| evaporatepublicity.com/wsf1nit26j?adb=n&dev=r&key=7ff94e9461629d2f54ff14725863196e&kw=[hnds-076,-,onejav,com,-,free,jav,torrents]&ppgpkb=30&pst=&refer=https://onejav.com/search/HNDS-076&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=8&v=20.8.v.1 | 192.243.59.13 | | 1.6 kB |
URL evaporatepublicity.com/wsf1nit26j?adb=n&dev=r&key=7ff94e9461629d2f54ff14725863196e&kw=[hnds-076,-,onejav,com,-,free,jav,torrents]&ppgpkb=30&pst=&refer=https://onejav.com/search/HNDS-076&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=8&v=20.8.v.1 IP192.243.59.13:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (674) Hash17d3a99eb6bc4d8adcb04fb6e1f61be1 5be19aedfdfcd1a4967c693b888d05d0ea03867a 91cef2e369bb20eff24f5872dcebf9a96a02353ffb84cda59ca9a7a3e1e469f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wsf1nit26j?adb=n&dev=r&key=7ff94e9461629d2f54ff14725863196e&kw=[hnds-076,-,onejav,com,-,free,jav,torrents]&ppgpkb=30&pst=&refer=https://onejav.com/search/HNDS-076&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=8&v=20.8.v.1 HTTP/1.1
Host: evaporatepublicity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 21:44:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14217017; expires=Wed, 08 May 2024 21:44:21 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.vo7FCgEEcjj5y7tdaGZgnnifIvrtgi1GaE4MJK8z67w; expires=Tue, 07 May 2024 21:45:21 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7aa638574c46231a82f36a533a89695a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| evaporatepublicity.com/api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false | 192.243.61.227 | 302 Found | 0 B |
URL User Request GET HTTP/1.1evaporatepublicity.com/api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectevaporatepublicity.com Fingerprint40:04:FC:05:9E:F3:B6:25:C8:81:B7:24:F3:34:B2:2A:1B:F5:33:C2 ValidityMon, 29 Apr 2024 13:08:41 GMT - Sun, 28 Jul 2024 13:08:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false HTTP/1.1
Host: evaporatepublicity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evaporatepublicity.com/api/users?token=L3dzZjFuaXQyNmo_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0xNDIxNzAxNw
Cookie: u_pl=14217017; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNDIxNzAxNywiayI6IjdmZjk0ZTk0NjE2MjlkMmY1NGZmMTQ3MjU4NjMxOTZlIiwic2lkIjoiIiwiaXNpZCI6MSwiYXNpZCI6MSwiemlkIjo3MDM4OSwicGlkIjo2MDIxOCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyOCwicHQiOjQsInBrIjoid3NmMW5pdDI2aiIsImNwa3MiOnsiMjkiOiI4NmJlNzdkNjI2Y2I2NGM4ZTgwNmE5YjQ3ZjhlMGQ5ZSIsIjM0IjoiNjU4NTg1YjY0MGJlOWU2ZmU2MmE1MjVkN2Y1OWE0MDcifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL29uZWphdi5jb20vc2VhcmNoL0hORFMtMDc2IiwiYXIiOltdfX0.vo7FCgEEcjj5y7tdaGZgnnifIvrtgi1GaE4MJK8z67w; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Tue, 07 May 2024 21:44:22 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://holdhostel.space/?6622842d7176c&ag_custom_domain=14217017
Set-Cookie: iprcfed2c3e40505a49bfc372266e7721f9f=5188702; expires=Wed, 08 May 2024 21:44:22 GMT
pdhtkv=true; expires=Wed, 08 May 2024 21:44:22 GMT
uncs=1; expires=Wed, 08 May 2024 21:44:22 GMT
pdhtkv28=true; expires=Wed, 08 May 2024 21:44:22 GMT
uncs28=1; expires=Wed, 08 May 2024 21:44:22 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4e45e8bcb66ceb53ee745e3b24996fc3
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/notice.png | 172.67.163.114 | 200 OK | 36 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/notice.png IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typePNG image data, 867 x 112, 8-bit colormap, non-interlaced Hash7316951b03c50f8b19d2581f000987b4 59d77ce4daafcfe93ae80690eada76cfdf31c655 06b413f4ed23c6076f4d636d99fcb1c7226caa7e78ebac86d8975b0d4ea1eaf6
GET /lg/lg_0324/land_lg_090324_en/image/notice.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: image/png
content-length: 36380
last-modified: Tue, 12 Mar 2024 16:34:58 GMT
etag: "65f08432-8e1c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5547
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vqFJ1hEDdeELz%2BvFNlibNJcbQyFbdgkVB9fn9ZbbutfAUZglUgIk7Gj9hBFz%2FUIE2JmMc8BrnLqJ9LTjmiTADzYz6A7q9H8W3Dj8hX%2B58HWPlMdUwMTOf6zbf8BmWe%2F%2Bv6MkQtBo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88046416083a7130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/1.jpg | 172.67.163.114 | 200 OK | 76 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/1.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hashd92d5c5a1127b3bd5b6cd6999abb4b85 acf50534137d4dd43930fa080d624f7f724f0cd0 9b809dcbad6e5ad1607417163f7d8e0f2dd0a374615c2d1d8d2d91b74793822f
GET /lg/lg_0324/land_lg_090324_en/image/1.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: image/jpeg
content-length: 75575
last-modified: Tue, 12 Mar 2024 16:34:56 GMT
etag: "65f08430-12737"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5547
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LYO729va8zzi2uvnEvYcVDO4hW9cILKaOGnI4UP0%2BCqdSuaif9jTa8LQtkmcqkE9P%2FwMZU9N3kyl1PwTRMUZB%2F%2FwBPkRYWcD8rXMUnVwbWsmaOCooHrYOBsyyz4iGVMMiAvDz0u%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8804641608437130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/2.jpg | 172.67.163.114 | 200 OK | 63 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/2.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hash8f273547f5dedfd0f5e4874d085f909c fee16db489d5f992c20897686c4b300dc7813c16 6a45bc1e1d44d11f8d6e340e80c0f020a9cbe9544fe7d107b022fe8534aeda30
GET /lg/lg_0324/land_lg_090324_en/image/2.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: image/jpeg
content-length: 63244
last-modified: Tue, 12 Mar 2024 16:34:56 GMT
etag: "65f08430-f70c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2067
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yyakxjN%2FHivSnKkr8lI2dRC3DebHyexi9iraESLGU6ccuGvOVkGvZC0DupZJfH2vRM%2F8WYUVKFTCu5FjQAocu6IOM6xWjEkjJhLul7MLbgV6wCevOc93LRR880mvuHVYGFIvYR02"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8804641608467130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/3.jpg | 172.67.163.114 | 200 OK | 68 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/3.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hash520610908474b4b5e31b221344ef5a7c 5e6cdc0a25ae20c44e132f24b1e9dc88dbe1dad9 1e3f6bbed20302cba9858b78afb0bf0db80b26fd35c7ee314985489252221dad
GET /lg/lg_0324/land_lg_090324_en/image/3.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: image/jpeg
content-length: 67488
last-modified: Tue, 12 Mar 2024 16:34:57 GMT
etag: "65f08431-107a0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2025
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cr44TGZMtjld4sHXKbvaIjEgIb6tJ9mEBNlyFIcv77TacqyPWsKjnDpOtbYbWWjK56lb0F5AqY4nt2Rwsx89MA5oDJ0QOhkcKclWUZskHWva2ymQsrD0WBvYf0U5jXeeDMZCZUy8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8804641618547130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/4.jpg | 172.67.163.114 | 200 OK | 69 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/4.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hashfae1701ccce2f3ec4d4540333662d24a ad3a4b2ca3860f4ae4c84cb68bfd5f8360c644d1 d91303ba17e80a231cd3e32c4ce70231ac8617b4c9b0f754c734941976ee923e
GET /lg/lg_0324/land_lg_090324_en/image/4.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: image/jpeg
content-length: 68842
last-modified: Tue, 12 Mar 2024 16:34:57 GMT
etag: "65f08431-10cea"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2025
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BR9WrAycpPpWAS%2BJAXA6seWbtZJ6rR3QqNMMPiJgVva%2BEG6zOTN9I35QteEgmMV3Hd%2BK97NeZP40MYNBjRId40VYE%2FvY2WVeJ0E57xPDH5NSaVCGmgrDT69BJtcg6GkIGUMNb8Il"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8804641618567130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/button.png | 172.67.163.114 | 200 OK | 12 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/button.png IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typePNG image data, 345 x 124, 8-bit/color RGBA, non-interlaced Hash72ac404291d1849aac0aa1330297e7df 9206af27feba8f502823472c7a73e8f4fe0437c5 750619c204c2d4eb7654f9f7d7a8c34c57333b95214168ec43065a2d58744135
GET /lg/lg_0324/land_lg_090324_en/image/button.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: image/png
content-length: 11908
last-modified: Tue, 12 Mar 2024 16:34:58 GMT
etag: "65f08432-2e84"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5546
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rSzhg201VKIHGeadgsahsFrbuamAR6wRJ3TFDm%2FVpKccjmTzR%2BhxJGgH9JRt5dDh%2FZSEIkD77vgTQnKtUZdwPcLwO3drK9Yx8mfAXocYw8uD4q4y13Lkyn1noj7ZSYpvNibM3nHe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8804641618577130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/bg.jpg | 172.67.163.114 | 200 OK | 145 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/bg.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3 Size145 kB (145065 bytes) Hash611931bc9b4d5e585ab793f225e4f616 a141f65f4cbf210f42593cfe8508255cca9cc969 35210bab807a9ba2c348e212da0c4b44fad8dfe64735d9b8ae9f3bf3238b1c91
GET /lg/lg_0324/land_lg_090324_en/image/bg.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:23 GMT
content-type: image/jpeg
content-length: 145065
last-modified: Tue, 12 Mar 2024 16:34:57 GMT
etag: "65f08431-236a9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2026
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f8Kv%2FDVipsuvmbXQFSMEq5G87d5%2FwizOod04lfKChBmnjdGL4NfAP%2Fvfy8wszYIS%2BgCFB3bHcjDSJ7UqlzrCqNPqqGEsbKwixVe67roLJTgYrjqNqzPfJtULSa6uhOvSPRo3jgLP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880464183aa07130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/fav.png | 172.67.163.114 | 200 OK | 1.4 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/fav.png IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash10c5dd857fd3653492ef5eeaa86cd48b 193484a907a40d7b145af2136ef83bef593d2f21 a689201508b9dc7b2cc3049c7d89947f96a19790411506ecd6eb1875374fe329
GET /lg/lg_0324/land_lg_090324_en/image/fav.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:23 GMT
content-type: image/png
content-length: 1425
last-modified: Tue, 12 Mar 2024 16:34:58 GMT
etag: "65f08432-591"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5547
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DYJwiHX0BcjW62PbIC0zAb0mI460k90gVHSqZx8T2CJvMkVaaSR5cw82JpmOFx%2F6jCBV6ZdhnCgP8NjgUALfeyrCGjhZXWi8wSonPKmGW2iqIYaWpebTAZDxZ%2BTseAdrezStq4hY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880464186abb7130-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/scripts/main.js | 172.67.163.114 | 200 OK | 6.8 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/scripts/main.js IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash7d34f846662d075cf9776018c9168a7e f3f5f181061268bb7e4bc326dbaec7f2c84d7857 adab57bc821cebfedc845c7b18ca9f55287eff4ef3a11f7f9dd5eda572418628
GET /lg/lg_0324/land_lg_090324_en/scripts/main.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:02 GMT
etag: W/"65f08436-124"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2060
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Up4WaebYwx%2Bp19OlgFFib%2F3NuWgksvgguRU26AeD1tyXJazGhHb2hQbBaZYNlKSGpIT5VpZKrtdgeyp92kHAnkfjfRPSC2onSJgKUPxSywu%2FD%2BMi1mseXg8eO8%2BLrIYyu4n%2FnDT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88046416185a7130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| holdhostel.space/?6622842d7176c&ag_custom_domain=14217017 | 172.67.192.172 | 302 Found | 1.4 kB |
URL User Request GET HTTP/2holdhostel.space/?6622842d7176c&ag_custom_domain=14217017 IP172.67.192.172:443
CertificateIssuerGoogle Trust Services LLC Subjectholdhostel.space Fingerprint30:62:41:BC:7C:17:FC:EE:0D:5B:5B:39:AE:06:1C:8A:08:6D:67:D6 ValiditySat, 20 Apr 2024 18:12:17 GMT - Fri, 19 Jul 2024 18:12:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?6622842d7176c&ag_custom_domain=14217017 HTTP/1.1
Host: holdhostel.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://evaporatepublicity.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 21:44:22 GMT
content-type: text/html
location: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
set-cookie: c_2022b6829ad3bc8a5d74a4bfe5cf4db8=1; Expires=Wed, 08-May-24 21:44:22 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
z_dd834028817d054ef3568898fa07ee8f=1; Expires=Wed, 08-May-24 21:44:22 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gRjseM0cGuiIiQef3MlxqeFBIrbHnYHx53wAprLu7lJG3H9XLqVdzuyN0sqcVxpHIX1kf%2FTJhc2wF0PphBJ3QVLKJOSkLjiBCmg9SapRmdpgK7enzp%2FOYBTD8vLBtZYw5FjF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88046413df3c5695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ln.gamesrevenue.com/px1.js | 5.161.79.44 | 200 OK | 15 kB |
URL GET HTTP/2ln.gamesrevenue.com/px1.js IP5.161.79.44:443 ASN#213230 Hetzner Online GmbH
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subject*.gamesrevenue.com FingerprintB2:A3:99:AD:22:46:FC:93:41:E9:59:40:F5:09:B0:23:B7:5B:FA:67 ValidityWed, 13 Mar 2024 09:55:06 GMT - Tue, 11 Jun 2024 09:55:05 GMT
File typeASCII text, with very long lines (15239) Hashb01fc426cbc4f33a52a28ee9ca2e2050 577332c8c5f62167ad432c5d20b3ca285e75c91e d40fc3bebe2dc3c28f08f2f4f5a6059425ccc5541ada3f0945f7539e90374441
GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 21:44:22 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 10:12:56 GMT
etag: W/"65856128-3b88"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 | 172.67.163.114 | 200 OK | 1.4 kB |
URL User Request GET HTTP/2theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 IP172.67.163.114:443
CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeHTML document, ASCII text, with very long lines (1471), with no line terminators Hash898b28945d7c90300191a76ea4b9ca2b a7eab97bc839e646db740f4103e8f40f8906507c 091c39e8217d645d5805686ada904fe61ba3c5f2140ba9531fe39f8151f16414
GET /lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://evaporatepublicity.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aCToNXXOmPUPVjotDt%2Fj2ePS8T8OHnXlhoztkrEaawcHpdFz2uV3%2Fur0jTSpQzMCbhrK3HrqBbiSV%2B7MO%2BZiT5%2B1vQw0iSZz%2FZuKAvmyhTzAk1bMHNm8BPgfQDrzYr2Zngbh2s1n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880464145ef0568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/css/main.css | 172.67.163.114 | 200 OK | 2.1 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/css/main.css IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeASCII text, with very long lines (2093), with no line terminators Hash31823cbd645e0ba6fbf4dac6cf9d66c4 f15b3783e3646bcab7ec0be83cba38cd94e2802b 101fb6b4f172f145a4e7217420dcc49d9566fae074d7eaccf190fece72db2236
GET /lg/lg_0324/land_lg_090324_en/css/main.css HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 16:34:55 GMT
etag: W/"65f0842f-82d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 828
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9cCf6n6cSEmNKqlzJX1DI6rKWIjTGZczk0nmlb6nir58hlB8bG8CblPeABhbcDgzEcOR%2FWXGNrKhfcvNMcjz6ZlcuExTblEd8QUl32qOnqMeBxuLWKur7XpQbMFAOv3JyK7PZmKS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88046415f8307130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/awpx_click.js?v=005 | 172.67.163.114 | 200 OK | 1.5 kB |
URL GET HTTP/3theeverydaygame.com/awpx_click.js?v=005 IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeASCII text, with very long lines (1544), with no line terminators Hash684379265eb9f58cc45bc0d82f0db964 dcceb2eb66dd485a8df52da17210e1ea660354ee 45f7be3af362b2f0b894e51e8394ecc08066d8b9004fb095ba7665edbd8ce078
GET /awpx_click.js?v=005 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 09:49:36 GMT
etag: W/"6409abb0-5d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7081
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vFN%2BrHiynOn9nkbg1htuKG1TRyv8PUUChk3RXlh%2F5Npym35Yv8lvp7Zj80CgajNEe%2FYqoLfzZMBxQ6ELL7G6LYaZLkD8JXceYOZ0SbKZHiyBgW7Y0uaYYi1WtxfvYwSxf7jReFGu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8804641608367130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/libs/jquery.min.js | 172.67.163.114 | 200 OK | 87 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/libs/jquery.min.js IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /lg/lg_0324/land_lg_090324_en/libs/jquery.min.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 21:44:22 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:01 GMT
etag: W/"65f08435-1538f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 828
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IDLAErF%2BbvnyoxjkGukt8ykh0zTOuWsyuU7jyFKL0VHU8gRfY5J7m4Bg9vA%2FKHefrJkE8e%2BNaB1oDRkWFSSxrUpg8t%2FI%2B0MGgPljYAFG43WL8SnEykaRPVXbSapRZhw%2F8L3EekKp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88046415f8337130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|