSOLHq1IM63eVtJlQicGwV0AMpxD9KVJ7hGx0BSI%2FQph9AcF%2FJ0sXXSTx%2FqaRCoIXs92FmEL0ppDRGNQ4sNUnHNieA5s6iPlpPfQ8r%2B3ykLornTBs8nbEAu56tN3zqOcGK7BhRW%2BMLB0jlGOEehep3sW2%2BPpkeQHa%2FgKzVcBwByYrifPeLga8QB4R5IYgpwS5IMgzgnxQHHBpfFM84NJY5l1m%2FzI3i4nK%2Bnv0QGX9KCGgegzNi730nLxUSeS82HoF29Fpvd30g14z8FnL6%2FksYJw1V9qMd1yvRaPOMoMRBYS5Mtt6JEpy9eJTpKIk%2F%2F8zBaNHMPIIoVgAtR5oXoBuFRglD7OIxso0hjsjcFUgzWrIdpw9eU6uzizqXnMQhcc3stEfNx8vfoZQF0h1gU%2FEU4K%2BvD%2B5o3Kyf0flhvy0mWYiFiNa2Xc3o1n0v4fvRDu50nxjzYy%2FfzOsgKp89H5ksi5NuEj6hvywKjiP9LrSYUR%2B3jAfRuy2NVurVic27d5%2Ba30jTnVkjFDJFFSUpHa8g1CU5IWzz2cv85r9CkJPoW2B2B6Ty4BQRwjTXZh0zt8oAi3nMyytIbfFRPtsfigFgYzmPWUFzL96Nq8nmla3qSj2zH30dQ00u4ckLjDQBQayAJVjGPvcJEv18Y3fvq3iOzBZmzCpa%2FtMavlNJfOV6kdK0hXlM9WNqFxvujToLHvtNo3arOWv9AKPU%2Bq3Aj8IaBOZKXsvn7X%2BBgAA%2F%2F8BAAD%2F%2F0DauxV9BAAA HTTP/1.1
Host: quizmastersnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: u_pl=17773605; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec7326f362b41f2b6bdb387bd9014ae95b=[4991490,4991488,4991489]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 17 Apr 2024 14:31:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e14966844109fc8f2aa130cc62db8ec0
Strict-Transport-Security: max-age=0; includeSubdomains

www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.143.25

200 OK

12 kB

URL GET HTTP/3
www.teamos.xyz/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.143.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.teamos.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectteamos.xyz
Fingerprint2A:28:06:EF:27:A1:67:20:BB:CB:86:C9:17:82:90:97:C8:E6:AB:06
ValidityMon, 19 Feb 2024 10:31:47 GMT - Sun, 19 May 2024 10:31:46 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.teamos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teamos.xyz/
Cookie: xf_csrf=0fW_r2jaTgerTFZe; xf_session=yOpnf6XkBeY9LFZQ3_k7XV93SsagBRNp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 14:31:15 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 08:31:34 GMT
etag: W/"661ce5e6-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t4RPyUKsKNCgaufHkHUit9GK77PN%2B%2FAQHYdr%2F%2Br18rr9aEcdjeZBcZpRGXPLSVxec%2FArN4XQeOKrlYVYbAPgcgNayRaiwypLLj3Wgro65EoiarSFCwvPhluBI3w0qI4KQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d1e21ef518f5a-CPH
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 19 Apr 2024 14:31:15 GMT
cache-control: max-age=172800, public
content-encoding: gzip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN