| 45.43.13.42/ | 45.43.13.42 | 301 Moved Permanently | 162 B |
IP45.43.13.42:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: 45.43.13.42
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 10:09:56 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://panel.gamearoo.top/
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdfb72f04bd7a4410640c0543bb4bd402 7c63b7e220b337b6a4f39864e11d6aa9e26c38ac b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6142
Expires: Thu, 24 Nov 2022 11:52:18 GMT
Date: Thu, 24 Nov 2022 10:09:56 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash770d09773b5f304acf141fd66a4862b4 5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5 c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5060
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:56 GMT
Last-Modified: Thu, 24 Nov 2022 08:45:36 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 09:18:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3058
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash054ff0d1a0a43f7cb1d78dbd34e27f99 3caf54f3de1d6a8c6f6454083f8b8e7dec77db54 fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8641
Expires: Thu, 24 Nov 2022 12:33:57 GMT
Date: Thu, 24 Nov 2022 10:09:56 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ANTCDtmyD3PCACAv+0t4xeu7peGv1Ss4jHW35FDcq/yJPzoVYGFKF4+uPwfi7dFdqEBJBH6PKUM=
x-amz-request-id: S7JFBJCP5W9E9JT9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 09:43:21 GMT
age: 1595
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 10:08:53 GMT
cache-control: public,max-age=3600
age: 63
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7a6cb3bf540cdf251719efc83feda0d3 26c9fa2caf0c3c89d5d40cd18cb7e57830a1e733 eff00943ff8038cb1166fdb7332fbc0c718432adb126d8c602e9c555f9b34080
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF00943FF8038CB1166FDB7332FBC0C718432ADB126D8C602E9C555F9B34080"
Last-Modified: Wed, 23 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 24 Nov 2022 16:09:56 GMT
Date: Thu, 24 Nov 2022 10:09:56 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasheb52164d651f5f45416e873aec29eb04 405b29bb7e7cd4367cf82988f8603e53db65f139 ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6128
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:57 GMT
Last-Modified: Thu, 24 Nov 2022 08:27:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| panel.gamearoo.top/ | 45.43.13.42 | 200 OK | 1.3 kB |
IP45.43.13.42:0
Hash0624e157999e7b1fc3b2d2a86cab28cc d9b8f070430bdff4337d18fc004d7eba4c85d859 98510d79527aa692e4e71eb0169034c36ff00f6d567effffe6db8d803705d7a6
GET / HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
date: Thu, 24 Nov 2022 10:09:57 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IkRKR1cyenN3bURIVnJkbWdFWjBWSmc9PSIsInZhbHVlIjoiL3RZWEpmOXBzc2hTSnliTzBjekhYL3FaNm1PRmgxbndVWTYvNllzZmV5Wk9rOVNoeGFSMVhNb0hmN0RucWdBM0NhVXJrVXlJUjhQb1BtQ09JY01JcUhMck11MElVTkdjNDBLcEk2V08xY25CZ1hnRXRqdGFhc1RuSmpNZnlGa2UiLCJtYWMiOiIzNmUyMTU0ZWEwYWI1NWY2MDc4MjE4NzVkNjIwMTNiNDM1YTMyMmYzMzk1ZWNhMmNkYjQ0YTMxZTUyNzZhNjk1IiwidGFnIjoiIn0%3D; expires=Thu, 24-Nov-2022 22:09:57 GMT; Max-Age=43200; path=/; secure; samesite=lax
pterodactyl_session=eyJpdiI6IkVYUVkvWDF1N2JQVjUrNkI1d0lJb0E9PSIsInZhbHVlIjoiUU5TSUFLOEQrSVdTTkpjN2pJVXhOK2FWZjV5eDhndTNXK2UvSnlRV3EwRWpVcENhcE5HYUo0WHF5TGpQa2gvYTJqaHFwcmpoSHcrRktTMTR5U01PUkd3eG96SUlhaVB0MVQ1UTJuV2FlbjIzUU9BQUg5Vnl0TnpSVVRMTWJyZ2UiLCJtYWMiOiI5ZGJmYjY3NGFiMmE0ZjljOTU2MjQ5MmIxNTNhNjhhNTYxZDdhYzk3MDg3YzMxMzg4OTY0YzBhZGUxNTdkNzYzIiwidGFnIjoiIn0%3D; expires=Thu, 24-Nov-2022 22:09:57 GMT; Max-Age=43200; path=/; secure; httponly; samesite=lax
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=IBM+Plex+Mono|IBM+Plex+Sans:500&display=swap | 142.250.74.10 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=IBM+Plex+Mono|IBM+Plex+Sans:500&display=swap IP142.250.74.10:0
Hash3ff273a40f5d883aa8ea8061a6ef30ec 52ed10d83179b9011b13de17351c86daebf643a9 d7ceab5fd74629f0aa19347bb15f958856639e2a46911977189fa4be6507767f
GET /css?family=IBM+Plex+Mono|IBM+Plex+Sans:500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 10:09:57 GMT
date: Thu, 24 Nov 2022 10:09:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.89.217.163 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.89.217.163:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zWCwWl13k8YlKmYLEkAeRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DiFCH4u2vWDfmu8qKgktxd2psLU=
|
|
| panel.gamearoo.top/assets/bundle.752be0f1.js | 45.43.13.42 | 200 OK | 549 kB |
URL HTTP/2panel.gamearoo.top/assets/bundle.752be0f1.js IP45.43.13.42:0
File typeASCII text, with very long lines (65536), with no line terminators Size549 kB (548973 bytes) Hash18310d2863d298d267a4b48af9990760 abcccb6176a316531eb33feca8f89cb357eaade3 5c4953072f0d6b6bea738c92cde9cbeaf6d28307f21963dfda40d9df117fbbbd
GET /assets/bundle.752be0f1.js HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkRKR1cyenN3bURIVnJkbWdFWjBWSmc9PSIsInZhbHVlIjoiL3RZWEpmOXBzc2hTSnliTzBjekhYL3FaNm1PRmgxbndVWTYvNllzZmV5Wk9rOVNoeGFSMVhNb0hmN0RucWdBM0NhVXJrVXlJUjhQb1BtQ09JY01JcUhMck11MElVTkdjNDBLcEk2V08xY25CZ1hnRXRqdGFhc1RuSmpNZnlGa2UiLCJtYWMiOiIzNmUyMTU0ZWEwYWI1NWY2MDc4MjE4NzVkNjIwMTNiNDM1YTMyMmYzMzk1ZWNhMmNkYjQ0YTMxZTUyNzZhNjk1IiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkVYUVkvWDF1N2JQVjUrNkI1d0lJb0E9PSIsInZhbHVlIjoiUU5TSUFLOEQrSVdTTkpjN2pJVXhOK2FWZjV5eDhndTNXK2UvSnlRV3EwRWpVcENhcE5HYUo0WHF5TGpQa2gvYTJqaHFwcmpoSHcrRktTMTR5U01PUkd3eG96SUlhaVB0MVQ1UTJuV2FlbjIzUU9BQUg5Vnl0TnpSVVRMTWJyZ2UiLCJtYWMiOiI5ZGJmYjY3NGFiMmE0ZjljOTU2MjQ5MmIxNTNhNjhhNTYxZDdhYzk3MDg3YzMxMzg4OTY0YzBhZGUxNTdkNzYzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:57 GMT
content-type: application/javascript
content-length: 548973
last-modified: Sun, 16 Oct 2022 18:24:58 GMT
etag: "634c4c7a-8606d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| panel.gamearoo.top/assets/vendors~auth~dashboard~server.8b5eda5e.js | 45.43.13.42 | 200 OK | 92 kB |
URL HTTP/2panel.gamearoo.top/assets/vendors~auth~dashboard~server.8b5eda5e.js IP45.43.13.42:0
File typeUnicode text, UTF-8 text, with very long lines (65340), with no line terminators Hashb0de1e5d0a20b90bfca64145a0a44223 ff12f0459fc8f554cbb1041924568e71d2973992 075ab1e0c4461ef425585a8c02a2e7990e59d9f70c3dddd83d0f1cdde281bb4e
GET /assets/vendors~auth~dashboard~server.8b5eda5e.js HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/auth/login
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkRKR1cyenN3bURIVnJkbWdFWjBWSmc9PSIsInZhbHVlIjoiL3RZWEpmOXBzc2hTSnliTzBjekhYL3FaNm1PRmgxbndVWTYvNllzZmV5Wk9rOVNoeGFSMVhNb0hmN0RucWdBM0NhVXJrVXlJUjhQb1BtQ09JY01JcUhMck11MElVTkdjNDBLcEk2V08xY25CZ1hnRXRqdGFhc1RuSmpNZnlGa2UiLCJtYWMiOiIzNmUyMTU0ZWEwYWI1NWY2MDc4MjE4NzVkNjIwMTNiNDM1YTMyMmYzMzk1ZWNhMmNkYjQ0YTMxZTUyNzZhNjk1IiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkVYUVkvWDF1N2JQVjUrNkI1d0lJb0E9PSIsInZhbHVlIjoiUU5TSUFLOEQrSVdTTkpjN2pJVXhOK2FWZjV5eDhndTNXK2UvSnlRV3EwRWpVcENhcE5HYUo0WHF5TGpQa2gvYTJqaHFwcmpoSHcrRktTMTR5U01PUkd3eG96SUlhaVB0MVQ1UTJuV2FlbjIzUU9BQUg5Vnl0TnpSVVRMTWJyZ2UiLCJtYWMiOiI5ZGJmYjY3NGFiMmE0ZjljOTU2MjQ5MmIxNTNhNjhhNTYxZDdhYzk3MDg3YzMxMzg4OTY0YzBhZGUxNTdkNzYzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:58 GMT
content-type: application/javascript
content-length: 92205
last-modified: Sun, 16 Oct 2022 18:24:58 GMT
etag: "634c4c7a-1682d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| panel.gamearoo.top/assets/auth.32bd45c4.js | 45.43.13.42 | 200 OK | 30 kB |
URL HTTP/2panel.gamearoo.top/assets/auth.32bd45c4.js IP45.43.13.42:0
File typeUnicode text, UTF-8 text, with very long lines (29492), with no line terminators Hash1190d4ae944ee33caaf251b45f2149b1 fc6d8700e7aa170636ff088ada31baf77c681056 2a5c640022a30248e1871c0367d21291799412e339b91cfc422d298fa0aeb7bc
GET /assets/auth.32bd45c4.js HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/auth/login
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkRKR1cyenN3bURIVnJkbWdFWjBWSmc9PSIsInZhbHVlIjoiL3RZWEpmOXBzc2hTSnliTzBjekhYL3FaNm1PRmgxbndVWTYvNllzZmV5Wk9rOVNoeGFSMVhNb0hmN0RucWdBM0NhVXJrVXlJUjhQb1BtQ09JY01JcUhMck11MElVTkdjNDBLcEk2V08xY25CZ1hnRXRqdGFhc1RuSmpNZnlGa2UiLCJtYWMiOiIzNmUyMTU0ZWEwYWI1NWY2MDc4MjE4NzVkNjIwMTNiNDM1YTMyMmYzMzk1ZWNhMmNkYjQ0YTMxZTUyNzZhNjk1IiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkVYUVkvWDF1N2JQVjUrNkI1d0lJb0E9PSIsInZhbHVlIjoiUU5TSUFLOEQrSVdTTkpjN2pJVXhOK2FWZjV5eDhndTNXK2UvSnlRV3EwRWpVcENhcE5HYUo0WHF5TGpQa2gvYTJqaHFwcmpoSHcrRktTMTR5U01PUkd3eG96SUlhaVB0MVQ1UTJuV2FlbjIzUU9BQUg5Vnl0TnpSVVRMTWJyZ2UiLCJtYWMiOiI5ZGJmYjY3NGFiMmE0ZjljOTU2MjQ5MmIxNTNhNjhhNTYxZDdhYzk3MDg3YzMxMzg4OTY0YzBhZGUxNTdkNzYzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:58 GMT
content-type: application/javascript
content-length: 29494
last-modified: Sun, 16 Oct 2022 18:24:58 GMT
etag: "634c4c7a-7336"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2 | 216.58.207.195 | 200 OK | 19 kB |
URL HTTP/2fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 18860, version 1.0\012- data Hashc91aac6ef66a18aed734e40c1b7ef33c 8e7075376823d45b4367b876d9ca7e24b22e07af 49791a696302b5112cec6f474d4d188ec3da019fab43b744b558c8b5e6644785
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://panel.gamearoo.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:49:39 GMT
expires: Fri, 17 Nov 2023 16:49:39 GMT
cache-control: public, max-age=31536000
age: 580819
last-modified: Tue, 26 Apr 2022 15:50:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| panel.gamearoo.top/assets/svgs/pterodactyl.svg | 45.43.13.42 | 200 OK | 13 kB |
URL HTTP/2panel.gamearoo.top/assets/svgs/pterodactyl.svg IP45.43.13.42:0
File typeSVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (12805), with no line terminators Hasheb087e8d52f40c60a69f406c5a790456 196784d4f3f95d14076bb4c5913718fda6196170 424ab1aa0f0dfafc5a84febc9c9b8d56e4b8af7fd0f5efc02d5411b97d48f9cd
GET /assets/svgs/pterodactyl.svg HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/auth/login
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkRKR1cyenN3bURIVnJkbWdFWjBWSmc9PSIsInZhbHVlIjoiL3RZWEpmOXBzc2hTSnliTzBjekhYL3FaNm1PRmgxbndVWTYvNllzZmV5Wk9rOVNoeGFSMVhNb0hmN0RucWdBM0NhVXJrVXlJUjhQb1BtQ09JY01JcUhMck11MElVTkdjNDBLcEk2V08xY25CZ1hnRXRqdGFhc1RuSmpNZnlGa2UiLCJtYWMiOiIzNmUyMTU0ZWEwYWI1NWY2MDc4MjE4NzVkNjIwMTNiNDM1YTMyMmYzMzk1ZWNhMmNkYjQ0YTMxZTUyNzZhNjk1IiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkVYUVkvWDF1N2JQVjUrNkI1d0lJb0E9PSIsInZhbHVlIjoiUU5TSUFLOEQrSVdTTkpjN2pJVXhOK2FWZjV5eDhndTNXK2UvSnlRV3EwRWpVcENhcE5HYUo0WHF5TGpQa2gvYTJqaHFwcmpoSHcrRktTMTR5U01PUkd3eG96SUlhaVB0MVQ1UTJuV2FlbjIzUU9BQUg5Vnl0TnpSVVRMTWJyZ2UiLCJtYWMiOiI5ZGJmYjY3NGFiMmE0ZjljOTU2MjQ5MmIxNTNhNjhhNTYxZDdhYzk3MDg3YzMxMzg4OTY0YzBhZGUxNTdkNzYzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:58 GMT
content-type: image/svg+xml
content-length: 12805
last-modified: Sun, 16 Oct 2022 18:23:06 GMT
etag: "634c4c0a-3205"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb75c00c21f5854618bc06d14b8d83c40 ae14f585ae9682e6c2fad146c12c00ee4d83e8f3 a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11900
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 10:09:58 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb9d9f8ed6c8abffda48365f6bc32b84b 33ad802992d04ae77047e05a68120cb4e42a00e6 7009ce6ea1f0023531d8fd70bcf73a0091b663ad7b0f5a9d1785a0f1d2334583
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb75c00c21f5854618bc06d14b8d83c40 ae14f585ae9682e6c2fad146c12c00ee4d83e8f3 a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11900
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 10:09:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb75c00c21f5854618bc06d14b8d83c40 ae14f585ae9682e6c2fad146c12c00ee4d83e8f3 a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11900
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 10:09:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb75c00c21f5854618bc06d14b8d83c40 ae14f585ae9682e6c2fad146c12c00ee4d83e8f3 a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11900
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 10:09:58 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg | 34.120.237.76 | 200 OK | 4.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash841a4b110022a99ddea6f7bf66df0fa1 126771b86638108050cf57c0d12faa27f80f0edb 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 18330
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash92c78302bcce1568eb6a5563100b932c 43d1dec7fc06879988c9c3cadd800cc8145df988 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 44526
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3bafc39-a86e-44d4-9bf3-97302a57c669.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3bafc39-a86e-44d4-9bf3-97302a57c669.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb83dcf4ccde90ad94bb32da4fd35e524 ffd4d9f932aacc8ab123d1ab46c983a3f581d171 cf217cf355e7bea4410efd22e89f5a4de4d154153f587f7cad53533a3fcfe1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3bafc39-a86e-44d4-9bf3-97302a57c669.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8306
x-amzn-requestid: 9506f26d-36cc-47a1-b6ac-b3f720e35981
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_c81GrAoAMF-4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c751e-68e3f822732b60db1875d538;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:07:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HVv2xtKAWEE91Tw-OxF20Sp64pUJ-aTdOU0pSk7YfanuCcM8W1naAw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:52:06 GMT
age: 8272
etag: "ffd4d9f932aacc8ab123d1ab46c983a3f581d171"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| recaptcha.net/recaptcha/api.js?render=explicit | 142.250.74.99 | 200 OK | 555 B |
URL HTTP/2recaptcha.net/recaptcha/api.js?render=explicit IP142.250.74.99:0
File typeASCII text, with very long lines (851), with no line terminators Hashbc9f6440a7e68e888f62422612900fbd 5c11e913e0faadd6c12dacc723833193866bf564 64de8a4f534f35539eb298e78d47e9fd5d74cddcfdd6775b693c0ecb977dab71
GET /recaptcha/api.js?render=explicit HTTP/1.1
Host: recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 24 Nov 2022 10:09:58 GMT
date: Thu, 24 Nov 2022 10:09:58 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdd3f1be747f6b2f1c35afb01db67b792 a4373037b8b379939b1b099c3ef63f8792e67579 fdbd778a505e1928e9b5296b6150763c2dca9876ec0ef8f772e73ca386ab74d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8441
x-amzn-requestid: c050c897-c6d4-44ef-93c2-cfbf32cd8bff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClG-AoAMFwxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-039834877c2b792b5feb6819;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H31vJjvBF3eWF37DqfsaL-KxOnEHJS1JSmehtTYPhzjZjj-PIhm9pQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:45:09 GMT
age: 44689
etag: "a4373037b8b379939b1b099c3ef63f8792e67579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheeac5ead5ce62f0d9e2d4bcefa946208 c2430d901f2b4e4a463e90c540294f334553a246 850a89160f840d7509806c5becd6b074a92613920474195f63d7e7a9cf18d908
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6426
x-amzn-requestid: 6f27f360-dd76-4aee-a9bc-cbd52cd80def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvx8GtpIAMFvQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e933f-69fa8ba571cc62036406e6bf;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wm_pBVCoReupun-_glC47ejuxaRJ6ViGPKClLnWkDrmT-SewUOXexw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:06:01 GMT
age: 43437
etag: "c2430d901f2b4e4a463e90c540294f334553a246"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd52586ca-ed31-419d-866f-7a7d8c034cc2.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd52586ca-ed31-419d-866f-7a7d8c034cc2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdcdebbc7d6d2f262afe69e6f2d97d58b e62b4e08c2813f67fa0f466b4f66d5d4c609526f decdfd76f2b382026f13ba2cd07fceae8a8964b4157c0f4dcef6bcd061817b61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd52586ca-ed31-419d-866f-7a7d8c034cc2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6404
x-amzn-requestid: 5a69edc8-b240-4c21-ba0d-dc175b8ff3b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvY6HfnoAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5d2-4fd0613627b92d636337cbad;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JBcELEHpSjhEJpgL7NWxlolY0Vt_b5RYE9zJyiBgIIZvf2re37TnaQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:23:31 GMT
age: 9987
etag: "e62b4e08c2813f67fa0f466b4f66d5d4c609526f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| panel.gamearoo.top/favicons/apple-touch-icon.png | 45.43.13.42 | 200 OK | 9.5 kB |
URL HTTP/2panel.gamearoo.top/favicons/apple-touch-icon.png IP45.43.13.42:0
File typePNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data Hash573c22ef6e4b096b6441fa6d0d47d530 7ef2d0fd0612cf343dc3e61ce657324e1a8ba585 12447a9f7cc574efef8c28821d34ab819e2866d2d22acd654ee5500043584d24
GET /favicons/apple-touch-icon.png HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjNmQ3hNY1o2ZUdiUVJFbHFmb1cya3c9PSIsInZhbHVlIjoiVDRwanVTYTg2S2hoT1RjdlJSTEx1Vm1WYWFBUzlvZWNoQTZIallVK3hrZ0NRSnhWRVl3eFlka0Z3LzBZUzQxbXJIZVJ4bDZoRDlHbU9vOUFDTDJ1L0NuWWJxR2pjMCs5SHoweHc1SURLYVlLZzdWZDBDQ05MUyt2R3FuRmszQUsiLCJtYWMiOiIyYTZlZDhhZmYyOWVmZjhhY2ZkZTc3YWVhYzdjNTAzYjkzNTZlYzJlMTMyYjkwNWMyZmRmMTA5Mjk0Mjc3YWQyIiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkJQSWFWN1VRTDVqcUZOblY1ZW0waWc9PSIsInZhbHVlIjoiNzBzUmxHRXpFWG8wMjFYTWl1N0xWUnViRjN2bjlaWXRvSGx3RTlCVTRVMzgrakpxM25QSFNMeFdhV3hYcEtJUEtQVnhKS1NkcEVaVjJ2eEkwVFJhYzBHeERaSXRwV256Ukx6aUtKZG1mR3BUdDVhZUNFNjBsK3FnQUZSVkhNVGUiLCJtYWMiOiJhOGQ3MWNhM2Y4YmY1ZTQ2MjkzM2M2N2M3MThkOGY1NmM4MTExYjI3NGQ4ODgyMWFiYTRmYWJlYzViZmRkNTZkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:58 GMT
content-type: image/png
content-length: 9537
last-modified: Sun, 16 Oct 2022 18:23:06 GMT
etag: "634c4c0a-2541"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| panel.gamearoo.top/favicons/favicon-16x16.png | 45.43.13.42 | 200 OK | 1.2 kB |
URL HTTP/2panel.gamearoo.top/favicons/favicon-16x16.png IP45.43.13.42:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Hash35d10ac6496677b1bce834ae0d34e0d6 7e68c6f82ce319317d6ea9cdf1b1a81ed798980c 8a8bb31485ca20bf0ad4af5b4bec129dbb27c942c8fb27ee4a9956aaf362be19
GET /favicons/favicon-16x16.png HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjNmQ3hNY1o2ZUdiUVJFbHFmb1cya3c9PSIsInZhbHVlIjoiVDRwanVTYTg2S2hoT1RjdlJSTEx1Vm1WYWFBUzlvZWNoQTZIallVK3hrZ0NRSnhWRVl3eFlka0Z3LzBZUzQxbXJIZVJ4bDZoRDlHbU9vOUFDTDJ1L0NuWWJxR2pjMCs5SHoweHc1SURLYVlLZzdWZDBDQ05MUyt2R3FuRmszQUsiLCJtYWMiOiIyYTZlZDhhZmYyOWVmZjhhY2ZkZTc3YWVhYzdjNTAzYjkzNTZlYzJlMTMyYjkwNWMyZmRmMTA5Mjk0Mjc3YWQyIiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkJQSWFWN1VRTDVqcUZOblY1ZW0waWc9PSIsInZhbHVlIjoiNzBzUmxHRXpFWG8wMjFYTWl1N0xWUnViRjN2bjlaWXRvSGx3RTlCVTRVMzgrakpxM25QSFNMeFdhV3hYcEtJUEtQVnhKS1NkcEVaVjJ2eEkwVFJhYzBHeERaSXRwV256Ukx6aUtKZG1mR3BUdDVhZUNFNjBsK3FnQUZSVkhNVGUiLCJtYWMiOiJhOGQ3MWNhM2Y4YmY1ZTQ2MjkzM2M2N2M3MThkOGY1NmM4MTExYjI3NGQ4ODgyMWFiYTRmYWJlYzViZmRkNTZkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 10:09:58 GMT
content-type: image/png
content-length: 1165
last-modified: Sun, 16 Oct 2022 18:23:06 GMT
etag: "634c4c0a-48d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb9d9f8ed6c8abffda48365f6bc32b84b 33ad802992d04ae77047e05a68120cb4e42a00e6 7009ce6ea1f0023531d8fd70bcf73a0091b663ad7b0f5a9d1785a0f1d2334583
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 10:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js | 142.250.74.163 | 200 OK | 163 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (730) Size163 kB (162976 bytes) Hash79d18cf4265108d7cecca1bf4ada6109 e51d0285a545381d4c39e9e0292a650ffeeecbb9 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://panel.gamearoo.top
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 09:43:42 GMT
expires: Fri, 24 Nov 2023 09:43:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 1576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.195 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://recaptcha.net
Connection: keep-alive
Referer: https://recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 423481
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://recaptcha.net
Connection: keep-alive
Referer: https://recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 563023
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| panel.gamearoo.top/locales/locale.json?locale=en&namespace=translation&hash=183e209c4a8 | 45.43.13.42 | 200 OK | 0 B |
URL HTTP/2panel.gamearoo.top/locales/locale.json?locale=en&namespace=translation&hash=183e209c4a8 IP45.43.13.42:0
GET /locales/locale.json?locale=en&namespace=translation&hash=183e209c4a8 HTTP/1.1
Host: panel.gamearoo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://panel.gamearoo.top/auth/login
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkRKR1cyenN3bURIVnJkbWdFWjBWSmc9PSIsInZhbHVlIjoiL3RZWEpmOXBzc2hTSnliTzBjekhYL3FaNm1PRmgxbndVWTYvNllzZmV5Wk9rOVNoeGFSMVhNb0hmN0RucWdBM0NhVXJrVXlJUjhQb1BtQ09JY01JcUhMck11MElVTkdjNDBLcEk2V08xY25CZ1hnRXRqdGFhc1RuSmpNZnlGa2UiLCJtYWMiOiIzNmUyMTU0ZWEwYWI1NWY2MDc4MjE4NzVkNjIwMTNiNDM1YTMyMmYzMzk1ZWNhMmNkYjQ0YTMxZTUyNzZhNjk1IiwidGFnIjoiIn0%3D; pterodactyl_session=eyJpdiI6IkVYUVkvWDF1N2JQVjUrNkI1d0lJb0E9PSIsInZhbHVlIjoiUU5TSUFLOEQrSVdTTkpjN2pJVXhOK2FWZjV5eDhndTNXK2UvSnlRV3EwRWpVcENhcE5HYUo0WHF5TGpQa2gvYTJqaHFwcmpoSHcrRktTMTR5U01PUkd3eG96SUlhaVB0MVQ1UTJuV2FlbjIzUU9BQUg5Vnl0TnpSVVRMTWJyZ2UiLCJtYWMiOiI5ZGJmYjY3NGFiMmE0ZjljOTU2MjQ5MmIxNTNhNjhhNTYxZDdhYzk3MDg3YzMxMzg4OTY0YzBhZGUxNTdkNzYzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: max-age=3600, public, stale-while-revalidate=86400
etag: 648aa5ae7e486cbe43e535d16699d787
date: Thu, 24 Nov 2022 10:09:58 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IjNmQ3hNY1o2ZUdiUVJFbHFmb1cya3c9PSIsInZhbHVlIjoiVDRwanVTYTg2S2hoT1RjdlJSTEx1Vm1WYWFBUzlvZWNoQTZIallVK3hrZ0NRSnhWRVl3eFlka0Z3LzBZUzQxbXJIZVJ4bDZoRDlHbU9vOUFDTDJ1L0NuWWJxR2pjMCs5SHoweHc1SURLYVlLZzdWZDBDQ05MUyt2R3FuRmszQUsiLCJtYWMiOiIyYTZlZDhhZmYyOWVmZjhhY2ZkZTc3YWVhYzdjNTAzYjkzNTZlYzJlMTMyYjkwNWMyZmRmMTA5Mjk0Mjc3YWQyIiwidGFnIjoiIn0%3D; expires=Thu, 24-Nov-2022 22:09:58 GMT; Max-Age=43200; path=/; secure; samesite=lax
pterodactyl_session=eyJpdiI6IkJQSWFWN1VRTDVqcUZOblY1ZW0waWc9PSIsInZhbHVlIjoiNzBzUmxHRXpFWG8wMjFYTWl1N0xWUnViRjN2bjlaWXRvSGx3RTlCVTRVMzgrakpxM25QSFNMeFdhV3hYcEtJUEtQVnhKS1NkcEVaVjJ2eEkwVFJhYzBHeERaSXRwV256Ukx6aUtKZG1mR3BUdDVhZUNFNjBsK3FnQUZSVkhNVGUiLCJtYWMiOiJhOGQ3MWNhM2Y4YmY1ZTQ2MjkzM2M2N2M3MThkOGY1NmM4MTExYjI3NGQ4ODgyMWFiYTRmYWJlYzViZmRkNTZkIiwidGFnIjoiIn0%3D; expires=Thu, 24-Nov-2022 22:09:58 GMT; Max-Age=43200; path=/; secure; httponly; samesite=lax
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
content-security-policy: frame-ancestors 'self'
x-frame-options: DENY
referrer-policy: same-origin
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Rubik:300,400,500&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Rubik:300,400,500&display=swap IP142.250.74.10:0
GET /css?family=Rubik:300,400,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 10:09:57 GMT
date: Thu, 24 Nov 2022 10:09:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|