Report - romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7

Report Overview

Visited public
2024-08-02 17:38:14
Tags
URL
romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Finishing URL
romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
IP / ASN
172.67.75.236
#13335 CLOUDFLARENET
Title
Download Super Mario Advance 4: Super Mario Bros. 3 ROM - Nintendo GBA

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lyticaframeofm.com	unknown	2024-04-01	2024-04-16 10:50:10	2024-08-02 11:15:17	954 B	1.8 kB	143.204.55.10
getrunkhomuto.info	unknown	2024-03-31	2024-03-31 12:52:35	2024-08-02 11:46:26	938 B	1.8 kB	143.204.55.8
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2024-08-02 18:17:28	3.7 kB	22 kB	64.233.161.84
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-08-01 18:12:56	2.0 kB	5.3 kB	23.36.76.226
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-08-01 18:20:07	1.6 kB	3.5 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-08-02 18:12:02	868 B	170 kB	142.250.74.168
pogothere.xyz	unknown	2022-08-22	2022-09-04 21:11:25	2024-08-02 11:14:37	832 B	104 kB	188.114.96.1
romsfun.com	314183	2021-01-05	2021-01-06 09:53:22	2024-07-11 18:27:53	10 kB	876 kB	172.67.75.236
dt3y1f1i1disy.cloudfront.net	unknown	2008-04-25	2024-06-10 21:05:24	2024-07-05 20:02:04	1.8 kB	71 kB	143.204.42.202
opreseynatcreativei.com	unknown	2024-04-01	2024-07-30 20:24:02	2024-08-02 11:14:36	1.6 kB	1.9 kB	172.67.202.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-02	medium	getrunkhomuto.info	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7	ScriptElement	154 B	2023-03-12	2025-06-22
Pretty URL romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 11:39 Last Seen2025-06-22 16:41 Times Seen161 Hash 8d7444ba152aae0282a6738064d9bea3 c933aa5aaa985bc9cbb540da2af946e49d5ac89f 4ab58bdef37cafc6c8613216447b0d8074e0e4a133b23acaa2aeb3856aee33fe Loading...

	romsfun.com/wp-content/themes/romsfun/js/site.js?ver=1.5	ScriptElement	7.3 kB	2024-01-06	2024-10-22
Pretty URL romsfun.com/wp-content/themes/romsfun/js/site.js?ver=1.5 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-06 21:02 Last Seen2024-10-22 18:45 Times Seen78 Hash d0c06ac274cc1ffad4888bc2e04ed7e2 e53ab6dfa900d7f0910f483838c3c9849833f143 3e3f5004d73e0fd91f6ec8bd3e9017a3ac49774c7af908da74daac5afe57cf3d Loading...

	www.googletagmanager.com/gtag/js?id=G-CXR95QZ9B0&l=dataLayer&cx=c	ScriptElement	262 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-CXR95QZ9B0&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:53 Last Seen2024-08-19 14:53 Times Seen1 Hash c9ed2c3bc7a30019a457dc0217446751 5a0e33cd5ba75a08f485b5c4eb4f09c67f7689b7 a2a9ed04fa4e555f6040f6ab61e66f476b5a64df06bd54476631fc2e8224e3ac Loading...

	romsfun.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.1	ScriptElement	19 kB	2023-08-30	2025-02-19
Pretty URL romsfun.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.1 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 21:22 Last Seen2025-02-19 13:41 Times Seen98 Hash 318a8652a313c02b1d19f46b7ef1e426 afc5e61e6185848646a929a2287386a788870329 82815a7dba0c18a1092121e80005ee37b0390b8b755a6dc8ba03e199ed3a2501 Loading...

	dt3y1f1i1disy.cloudfront.net/?ifytd=1058666	ScriptElement	210 kB	2024-08-19	2024-08-19
Pretty URL dt3y1f1i1disy.cloudfront.net/?ifytd=1058666 IP 143.204.42.202 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:52 Last Seen2024-08-19 14:53 Times Seen2 Hash bf2d3b8d7fe0833ee6f5cd8d71330318 c6f136af93694253262c893836392194ea05cf28 807bf9d1d59f13aa18f441e34f7a5782a1efdfad9d40e50f2af883c54012eb4e Loading...

	www.googletagmanager.com/gtag/js?id=UA-89527130-9	ScriptElement	213 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=UA-89527130-9 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:52 Last Seen2024-08-19 14:53 Times Seen2 Hash 266fe12f1aac98ea3a5d9f2e436940b9 6d41a121547c4a287abcc948f2fa2bf9f419b737 1f4544fea577f4d15b8f82c8b78f5a4c7a37600641d85f52bed5b0d1d38bca30 Loading...

	romsfun.com/wp-includes/js/jquery/jquery.js?ver=3.7.1	ScriptElement	141 kB	2023-11-16	2025-02-19
Pretty URL romsfun.com/wp-includes/js/jquery/jquery.js?ver=3.7.1 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 15:59 Last Seen2025-02-19 13:41 Times Seen133 Hash 15d149d159697f14f22caca6467e2174 22b596ae7aad63a4118c6304b9e4587b246b80a0 508a8d88a4db7b5ef87b1d5b6fc60e56b7c5384b75b75b10e77f298ea108b510 Loading...

	romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7	ScriptElement	102 B	2023-03-12	2025-06-22
Pretty URL romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 11:39 Last Seen2025-06-22 16:41 Times Seen159 Hash f1afecca58bbea096e1f40082c1a81d0 2d7f288793f0042033236e03a2043173d6a29cf7 79afca549552a12dcbda55428465f0e0c10952e87253bc7d4b079b8509bb1250 Loading...

	romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/sandbox%20eval%20code		147 B	2023-04-11	2025-06-23
Pretty URL romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-23 05:31 Times Seen362406 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	unknown	ScriptElement	236 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:53 Last Seen2024-08-19 14:53 Times Seen1 Hash 346b5add797a9287ab74c13325532be9 9a09ee729724dc986be975e86594b8119235e578 43ee8d01e0f807dcb02e4ba61724c0be3affd58ca268b61d9d4930ecc4fbe984 Loading...

	romsfun.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.9 kB	2024-08-19	2024-08-19
Pretty URL romsfun.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:53 Last Seen2024-08-19 14:53 Times Seen2 Hash 4c930b034eb03c01ad96abf6616056cb a4da4e435ac9a8030173552492572733ed57b4c6 d6003be8ead7aa4c30bf397eefa364fb56a169cc84c6d91e7d08b0f249a883d5 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-23
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-23 05:31 Times Seen361720 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	romsfun.com/wp-content/themes/romsfun/js/bootstrap.min.js?ver=1.5	ScriptElement	166 kB	2023-10-24	2025-06-22
Pretty URL romsfun.com/wp-content/themes/romsfun/js/bootstrap.min.js?ver=1.5 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 03:42 Last Seen2025-06-22 16:41 Times Seen144 Hash 9c407d157bf5ffc36814e6cc948a11e9 5d598bfa7ada13784621d76d1bb907d58c20bbd0 4a090a9b8bbb0f86926f094f4f1543ba2a48b776baff36d6429f8a9639d741a8 Loading...

	romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7	ScriptElement	921 B	2024-08-19	2024-08-19
Pretty URL romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7 IP 172.67.75.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:53 Last Seen2024-08-19 14:53 Times Seen1 Hash bf905a56e1a1eb796d3943d1d6727a75 3feb2615402843397d89e542f611a158392a13bd cd0e1209be1258f17fa0a92d76cc8b107cb329239bd0ec7113c99bee7c47b7ab Loading...

HTTP Transactions (49)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
2b7af8743a0baccf520f7d3c63f9aa03
d531f4d4c3b83565dbe8f972052708201df0d668
542b016f56d55ac6e101e5930905ac5873ab375bb530ae7f2dbbbe98f4663926

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "542B016F56D55AC6E101E5930905AC5873AB375BB530AE7F2DBBBE98F4663926"
Last-Modified: Thu, 01 Aug 2024 06:56:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4754
Expires: Fri, 02 Aug 2024 18:57:00 GMT
Date: Fri, 02 Aug 2024 17:37:46 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
1f657e78cc6cd633543a7c714446bc96
6c9ce1ef30668bf4e402d553e8c16b7d52871b7f
2a52e00c2d138753be73d181f49067827ab153e56cf68d50c690046b1a1873a7

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "2A52E00C2D138753BE73D181F49067827AB153E56CF68D50C690046B1A1873A7"
Last-Modified: Thu, 01 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4808
Expires: Fri, 02 Aug 2024 18:57:54 GMT
Date: Fri, 02 Aug 2024 17:37:46 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
d8c8330168da4a9d503ddb04a4df6f87
08502623c14dd495434507146b62dd062e06c609
f37f00b9679113ac2b3b7d43e4d3afa8f3b1861b9f0b31744641771257b5714f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F37F00B9679113AC2B3B7D43E4D3AFA8F3B1861B9F0B31744641771257B5714F"
Last-Modified: Thu, 01 Aug 2024 06:26:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8068
Expires: Fri, 02 Aug 2024 19:52:15 GMT
Date: Fri, 02 Aug 2024 17:37:47 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
06f86a556a3bc0d04f36267a3081f07f
3ca01a6761c66a9434a2ee060e2cb4b685b0b9f8
e9d373f8bcb454c3fc0b4e4d3768e5104c7f4cad03145468f9d2c0ff89c08143

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E9D373F8BCB454C3FC0B4E4D3768E5104C7F4CAD03145468F9D2C0FF89C08143"
Last-Modified: Thu, 01 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11966
Expires: Fri, 02 Aug 2024 20:57:13 GMT
Date: Fri, 02 Aug 2024 17:37:47 GMT
Connection: keep-alive

GET romsfun.com/wp-content/uploads/2023/08/LOGO.png

172.67.75.236

200 OK

1.7 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2023/08/LOGO.png
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.7 kB (1694 bytes)
Hash
3a7fbc0e71b04ebdc7d22547eb5287ff
d7b4c81efe0f82a09d5407b91f3ad8a47ff46be3
5ae41cf3d75e4cf8eaf59c856e80f2d65ac0cbc0f3bbf1534ce865dce64309d3

HTTP Headers

GET /wp-content/uploads/2023/08/LOGO.png HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/webp
content-length: 1694
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=3353
content-disposition: inline; filename="LOGO.webp"
etag: "64e90860-d19"
expires: Thu, 22 Aug 2024 17:14:57 GMT
last-modified: Fri, 25 Aug 2023 20:00:32 GMT
pragma: public
vary: Accept
cf-cache-status: HIT
age: 865370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ls3ebKGu89LnZ6rq0QX62TE%2Fd9WIaNli4d4Vm1Wf0opxZSbLi%2FQIC5OkUDtjILGSYvUcuMfWwRSZwrq%2BYYh9KoB5Nbv4lzRB14Q0yY4Kknja%2FpyfBPMlO477wfKf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68199ef0afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/uploads/2019/04/castlevania-aria-of-sorrow-300x300.jpg

172.67.75.236

200 OK

23 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2019/04/castlevania-aria-of-sorrow-300x300.jpg
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
23 kB (22706 bytes)
Hash
770ced612246e5946ff946d0dab0879c
0b7865df0f408df223b22a4e5889ed2455092178
61802ebda6f0582600bdfd0e88511f7d703a111a8b840e08139be734a79a0d4b

HTTP Headers

GET /wp-content/uploads/2019/04/castlevania-aria-of-sorrow-300x300.jpg HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/webp
content-length: 22706
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=25257
content-disposition: inline; filename="castlevania-aria-of-sorrow-300x300.webp"
etag: "617dc5a4-62a9"
expires: Sat, 17 Aug 2024 22:19:47 GMT
last-modified: Sat, 30 Oct 2021 22:22:28 GMT
pragma: public
vary: Accept
cf-cache-status: HIT
age: 1279080
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VvsBAd3SChqNHCBQj9T5nrgBu2ucGZGP5nrRqT2Hbapnk3dWbDURxEGw1dqTlPUa8UHs1pin7Powdmm8dSl11VnMZdMbg%2FWAfrZeX3xODCN88k8%2F%2BlGazjhDRA1z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68199f20afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/uploads/2019/04/breath-of-fire-eu-gba-300x300.jpg

172.67.75.236

200 OK

26 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2019/04/breath-of-fire-eu-gba-300x300.jpg
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
26 kB (26482 bytes)
Hash
3f8437a68677e2ad8e2674f1e0b53141
d7b998f3bb35994b417053b56a8a3dd34fcafc34
d845d7079de9aa70e17d298f2bd29dbccd433160e970c8a94d1f8ce2e15049ae

HTTP Headers

GET /wp-content/uploads/2019/04/breath-of-fire-eu-gba-300x300.jpg HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/webp
content-length: 26482
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=27228
content-disposition: inline; filename="breath-of-fire-eu-gba-300x300.webp"
etag: "617dc5b3-6a5c"
expires: Sun, 04 Aug 2024 11:12:35 GMT
last-modified: Sat, 30 Oct 2021 22:22:43 GMT
pragma: public
vary: Accept
cf-cache-status: HIT
age: 2442312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uxZFtSsz8NHLBNn6TaJ4Wqf3GYEcqDMTUsxJpt%2FC57tscXnfDX2b%2B3WZnMUBE0kO6Hocoj232JIJFGdf98QGsEKKhTHnJ8NFkxB0X%2BcyXVM6VAN75V8skaxIKgFP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68199f10afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/uploads/2019/04/Crash-Bandicoot-Fusion-300x300.jpg

172.67.75.236

200 OK

32 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2019/04/Crash-Bandicoot-Fusion-300x300.jpg
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3
Size
32 kB (31603 bytes)
Hash
5ffcd0108e7b82e247df6b18ab4122c5
755a0121acf98928df4b07435c6c5a89854bf20c
bd45114d51ccf49079c7d662bb1a4cf7812d82d0067103f3e542271d1e6960d5

HTTP Headers

GET /wp-content/uploads/2019/04/Crash-Bandicoot-Fusion-300x300.jpg HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/jpeg
content-length: 31603
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: origSize=31611, status=webp_bigger
etag: "617dc527-7b7b"
expires: Sat, 17 Aug 2024 10:37:20 GMT
last-modified: Sat, 30 Oct 2021 22:20:23 GMT
pragma: public
cf-cache-status: HIT
age: 1321227
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q02YcMVIEsjgdJiB7yTXFYLRgKgKR0mFmbQOUwXMXK%2Bl26R3yngmOluMJgOBaE3vUkZtAkdzuJpGWVb%2Fy6D7BNFJBk8B1ka7x%2BuyvMwZDDuKPLL4kc5In3g9G%2BCB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd68199f50afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/uploads/2019/04/DoomUSAEurope-image-300x298.jpg

172.67.75.236

200 OK

23 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2019/04/DoomUSAEurope-image-300x298.jpg
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x298, components 3
Size
23 kB (23427 bytes)
Hash
5eb52865b9be21c9bff15166a66740c8
f745fa809fa40bf7ccd00fa3e6f832b56aaea4d0
7fcc9372fb84fbac85b1d0fac7b79c914c61da81fae11c9fc711523834b4b4a3

HTTP Headers

GET /wp-content/uploads/2019/04/DoomUSAEurope-image-300x298.jpg HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/jpeg
content-length: 23427
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: origSize=23435, status=webp_bigger
etag: "617dc608-5b8b"
expires: Fri, 23 Aug 2024 17:24:48 GMT
last-modified: Sat, 30 Oct 2021 22:24:08 GMT
pragma: public
cf-cache-status: HIT
age: 778379
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lpBviCLJ072KxnQKuHDyE8fxe6TSClZerDpJcpzDRhye6kBic8l46UFeDDkOOrhIK%2BQnAXGTpKHqXRV%2Bvw9XPFseNM4EWabcWBaZ7Ky4v5cBRRHLyUrZhHRoWJky"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd68199f70afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/uploads/2019/05/double-dragon-advance-300x295.jpg

172.67.75.236

200 OK

26 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2019/05/double-dragon-advance-300x295.jpg
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x295, components 3
Size
26 kB (26508 bytes)
Hash
40e1109135ac6b7c99e05813e0076c5c
01babef32f6738039a64adbf62e7c85e740c63ca
621381a2b85f891e0085acff6d1931fba38d35da166c5cb9d2b032e528fed74d

HTTP Headers

GET /wp-content/uploads/2019/05/double-dragon-advance-300x295.jpg HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/jpeg
content-length: 26508
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=26765, status=webp_bigger
etag: "617dc39f-688d"
expires: Wed, 21 Aug 2024 21:59:17 GMT
last-modified: Sat, 30 Oct 2021 22:13:51 GMT
pragma: public
cf-cache-status: HIT
age: 934710
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZdzNjTnYRh5Jz%2FrstYpHb4z531ZRfOZ9l9Hp%2BCGt8jCmmY4UBzdtB25q%2B5tGbruZXPVQg%2Bd4GwZeZ7oBgYu70t4i4B4xyd1a8FMoLfuiXW3xEnqg7RjXeP%2FaYeT7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd68199fc0afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/uploads/2023/08/Dragon-Ball-Advanced-Adventure-2-300x300.jpg

172.67.75.236

200 OK

31 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2023/08/Dragon-Ball-Advanced-Adventure-2-300x300.jpg
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp
Size
31 kB (30888 bytes)
Hash
2634ec4ad3501bc7c3d5dccc1a966edf
8203042d87c63c2c86dc0544b2939b1329481ae0
325e7f3c36115b57f0f8e2d4547a2a5bbcc7e8c182323aafca2f966bcb89c56b

HTTP Headers

GET /wp-content/uploads/2023/08/Dragon-Ball-Advanced-Adventure-2-300x300.jpg HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: image/webp
content-length: 30888
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=34695
content-disposition: inline; filename="Dragon-Ball-Advanced-Adventure-2-300x300.webp"
etag: "64f060ae-8787"
expires: Wed, 21 Aug 2024 21:59:17 GMT
last-modified: Thu, 31 Aug 2023 09:43:10 GMT
pragma: public
vary: Accept
cf-cache-status: HIT
age: 934710
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ghr3QXyBJ1d4IioHsNJAhqZHSye2XiPhUae0VFzJpgDaQpfA74G%2B7HZ6miMcbW8xF6BzcTgFaO6SLZV5nWYC0m8%2BR34c2MaBw%2BF6TH0TTchuiIx81G%2FDngFyrkgH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68199ff0afe-OSL
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5b4aa8c8773fc22a42a850f8fb960321
8db3d8bd006d6a79529ad28cff1e83e1037de675
bef568999de62ed1621bdfd9298f8d43fedec2869da3a724fcfd3b64402e0a75

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Aug 2024 17:37:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET www.googletagmanager.com/gtag/js?id=UA-89527130-9

142.250.74.168

200 OK

77 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-89527130-9
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint27:BF:6E:8E:D6:51:1C:C5:B2:CF:E2:E9:0F:87:D0:F3:33:23:E7:37
ValidityTue, 30 Jul 2024 12:32:47 GMT - Tue, 22 Oct 2024 12:32:46 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
77 kB (76623 bytes)
Hash
266fe12f1aac98ea3a5d9f2e436940b9
6d41a121547c4a287abcc948f2fa2bf9f419b737
1f4544fea577f4d15b8f82c8b78f5a4c7a37600641d85f52bed5b0d1d38bca30

HTTP Headers

GET /gtag/js?id=UA-89527130-9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Aug 2024 17:37:47 GMT
expires: Fri, 02 Aug 2024 17:37:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Aug 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76623
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET dt3y1f1i1disy.cloudfront.net/?ifytd=1058666

143.204.42.202

200 OK

69 kB

URL GET HTTP/2
dt3y1f1i1disy.cloudfront.net/?ifytd=1058666
IP
143.204.42.202:443
ASN
#16509 AMAZON-02

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15945)
Size
69 kB (69363 bytes)
Hash
bf2d3b8d7fe0833ee6f5cd8d71330318
c6f136af93694253262c893836392194ea05cf28
807bf9d1d59f13aa18f441e34f7a5782a1efdfad9d40e50f2af883c54012eb4e

HTTP Headers

GET /?ifytd=1058666 HTTP/1.1
Host: dt3y1f1i1disy.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 69363
date: Fri, 02 Aug 2024 17:37:47 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ef3vPOS3MXlw_yiVnvnDT69nHKEUOsUXEmYjoyitfc0GEQ3NfFrArQ==
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5b4aa8c8773fc22a42a850f8fb960321
8db3d8bd006d6a79529ad28cff1e83e1037de675
bef568999de62ed1621bdfd9298f8d43fedec2869da3a724fcfd3b64402e0a75

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Aug 2024 17:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET romsfun.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.75.236

302 Found

0 B

URL GET HTTP/2
romsfun.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Fri, 02 Aug 2024 17:37:48 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cppy%2FmXnHQNBVVXPtUnTPqyax1iaV1DTqlRN4G6OppC2QM7HwhF1Wft4k4JWgJa2o7h5UMdopo7wO73gZIiF6UN3OH%2F9stnoYlB20S3EKe41loWyCgtn2baqkQBp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd6851cee0afe-OSL
X-Firefox-Spdy: h2

GET lyticaframeofm.com/WWlUaGQ4CzcFWzhUNk4RKwVpTVYfTGYuAC1aLVkCaABlDA0qEHoLCDYcMA4WNgcgRgo8HXFaIh4LOA9VDFgBJipoGmUJDDYRAT9RMjE5WCoDPhoxAjI8PCUlMQUGEhNtIQBdJQkxJyYqaAFlOBxpWgMRKjYuFgwPGgERAScMURIyHSpbEREHLyo5PSI9PT84KjUjIQsTKlsCBVEyOhAENhQ+PAkCMiw+JwMPBQw8A2EhFwAGEBMjMSgxJDkmIhRYAwEPYSg+OjE9BDcHBgsdPgsiIQYcOxAyMWdYIxwxFgsFHwJiJxwqDhEvIjUvOSkgHS4aCQIIRA06Bx8ROzodDx4MOg8UMwwcATo7FgA+CAJtPg4+XwdaFCMwAz4COCgCAT4PUG0qVhQTFhEUCCcABzM/ODc+Bh8BZio8DA4BWg9/AycHCilUIic1AC0YOR4PWxEG

143.204.55.10

200 OK

1.2 kB

URL GET HTTP/2
lyticaframeofm.com/WWlUaGQ4CzcFWzhUNk4RKwVpTVYfTGYuAC1aLVkCaABlDA0qEHoLCDYcMA4WNgcgRgo8HXFaIh4LOA9VDFgBJipoGmUJDDYRAT9RMjE5WCoDPhoxAjI8PCUlMQUGEhNtIQBdJQkxJyYqaAFlOBxpWgMRKjYuFgwPGgERAScMURIyHSpbEREHLyo5PSI9PT84KjUjIQsTKlsCBVEyOhAENhQ+PAkCMiw+JwMPBQw8A2EhFwAGEBMjMSgxJDkmIhRYAwEPYSg+OjE9BDcHBgsdPgsiIQYcOxAyMWdYIxwxFgsFHwJiJxwqDhEvIjUvOSkgHS4aCQIIRA06Bx8ROzodDx4MOg8UMwwcATo7FgA+CAJtPg4+XwdaFCMwAz4COCgCAT4PUG0qVhQTFhEUCCcABzM/ODc+Bh8BZio8DA4BWg9/AycHCilUIic1AC0YOR4PWxEG
IP
143.204.55.10:443
ASN
#16509 AMAZON-02

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerAmazon
Subjectlyticaframeofm.com
FingerprintDA:2D:12:CF:97:E4:24:6C:6A:37:B2:4F:49:22:D1:8A:E8:71:0A:81
ValidityTue, 18 Jun 2024 00:00:00 GMT - Thu, 17 Jul 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3041), with no line terminators
Size
1.2 kB (1190 bytes)
Hash
b5dbbc67c25b15e3102b08a019d66732
bce3e510a5d75c7262e7f4bc104ad0149f0e4af5
084e302a700ac675be8f61cb13512b2a87703b55d5a30d5bf8f6e4b4009a20d1

HTTP Headers

GET /WWlUaGQ4CzcFWzhUNk4RKwVpTVYfTGYuAC1aLVkCaABlDA0qEHoLCDYcMA4WNgcgRgo8HXFaIh4LOA9VDFgBJipoGmUJDDYRAT9RMjE5WCoDPhoxAjI8PCUlMQUGEhNtIQBdJQkxJyYqaAFlOBxpWgMRKjYuFgwPGgERAScMURIyHSpbEREHLyo5PSI9PT84KjUjIQsTKlsCBVEyOhAENhQ+PAkCMiw+JwMPBQw8A2EhFwAGEBMjMSgxJDkmIhRYAwEPYSg+OjE9BDcHBgsdPgsiIQYcOxAyMWdYIxwxFgsFHwJiJxwqDhEvIjUvOSkgHS4aCQIIRA06Bx8ROzodDx4MOg8UMwwcATo7FgA+CAJtPg4+XwdaFCMwAz4COCgCAT4PUG0qVhQTFhEUCCcABzM/ODc+Bh8BZio8DA4BWg9/AycHCilUIic1AC0YOR4PWxEG HTTP/1.1
Host: lyticaframeofm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1190
date: Fri, 02 Aug 2024 17:37:48 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3Jq6Tj3OqVV9zAWPQbDnEVz2Ez04srMiIdV4Y0kosir14-Tq7z4aWw==
X-Firefox-Spdy: h2

GET opreseynatcreativei.com/cGgwd3hfV1MERRMGfgQvJiJ0JEkAGVEcPjg/XQ8fIVh6ExkdORYDERRVAUdNSF4GQV4AAVRKSVYbRBYMBRsNRl4ZBlYYRVYeDUZWQ1weRE5eXBYCRUFORAcZF1UBUQgEHFxKSUdaAkFKQFoGT0pCXQ

172.67.202.57

204 No Content

0 B

URL GET HTTP/2
opreseynatcreativei.com/cGgwd3hfV1MERRMGfgQvJiJ0JEkAGVEcPjg/XQ8fIVh6ExkdORYDERRVAUdNSF4GQV4AAVRKSVYbRBYMBRsNRl4ZBlYYRVYeDUZWQ1weRE5eXBYCRUFORAcZF1UBUQgEHFxKSUdaAkFKQFoGT0pCXQ
IP
172.67.202.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectopreseynatcreativei.com
Fingerprint0E:C2:9F:10:EB:19:40:6D:3E:CB:22:89:DB:66:FD:22:B1:6E:C9:68
ValiditySun, 28 Jul 2024 15:03:59 GMT - Sat, 26 Oct 2024 15:03:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cGgwd3hfV1MERRMGfgQvJiJ0JEkAGVEcPjg/XQ8fIVh6ExkdORYDERRVAUdNSF4GQV4AAVRKSVYbRBYMBRsNRl4ZBlYYRVYeDUZWQ1weRE5eXBYCRUFORAcZF1UBUQgEHFxKSUdaAkFKQFoGT0pCXQ HTTP/1.1
Host: opreseynatcreativei.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Fri, 02 Aug 2024 17:37:48 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ciFW6XN%2BBdWRi7NCrC478waHFpuGH890qe%2BZQbovUiZSEKfM0OO8SdLDTsW30NlapDK8QnJckwgEDH9TF3JMXVhbq5DRa83ZSIrcXQJw60z%2BZh8Zpnro%2FBeOgGSlrgmex0CG4EHRgR1I4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd684ad7e56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET opreseynatcreativei.com/OFgzNnAXZ1BFTW0AcWYRYDRbZENQO2AEJn49ZVoxWQ1fE0J6AANdVkwxVwtBCG0LD0AKfkNfFAVpCxADTDlHQwMFaRVfHl43DhAGBWkdBl4KdgYQBQVpFUIAWT8OB1ZILEdaTQlvAQRGCmgBAEgKbAE

172.67.202.57

204 No Content

0 B

URL GET HTTP/2
opreseynatcreativei.com/OFgzNnAXZ1BFTW0AcWYRYDRbZENQO2AEJn49ZVoxWQ1fE0J6AANdVkwxVwtBCG0LD0AKfkNfFAVpCxADTDlHQwMFaRVfHl43DhAGBWkdBl4KdgYQBQVpFUIAWT8OB1ZILEdaTQlvAQRGCmgBAEgKbAE
IP
172.67.202.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectopreseynatcreativei.com
Fingerprint0E:C2:9F:10:EB:19:40:6D:3E:CB:22:89:DB:66:FD:22:B1:6E:C9:68
ValiditySun, 28 Jul 2024 15:03:59 GMT - Sat, 26 Oct 2024 15:03:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /OFgzNnAXZ1BFTW0AcWYRYDRbZENQO2AEJn49ZVoxWQ1fE0J6AANdVkwxVwtBCG0LD0AKfkNfFAVpCxADTDlHQwMFaRVfHl43DhAGBWkdBl4KdgYQBQVpFUIAWT8OB1ZILEdaTQlvAQRGCmgBAEgKbAE HTTP/1.1
Host: opreseynatcreativei.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Fri, 02 Aug 2024 17:37:48 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yZl7a4%2FfhzjOmvXK42Kjf3u3tVyyl7MsyatyUBKTVKQ5k41zzW53fAqSQVNfxqATTtxGJrL7%2FGvERIWGMvfaItkxewUOkcmngHRAa3caKXzEq2SIgIwKZtehkvHOfSQbryFztoklr3kU2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd684bd8c56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET getrunkhomuto.info/aEMyUUoJIVE8dQl+UHc/Gi8PdHguZgAXLhxwS2AsWSoDNSMbOhwyJgc2Vjc4By1GfyQNNxdjDF8UajkSPwZrZwwSKBdjCA0QAgMHWhUBMB9ZNWsJEBobWzI7ITkLFwA8IEAaIlwqfDwtXgVIIW9aAX4SJTAMYTl9LBFZOQMqDn0CGww1cQMADQpLGCMyBlopBCsgARl4GGYAEwMSIFAwJwQkfRM9WRlqG29aBXYFEAQISAgJOCljIAUucl4ZJCZwYRkAGSdcFAsyLl47KwIzSzAkMXJ3BSEcE1wpATI6cHR4KiFLNSIKBHwgBQYJQzUjGwxRPDkgGndkfwkEC2kZBW5RdHguCkg+HicLA2ECWDNcMBIyM2EGLhgaACUDJRd3YRoqdwYYDSYxYjx/HSJ1PS8hLmRibAIwXT86VRdTJzI9FAMBfScI

143.204.55.8

200 OK

1.2 kB

URL GET HTTP/2
getrunkhomuto.info/aEMyUUoJIVE8dQl+UHc/Gi8PdHguZgAXLhxwS2AsWSoDNSMbOhwyJgc2Vjc4By1GfyQNNxdjDF8UajkSPwZrZwwSKBdjCA0QAgMHWhUBMB9ZNWsJEBobWzI7ITkLFwA8IEAaIlwqfDwtXgVIIW9aAX4SJTAMYTl9LBFZOQMqDn0CGww1cQMADQpLGCMyBlopBCsgARl4GGYAEwMSIFAwJwQkfRM9WRlqG29aBXYFEAQISAgJOCljIAUucl4ZJCZwYRkAGSdcFAsyLl47KwIzSzAkMXJ3BSEcE1wpATI6cHR4KiFLNSIKBHwgBQYJQzUjGwxRPDkgGndkfwkEC2kZBW5RdHguCkg+HicLA2ECWDNcMBIyM2EGLhgaACUDJRd3YRoqdwYYDSYxYjx/HSJ1PS8hLmRibAIwXT86VRdTJzI9FAMBfScI
IP
143.204.55.8:443
ASN
#16509 AMAZON-02

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerAmazon
Subjectgetrunkhomuto.info
Fingerprint07:6C:15:28:EC:56:65:DE:8C:55:1C:BF:A5:DB:7B:96:8F:38:56:0E
ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3017), with no line terminators
Size
1.2 kB (1173 bytes)
Hash
8a7e787d2f82f9a8bb4e3d2c655228bf
ba52f5ac3fb8a31075416112327a3f047c33656e
762a9e6061e431c1a2c4f04aa98a73f3f30faff9e2d8dd557f5eb9333c14b166

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /aEMyUUoJIVE8dQl+UHc/Gi8PdHguZgAXLhxwS2AsWSoDNSMbOhwyJgc2Vjc4By1GfyQNNxdjDF8UajkSPwZrZwwSKBdjCA0QAgMHWhUBMB9ZNWsJEBobWzI7ITkLFwA8IEAaIlwqfDwtXgVIIW9aAX4SJTAMYTl9LBFZOQMqDn0CGww1cQMADQpLGCMyBlopBCsgARl4GGYAEwMSIFAwJwQkfRM9WRlqG29aBXYFEAQISAgJOCljIAUucl4ZJCZwYRkAGSdcFAsyLl47KwIzSzAkMXJ3BSEcE1wpATI6cHR4KiFLNSIKBHwgBQYJQzUjGwxRPDkgGndkfwkEC2kZBW5RdHguCkg+HicLA2ECWDNcMBIyM2EGLhgaACUDJRd3YRoqdwYYDSYxYjx/HSJ1PS8hLmRibAIwXT86VRdTJzI9FAMBfScI HTTP/1.1
Host: getrunkhomuto.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1173
date: Fri, 02 Aug 2024 17:37:48 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5Ojy4ZmZXXZaUCV8UODYuB4WXyZH15lD7Dhyjuo53auA8RDNkbWDaA==
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-CXR95QZ9B0&l=dataLayer&cx=c

142.250.74.168

200 OK

92 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-CXR95QZ9B0&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint27:BF:6E:8E:D6:51:1C:C5:B2:CF:E2:E9:0F:87:D0:F3:33:23:E7:37
ValidityTue, 30 Jul 2024 12:32:47 GMT - Tue, 22 Oct 2024 12:32:46 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
92 kB (92011 bytes)
Hash
c9ed2c3bc7a30019a457dc0217446751
5a0e33cd5ba75a08f485b5c4eb4f09c67f7689b7
a2a9ed04fa4e555f6040f6ab61e66f476b5a64df06bd54476631fc2e8224e3ac

HTTP Headers

GET /gtag/js?id=G-CXR95QZ9B0&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Aug 2024 17:37:48 GMT
expires: Fri, 02 Aug 2024 17:37:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92011
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET romsfun.com/wp-content/uploads/2021/04/rom.png

172.67.75.236

200 OK

2.2 kB

URL GET HTTP/2
romsfun.com/wp-content/uploads/2021/04/rom.png
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
2.2 kB (2190 bytes)
Hash
1b5e7bd99bf310a9d5575beb97666a3c
73b50e331febba5ff84766c56fa588f84db4e4b0
bb96f443457bf44cd8eee169af1332c830091ed89861e4365895181734eee316

HTTP Headers

GET /wp-content/uploads/2021/04/rom.png HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:48 GMT
content-type: image/webp
content-length: 2190
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2591
content-disposition: inline; filename="rom.webp"
etag: "617d7bd1-a1f"
expires: Sun, 01 Sep 2024 01:19:06 GMT
last-modified: Sat, 30 Oct 2021 17:07:29 GMT
pragma: public
vary: Accept
cf-cache-status: HIT
age: 58722
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u9sBHeF2Z9pOI7pKITB4fyCrFJIqds2bmUV3Fn%2B6r18XECB3uv36R6BerpjYWQLIlhoeGNsD0rZZEpVpGNoVlaZg6SdSmLLCNAv9K8HoPZsvN5yjFSC73nxrUtws"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd6868e670afe-OSL
X-Firefox-Spdy: h2

POST romsfun.com/cdn-cgi/challenge-platform/h/b/jsd/r/8acfd67f5ff90afe

172.67.75.236

200 OK

0 B

URL POST HTTP/2
romsfun.com/cdn-cgi/challenge-platform/h/b/jsd/r/8acfd67f5ff90afe
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/8acfd67f5ff90afe HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12202
Origin: https://romsfun.com
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:48 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.romsfun.com; HttpOnly; Secure; SameSite=None
cf_clearance=78klk6dYI0uwJBc39UK1HMjaX.cxFnXP31VrKkElBNM-1722620268-1.0.1.1-3puCTFlk_vHoYZdp_XZGqfC15Hcxco5ccstI9.ud5Th4yxt6qynz1NPtP5w1.VUMmnijCTDRAUK7VaHHUqv26w; Path=/; Expires=Sat, 02-Aug-25 17:37:48 GMT; Domain=.romsfun.com; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=daSojaunAMyVOj3F3lYcCotEZZ%2FmHzW0CZS99cnjRSHZOTeGF6eVMnvHr%2FDkWEkegjNwgPzGl8baTiBvxfeMTAZPtL7Finra%2B6Us%2B1dPnnVq71tXhTYGp4Z5ISgq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd6869e710afe-OSL
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a1de7f987e17e16c3b0324da87d791c5
d81cd9ad2d865d82d779a0b588e3f126ab3c8482
dde5731f0107ac3bfc6b345819f145d2c556b0ef60b24d18671f8a73c51d959f

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Aug 2024 17:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a1de7f987e17e16c3b0324da87d791c5
d81cd9ad2d865d82d779a0b588e3f126ab3c8482
dde5731f0107ac3bfc6b345819f145d2c556b0ef60b24d18671f8a73c51d959f

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Aug 2024 17:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

64.233.161.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintCF:39:12:AA:9B:5C:4C:3E:5A:7A:3D:A5:4F:3A:36:FF:78:D9:4B:BD
ValidityTue, 30 Jul 2024 12:50:16 GMT - Tue, 22 Oct 2024 12:50:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:xwmrj5A92eH_ze0iea4sGBWs3Ze8SQ:91MsyLlfqPD_-1ML; Expires=Sun, 02-Aug-2026 17:37:48 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Aug 2024 17:37:48 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdF4I758Ew0fa-ko41IM7_2fup6f_VUheDdeQODvlqu-dxQOkunG05BK7XeKGFgAGdIUxm1vRqu2TA
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-pSUM8h7PsN--cihrNvqnRA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dt3y1f1i1disy.cloudfront.net/Gblg1U1UNN1s1ahoxUW5kXm0NZWNYfkUhMAhlRzw4HT5APXsNN1h1Px03WyNoGBdkChEiCU8FZys2EycvCmUFdTkPNlJucws2Vm5kSDlRMWhafkEjOgVlXTg8HChbIzwYLhMmNFM1Wik8AjRUdmcobRtjcFxoHStkX30GEXBcaFk6OxsgEGFlFmADDGNafQ-YRcFxoRyVwXRkMZXtecRBhZQk9Vjg6S2pzYWVfaAViZV99B2MzBypQNToWfQcVbFh2BXUgU2k

143.204.42.202

595 B

URL
dt3y1f1i1disy.cloudfront.net/Gblg1U1UNN1s1ahoxUW5kXm0NZWNYfkUhMAhlRzw4HT5APXsNN1h1Px03WyNoGBdkChEiCU8FZys2EycvCmUFdTkPNlJucws2Vm5kSDlRMWhafkEjOgVlXTg8HChbIzwYLhMmNFM1Wik8AjRUdmcobRtjcFxoHStkX30GEXBcaFk6OxsgEGFlFmADDGNafQ-YRcFxoRyVwXRkMZXtecRBhZQk9Vjg6S2pzYWVfaAViZV99B2MzBypQNToWfQcVbFh2BXUgU2k
IP
143.204.42.202:0
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (852), with no line terminators
Size
595 B (595 bytes)
Hash
a9584b427ce0325d6e5501783ea53cee
a07fd3542fa70d18637b655511466d1ec1713161
a7f953b24e44b0c0ae4e20609e81a647d496ac7d2f124dc6ebc0bc871581ea5d

HTTP Headers

GET /Gblg1U1UNN1s1ahoxUW5kXm0NZWNYfkUhMAhlRzw4HT5APXsNN1h1Px03WyNoGBdkChEiCU8FZys2EycvCmUFdTkPNlJucws2Vm5kSDlRMWhafkEjOgVlXTg8HChbIzwYLhMmNFM1Wik8AjRUdmcobRtjcFxoHStkX30GEXBcaFk6OxsgEGFlFmADDGNafQ-YRcFxoRyVwXRkMZXtecRBhZQk9Vjg6S2pzYWVfaAViZV99B2MzBypQNToWfQcVbFh2BXUgU2k HTTP/1.1
Host: dt3y1f1i1disy.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lyticaframeofm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 595
date: Fri, 02 Aug 2024 17:37:48 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5K4LPOlIY9cZpK730Cp9oM1zCThnLJXmoq-OtAKKbG3cJOi3qM-C2A==
X-Firefox-Spdy: h2

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

64.233.161.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintCF:39:12:AA:9B:5C:4C:3E:5A:7A:3D:A5:4F:3A:36:FF:78:D9:4B:BD
ValidityTue, 30 Jul 2024 12:50:16 GMT - Tue, 22 Oct 2024 12:50:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:dK3Q0IzWFZu66_l7c6y4_uli0ADQkQ:VWFbfMl547q06Ylx; Expires=Sun, 02-Aug-2026 17:37:48 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Aug 2024 17:37:48 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdF4I77qZKMxtppM6wRBr4XCwF-0_Xr3kQPuzoeat9C5XotH1cr0WU7wdOHfsY2vzGB_Y7QQ7cV0fQ
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-UdGWwypuJvAEZPCC6d07bg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dt3y1f1i1disy.cloudfront.net/7WXhXWEY6Fzk+eS0RM2V3aU1vYXZrXicqIz9FJTcrKh4iNmg6Fzp+LCoXOSh7DRkhIBMOSQdvCRJeIyIiZEhxNCc3H2p+IzcbamlgOBw1ZXJ/DTZlKzYCPjQqOF1lHnN3SHJqdnEAZmljajpyanY1ETktPnxKZyB+bydhbGNqOnJqdisOcmsHYE55aG98Sm-c/IzoTOH10H0pnaXZpSWdpY2tIMTE0PB44IGNrPm5uaGleImV3

143.204.42.202

197 B

URL
dt3y1f1i1disy.cloudfront.net/7WXhXWEY6Fzk+eS0RM2V3aU1vYXZrXicqIz9FJTcrKh4iNmg6Fzp+LCoXOSh7DRkhIBMOSQdvCRJeIyIiZEhxNCc3H2p+IzcbamlgOBw1ZXJ/DTZlKzYCPjQqOF1lHnN3SHJqdnEAZmljajpyanY1ETktPnxKZyB+bydhbGNqOnJqdisOcmsHYE55aG98Sm-c/IzoTOH10H0pnaXZpSWdpY2tIMTE0PB44IGNrPm5uaGleImV3
IP
143.204.42.202:0
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
197 B (197 bytes)
Hash
81b4fb96a1bba57f4a96913c8e450ce1
955c8edf7b4aa64dcddc40363352b4928e10a863
ec34119d17d5cbef3ab78c9ed59f6f28c05e13c211b2192c246486d97aa2c62d

HTTP Headers

GET /7WXhXWEY6Fzk+eS0RM2V3aU1vYXZrXicqIz9FJTcrKh4iNmg6Fzp+LCoXOSh7DRkhIBMOSQdvCRJeIyIiZEhxNCc3H2p+IzcbamlgOBw1ZXJ/DTZlKzYCPjQqOF1lHnN3SHJqdnEAZmljajpyanY1ETktPnxKZyB+bydhbGNqOnJqdisOcmsHYE55aG98Sm-c/IzoTOH10H0pnaXZpSWdpY2tIMTE0PB44IGNrPm5uaGleImV3 HTTP/1.1
Host: dt3y1f1i1disy.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getrunkhomuto.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 197
date: Fri, 02 Aug 2024 17:37:48 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: POFqdKADSJ4ffD7hPSUSMGhxXQg7efU9MqKsRcEvO-IEY1R-uTj3GA==
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
44f474e2945b199186aba87c686257a3
867e87463b28f808df1512b911e18775fd4e751a
1488ca60f3e1001319b2793561d480ffae73e3389c618a91725fc1272cbbceff

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Aug 2024 17:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

POST romsfun.com/wp-admin/admin-ajax.php

172.67.75.236

200 OK

1.0 kB

URL POST HTTP/2
romsfun.com/wp-admin/admin-ajax.php
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
ASCII text, with very long lines (547)
Size
1.0 kB (1040 bytes)
Hash
e8199b4caa6ce575846c1fe2da0653f8
1a94bc9c59e9b936fd7d18c49cae06d588e0339f
d2b2595e8bc857b41f7f67a6bbcdf318f81d2f0ff11b1e5d5a22154835e64985

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://romsfun.com
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Cookie: cf_clearance=78klk6dYI0uwJBc39UK1HMjaX.cxFnXP31VrKkElBNM-1722620268-1.0.1.1-3puCTFlk_vHoYZdp_XZGqfC15Hcxco5ccstI9.ud5Th4yxt6qynz1NPtP5w1.VUMmnijCTDRAUK7VaHHUqv26w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://romsfun.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff, nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o5MNjHv0IbyrLHxZpBpNi3Smgb67Vbm8Zo7qIFQu5QRNQ6pgAS5MzGpsWrEQUhvKlOYhiKYcVDwY1Fhq%2FustGuVa%2FzZIrtK3zrcIqnFw5adU1yqWrXDyay6mByDX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd6870eb90afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdF4I758Ew0fa-ko41IM7_2fup6f_VUheDdeQODvlqu-dxQOkunG05BK7XeKGFgAGdIUxm1vRqu2TA

64.233.161.84

302 Found

420 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdF4I758Ew0fa-ko41IM7_2fup6f_VUheDdeQODvlqu-dxQOkunG05BK7XeKGFgAGdIUxm1vRqu2TA
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintCF:39:12:AA:9B:5C:4C:3E:5A:7A:3D:A5:4F:3A:36:FF:78:D9:4B:BD
ValidityTue, 30 Jul 2024 12:50:16 GMT - Tue, 22 Oct 2024 12:50:15 GMT

File type
HTML document, ASCII text, with very long lines (391)
Size
420 B (420 bytes)
Hash
cd726cdcfbd0e969dd70adde7d1f12ed
6751ae8fd7e4b1bde55c5ea1775afe447fa8c84b
80c7710a129a2211c2c74a1a8a4a89221a344d2297d6d2e709f6ea8efdea738e

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdF4I758Ew0fa-ko41IM7_2fup6f_VUheDdeQODvlqu-dxQOkunG05BK7XeKGFgAGdIUxm1vRqu2TA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://romsfun.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:Rj9EeZ5sOZHNA1ag35ztQ-zzmPU_xg:F7eeO0hMgbMAeoAp;Path=/;Expires=Sun, 02-Aug-2026 17:37:48 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Aug 2024 17:37:48 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdF4I77APgDb_rMTvLDdy-y3PJF0F459JD3CFRNMHchpoie-2it7Z__5y39pSHuUaYlV61ikUykyWA&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1271076150%3A1722620268817070&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-jF-Tc-Ugv8uVGmixyshEPA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 420
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET opreseynatcreativei.com/popunder.gif

172.67.202.57

58 B

URL GET
opreseynatcreativei.com/popunder.gif
IP
172.67.202.57:0
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectopreseynatcreativei.com
Fingerprint0E:C2:9F:10:EB:19:40:6D:3E:CB:22:89:DB:66:FD:22:B1:6E:C9:68
ValiditySun, 28 Jul 2024 15:03:59 GMT - Sat, 26 Oct 2024 15:03:58 GMT

File type
GIF image data, version 89a, 1 x 1
Size
58 B (58 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /popunder.gif HTTP/1.1
Host: opreseynatcreativei.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 02 Aug 2024 17:37:49 GMT
content-type: image/gif
content-length: 58
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
content-encoding: gzip
cf-cache-status: HIT
age: 268004
last-modified: Tue, 30 Jul 2024 15:11:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vi8koMdajAly9O8NIRETiMH29Bm0VP3KX391J5Ris92Q48z7fI8w%2Bd%2BNqk%2FrbTBqTFI5DxT9WaD%2FGESmd9l4ewpeQALtmy3C1vZan7MOvg%2BXCV5fnnZopGYLrv7IsdFJ%2FlJCruLQs5qskQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd68ac88db523-OSL
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
086417994a199f2bbee25bd5c76ce9d7
6de33407c60c52a9ed18403c3d0edebefec7c48a
0998db04ec6e07ad3a0ac6fb2410cd5d1c9ab6ea0b036c89c79f51f024e3a1f8

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0998DB04EC6E07AD3A0AC6FB2410CD5D1C9AB6EA0B036C89C79F51F024E3A1F8"
Last-Modified: Thu, 01 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9557
Expires: Fri, 02 Aug 2024 20:17:06 GMT
Date: Fri, 02 Aug 2024 17:37:49 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
086417994a199f2bbee25bd5c76ce9d7
6de33407c60c52a9ed18403c3d0edebefec7c48a
0998db04ec6e07ad3a0ac6fb2410cd5d1c9ab6ea0b036c89c79f51f024e3a1f8

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0998DB04EC6E07AD3A0AC6FB2410CD5D1C9AB6EA0B036C89C79F51F024E3A1F8"
Last-Modified: Thu, 01 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9557
Expires: Fri, 02 Aug 2024 20:17:06 GMT
Date: Fri, 02 Aug 2024 17:37:49 GMT
Connection: keep-alive

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdF4I74eu--Nu1n8KR9I6lumRGtYwproE4qZzV4Shydf9NskB78Y5Xc6fIpafMgC2zan1h6Sjtu8mg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1173979356%3A1722620268818024&ddm=0

64.233.161.84

403 Forbidden

9.2 kB

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdF4I74eu--Nu1n8KR9I6lumRGtYwproE4qZzV4Shydf9NskB78Y5Xc6fIpafMgC2zan1h6Sjtu8mg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1173979356%3A1722620268818024&ddm=0
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintA9:52:08:E0:FC:37:B4:6B:5F:CF:C5:AB:C4:10:C7:D6:00:4D:DC:69
ValidityTue, 30 Jul 2024 12:32:53 GMT - Tue, 22 Oct 2024 12:32:52 GMT

File type
gzip compressed data, max compression
Size
9.2 kB (9239 bytes)
Hash
c80002ee0acf36806287aaa313bc8ede
e6482f68916d92843d5ee519a2f62f9b8af83142
69c643f7f28b06ee1694c9ce04c64627fcea467d044136fe4618ddd86146a85f

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdF4I74eu--Nu1n8KR9I6lumRGtYwproE4qZzV4Shydf9NskB78Y5Xc6fIpafMgC2zan1h6Sjtu8mg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1173979356%3A1722620268818024&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://romsfun.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Aug 2024 17:37:48 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy: script-src 'nonce-exGB_rrN92SLsRs5NWjPkQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/main_light_binary.js https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/main_light_binary.js https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.NL5skqXUYHk.es5.O/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET romsfun.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?

172.67.75.236

200 OK

17 kB

URL GET HTTP/2
romsfun.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7908), with no line terminators
Size
17 kB (16890 bytes)
Hash
4c930b034eb03c01ad96abf6616056cb
a4da4e435ac9a8030173552492572733ed57b4c6
d6003be8ead7aa4c30bf397eefa364fb56a169cc84c6d91e7d08b0f249a883d5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js? HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:48 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W7M%2BT7ra1WLMpGpiUZkjhtS6ylWRQVcogjXmY18I0SExHNlxF18LzZi6iSdpz7pf0CwO5PIF%2BlhjqxE5zBvu9DgghI66HArsS0MpNAEsqjffcTxpG8XPHuqN4gS6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd6852cfa0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/themes/romsfun/js/bootstrap.min.js?ver=1.5

172.67.75.236

200 OK

166 kB

URL GET HTTP/2
romsfun.com/wp-content/themes/romsfun/js/bootstrap.min.js?ver=1.5
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type

Size
166 kB (166355 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/romsfun/js/bootstrap.min.js?ver=1.5 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: application/javascript
last-modified: Fri, 17 Nov 2023 06:56:04 GMT
vary: Accept-Encoding
etag: W/"65570e84-289d3"
expires: Sun, 04 Aug 2024 09:05:12 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 2449955
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tLLt0ntNAEe7VbNW2SWzUQlS57lmT%2FQrRc7sv9rU%2Fc9zcikcGjPTYgMmU%2FnE9owVoIryqf0o%2Fv2fe%2FGduTmlBavkwkjwrnz70iWsVlfsWxCTj8BRu24G6fNGuNyP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd681aa030afe-OSL
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/themes/romsfun/css/bootstrap.min.css?ver=1.5

172.67.75.236

200 OK

169 kB

URL GET HTTP/2
romsfun.com/wp-content/themes/romsfun/css/bootstrap.min.css?ver=1.5
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
ASCII text, with very long lines (65320)
Size
169 kB (169277 bytes)
Hash
f37a5fc394c57adb0d496fafa36c853a
b5d853a78f414638b61e6cbb3ff213664d4560e1
c1af6f48ed850aaf28e93595d93ad9a1df6a8ca49b312b949295acd356a87c42

HTTP Headers

GET /wp-content/themes/romsfun/css/bootstrap.min.css?ver=1.5 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: text/css
last-modified: Fri, 17 Nov 2023 06:56:04 GMT
vary: Accept-Encoding
etag: W/"65570e84-2953d"
expires: Sun, 04 Aug 2024 09:05:22 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 2449945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JPT1CjNm011PwA7L7wR%2BmIFQ0odApmwqHQlt7se7r8YjiM5Zo3aTzTXtGl6T9nlkh9g%2BMu4Vp85Ya17bfsoe8ARmTK2zh%2Bj5wXh14182lW4bpCRlkPSW5LuXfrG%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68189e40afe-OSL
X-Firefox-Spdy: h2

GET pogothere.xyz/asd100.bin

188.114.96.1

200 OK

102 kB

URL GET HTTP/2
pogothere.xyz/asd100.bin
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectpogothere.xyz
Fingerprint07:B6:9C:F9:CF:D9:C8:A6:57:9C:E3:13:F4:CD:43:4A:94:CE:06:6A
ValidityTue, 23 Jul 2024 05:27:01 GMT - Mon, 21 Oct 2024 05:27:00 GMT

File type
data
Size
102 kB (102400 bytes)
Hash
4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://romsfun.com/
Origin: https://romsfun.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:48 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://romsfun.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 3336
last-modified: Fri, 02 Aug 2024 16:42:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DkA%2Fa399vmA569robOo5TehuG1WCHgzFnjGjObxpx3cH7HGhsuYNJ%2BkXjU5P%2BojRNW9GVDHKj8E6MHmX0%2BIMyz3SqL7d8U64rhOmphf1kCOsb46Yt0K0JrIWqH4wtNND"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8acfd68709dab4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/themes/romsfun/style.css?ver=1.5

172.67.75.236

200 OK

15 kB

URL GET HTTP/2
romsfun.com/wp-content/themes/romsfun/style.css?ver=1.5
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
ASCII text, with very long lines (14648), with no line terminators
Size
15 kB (14648 bytes)
Hash
fabdfcfad39aca293f739d3922ead311
b33c606f5f516c75eee5d0970358400c94b27524
a6c3ad3689ef34118c6bedae55c05d8f8b60ab6d8fbcb476d514d66ae7dd0f6c

HTTP Headers

GET /wp-content/themes/romsfun/style.css?ver=1.5 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: text/css
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: origSize=20512
etag: W/"65846e85-5020"
expires: Thu, 15 Aug 2024 05:08:16 GMT
last-modified: Thu, 21 Dec 2023 16:57:41 GMT
pragma: public
vary: Accept-Encoding
cf-cache-status: HIT
age: 1513771
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UTpUTmefpYywzaqHh477lFqhoeG2PA5XkTueJ8640HV6mWPx7R6TqwPaqL%2FtY5gji1KCoypVVpaGPo0JXq4peWMW4h5HClU6t17H8tm1N%2FhbT%2B8%2FdKJGUfgPVIH5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68189e70afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET romsfun.com/wp-content/themes/romsfun/js/site.js?ver=1.5

172.67.75.236

200 OK

7.3 kB

URL GET HTTP/2
romsfun.com/wp-content/themes/romsfun/js/site.js?ver=1.5
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7367), with no line terminators
Size
7.3 kB (7305 bytes)
Hash
866081e4776dc5812b790c57a1888445
7d74714ef202d116b3b984023678674c129a5b42
c4426a3208c9c140cb90a8ce126b12ea2a4c81cac09a696733ac31c958a4d7e5

HTTP Headers

GET /wp-content/themes/romsfun/js/site.js?ver=1.5 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: application/javascript
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: origSize=9269
etag: W/"65570e84-2435"
expires: Mon, 12 Aug 2024 11:20:58 GMT
last-modified: Fri, 17 Nov 2023 06:56:04 GMT
pragma: public
vary: Accept-Encoding
cf-cache-status: HIT
age: 1750609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qaFqnhnZtDgrBrrpqru6xeqRksk6uoYbhDbBex2Dp4jYxHZc5yK%2FpFE8uyQicZYFeaKdmLGyd2eBRuj5qKCkx7rvsJMSwsQxcs1BsAO5NiIzidNKicTjrwny4qhI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd681aa050afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7

172.67.75.236

200 OK

46 kB

URL User Request GET HTTP/2
romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type

Size
46 kB (46142 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /download/super-mario-advance-4-super-mario-bros-3-2-34186/7 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Thu, 01 Aug 2024 01:53:15 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d2cPKyTaHEaDK8nqXSzfsgscGi8rDJgf5Nop5kj5oBuscTt8fgff3Ly5HW7JVk2ejqUWif2Isl6cQSGAzvJr5Gjuv8zOFxjcvP33U%2BQrjr5weKLYVQLNWHIhjFGw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd67f5ff90afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET romsfun.com/wp-includes/js/jquery/jquery.js?ver=3.7.1

172.67.75.236

200 OK

141 kB

URL GET HTTP/2
romsfun.com/wp-includes/js/jquery/jquery.js?ver=3.7.1
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1210)
Size
141 kB (141386 bytes)
Hash
15d149d159697f14f22caca6467e2174
22b596ae7aad63a4118c6304b9e4587b246b80a0
508a8d88a4db7b5ef87b1d5b6fc60e56b7c5384b75b75b10e77f298ea108b510

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=3.7.1 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: application/javascript
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: origSize=285334
etag: W/"66573ef8-45a96"
expires: Mon, 12 Aug 2024 11:20:58 GMT
last-modified: Wed, 29 May 2024 14:43:04 GMT
pragma: public
vary: Accept-Encoding
cf-cache-status: HIT
age: 1750609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nc%2FcviMEhOM%2Bc%2BDAjRBRmYaMnzOkfJx%2FOJJAL825U5Z0lffBVmeif3Z5TrlW%2BHlRJGPvneLzeS3ymu0z7nTTNQfjAQoYA61naGXjblaOy5Wpg%2FzEw7d2a28raSxt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68189ea0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdF4I77APgDb_rMTvLDdy-y3PJF0F459JD3CFRNMHchpoie-2it7Z__5y39pSHuUaYlV61ikUykyWA&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1271076150%3A1722620268817070&ddm=0

64.233.161.84

403 Forbidden

0 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdF4I77APgDb_rMTvLDdy-y3PJF0F459JD3CFRNMHchpoie-2it7Z__5y39pSHuUaYlV61ikUykyWA&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1271076150%3A1722620268817070&ddm=0
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintA9:52:08:E0:FC:37:B4:6B:5F:CF:C5:AB:C4:10:C7:D6:00:4D:DC:69
ValidityTue, 30 Jul 2024 12:32:53 GMT - Tue, 22 Oct 2024 12:32:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdF4I77APgDb_rMTvLDdy-y3PJF0F459JD3CFRNMHchpoie-2it7Z__5y39pSHuUaYlV61ikUykyWA&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1271076150%3A1722620268817070&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://romsfun.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Aug 2024 17:37:48 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-Fnyc6T4KT4l_nHdwOXt7ww' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/main_light_binary.js https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/main_light_binary.js https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.NL5skqXUYHk.es5.O/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET romsfun.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.1

172.67.75.236

200 OK

19 kB

URL GET HTTP/2
romsfun.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.1
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2434)
Size
19 kB (19183 bytes)
Hash
318a8652a313c02b1d19f46b7ef1e426
afc5e61e6185848646a929a2287386a788870329
82815a7dba0c18a1092121e80005ee37b0390b8b755a6dc8ba03e199ed3a2501

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.js?ver=3.4.1 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: application/javascript
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: origSize=31978
etag: W/"66573ef8-7cea"
expires: Mon, 12 Aug 2024 11:20:58 GMT
last-modified: Wed, 29 May 2024 14:43:04 GMT
pragma: public
vary: Accept-Encoding
cf-cache-status: HIT
age: 1750609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=STPzW0PN3z3i1p7rkfBgJMy8S1F9yy1QF60KNPZhS2tchzgRc2swSMCg18DAEjLQZKvdl8%2Bz5AdQWTSwVMTcDVmsULC1H3VVrUZZgAPLC1U99UHFIWF3VXfiOPte"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68189eb0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdF4I77qZKMxtppM6wRBr4XCwF-0_Xr3kQPuzoeat9C5XotH1cr0WU7wdOHfsY2vzGB_Y7QQ7cV0fQ

64.233.161.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdF4I77qZKMxtppM6wRBr4XCwF-0_Xr3kQPuzoeat9C5XotH1cr0WU7wdOHfsY2vzGB_Y7QQ7cV0fQ
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintCF:39:12:AA:9B:5C:4C:3E:5A:7A:3D:A5:4F:3A:36:FF:78:D9:4B:BD
ValidityTue, 30 Jul 2024 12:50:16 GMT - Tue, 22 Oct 2024 12:50:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdF4I77qZKMxtppM6wRBr4XCwF-0_Xr3kQPuzoeat9C5XotH1cr0WU7wdOHfsY2vzGB_Y7QQ7cV0fQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://romsfun.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:aVqp5hxBq_eOEOELlwNOoAF4FPb8iw:XQij6Wdf2gtdlL3c;Path=/;Expires=Sun, 02-Aug-2026 17:37:48 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Aug 2024 17:37:48 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdF4I74eu--Nu1n8KR9I6lumRGtYwproE4qZzV4Shydf9NskB78Y5Xc6fIpafMgC2zan1h6Sjtu8mg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1173979356%3A1722620268818024&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-h9-uIyTK6Ldbyx-P4Yb5TQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 422
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET romsfun.com/wp-includes/css/dist/block-library/style.css?ver=6.6.1

172.67.75.236

200 OK

112 kB

URL GET HTTP/2
romsfun.com/wp-includes/css/dist/block-library/style.css?ver=6.6.1
IP
172.67.75.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectromsfun.com
Fingerprint91:BE:41:11:4E:EF:03:DC:F3:6A:0E:C0:E0:B3:0D:AE:DE:E1:41:C5
ValidityWed, 19 Jun 2024 04:43:00 GMT - Tue, 17 Sep 2024 04:42:59 GMT

File type

Size
112 kB (112230 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.css?ver=6.6.1 HTTP/1.1
Host: romsfun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:47 GMT
content-type: text/css
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-bgj: minify
cf-polished: origSize=120559
etag: W/"669ffa72-1d6ef"
expires: Thu, 22 Aug 2024 18:46:12 GMT
last-modified: Tue, 23 Jul 2024 18:46:10 GMT
pragma: public
vary: Accept-Encoding
cf-cache-status: HIT
age: 859895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5HKadasmYlM7EBzd%2FdkUPeCcBPE%2F2iQpQnh4hZL2zC1maI65HzGVjaq8IyKsleNZHM9M%2BOsQZl24RS8MWvReBhA5wLeiWKNzY7gRW5esSgDoiAicmXt667fw2EHh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68189e10afe-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET pogothere.xyz/

188.114.96.1

200 OK

26 B

URL GET HTTP/2
pogothere.xyz/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://romsfun.com/download/super-mario-advance-4-super-mario-bros-3-2-34186/7
Certificate
IssuerGoogle Trust Services
Subjectpogothere.xyz
Fingerprint07:B6:9C:F9:CF:D9:C8:A6:57:9C:E3:13:F4:CD:43:4A:94:CE:06:6A
ValidityTue, 23 Jul 2024 05:27:01 GMT - Mon, 21 Oct 2024 05:27:00 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
3b808792084b30ed17334d792550c2c6
f16ac9c164f0291d7a4022156fcb661a5d7ffe1f
73be641e222b96c7d63a9a3f733044ca7f1ad706e855fef89342798870138ea8

HTTP Headers

GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://romsfun.com/
Origin: https://romsfun.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Aug 2024 17:37:48 GMT
content-type: text/plain
set-cookie: csu=159806607342553@1@1722620268; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://romsfun.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hnY83LtKPzr9GqrcbxiIpRZtgz33AsJuSrcmV%2FLd6zAVBV41xQPDbqbqwUnXnJ6ZnSFbA1wm1Y%2B3S0ujzoi%2B2Gb8er4PjFFZyn2Rvd68%2FiTm2cSUCS8Gg7Q%2F6DVVC6p2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8acfd68709d1b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash