| agitationfourthplug.com/api/users?token=L2lqNnNrN3MxP2tleT01NWYxN2E5ZmVlNjhlYTFiNmY0Y2NmYTJkOTZlY2Y2ZQ== | 172.240.108.84 | | 1.4 kB |
URL agitationfourthplug.com/api/users?token=L2lqNnNrN3MxP2tleT01NWYxN2E5ZmVlNjhlYTFiNmY0Y2NmYTJkOTZlY2Y2ZQ== IP172.240.108.84:0
File typeHTML document, ASCII text, with very long lines (468) Hashe7fd3e72c7885b7dff621a64cc45daaf 5f175652f8fb72f3c8a5265d7437923f936d3af4 254f640f42264b00beb82a3bf32575aecda248076c9d64ddd32b6f71d1cd3e2e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=L2lqNnNrN3MxP2tleT01NWYxN2E5ZmVlNjhlYTFiNmY0Y2NmYTJkOTZlY2Y2ZQ== HTTP/1.1
Host: agitationfourthplug.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ecuad.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 04:58:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=18974811; expires=Thu, 09 May 2024 04:58:22 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.oFy8eRE0Zrynwk29VaxisPg9AyaBB2STwkkRYmAPRM8; expires=Wed, 08 May 2024 04:59:22 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3efa50d4fece2331708c07a0f89fc6d2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| agitationfourthplug.com/api/users?token=L2lqNnNrN3MxP2tleT01NWYxN2E5ZmVlNjhlYTFiNmY0Y2NmYTJkOTZlY2Y2ZSZwc3Q9MTcxNTE0NDM2MiZyZWZlcj1odHRwcyUzQSUyRiUyRnd3dy5lY3VhZC5zaG9wJTJGJnJtdGM9dCZzaHU9YzBmMGIyN2FkYmFmNTkyZjU1NjZjY2UxMGYzOTc5Y2IwYzQ3MmExMWMwNmIwOTkxMGNhNmVjY2U2NTMyNDQzZDYyZmJmMDk5MGFhYWEzYzdiYjM0MjM4ZGQwOWJjYTRmYjNlNDYzMGRiZDEwMDFkNmVkMDAwYjZiNWQ5MDQyOTdmMWRmZmM5Y2YwYmRkNjUwYzBkNzhiY2I4NmMyYTdkZDYxZGY4M2NiZWM0ZjRmYWQ1MzhhNzYxMThlYzY0YzBhNmE4Njdk&uuid=&pii=&in=false | 192.243.59.12 | 302 Found | 0 B |
URL User Request GET HTTP/1.1agitationfourthplug.com/api/users?token=L2lqNnNrN3MxP2tleT01NWYxN2E5ZmVlNjhlYTFiNmY0Y2NmYTJkOTZlY2Y2ZSZwc3Q9MTcxNTE0NDM2MiZyZWZlcj1odHRwcyUzQSUyRiUyRnd3dy5lY3VhZC5zaG9wJTJGJnJtdGM9dCZzaHU9YzBmMGIyN2FkYmFmNTkyZjU1NjZjY2UxMGYzOTc5Y2IwYzQ3MmExMWMwNmIwOTkxMGNhNmVjY2U2NTMyNDQzZDYyZmJmMDk5MGFhYWEzYzdiYjM0MjM4ZGQwOWJjYTRmYjNlNDYzMGRiZDEwMDFkNmVkMDAwYjZiNWQ5MDQyOTdmMWRmZmM5Y2YwYmRkNjUwYzBkNzhiY2I4NmMyYTdkZDYxZGY4M2NiZWM0ZjRmYWQ1MzhhNzYxMThlYzY0YzBhNmE4Njdk&uuid=&pii=&in=false IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectagitationfourthplug.com Fingerprint8F:EA:57:BE:91:5E:09:C9:93:21:ED:7A:26:C2:DF:F3:58:17:E2:82 ValidityThu, 04 Apr 2024 15:47:55 GMT - Wed, 03 Jul 2024 15:47:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=L2lqNnNrN3MxP2tleT01NWYxN2E5ZmVlNjhlYTFiNmY0Y2NmYTJkOTZlY2Y2ZSZwc3Q9MTcxNTE0NDM2MiZyZWZlcj1odHRwcyUzQSUyRiUyRnd3dy5lY3VhZC5zaG9wJTJGJnJtdGM9dCZzaHU9YzBmMGIyN2FkYmFmNTkyZjU1NjZjY2UxMGYzOTc5Y2IwYzQ3MmExMWMwNmIwOTkxMGNhNmVjY2U2NTMyNDQzZDYyZmJmMDk5MGFhYWEzYzdiYjM0MjM4ZGQwOWJjYTRmYjNlNDYzMGRiZDEwMDFkNmVkMDAwYjZiNWQ5MDQyOTdmMWRmZmM5Y2YwYmRkNjUwYzBkNzhiY2I4NmMyYTdkZDYxZGY4M2NiZWM0ZjRmYWQ1MzhhNzYxMThlYzY0YzBhNmE4Njdk&uuid=&pii=&in=false HTTP/1.1
Host: agitationfourthplug.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://agitationfourthplug.com/api/users?token=L2lqNnNrN3MxP2tleT05Y2E2MDFhOWY0N2M3MzVkZjc2ZDVjYTQ2ZmEyNmE2NiZzdWJtZXRyaWM9MTg5NzQ4MTE
Cookie: u_pl=18974811; ain=eyJhbGciOiJIUzI1NiJ9.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.oFy8eRE0Zrynwk29VaxisPg9AyaBB2STwkkRYmAPRM8; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Wed, 08 May 2024 04:58:22 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://holdhostel.space/?6622842d7176c&ag_custom_domain=18974811
Set-Cookie: iprc43e0de853a61dfee263915e48a84ad2d=5188702; expires=Thu, 09 May 2024 04:58:22 GMT
pdhtkv=true; expires=Thu, 09 May 2024 04:58:22 GMT
uncs=1; expires=Thu, 09 May 2024 04:58:22 GMT
pdhtkv28=true; expires=Thu, 09 May 2024 04:58:22 GMT
uncs28=1; expires=Thu, 09 May 2024 04:58:22 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7280f92a118a1ac2655cc686afa3d45c
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/notice.png | 104.21.58.193 | | 36 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/notice.png IP104.21.58.193:0
File typePNG image data, 867 x 112, 8-bit colormap, non-interlaced Hash7316951b03c50f8b19d2581f000987b4 59d77ce4daafcfe93ae80690eada76cfdf31c655 06b413f4ed23c6076f4d636d99fcb1c7226caa7e78ebac86d8975b0d4ea1eaf6
GET /lg/lg_0324/land_lg_090324_en/image/notice.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/png
content-length: 36380
last-modified: Tue, 12 Mar 2024 16:34:58 GMT
etag: "65f08432-8e1c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2497
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wHYJuXp1havKTcOsN%2FSG%2B9UhMroXYJVtRkDisZYYEstXQ2KWpkqX4UvEcR3M093SDaz2OhTjEdli1rapvUOnkyXrBUrWU1kd%2FeRdiQlfYjnZQO516nDNV%2BDNsWiMNPQrklf%2F2DsK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7dbfbb50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/1.jpg | 104.21.58.193 | | 76 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/1.jpg IP104.21.58.193:0
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hashd92d5c5a1127b3bd5b6cd6999abb4b85 acf50534137d4dd43930fa080d624f7f724f0cd0 9b809dcbad6e5ad1607417163f7d8e0f2dd0a374615c2d1d8d2d91b74793822f
GET /lg/lg_0324/land_lg_090324_en/image/1.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/jpeg
content-length: 75575
last-modified: Tue, 12 Mar 2024 16:34:56 GMT
etag: "65f08430-12737"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2497
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BFFp7izyX4E8%2F8Gr6w85zdrNzUomt4pb9Pzbe5G1HatLxgcGjTi%2BP2BZY7C93GCie8Sevk39DJibIIHQeQbRaW%2Bal%2B3ZQo1b9gzmI5omFhZL0TlxlnVAftVL19E88o6Rae3UugJu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7dbfeb50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/2.jpg | 104.21.58.193 | 200 OK | 63 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/2.jpg IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hash8f273547f5dedfd0f5e4874d085f909c fee16db489d5f992c20897686c4b300dc7813c16 6a45bc1e1d44d11f8d6e340e80c0f020a9cbe9544fe7d107b022fe8534aeda30
GET /lg/lg_0324/land_lg_090324_en/image/2.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/jpeg
content-length: 63244
last-modified: Tue, 12 Mar 2024 16:34:56 GMT
etag: "65f08430-f70c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6277
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e51JqTW5mO6GH3Jv8ASXRgaEz%2FfKNCA0%2B72duhIzWb9NHLhfhYt4WeRMZkbvDGz7hU3bda%2B2rrz5E4fT%2BmIWMKBJgpKAmdBUFk2RRBOiBwS4OLIETG15EN6rFWJa5Gam%2F2SJTLSa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7ec02b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/3.jpg | 104.21.58.193 | | 68 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/3.jpg IP104.21.58.193:0
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hash520610908474b4b5e31b221344ef5a7c 5e6cdc0a25ae20c44e132f24b1e9dc88dbe1dad9 1e3f6bbed20302cba9858b78afb0bf0db80b26fd35c7ee314985489252221dad
GET /lg/lg_0324/land_lg_090324_en/image/3.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/jpeg
content-length: 67488
last-modified: Tue, 12 Mar 2024 16:34:57 GMT
etag: "65f08431-107a0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hBsy4DC1rKIirbJqktHxHorUircZH%2BRYsDh2HXaZMbAP3gL4bh9AeXb9d9i%2BOjiCbbpg1QGxyMdxC5mRfoGw6%2B%2BA2krs0Mzrp4q3X7J5IXXdolQON10YEwmTC9towGS5C41cq%2F3k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7ec05b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/4.jpg | 104.21.58.193 | | 69 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/4.jpg IP104.21.58.193:0
File typeJPEG image data, baseline, precision 8, 334x494, components 3 Hashfae1701ccce2f3ec4d4540333662d24a ad3a4b2ca3860f4ae4c84cb68bfd5f8360c644d1 d91303ba17e80a231cd3e32c4ce70231ac8617b4c9b0f754c734941976ee923e
GET /lg/lg_0324/land_lg_090324_en/image/4.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/jpeg
content-length: 68842
last-modified: Tue, 12 Mar 2024 16:34:57 GMT
etag: "65f08431-10cea"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LhDouX0w09cxjcHLUxyl9ZXJnZ9K5KqYpS4cmfG4b%2B9HomBgojkpPY9sFfHooShb3qMxrUmfH3Z0CZelqij30g1xPhPz284YNmE8r3skjtWFxK8LOWSWGlRlt0kE3a8ni%2F4HuIxU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7ec06b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/button.png | 104.21.58.193 | | 12 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/button.png IP104.21.58.193:0
File typePNG image data, 345 x 124, 8-bit/color RGBA, non-interlaced Hash72ac404291d1849aac0aa1330297e7df 9206af27feba8f502823472c7a73e8f4fe0437c5 750619c204c2d4eb7654f9f7d7a8c34c57333b95214168ec43065a2d58744135
GET /lg/lg_0324/land_lg_090324_en/image/button.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/png
content-length: 11908
last-modified: Tue, 12 Mar 2024 16:34:58 GMT
etag: "65f08432-2e84"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2421
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TQsROjkyMe%2F%2Bt%2BCi%2BJp%2BAxYwPwJbMl5FLhT4%2B4UhzuqEYvs5kFKbb8UdEcbOf9c7rIc%2FR5YvKpt8dyrrarCgivqbWsEsPL6Q1SaprnFf4Iyv6nzQAdyXDR0sQgX3IQyDqUl2xOSN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7ec07b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/bg.jpg | 104.21.58.193 | | 145 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/bg.jpg IP104.21.58.193:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3 Size145 kB (145065 bytes) Hash611931bc9b4d5e585ab793f225e4f616 a141f65f4cbf210f42593cfe8508255cca9cc969 35210bab807a9ba2c348e212da0c4b44fad8dfe64735d9b8ae9f3bf3238b1c91
GET /lg/lg_0324/land_lg_090324_en/image/bg.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/jpeg
content-length: 145065
last-modified: Tue, 12 Mar 2024 16:34:57 GMT
etag: "65f08431-236a9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aqk9HHk3ygJsXtxvUOdCrCfOLqWy%2Ff7l%2Bfx3tfjWdS6XMGRa2GaP03Pd%2FqsUa2fYUQRRHQYe5BE6WI2%2F4kYRN06RGZIhOxs49CXUHhfX2IZ2lii65w6H6FkUYZHDbBLQvaRSjj53"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfda3de9b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/scripts/main.js | 104.21.58.193 | | 1.6 kB |
URL theeverydaygame.com/lg/lg_0324/land_lg_090324_en/scripts/main.js IP104.21.58.193:0
File typeJavaScript source, ASCII text, with no line terminators Hash7d34f846662d075cf9776018c9168a7e f3f5f181061268bb7e4bc326dbaec7f2c84d7857 adab57bc821cebfedc845c7b18ca9f55287eff4ef3a11f7f9dd5eda572418628
GET /lg/lg_0324/land_lg_090324_en/scripts/main.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:02 GMT
etag: W/"65f08436-124"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pgYvJRDI1p4l3Ki2ycrEDdTiIasUOZ4ISlAIBevq5CQax%2B6KOtXQOJIwozx%2FzvGraA%2FT7AWwnWoT7HJe8PFW3Woa1RgrTsPHfQGRbiIT1EW%2BjtBOVe0orNLcpBD6jgzpy%2BWuGCmJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfd7ec09b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ln.gamesrevenue.com/px1.js | 5.161.79.44 | 200 OK | 11 kB |
URL GET HTTP/2ln.gamesrevenue.com/px1.js IP5.161.79.44:443 ASN#213230 Hetzner Online GmbH
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subject*.gamesrevenue.com FingerprintB2:A3:99:AD:22:46:FC:93:41:E9:59:40:F5:09:B0:23:B7:5B:FA:67 ValidityWed, 13 Mar 2024 09:55:06 GMT - Tue, 11 Jun 2024 09:55:05 GMT
File typegzip compressed data, max speed, from Unix Hashda98970ac77f4521a02d8571162b186c 768e2cf0e4aef45094f8e04b3d3042d153a46392 0040620f728b2e446a8faf63eac175c4a779165df95439d4982ab6131d5a6c0e
GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:23 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 10:12:56 GMT
etag: W/"65856128-3b88"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/fav.png | 104.21.58.193 | 200 OK | 1.4 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_090324_en/image/fav.png IP104.21.58.193:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39 ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash10c5dd857fd3653492ef5eeaa86cd48b 193484a907a40d7b145af2136ef83bef593d2f21 a689201508b9dc7b2cc3049c7d89947f96a19790411506ecd6eb1875374fe329
GET /lg/lg_0324/land_lg_090324_en/image/fav.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_090324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=18974811&bnid=land_lg_090324_en&land=land_lg_090324_en&crID=2503010&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 04:58:23 GMT
content-type: image/png
content-length: 1425
last-modified: Tue, 12 Mar 2024 16:34:58 GMT
etag: "65f08432-591"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2365
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9259y%2FemtJdQxq%2BaeaQKYVIH2Qx1qsEspJPFlIpaK5GGcHkndgJeHZZUojtPH%2BM6c5jTBHqeqeQEY9w9SWpOze6IcFHjVqFEANEXU01tmCgvmx%2BOTKhQC3C6cLfptxIT5JdbptNN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806dfda7e14b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|