| www.mrktngnew.xyz/go/2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7 |  3.70.16.242 | 302 Found | 710 B |
URL User Request GET HTTP/2www.mrktngnew.xyz/go/2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7 IP3.70.16.242:443
CertificateIssuerLet's Encrypt Subjectwww.mrktngnew.xyz Fingerprint5B:77:1D:69:9A:D1:02:C3:43:1F:FD:B2:6A:9A:74:D2:18:F6:F2:60 ValiditySun, 28 Apr 2024 20:17:04 GMT - Sat, 27 Jul 2024 20:17:03 GMT
File typeHTML document, ASCII text, with very long lines (710), with no line terminators Hashf7efe65d5ec04d17e21597e68b18b687 7659c0fb83cdcab49e40618ba3e919d4d02802af a39d5491f7c8797c6568f99bb1f5d4e2aa8fa0a876ceccaf4a543d2ad0c19f7c
GET /go/2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7 HTTP/1.1
Host: www.mrktngnew.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Tue, 07 May 2024 18:49:43 GMT
content-type: text/html; charset=utf-8
content-length: 710
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
location: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
set-cookie: bemob-viewer-id=0379caa9-0f6a-4a14-9c27-eb1a080f91c7; Domain=www.mrktngnew.xyz; Path=/; Expires=Wed, 07 May 2025 18:49:43 GMT; HttpOnly; Secure; SameSite=None
bemob-uniq-visit:2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7=1; Domain=www.mrktngnew.xyz; Path=/; Expires=Wed, 08 May 2024 18:49:43 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7:random:fd9af848a0a41d048c4222be3ab57e02=0-0-9; Domain=www.mrktngnew.xyz; Path=/; Expires=Wed, 08 May 2024 18:49:43 GMT; HttpOnly; Secure; SameSite=None
bemob-track-url=https%3A%2F%2Fwww.playthegame.site%2F2%2Findex.php%3Fip%3D91.90.42.154%26domain%3Dwww.mrktngnew.xyz%26key%3DeyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%253D%253D%26bemobdata%3Dc%253D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%253D6552f847-6ba7-4e12-821b-2608663543c9..a%253D0..b%253D0..ts%253D1715107783238; Domain=www.mrktngnew.xyz; Path=/; Expires=Thu, 06 Jun 2024 18:49:43 GMT; HttpOnly; Secure; SameSite=None
vary: Accept
x-response-time: 32.514ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
X-Firefox-Spdy: h2
|
|
| www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 |  65.2.175.86 | 200 OK | 4.4 kB |
URL User Request GET HTTP/1.1www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 IP65.2.175.86:443
CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1457), with CRLF line terminators Hash085afae36881616c7721ed658b00fc18 8fe271d24b252300567e006497e78b45efab699d d3e1deb32c2bb25464c5b4fa985b504f66b701f7cfa12403c9b7bc60fa327f98
GET /2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:43 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4445
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js |  104.17.24.14 | 200 OK | 27 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.playthegame.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 18:49:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 27277
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15283"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 706
expires: Sun, 27 Apr 2025 18:49:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9yw%2B0qvbvXoErB4fh9aucIAkQdyR3eFM5fQ%2FD81okUNAA9uF%2FOOXWB%2BBiIAk8sGMx4MDaBls48hDDPzMjNPlDUBDNYN%2Bw60a5YfLmbQMY%2FGDJ%2FHd4gzUv6%2Bslg1O7UXEFmwEWcbK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88036442eafab50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.playthegame.site/2/files/style.css | 65.2.175.86 | 200 OK | 6.9 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/style.css IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typeASCII text, with very long lines (346), with CRLF line terminators Hash1405ff678d3bf53619e032162d61d45e 8395aa7b927746612b3e1cf512d8568912b138cb 2f6775d7530b4a85f6532c809fa18852f098a5b3fec34011980f4cadf424c0c9
GET /2/files/style.css HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:39 GMT
ETag: "133fd-5ee23c888e47d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6882
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.playthegame.site/2/files/logo.png | 65.2.175.86 | 200 OK | 30 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/logo.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 415 x 149, 8-bit/color RGB, non-interlaced Hashb6aedf3aad0702e0702ce0b65e31d589 204d9740b9672673b21a00fa38ce511c6eca48a3 64605fbd0f36d99c342d3982200257dcbb37e464e64efbfbca271c77b358f03a
GET /2/files/logo.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:37 GMT
ETag: "7419-5ee23c86c7318"
Accept-Ranges: bytes
Content-Length: 29721
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.playthegame.site/2/files/bckbton.js | 65.2.175.86 | 200 OK | 501 B |
URL GET HTTP/1.1www.playthegame.site/2/files/bckbton.js IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash6d1333b717d1eabeccff8b713f875b40 0faf77a5b803e056e57edd3927d10d577b4ba3b3 85c19f622b39183eb4be19e8edf3ee8b75fe78f979a3fdd3b018f45e6bd8bde5
GET /2/files/bckbton.js HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:34 GMT
ETag: "341-5ee23c83de0fc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 501
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.playthegame.site/2/files/1.png | 65.2.175.86 | 200 OK | 5.3 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/1.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 50 x 52, 8-bit/color RGB, non-interlaced Hash9284629c5a1d1469a99926da868ba4ef e63adbb0e844ee3c5f4cf28170be35e530deb347 834baa58f464ff9af647c62f31c391179bbbff81b15a0294fb834603801f6199
GET /2/files/1.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:28 GMT
ETag: "14a8-5ee23c7e46649"
Accept-Ranges: bytes
Content-Length: 5288
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.playthegame.site/2/files/2.png | 65.2.175.86 | 200 OK | 6.7 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/2.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 50 x 52, 8-bit/color RGB, non-interlaced Hash4bd36a91211a70305638ba5255ff5f89 1471fb0d64694de870d5d5960d0096d2ab193c95 64dc934d6db901053a4356905bf75b42474deab1e8c4d3826ca8e114a4197629
GET /2/files/2.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:28 GMT
ETag: "1a32-5ee23c7e2d006"
Accept-Ranges: bytes
Content-Length: 6706
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.playthegame.site/2/files/3.png | 65.2.175.86 | 200 OK | 7.7 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/3.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 50 x 52, 8-bit/color RGB, non-interlaced Hash323e3fb51c2365d871a87f042144211f 754d54f55de6c70d0ddf7298989075bb274be8bf 2c9da7d56c6851b32eb11cf8d2af19a3316784df0980d1d54734db2e455cc641
GET /2/files/3.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:29 GMT
ETag: "1ded-5ee23c7f7dec2"
Accept-Ranges: bytes
Content-Length: 7661
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| shaumtol.com/zone?&pub=0&zone_id=5132492&is_mobile=false&domain=www.playthegame.site&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=6d9b59dd-6368-4c7e-bd42-f6faaf1d7087&action=prerequest |  139.45.197.250 | 200 OK | 0 B |
URL POST HTTP/2shaumtol.com/zone?&pub=0&zone_id=5132492&is_mobile=false&domain=www.playthegame.site&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=6d9b59dd-6368-4c7e-bd42-f6faaf1d7087&action=prerequest IP139.45.197.250:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectshaumtol.com FingerprintF3:41:7F:57:34:E1:01:91:E7:CB:D3:AA:B1:3A:DE:4E:A1:35:0B:52 ValidityWed, 21 Feb 2024 05:50:21 GMT - Tue, 21 May 2024 05:50:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5132492&is_mobile=false&domain=www.playthegame.site&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.504&trace_id=6d9b59dd-6368-4c7e-bd42-f6faaf1d7087&action=prerequest HTTP/1.1
Host: shaumtol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.playthegame.site
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 18:49:44 GMT
content-length: 0
x-trace-id: ad49441f2d9f437d50be501e391ec795
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.playthegame.site
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.playthegame.site/2/files/4.png | 65.2.175.86 | 200 OK | 6.8 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/4.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 50 x 52, 8-bit/color RGB, non-interlaced Hash846a9632f429bf2b60dcca80ef6e82df a7a54f738ed4790ea783fb40a0381d5899c6fab4 4e6d71b6bb56a9d5727081844fcdacd005ca94fba45c92ac947129f131be5283
GET /2/files/4.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:29 GMT
ETag: "1a8b-5ee23c7faec06"
Accept-Ranges: bytes
Content-Length: 6795
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.playthegame.site/2/files/5.png | 65.2.175.86 | 200 OK | 6.0 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/5.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 50 x 52, 8-bit/color RGB, non-interlaced Hash8b6ae9d5f0edaeb043509b63f0798466 b4173bc837da393ce683d5c0021dd7e541d32947 1fbb172f707cf016e445c0febaa6e10ec9d68f5c10de845eb8b100632664a054
GET /2/files/5.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:31 GMT
ETag: "176c-5ee23c80cfd1d"
Accept-Ranges: bytes
Content-Length: 5996
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.playthegame.site/2/files/gift.gif | 65.2.175.86 | 200 OK | 16 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/gift.gif IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typeGIF image data, version 89a, 100 x 100 Hash573c467d7a0b1c4c009ba98927dfa335 78d9c7efaeed568b74f1e4d1b4eb67e51dbbb9f1 c4f1d8867d03d437694f1cac0c9df3a7f5006fb8df474023bfa1d78f88843ce8
GET /2/files/gift.gif HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:36 GMT
ETag: "3cf6-5ee23c8628fcb"
Accept-Ranges: bytes
Content-Length: 15606
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/gif
|
|
| www.playthegame.site/2/files/box_c.png | 65.2.175.86 | 200 OK | 16 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/box_c.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 257 x 184, 8-bit/color RGBA, non-interlaced Hashcfeb6623e5249131d5319b768bb211db e58e95cf3c24840bf7f9760ef88d1f67f6be6e24 f3d07d99eba35e27b81a425a18c70e78b246228d723b08e59fb627ee4542df74
GET /2/files/box_c.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:35 GMT
ETag: "407f-5ee23c84d61d0"
Accept-Ranges: bytes
Content-Length: 16511
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 551
Origin: https://www.playthegame.site
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 18:49:44 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: aba3ec2603063ce721c579021450e253
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.playthegame.site
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 548
Origin: https://www.playthegame.site
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 18:49:44 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 8bae07a0bc0f9832e847d89359e40962
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.playthegame.site
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| shaumtol.com/pfe/current/micro.tag.min.js?z=5132492&sw=/sw-check-permissions-8f0dd.js | 139.45.197.250 | 200 OK | 15 kB |
URL GET HTTP/2shaumtol.com/pfe/current/micro.tag.min.js?z=5132492&sw=/sw-check-permissions-8f0dd.js IP139.45.197.250:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectshaumtol.com FingerprintF3:41:7F:57:34:E1:01:91:E7:CB:D3:AA:B1:3A:DE:4E:A1:35:0B:52 ValidityWed, 21 Feb 2024 05:50:21 GMT - Tue, 21 May 2024 05:50:20 GMT
File typegzip compressed data, max speed, from Unix Hash79ab4f5f20178d8996c060bb397118cb 1c4b2573fec4c28a0fabe5f38102b69cac5b9e97 05c6f230d524bab329e3cd7e74295e02df901851cc6350c1759b308d2ee09038
GET /pfe/current/micro.tag.min.js?z=5132492&sw=/sw-check-permissions-8f0dd.js HTTP/1.1
Host: shaumtol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 18:49:44 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:52 GMT
etag: W/"662a3514-9116"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.playthegame.site/
Origin: https://www.playthegame.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 18:49:44 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.playthegame.site
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| www.playthegame.site/2/files/arprize.png | 65.2.175.86 | 200 OK | 50 kB |
URL GET HTTP/1.1www.playthegame.site/2/files/arprize.png IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
File typePNG image data, 212 x 186, 8-bit/color RGBA, non-interlaced Hash99ac6f11ca6e9c9ffd7c694e958de033 c8f611537d17189bbacec0041bb8e9fc52895f2e 5b49f1040bdfc1cb59a75594812df6416fcffbb8d488893df28c79c28f10a1f1
GET /2/files/arprize.png HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:44 GMT
Server: Apache
Last-Modified: Wed, 23 Nov 2022 14:05:33 GMT
ETag: "c51e-5ee23c837e5b4"
Accept-Ranges: bytes
Content-Length: 50462
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hash97a1a33c0fffcf4139ba334402441b88 17ebad6128e9683113c0e0c96b148b0b805fc7d7 196eab616e01566d4620d35c81f4cef94219cf5e71fb8c4c8d110f94bf96d307
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.playthegame.site/
Content-Type: application/json
Content-Length: 1166
Origin: https://www.playthegame.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 18:49:45 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.playthegame.site
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.playthegame.site/sw-check-permissions-8f0dd.js?zoneId=5132492 | 65.2.175.86 | 200 OK | 294 B |
URL GET HTTP/1.1www.playthegame.site/sw-check-permissions-8f0dd.js?zoneId=5132492 IP65.2.175.86:443
Requested byhttps://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238 CertificateIssuerLet's Encrypt Subjectplaythegame.site FingerprintE9:9A:5E:73:DB:27:3E:37:97:38:5F:65:F6:BF:82:A5:E4:D0:74:38 ValidityTue, 07 May 2024 13:08:25 GMT - Mon, 05 Aug 2024 13:08:24 GMT
Hashcda06dc8cd30693786ff7c1d567dd394 f0c9e697fd01863b5f3142f0f54b162b87f98cd5 2b4385c5e528024e7e637c9296bf5c1bb9d71158c100d66b2c6ab90adaf9bc9d
GET /sw-check-permissions-8f0dd.js?zoneId=5132492 HTTP/1.1
Host: www.playthegame.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.playthegame.site/2/index.php?ip=91.90.42.154&domain=www.mrktngnew.xyz&key=eyJ0aW1lc3RhbXAiOiIxNzE1MTA3NzgzIiwiaGFzaCI6ImU4ZjRjN2RkYzI1MzA0NGI4Y2EyZDMzMzhjZjk0YmJkMWM2ZmIzMzgifQ%3D%3D&bemobdata=c%3D2e00fca6-a544-4aa7-aa2b-67bdf9e9e7e7..l%3D6552f847-6ba7-4e12-821b-2608663543c9..a%3D0..b%3D0..ts%3D1715107783238
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:49:45 GMT
Server: Apache
Last-Modified: Fri, 25 Nov 2022 12:53:54 GMT
ETag: "236-5ee4b039ef1ff-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 294
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|