| divetroubledloud.com/a33eebc5?dev=r&key=649d303fa27fbd50ddb3d5ae05822ca6&kw=[%22mymfans%22,%22-%22,%22littleangel%22,%2284%22,%22littleangel84%22,%22page%22,%2251%22,%22leakimedia%22]&psid=CF-2931_layer_0&refer=https://leakimedia.com/threads/littleangel-84-littleangel84.74/page-51&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=2&uuid=0a488622-29ec-4782-8792-51ebb6095c18:1:1&v=24.4.6923&zwq=58 | 172.240.108.76 | | 1.7 kB |
URL divetroubledloud.com/a33eebc5?dev=r&key=649d303fa27fbd50ddb3d5ae05822ca6&kw=[%22mymfans%22,%22-%22,%22littleangel%22,%2284%22,%22littleangel84%22,%22page%22,%2251%22,%22leakimedia%22]&psid=CF-2931_layer_0&refer=https://leakimedia.com/threads/littleangel-84-littleangel84.74/page-51&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=2&uuid=0a488622-29ec-4782-8792-51ebb6095c18:1:1&v=24.4.6923&zwq=58 IP172.240.108.76:0
File typeHTML document, ASCII text, with very long lines (919) Hash2365e88dc9b19514a14ba944a94f56fa 9199537cd93428ed4be831dc7e54e1b60c365570 c2af0564d89b73350c88804f4ca25314076b038edb9c31fc0be7b76cac305214
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /a33eebc5?dev=r&key=649d303fa27fbd50ddb3d5ae05822ca6&kw=[%22mymfans%22,%22-%22,%22littleangel%22,%2284%22,%22littleangel84%22,%22page%22,%2251%22,%22leakimedia%22]&psid=CF-2931_layer_0&refer=https://leakimedia.com/threads/littleangel-84-littleangel84.74/page-51&res=14.31&scrHeight=1080&scrWidth=1920&ship=&sub3=invoke_layer&tz=2&uuid=0a488622-29ec-4782-8792-51ebb6095c18:1:1&v=24.4.6923&zwq=58 HTTP/1.1
Host: divetroubledloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 23:49:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=17762056; expires=Sat, 27 Apr 2024 23:49:32 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.1syXvzppUjuHZ0Dk4bzHo9Nxvdt0nbrrEFxJy4i9ays; expires=Fri, 26 Apr 2024 23:50:32 GMT
uid_id2=0a488622-29ec-4782-8792-51ebb6095c18:1:1; expires=Fri, 03 May 2024 23:49:32 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fdec99691b846fd19a94fc8a0787ae27
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| divetroubledloud.com/api/users?token=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&uuid=0a488622-29ec-4782-8792-51ebb6095c18%3A1%3A1&pii=&in=false | 172.240.108.76 | 302 Found | 0 B |
URL User Request GET HTTP/1.1divetroubledloud.com/api/users?token=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&uuid=0a488622-29ec-4782-8792-51ebb6095c18%3A1%3A1&pii=&in=false IP172.240.108.76:443
CertificateIssuerLet's Encrypt Subjectdivetroubledloud.com FingerprintE2:97:B0:3F:E4:09:4D:50:49:F3:B5:05:BA:3D:B5:4C:5E:98:11:6D ValidityTue, 23 Apr 2024 10:57:50 GMT - Mon, 22 Jul 2024 10:57:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=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&uuid=0a488622-29ec-4782-8792-51ebb6095c18%3A1%3A1&pii=&in=false HTTP/1.1
Host: divetroubledloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://divetroubledloud.com/api/users?token=L2EzM2VlYmM1P2tleT05Y2E2MDFhOWY0N2M3MzVkZjc2ZDVjYTQ2ZmEyNmE2NiZzdWJtZXRyaWM9MTc3NjIwNTY
Cookie: u_pl=17762056; ain=eyJhbGciOiJIUzI1NiJ9.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.1syXvzppUjuHZ0Dk4bzHo9Nxvdt0nbrrEFxJy4i9ays; uid_id2=0a488622-29ec-4782-8792-51ebb6095c18:1:1; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 23:49:32 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://holdhostel.space/?6622842d7176c&ag_custom_domain=17762056
Set-Cookie: uid_id2=0a488622-29ec-4782-8792-51ebb6095c18:1:1; expires=Fri, 03 May 2024 23:49:32 GMT
pdhtkv=true; expires=Sat, 27 Apr 2024 23:49:32 GMT
uncs=1; expires=Sat, 27 Apr 2024 23:49:32 GMT
pdhtkv28=true; expires=Sat, 27 Apr 2024 23:49:32 GMT
uncs28=1; expires=Sat, 27 Apr 2024 23:49:32 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 262d816dde665651c9769f9431bfe27e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn1.png | 104.21.58.193 | 200 OK | 6.9 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn1.png IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typePNG image data, 339 x 207, 8-bit colormap, non-interlaced Hasha67051906425835b13dc4292c6fe2ef7 c96b01fb21c60a17fad9e89f235fdb8809ffc43d f000409df7dd5222fc51cc35113519a133596c011f61bc5a7f65f9dcd2843a37
GET /lg/lg_0324/land_lg_140324_en/image/btn1.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/png
content-length: 6866
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-1ad2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 703
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=twfXwnXoIhDCcr%2B63D56aZzNX4lqFetu7Dn3oEz2t80%2BSTscsKB9gTJ0jcrKI%2FINxr0HHYIR7ys9uFwAYYB2OY6mz25ThWLGXrPtiHsQ5x6%2BmwFHJ2p04mx8EeOeEAPxhI3iZWai"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa78527eca568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn2.png | 104.21.58.193 | 200 OK | 9.8 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn2.png IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typePNG image data, 339 x 207, 8-bit colormap, non-interlaced Hash8c7c430e736c07b069cf61a2870c7254 a1b6cf722997131aa569f2214df2ce8a9e6e5630 42269355807fe5c4d7dabbccff1cc602725b5ffccae86759412219b83198a180
GET /lg/lg_0324/land_lg_140324_en/image/btn2.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/png
content-length: 9771
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-262b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 703
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5MNMfq0uGfi4fk1LFbpCZIRMW%2FBgut%2BbLizcftc7Z%2FaOK7jmkmsdG%2B2abd0K2XCbRMlVFlIQoFNCvKh3XEjptjb9aAPLBNbPPBlRyYthTtwoAQWj%2Bz2LHXcFeMTtDh8kWYuAszjK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa78527ecb568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| holdhostel.space/?6622842d7176c&ag_custom_domain=17762056 | 104.21.76.98 | 302 Found | 654 B |
URL User Request GET HTTP/2holdhostel.space/?6622842d7176c&ag_custom_domain=17762056 IP104.21.76.98:443
CertificateIssuerGoogle Trust Services LLC Subjectholdhostel.space Fingerprint30:62:41:BC:7C:17:FC:EE:0D:5B:5B:39:AE:06:1C:8A:08:6D:67:D6 ValiditySat, 20 Apr 2024 18:12:17 GMT - Fri, 19 Jul 2024 18:12:16 GMT
Hash0f89a66b6e87d629090c3e97cb7b8e87 2a755097d9f5318dc8ecddec557377281cc9025d 4a5fcff80869a6b943023a14f16fba1412683703a28316190c058cf24f385a58
GET /?6622842d7176c&ag_custom_domain=17762056 HTTP/1.1
Host: holdhostel.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://divetroubledloud.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 23:49:32 GMT
content-type: text/html
location: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
set-cookie: c_2022b6829ad3bc8a5d74a4bfe5cf4db8=1; Expires=Sat, 27-Apr-24 23:49:32 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
z_dd834028817d054ef3568898fa07ee8f=1; Expires=Sat, 27-Apr-24 23:49:32 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ppYZixo11YeWuIotCa%2FeaDWeRret7vb8BjLcdTtEij6aZ2BWRf5hnQ%2FZv%2B3vxwMDWhUmsYrHZNX6pZ3sGQhb708leB1%2B7HMVwNdUVtH6visgVzoxU8uJVUBybv1fig4x4XtR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa78509a510b51-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js | 104.21.58.193 | 200 OK | 4.4 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJavaScript source, ASCII text, with very long lines (521), with no line terminators Hash86f0754abfb6014908e557e6e268f3e2 4efa8a0c962e30bb7e314ad37a3f2c55b91052e6 70910209572bcf5a0ba1022d53bb9fe24d82ed842370c70234994dd2b29ba1a9
GET /lg/lg_0324/land_lg_140324_en/scripts/main.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:38 GMT
etag: W/"65f0845a-209"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hbt%2F1P47NTU0Uf5OUxi4AhDHsMjuwonWOqKqO9blAv2034n29Jw1IiarfBJZMEBr00lYjjhAvjrqpEMR00%2BWE6D9OcWYYfCJnHM3DX2d4ypX8JONvVFLP%2B8z33UHnXx8NrwaVOnZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa78527ecc568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_open.jpg | 104.21.58.193 | 200 OK | 84 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_open.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hasha3efbcb7561dddaeb36ba22fb8fae56f a9363a7f6b6e9a5a6dcbb37a0abfa7bb3ab3ea1d d95424c3f3857c13ff9f6a957f805b188a568ce769b51ee9fe68c8fd3537b319
GET /lg/lg_0324/land_lg_140324_en/image/g1_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 84260
last-modified: Tue, 12 Mar 2024 16:35:34 GMT
etag: "65f08456-14924"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sFa2Tx790QLk5MMm%2B0z82qi4FDwIJwC08ZNCDB7rhmfZT0DW8rN9svJL8fd7MfE7GNc5DKTyLm4688GPLy%2Bijkk3kyvZ8kcYh%2BczYtEpQsGblF%2FPD2JG6ntRrdHZTfSlJeFgnduS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854b81e568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_close.jpg | 104.21.58.193 | 200 OK | 40 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_close.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash3d830c378aa76c9caa82a73805459893 4a48546372f2ef6311cbed974d536273bcfdd711 8d88b039c0e88133bd2f53dc2fef48ea2d8bdae4eb6e3162fec9db714f97adea
GET /lg/lg_0324/land_lg_140324_en/image/g1_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 40179
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-9cf3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KnASea2Lx5pnCLYubZlJcM2ugBsDR8Gi1LAYtNt9KkkMJxqB6uUj%2BdOIjEcwk78lJAtyJEdtlKvm4S291iRpKZJUo72PC2XCij4zRywa7PXLpp4Qeir%2BFdw1A%2FnzGbzJW62oM%2FFM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854b821568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_open.jpg | 104.21.58.193 | 200 OK | 80 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_open.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash12e061b10b2c654a24ea704af3aaec43 9c506625e1fa700f0e6522cced2a53b0cde2bd54 d321fc26bb399bd642b1a3ae059a03308d286526e6b87a9cb37ba63833673372
GET /lg/lg_0324/land_lg_140324_en/image/g2_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 79598
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-136ee"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2r5BGptakp5aXCXHlUxlZ7x%2FQrUvau%2B3%2F%2BHj2cAn7jhRPiSC055wxr57z7isFRc9j3PL5jLPjyWCS29gI5OzaNhfgBbm5KGszY9byK9f%2FfCJyedhbR%2Bj35hwYJW3QF9Iuf4CXxhO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854c822568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_close.jpg | 104.21.58.193 | 200 OK | 42 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_close.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash955f59a0876a28b432c71c0d274727c7 789778a09f2fa8f8bd24be2bb781914f5070dd3d 40e8cd16f27d5d6a0cfd007881651ef8acd93ba95423c05741bc410454eabf40
GET /lg/lg_0324/land_lg_140324_en/image/g2_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 41478
last-modified: Tue, 12 Mar 2024 16:35:34 GMT
etag: "65f08456-a206"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Ds5sEvF64H9fANopIMalxUNyxqdfJoyRWX6yn%2F3dTHQbZ2OuBDpUVkUFPsG%2BwR60aExH7k7479%2FU0O0qk5moiAA5aiYOOoU1pgfveP7TcLvrLctuf%2BXzpAcADVFIiPbrcUgeABW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854c828568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ln.gamesrevenue.com/px1.js | 5.161.79.44 | 200 OK | 67 kB |
URL GET HTTP/2ln.gamesrevenue.com/px1.js IP5.161.79.44:443 ASN#213230 Hetzner Online GmbH
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subject*.gamesrevenue.com FingerprintB2:A3:99:AD:22:46:FC:93:41:E9:59:40:F5:09:B0:23:B7:5B:FA:67 ValidityWed, 13 Mar 2024 09:55:06 GMT - Tue, 11 Jun 2024 09:55:05 GMT
File typegzip compressed data, max speed, from Unix Hash899a9405e0fac2fa60b506009d1e7d73 75545fe9b7a4738a94efd44ccda5a767aa1bb20d 49abfb69274dba6d08b77ed5dddc938f833fda240738880a2f7a0b0c53cf6322
GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 10:12:56 GMT
etag: W/"65856128-3b88"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_close.jpg | 104.21.58.193 | 200 OK | 41 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_close.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hashaa7031c41077d720cfc935e8de98de95 47aaf9ec464983016d35bb8150928c7f96cdff8c 6a49dc8fe71fafd7db501c43d96537be26a508a2c8a932ff8f03746bc9a55a83
GET /lg/lg_0324/land_lg_140324_en/image/g3_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 40609
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-9ea1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rpbj7hWBXQV6G0k4bgYpTH04P4D1tZDrgwsDVAOGuSaXHizk5oxmpu7i8qbivJClBl4djkR3%2FA%2B9TM1mTv7D2J7YIj0cHmBl2oERjqw6OwStxJpl6xNfqY1kUlrucudukLaRuG13"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854c82d568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_open.jpg | 104.21.58.193 | 200 OK | 73 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_open.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hashc37fec311feadcbd0c77987b383b0596 9a8f5df2805241f6bc484151dc31f3b72bb9a196 a61a23797d6b68ed79222d950596e90da320e59f8ee23e7eb776c94ee0d6734c
GET /lg/lg_0324/land_lg_140324_en/image/g4_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 72874
last-modified: Tue, 12 Mar 2024 16:35:36 GMT
etag: "65f08458-11caa"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E7S1lVtIUTRGdgYZiv36hXA%2FPemRjpeo07dKjaFqjp%2FK0tWOvkeTqRHgmA2666o7ZRoxs3uOLkRwwbu2%2B8TEFc2WD%2Ff6FwA18bRA33zvbEQgU0OzVSobPrCaHrMrcsoGSVR3Db4b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854d839568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_close.jpg | 104.21.58.193 | 200 OK | 41 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_close.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash4735a029efd2d2e8b15fab5879842219 82ac18ec8aae9a2cc311cdb3b92862e56d161f99 11c0bdd5fc2ba1dfea6ccaedded312f27fd5d5ddf21f24ee607ad05c2c0f197b
GET /lg/lg_0324/land_lg_140324_en/image/g4_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 40656
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-9ed0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5RE10t4VMGDr38ecCuwNRKJQozmb5YpuuHuVD1n3yIm6zY%2B02LFO9YhqSrWhAH%2BQAS6CDQAr%2FrbkyydrP25cVFtF4oD7aRIvnBNrPGzzwP6f6lVrBol4HUr5zcLscQUR8vJY%2BC%2B6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854d83a568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/fav.png | 104.21.58.193 | 200 OK | 1.4 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/fav.png IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash10c5dd857fd3653492ef5eeaa86cd48b 193484a907a40d7b145af2136ef83bef593d2f21 a689201508b9dc7b2cc3049c7d89947f96a19790411506ecd6eb1875374fe329
GET /lg/lg_0324/land_lg_140324_en/image/fav.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/png
content-length: 1425
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-591"
cache-control: max-age=14400
cf-cache-status: HIT
age: 100
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FXCAELPvmfG2WwzSWbP6xcyr5tMFFUSyKInOE5JLb3lhQ6sQQyjB%2Bovttg0SgwN5pcJT20nZzvvoMj8gDrW5H03gEOI6%2F8Kel01L0cwkfBa%2BPKE8Ug9XZ790AwbY2AcjDuuy1jAy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7855486d568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css | 104.21.58.193 | 200 OK | 3.9 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
Hashfe0b76350b350c505af8892b3fb2d60b ef4c2c4974e98708c9586248f502ec7a42ea9259 d95650f7fef33e32e64ea982168684f103e294fcf7e2df8a1c833929a7c1745d
GET /lg/lg_0324/land_lg_140324_en/css/main.css HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 16:35:32 GMT
etag: W/"65f08454-ce3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OyzPdD8%2FwxDoEru5WZvL38R0qx0Y6Fvye2M%2F4U3CUb79HMNi1y%2FmLA7X5gJIt5CdPcbjfl0PihMZhOY%2B%2B4cs%2BuxSqAX3LKHMrHa%2BpL7LiDcz3f40xYKsY8%2BdP51hm8ZHWvZgvjRX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa78527ec6568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 | 104.21.58.193 | 200 OK | 2.2 kB |
URL User Request GET HTTP/2theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 IP104.21.58.193:443
CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeHTML document, ASCII text, with very long lines (2342), with no line terminators Hash61eaa1fca6d9a53cc36d0345a07a8091 dc99774d3ec6968c4b191a92688749518308b1c1 7773970b04d99990bca3300608332e133735fd435cb70d47637c8d27750f40eb
GET /lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://divetroubledloud.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Nblt3RtctLM2YsMCqCJv2%2FbSFQOGwycMrG4F7LF6kMPlMY3PjiTaULoRj0XuLciIHxwgbzdkCSgT4qVfMaG9o6I8Gg2IMj4IIqr4sQEbHRbbFaiddNcoHgoWqY8ax3J0Q9V8wyj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa78511f5b5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_open.jpg | 104.21.58.193 | 200 OK | 63 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_open.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hashd837068776c28a251131d2c0138c5db4 bc8d3e395fa77a6b801f13d1c22ff159776cc430 a8364b19810c700ee3899c55089ca678291758ee0d62dbad821e2a6d73b08c93
GET /lg/lg_0324/land_lg_140324_en/image/g3_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: image/jpeg
content-length: 63206
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-f6e6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jgmtCMQoE8LUh0lP%2Boez9s4Rf00HH6YXVfzxmlLgIkKbz5JwAgtdkmDSa5mM27tIGWAJZybGrcCuAgCD4KW9637N3e14ZH1fs1L5gdSVPxpUWglnYvv4eVi29hT0tne3%2BB3jIXRF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa7854c82c568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js | 104.21.58.193 | 200 OK | 87 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /lg/lg_0324/land_lg_140324_en/libs/jquery.min.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:38 GMT
etag: W/"65f0845a-1538f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 599
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C2xka1wR5LnQwVoPQr338DtbMUn44fjga356YouPh%2B2fr5ALf%2Fgpf2APjhnoW916IY9DOKYMSFo06nGHDhOBwsSKVHhHaC%2Fj7pbUyGbs%2BolLYqN7zdRnew82jEBwXP%2B%2FcQ%2F9rgTc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa78527ec7568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/awpx_click.js?v=005 | 104.21.58.193 | 200 OK | 1.5 kB |
URL GET HTTP/3theeverydaygame.com/awpx_click.js?v=005 IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeASCII text, with very long lines (1544), with no line terminators Hash684379265eb9f58cc45bc0d82f0db964 dcceb2eb66dd485a8df52da17210e1ea660354ee 45f7be3af362b2f0b894e51e8394ecc08066d8b9004fb095ba7665edbd8ce078
GET /awpx_click.js?v=005 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=17762056&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:49:33 GMT
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 09:49:36 GMT
etag: W/"6409abb0-5d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P8giKP9181xXuTQcfC4oXShdemXi13TXj%2BCN2dUZjpfbPRTgifV24QNaUTxkObtS7bKc9j6EKVVi2swdg9Gl0NB%2BzoARu4aCqtt9Pccw2XvyxhFCo17qBzaWtc0nguAs7v6u%2FjQk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa78527ec8568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|