cdn.livechatinc.com/tracking.js
200 OK 28 kB URL GET HTTP/2 cdn.livechatinc.com/tracking.js
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash 3d244e73961d32eb9213ed6eb52a18c2
d2851902f6bf0e6b60863c481b50067525886579
5b39d9f322e861dacfd7d8fcb690c85960fa6b427d5590c3ca1e678263c999ff
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 09 May 2024 11:03:49 GMT
etag: W/"3d244e73961d32eb9213ed6eb52a18c2"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7dPY4cdx5uPPkA6_W.RtP6SFuPK2M9NP
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: YQfsjxx7ae8hSGjaJFe4mT-73sHYS8B3G_nM1g78vTmpfHicixxrWA==
content-length: 27635
cache-control: max-age=28800
expires: Fri, 10 May 2024 19:54:54 GMT
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.pooo.win/global/font/Lato_R.ttf
200 OK 120 kB URL GET HTTP/2 cdn.pooo.win/global/font/Lato_R.ttf
IP
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 30 names, Macintosh, Copyright (c) 2010-2011 by tyPoland Lukasz Dziedzic with Reserved Font Name "Lato". Licensed und
Size 120 kB (120196 bytes)
Hash 7f690e503a254e0b8349aec0177e07aa
127f241871a9fe42cd8d073a0835410f3824d57c
7ae714b63c2c8b940bdd211a0cc678f01168a34eea8aa13c0df25364f29238a7
GET /global/font/Lato_R.ttf HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/octet-stream
content-length: 120196
last-modified: Wed, 30 Aug 2023 08:00:46 GMT
etag: "64eef72e-1d584"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WTVCxi1eZOP1YndoAqFN8VIKAWZpUUV6skhuu7gWl1Wjc0yRn2En44K0DWYLBQzIj5KTulRA%2BAQ3orNygr0DXuTqII8zPuWClDs%2FB6xPogPzVMaJyBQggO9lmICmJe0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb85bbc56b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa/global/JSModule/NightModule/NightMain_v13.js
200 OK 10 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/JSModule/NightModule/NightMain_v13.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 511d0ca88bcdaf5a28e02d9c5650253c
210a83b1c0c3c031e12433c674292665fd1a2203
cf04ff5276ed9dcd55c31f880e3e131be822451293fb8ebb916bb2b49e538224
GET /kny_games/Mallpesa/global/JSModule/NightModule/NightMain_v13.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 08:15:38 GMT
etag: W/"6603d5aa-af32"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNYt%2Bg6UEv%2B%2BkxNQsMUrnCtysMxfWeveS2eHASl9T6r5ZCQLKeKg9fZgoADfeT9d%2FhkyyrOmXGJJVyJbaJZttos82AGKC2ZqeGMey8NMxZNZ%2FJa79aOphS9JQc6jODM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb97ab3b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/game_zwimg.png
200 OK 382 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/game_zwimg.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 4-bit colormap, non-interlaced
Hash 7e70d2454beb21c7eb29109ee76990e2
350c238b48ed615499e96ad408dcf200ffa17030
1d33e6d0e9cc4c499d43e84b2ce144b9f3bfdd94d63938552ebc2ccbc38f4d54
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/game_zwimg.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
content-length: 382
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: "662a09f0-17e"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FOEdq6fRgcfKU2OWRHQWbLfJUy5dvmkwW1fVeQQD5hA7Z3hS47nOq%2FETw8koJ3SB1v3CZtM%2BURoKFpv8b9d13B2w7qbKsD6Or3eCkP%2FSdvhOXSA%2F9KVEBtXNHBOGvUQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbbacd0b515-OSL
alt-svc: h3=":443"; ma=86400
200 OK 32 kB URL User Request GET HTTP/2 IP
Certificate IssuerLet's Encrypt
Subjectmallpesa.com
FingerprintDC:F9:69:6C:ED:B6:8D:7C:40:20:39:2A:BE:9A:F0:04:4F:CB:86:5F
ValidityWed, 27 Mar 2024 15:33:49 GMT - Tue, 25 Jun 2024 15:33:48 GMT
File type HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 48fdfd5540f1166322c95aa8350032a2
317ee97363d4f06f5f5fcdaf933622db0e8bc608
69f9d3c5a9a9f6cb5c9305c6391b86916ada56dd7bc858810cc5353e2390d0a7
GET / HTTP/1.1
Host: mallpesa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:53 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: fk-pan-only-one2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eSCDgsYFM%2B3P2s%2F9hTyTQ1yC9igS57VbeJpCO3B3dzH39%2Bi8OXh0%2BltV9zoQDbtJ85WypfUHjyJDLEsAmAU6YLbkrro8LoTXPpErckHFMMNijd1mj%2BFBic%2Bb%2FJ4yu8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcb5983b56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=16751001&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fmallpesa.com%2F&channel_type=code&jsonp=__271eulbsxrf
200 OK 383 B URL GET HTTP/2 api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=16751001&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fmallpesa.com%2F&channel_type=code&jsonp=__271eulbsxrf
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type ASCII text, with very long lines (383), with no line terminators
Hash d4c213d7313468a79f7c2fcbaafa20a3
0b82fe89f2910751f78c7e090f95a3941f391a06
50cac6380d1ca7a142b5cb8b29b95ef7d8500ddd6cbfcb1de8fef9f35d0fc5b8
GET /v3.6/customer/action/get_dynamic_configuration?license_id=16751001&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fmallpesa.com%2F&channel_type=code&jsonp=__271eulbsxrf HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: frame-ancestors https://mallpesa.com/;
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: allow-from https://mallpesa.com/
content-length: 383
date: Fri, 10 May 2024 11:54:54 GMT
X-Firefox-Spdy: h2
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58&version=190.0.1.14.71.21.2.1.1.1.1.5.2&group_id=0&jsonp=__lc_static_config
200 OK 1.4 kB URL GET HTTP/2 api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58&version=190.0.1.14.71.21.2.1.1.1.1.5.2&group_id=0&jsonp=__lc_static_config
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type ASCII text, with very long lines (4429), with no line terminators
Hash 670992f96a7734327017a43a745f9f6b
5630a54db69fae960c9d5cbd40320fe60a22a7a7
09ce16e8f48b53cb8ec7470e1171c982271191292ee5059a8a3dd24a166c5041
GET /v3.4/customer/action/get_configuration?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58&version=190.0.1.14.71.21.2.1.1.1.1.5.2&group_id=0&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
content-length: 1436
cache-control: public, max-age=600
expires: Fri, 10 May 2024 12:04:55 GMT
date: Fri, 10 May 2024 11:54:55 GMT
X-Firefox-Spdy: h2
event.uuuuzzzz.club/push.php
200 OK 4.0 kB URL POST HTTP/2 event.uuuuzzzz.club/push.php
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuuuuzzzz.club
FingerprintFA:41:36:60:F0:BE:88:B5:07:60:0A:33:F2:1F:89:B8:56:C0:60:D8
ValidityWed, 27 Mar 2024 12:40:00 GMT - Tue, 25 Jun 2024 12:39:59 GMT
Hash b3770b948db217725b4f544237c2a92f
f2547e81d1bea61adae74dd456f4f8ab2c9334a3
e648db0320398fbc494434e2105541aa5c91a77e8ce0d844ccbcf7a95a42a36b
POST /push.php HTTP/1.1
Host: event.uuuuzzzz.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 105
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ICLAdUikyV4kyQRAH%2BZP3tr0lzS%2BK4VehfUy38FpVpp%2FmcoPwqwvpONOE4%2FE3wMugBmodLgRhyrBwTjgWjGrIBK7UUN1%2FQgTPAcyU6G0Gv%2BHQjDImDeC%2BKt2Zyr6yc7r5or4sFVE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcbd7e2156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa/global/JSModule/Vipmodle/VipMain_v22.js
200 OK 8.9 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/JSModule/Vipmodle/VipMain_v22.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 6670505af2825a498482969bdef1b296
2e11c6bebac5d725f829ac29353548af7e0e4de1
4a64319a552ebc47306990e3771ebbcecd7ccced8d77f738259f27594dacf756
GET /kny_games/Mallpesa/global/JSModule/Vipmodle/VipMain_v22.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 08:33:44 GMT
etag: W/"6603d9e8-9c7a"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UhQEEoyrQtAXFGumqEUesFJMbZ3psYahTf%2B2OMrkfFPF3VbkB4yUFni6jTAUDDqEI%2BAJHrZirZ5UTd%2BlguFNcSxq7%2FG57y0AuxVk6p9GlDB8kJlD3rhkGa6fY7IpCVU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb97aafb515-OSL
alt-svc: h3=":443"; ma=86400
secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
200 OK 2.6 kB URL GET HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (8894), with no line terminators
Hash 7b947779aa8032697af1230077055b38
8c13b2bacdffda3210098d63a77ffccf69294f2e
6820cfb70bbd71e1be0999a4274abef4b280026a435d6195436007a1c00131df
GET /customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Fri, 10 May 2024 11:54:55 GMT
content-length: 2602
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa/global/JSModule/CommRankModule/RankMain_v8.js
200 OK 12 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/JSModule/CommRankModule/RankMain_v8.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash b6913f94bd6288491f87018b4d33ffa3
3dfa510b0cfc17bf45988ede71639235826497db
0f2a3349fb7e566e4fd079658b5c741d094a8155c5a3dfbb75ba164c1c3f22cf
GET /kny_games/Mallpesa/global/JSModule/CommRankModule/RankMain_v8.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 08:19:14 GMT
etag: W/"6603d682-7232"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d7EiE3i7phaJsX95rvY4DqW1v3H%2BushWbmnG1A9dJ%2FAw1j%2F4w5R5Ah1OGAzNYXr9JmK8xjIj%2FCpDBWoM2CO4ZEOEWWl1QEcTl%2BtddMDskRGBt%2FhH8f9jvd0%2F%2BqJY4ic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb98ab8b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/js/main.min_19bca1af.js
200 OK 87 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/js/main.min_19bca1af.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash a3c4d6a99045cc570932d9da30d560d7
c47a58d67020adb89adbcf26442504753f562f34
7c7410d9f29e318c6e85bad341270d40f375994877ad754bd9083cbc2e01a4da
GET /kny_games/Mallpesa//global/client/240425160101/js/main.min_19bca1af.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 08:01:09 GMT
etag: W/"662a0dc5-5862b"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gPyUgQimpFKMXvTXE8ct92qn58Ee9NtKIA0y1EC4cqkvJM0U%2BYAtjajx32rbivWnIZfYP2DUkxVAERhnYUhUYXfWUv7FAdvlhl9tPGc1CZPOEZGffg6uu67FuWsfgjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb97aaeb515-OSL
alt-svc: h3=":443"; ma=86400
event.uuuuzzzz.club/push.php
200 OK 7.3 kB URL POST HTTP/2 event.uuuuzzzz.club/push.php
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuuuuzzzz.club
FingerprintFA:41:36:60:F0:BE:88:B5:07:60:0A:33:F2:1F:89:B8:56:C0:60:D8
ValidityWed, 27 Mar 2024 12:40:00 GMT - Tue, 25 Jun 2024 12:39:59 GMT
Hash b3770b948db217725b4f544237c2a92f
f2547e81d1bea61adae74dd456f4f8ab2c9334a3
e648db0320398fbc494434e2105541aa5c91a77e8ce0d844ccbcf7a95a42a36b
POST /push.php HTTP/1.1
Host: event.uuuuzzzz.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 102
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D5e7LLZBI%2BGWv9RJbOIyNNsbEn8vLVYi%2BG0y2KhgctxbokWgoChrlYlErjE7lZtQG%2BcJnDQFpngOZfCU40DiAloL7m%2BCJPN07j6DgmWuMuxb7idJ26iTqupJNM4tVd5j1cYjTGDH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcb8497256ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa/global/JSModule/DownApkAwareModule/DownApkAwareMain_v3.js
200 OK 9.3 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/JSModule/DownApkAwareModule/DownApkAwareMain_v3.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 2a2685db1933ccc3cf0bc52ca44fcc65
2ce695af72dd9d04c942b6de05781ede58cf36b3
63bf455bd6e32661638773450f8a392895b195273a5aee2cf01ef6191da56523
GET /kny_games/Mallpesa/global/JSModule/DownApkAwareModule/DownApkAwareMain_v3.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Tue, 16 Apr 2024 06:43:19 GMT
etag: W/"661e1e07-6d1f"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gkK%2FThwEZVyxkh4dcLlbvaMwclWxZG8YL8MsWJyXKQTP5LgD1icPPH17005uaYQltuGzOSy9%2Fc%2BhxF1IKIFIlTYvGrz1V%2Fdc5aSBSdPaOkAJwqfVhTFPrefNySQXAo0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb98abbb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.livechatinc.com/widget/static/js/0.c662232b.chunk.js
200 OK 66 kB URL GET HTTP/2 cdn.livechatinc.com/widget/static/js/0.c662232b.chunk.js
IP
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65462)
Hash ac1b9724f6e6781a506d9c1680a44b84
3edeb0fa635d4cbb4a855647c733a75cf9985d78
0723231b5ea38a06f08f621162e51cc56bc53b08e626087d7260127f808ea928
GET /widget/static/js/0.c662232b.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Apr 2024 13:11:22 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 7kC.itQ.Ypj0BYDgcp9jBDxxhaTS9ku.
server: AmazonS3
content-encoding: br
etag: W/"ac1b9724f6e6781a506d9c1680a44b84"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: wPNy1q57X7tqTeSUrM2AeoBV_S4EqOddHu4yQEeQf9DY5-yP1zbs7w==
content-length: 66444
cache-control: max-age=31536000
expires: Sat, 10 May 2025 11:54:55 GMT
date: Fri, 10 May 2024 11:54:55 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/1.687a030b.chunk.js
200 OK 98 kB URL GET HTTP/2 cdn.livechatinc.com/widget/static/js/1.687a030b.chunk.js
IP
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65462)
Hash 7f3981bea2d4e900db015f711fe53ed5
857a0f956208f29b572a7457da4ba0e4aa3cb10e
4c8045b829e295b13046ae3b1205de2b10ae926df8bce37c64be1b552cf925ed
GET /widget/static/js/1.687a030b.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 09 May 2024 11:03:50 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: iJV_bKxvh_vXAQB6r1u880gqrOypYWr_
server: AmazonS3
content-encoding: br
etag: W/"7f3981bea2d4e900db015f711fe53ed5"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: Cr__9ieerNf126K1NHjJwRpWkYUuqlR_B1c9JAbpKhpLDfAlNXUzkg==
content-length: 98105
cache-control: max-age=31536000
expires: Sat, 10 May 2025 11:54:55 GMT
date: Fri, 10 May 2024 11:54:55 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/iframe.8cbf9687.chunk.js
200 OK 155 kB URL GET HTTP/2 cdn.livechatinc.com/widget/static/js/iframe.8cbf9687.chunk.js
IP
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 155 kB (154691 bytes)
Hash d9b6ce4699e39497e695e979b52a5e97
9769b18891ce37eb021c2ff882a4ae99eb83c3ee
8ae314910552bf48dfd36d324e943ecbf3b45b42369154357af39b89efed82b2
GET /widget/static/js/iframe.8cbf9687.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 09 May 2024 11:03:52 GMT
etag: W/"d9b6ce4699e39497e695e979b52a5e97"
x-amz-server-side-encryption: AES256
x-amz-version-id: Igs3lFcp_M1aSZ021_mBMRzWmB3rw7EV
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: oNgbqJkJp3ZREBcMNbzwVvckdpW_RwescmlJEdBM1Ysih6XRdQZ2yA==
content-length: 154691
cache-control: max-age=31536000
expires: Sat, 10 May 2025 11:54:55 GMT
date: Fri, 10 May 2024 11:54:55 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_topBG.png
200 OK 431 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_topBG.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 750 x 96, 8-bit colormap, non-interlaced
Hash bb45441e864b44e2b45b4223d2ee92c5
f60cd1c86f2b7a818e8064eaa69500290245eaa6
e84f6bd5eaa2e8f277d1265945f9e52892b89f5978836aef62307dfb1d814e9f
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_topBG.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
content-length: 431
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-1af"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hsBLpv%2FBqWBgfO9fY7U5oinxg47eIK4lVDt9QjOtjCUenu92NSH%2BTiAXBlb%2BV8GXMacfK%2Bg%2F5f169YMJNMod4RUX%2FE4tleLkTteIVRg09m5F9roKCet7h%2BQuofnA8Bk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc24b8eb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/font/Lato_R.ttf
200 OK 120 kB URL GET HTTP/2 cdn.pooo.win/global/font/Lato_R.ttf
IP
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 30 names, Macintosh, Copyright (c) 2010-2011 by tyPoland Lukasz Dziedzic with Reserved Font Name "Lato". Licensed und
Size 120 kB (120196 bytes)
Hash 7f690e503a254e0b8349aec0177e07aa
127f241871a9fe42cd8d073a0835410f3824d57c
7ae714b63c2c8b940bdd211a0cc678f01168a34eea8aa13c0df25364f29238a7
GET /global/font/Lato_R.ttf HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: application/octet-stream
content-length: 120196
last-modified: Wed, 30 Aug 2023 08:00:46 GMT
etag: "64eef72e-1d584"
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ppPsdCkpGA3M%2F8FdZscfayey1bkMbjWkBZGRv99LTN6EwZKqCvdWi%2Bo2%2BpomuhVbDhNedUE1CLHH2rcdkcjPdrR%2BCVoy7qyGW%2Bh552JjEQyzsw3MW3xqrv%2FYIlwS%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc25ba4b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/font/Lato_B.ttf
200 OK 122 kB URL GET HTTP/3 cdn.pooo.win/global/font/Lato_B.ttf
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 30 names, Macintosh, Copyright (c) 2010-2011 by tyPoland Lukasz Dziedzic with Reserved Font Name "Lato". Licensed und
Size 122 kB (121788 bytes)
Hash 44dfe8cc676882243911a3197a50169e
c330d59f3e64e07a2571c2ba4f4109b20a168f69
14f7de6b616950395062902eb8f70f01c0a901223db5d40f2a05728ac4a830f6
GET /global/font/Lato_B.ttf HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: application/octet-stream
content-length: 121788
last-modified: Fri, 01 Sep 2023 10:28:57 GMT
etag: "64f1bce9-1dbbc"
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EROkEke%2Bm1cANjN7bOQixdjPs05TR6kpsapLzpGhN7MWH5uwTgv5vLmpgtc53VeXL4rR%2BpqHLt%2BtIt7RTY%2B9oslIvINBwxHIA2nFE8J3Rjh6r9RfDm1jU35D5y62Tu8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc25ba3b515-OSL
alt-svc: h3=":443"; ma=86400
event.uuuuzzzz.club/push.php
200 OK 6.5 kB URL POST HTTP/2 event.uuuuzzzz.club/push.php
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuuuuzzzz.club
FingerprintFA:41:36:60:F0:BE:88:B5:07:60:0A:33:F2:1F:89:B8:56:C0:60:D8
ValidityWed, 27 Mar 2024 12:40:00 GMT - Tue, 25 Jun 2024 12:39:59 GMT
Hash b3770b948db217725b4f544237c2a92f
f2547e81d1bea61adae74dd456f4f8ab2c9334a3
e648db0320398fbc494434e2105541aa5c91a77e8ce0d844ccbcf7a95a42a36b
POST /push.php HTTP/1.1
Host: event.uuuuzzzz.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 115
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CS8t3GLZrsalWmYEVnKnp%2BopBp2xrGOdom3vldzduGfRYhhzWsGIAfkRJMn7j98T9Rg%2BG8seAvwEitme45SQRiJTRqAYRR4sNiEwvKH4%2FG6%2BwHXrKpkMOAB1iy7C1C0X%2FwwTeW%2F%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcc2786d5684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Bonus.png
200 OK 7.7 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Bonus.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 9cce290c6d6bcb20c9a53a0e030cc109
6eed8dcb500825a0fa52f92661882369bc604b59
2f3e9fc081e6283a4a4500c415ba28fedfff22a54234364426b39f00205bae50
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Bonus.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-1c20"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ExiHDx%2BxdXVjZ%2BlKqq9IDaBLuzBKJt%2Fe6w4mTLgOlUw7vD3JnkjLn661Ao0ZiwODac7InHeAJtlmChrzhdCOjEE4rx9K29R3CoMqz%2B9VKpCx1D7bKPxZhvWu5lXJfN0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc39d07b515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=20002&r=0
200 OK 14 kB URL GET HTTP/3 api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=20002&r=0
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
Hash 0717d48a20fd202845f28b3efecaebbe
ed7d84e4cbe21a5a0d5fc353c9a03ed10163ed9a
7d8e6b4e4f1150f45aff29d879a7b64b0d7be904987c5e6a04cc3d1a1724ac95
GET /kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=20002&r=0 HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xpd1LyaHY%2F62ushXWvXedLeF6gcumGrimkdwAb1plOxq9Jlo5g98Cwj9WEs8Ji1KuxjlaCvrh4QiBmk1dcUvBHUgcc2%2FaVjZZFAjPX6oXZLXCZzCvN1D%2FrLyZ5bhUXQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcc23b66b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/dt_y1.png
200 OK 225 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/dt_y1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Hash 2c1e14da1f1589ef95188a7c7d8b6500
46c3b8a391f2299e1e2d1f3f7017274da3b8fb55
828a724631dbb80d9ece0f9e1c290e272297374173f7ece4b08dddf49d450d8e
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/dt_y1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 225
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: "662a09f0-e1"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y0h58frV1GpC4TcoTSG8gJUo9Jhl0qtwBgqBUSIxigDijciiqc%2BWTOlgQVVcAZHFZ0iHrn1QIvpDERfzJZxd%2BHKK7qHZi6B8ZJQ7%2BTlFOsV5%2FIiyf4oeWUbGEj4sn9k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc58f39b515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=21002&r=0
200 OK 73 kB URL GET HTTP/3 api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=21002&r=0
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
Hash 0717d48a20fd202845f28b3efecaebbe
ed7d84e4cbe21a5a0d5fc353c9a03ed10163ed9a
7d8e6b4e4f1150f45aff29d879a7b64b0d7be904987c5e6a04cc3d1a1724ac95
GET /kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=21002&r=0 HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fVnL3rqPIh47VdReeoFGlF5ysy8qQM6gbrDVjT7eJNgZuLwtc7jwGx50WWdtmWnJMV59XsHC4vOR%2FETsfnO1%2BMDP90Xgz6Y9ARwr1oKbyx8XT9NZNRraGetDMXTbEvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcc21b4bb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Me.png
200 OK 12 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Me.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 8f05cc928cad8fe33eb58c35af462e50
967599608fcd256bedcb4304878308d2acf6e06e
949fdadc6ca1e50ffe69bb5ea2a9f2dd22cfc4f7a889f6b959eb499579642d53
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Me.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:51 GMT
etag: W/"662a09f3-bb1"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nXl%2F8y5cwawIUnz9lqKVf1hNbwvcq92LFgYfeyhIxpMF836Y%2FEDAnih2mJxBJDvsEFhikpd1SUiRM5AgcYkjSvst3jQayld2aJbf71dN2e41Hfc62kaDa0txFavAdZg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc35cbfb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/downgb.png
200 OK 320 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/downgb.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 56 x 56, 8-bit colormap, non-interlaced
Hash 165e4ec6c608c62668fc0b727bfeae42
8e738830f7ba200d61a2df482bee363ac0bdaff5
73b841c488c523edfba706464e96bbf2881be1cf8664013f9076869e1fecf2c5
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/downgb.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 320
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: "662a09f0-140"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WNbV2rVmLMYMwGVNpJHtuzvbSqAPMHESkvmHxmdWpel6o7OYvsiYsm5Qqg1apXhToNpPGX1ciSIphh1adQwjyCxF3Gc8d3slPFYb3RUWW5klDkkReiRGcpZxUtABTQ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc5ef8bb515-OSL
alt-svc: h3=":443"; ma=86400
ocsp.digicert.cn/
471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash d2ddf525665de7cb74cf7f111a4df444
648864466ae0020f770e791d26b7cb8baabd6fab
c743a8174aa4bf5e5fe44fd589dc3d47fed1a8c8dca128b4e45c7eb6da70453d
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 11:54:56 GMT
Ali-Swift-Global-Savetime: 1715342096
Via: cache14.l2de2[55,54,200-0,M], cache14.l2de2[57,0], cache3.ru4[87,87,200-0,M], cache3.ru4[88,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 10 May 2024 11:54:56 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff6039717153420962562936e
api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58
0 B URL api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.5/customer/rtm/ws?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TCW2OvOwJO2qUM2EGVC8cA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: nXBJuL1eW/6zrHY/IlkVAQ3uHpA=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
Date: Fri, 10 May 2024 11:54:56 GMT
Upgrade: websocket
Connection: Upgrade
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan1_2.png
200 OK 658 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan1_2.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 350 x 60, 8-bit colormap, non-interlaced
Hash e1dd92862e08961d4d9880af6cd7990c
19a730d2920391066faacfd8f2944c62cbde7b02
4c8af16ce0a29f7befea9cea02c2023604c4a680ee42e97c8add07ae273a75df
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan1_2.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 658
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-292"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3oWOZ6GASfxBC5atRToowI%2BW%2BV67m40r8Y3EKITtxah3HsAx5nMbUQIWDnH2Wy8trLzk%2FD4d0xIGk%2BQTiUsSn7EB4rucuKgRutiS2rPxdKcrS77frW%2B8x9qkMB9xH40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc63fe7b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan2_1.png
200 OK 554 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan2_1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 350 x 60, 8-bit colormap, non-interlaced
Hash 3dc05eb106819a18f5a2c34cbc4bc193
96441bd135ccd8a98bcd8f43a8a819c7ad2d209f
e7814e365c0192b291e5dbd00edc78d8020c6a916a1aa312ebdb9c78bccf389f
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan2_1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 554
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-22a"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2GXbZbv%2BJGlvv5g%2By7YME03AsJBG7O01z%2FvIo232ZdA04xlTtOXqnps%2Fs3FtOqK1BGKNH5IRR5rzBrvmsfcmj%2BuwSseqz6qN7mUTBTM%2BGzR53BUpLQgUa1JaNLqBrjE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc5ff94b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_Lucky777.png
200 OK 16 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_Lucky777.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash d79fa38af8ba190b08373102691f00d3
a710cfd8bd49d54bf6c611ab92fb448cba875d4c
4686a1da4875d6082bce0c2adf543ea240dc0c0174bc226f9c9e6fa4ec33f049
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_Lucky777.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:23 GMT
etag: W/"655c1e73-3214"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wLg2KFkPPZY68Gf%2FKVzhnfL8t31a6BjJiA39Qfq6S28KHT1No5FVtHt%2FabuiDaIyI%2BnzeW5AURseFcA%2BgoeYJX0BtzQnFTRvp%2BIpItcdizPZ%2FxnJ%2FKQ69QJSvVG1kVU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc6885ab515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//banner/LuckyprizeTopBanner_YJ1.png
200 OK 120 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//banner/LuckyprizeTopBanner_YJ1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Size 120 kB (120347 bytes)
Hash 8f3c365a20edb27f8b733ff0f6db9700
ccebb1c8cb5d2c9694a55f8b5c6255e90eaf4086
8aeb97f2d2b49c4629632035146df8a0d5b0eacf94f5bb49f1d9116c8bc55341
GET /global/AllImg/kny_img//banner/LuckyprizeTopBanner_YJ1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Mon, 13 Nov 2023 07:17:33 GMT
etag: W/"6551cd8d-10deb"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xdvv1sJ8MAZe%2FxDMgTBEyX9NWh7OD7FT3H4hZDXgOxtotFkIxuKtKQ6AehtOKfx%2F1GpVrmQX6sG3diwEHcOUUkJGqse%2FiZxIXHakIeufed2CDrR0QssWQjKxrouSZvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc54edeb515-OSL
alt-svc: h3=":443"; ma=86400
tam.cdn-go.cn/aegis-sdk/latest/aegis.min.js
200 OK 22 kB URL GET HTTP/2 tam.cdn-go.cn/aegis-sdk/latest/aegis.min.js
IP
Certificate IssuerDigiCert Inc
Subjectcdnv4-go.cn
Fingerprint7C:89:00:96:3E:D0:A6:E5:5C:60:9C:22:C5:6E:05:A7:70:E1:59:AF
ValidityTue, 05 Mar 2024 00:00:00 GMT - Thu, 20 Mar 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (64998)
Hash 501b8eb6120e4c66acca2b604cb91261
e2fc65b261add77caa7a60e5ae31c6d54820baa0
d8dcb49319bd61ccd67610c592b1212bf50921fe2081f97be84d3fa3dff52dbf
GET /aegis-sdk/latest/aegis.min.js HTTP/1.1
Host: tam.cdn-go.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 18 Jan 2024 04:17:05 GMT
content-encoding: gzip
content-type: application/javascript
access-control-allow-origin: *
content-length: 21938
accept-ranges: bytes
x-nws-log-uuid: 626222863754252847
server: Lego Server
date: Fri, 10 May 2024 11:54:56 GMT
x-cache-lookup: Cache Hit
x-serverip: 43.152.14.106
client-ip: 91.90.42.154
vary: Origin
cache-control: max-age=666
is-immutable-in-the-future: false
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_renbg.png
200 OK 340 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_renbg.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 120 x 46, 8-bit colormap, non-interlaced
Hash d0bfff2ed5889f187e2f113a68ca8dd8
1999a3bc17121fc859822d67edd97815a0b2e8a6
ab9ed42bf9e4f589fa6c6f850e9ce783173ff96e379019c66b33c51fdd30578f
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_renbg.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 340
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-154"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rInrpSCBBqnl4EH56O7dI52YunAytHkaRyLhM6VLhqUWVbUzewRPA2E1fKYnJZQJ5QNBuRw9gApUkYeEmbIuevIIV%2Fb1mH5vLbqBIhMIRSfiyWGtrzJ%2FuaT0XNsSuCU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc83a5eb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_LogInBtn.png
200 OK 868 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_LogInBtn.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 100 x 46, 8-bit colormap, non-interlaced
Hash c4d08fe298becb88169a23e1ad44806a
9d111b08ca609601166f0c5f9bad033bd4f866aa
beb888d8deb51f68865ea669d9fa466d13cd23bb772ce4f18e7d27bdd207a628
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_LogInBtn.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 868
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-364"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FmvRnORtbbwy%2FYtZ75fijsvaMHQjId9MuSPhR1K%2FGpMYg3ue%2FPUCVqqfpXlFgspqKK2F3wrGJLRo8fsaz0Mgs20go%2FeDAcdczWiNle0iTUPTaQd1cewCH5P57wy4v8I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc8badab515-OSL
alt-svc: h3=":443"; ma=86400
ocsp.digicert.cn/
471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash d2ddf525665de7cb74cf7f111a4df444
648864466ae0020f770e791d26b7cb8baabd6fab
c743a8174aa4bf5e5fe44fd589dc3d47fed1a8c8dca128b4e45c7eb6da70453d
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 11:54:56 GMT
Ali-Swift-Global-Savetime: 1715342096
Via: cache26.l2de2[493,493,200-0,M], cache26.l2de2[494,0], cache3.ru4[525,525,200-0,M], cache3.ru4[526,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 10 May 2024 11:54:56 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff6039717153420963743000e
ocsp.digicert.cn/
471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 8cffdec1e02eb3041d2645010b026f2e
f54ffe7fa5c6063379ca674c0ee6eb015976a033
a458df27e9cb3bcedb0ac97162b78a497a87ecb69727f72c763a49d2f0413983
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 11:54:58 GMT
Ali-Swift-Global-Savetime: 1715342098
Via: cache16.l2de2[4,4,200-0,M], cache16.l2de2[5,0], cache9.ru4[43,42,200-0,M], cache9.ru4[43,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 10 May 2024 11:54:58 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff6039d17153420981467991e
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Activity.png
200 OK 31 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Activity.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 68728bef3e1305a729ab75d7f93e85c4
ab9b9a7cb365803eb56689ba2c69979597be7b29
2960bd4c3defce4be4460468234d855e0c97d99ae504c2d36bfcc45256c7d76c
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Activity.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-17e5"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pBb6mRrrCIAr95kz4MDRIYmmO1I7%2FspSpxo9%2Br6D3Tq1cmeHXyB%2F9ONcYAPaTD3eiX4PbmXPYM%2B2WoJD3FoY5Xn2QJ5h3G1it0ym3Lqe0eDojHC%2BQE8xS1TdWq7hMT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc35cc1b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/HotGame.png
200 OK 67 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/HotGame.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 79e8e42dbeb4ebbf69529097dc23ea58
dbcdee69cfbea9b120fc9468db0fcf1653c9941d
7375409d49e1739772fa54435577b29b070d88fb0ce5fb4f04074d66fc59866a
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/HotGame.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-81bc"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p1T6Vtila%2By%2FonjPAVzx2dckIQb75qTjUZjLfrFU%2BfV36Ctd2tvzIUeMCTJsVjaxv37ZNhUMx3gziSJ4Fjy9o9snovwX9Oegm3ghSbGPpKTCO02BFTcgk%2Bah07s06V4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc50e97b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/btnTypes2.png
200 OK 1.9 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/btnTypes2.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash f3186c7edbda68b53ebfb700db9c1581
7ae58a5f388059f9ae844c1933eae9a54717ac6b
471af4777f3edd9347521e363ce00a87d69ae8c98f9fe64a76390e21865b4f12
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/btnTypes2.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-56a"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QV6EEdwY5jxqTFzsgrLjzsq0EASFtMyeX7GK0rUXrMew5qP0mV8YSBcqmikdJpwhbzJ5YHL48wP40HrEQZgfmU4IQpOF06kZwE01q5p4WvbWgkupeGg0XGOjoWjjbdY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc3fd58b515-OSL
alt-svc: h3=":443"; ma=86400
rumt-sg.com/collect/pv?id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer=
204 No Content 0 B URL GET HTTP/2 rumt-sg.com/collect/pv?id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer=
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
Certificate IssuerDigiCert Inc
Subject*.rumt-sg.com
FingerprintC9:49:6F:7B:5F:03:08:00:E6:A1:15:B5:56:02:0C:2A:AF:5B:3A:ED
ValidityTue, 30 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/pv?id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer= HTTP/1.1
Host: rumt-sg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 10 May 2024 11:54:58 GMT
access-control-allow-origin: *
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
event.uuuuzzzz.club/push.php
200 OK 4.2 kB URL POST HTTP/2 event.uuuuzzzz.club/push.php
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuuuuzzzz.club
FingerprintFA:41:36:60:F0:BE:88:B5:07:60:0A:33:F2:1F:89:B8:56:C0:60:D8
ValidityWed, 27 Mar 2024 12:40:00 GMT - Tue, 25 Jun 2024 12:39:59 GMT
Hash b3770b948db217725b4f544237c2a92f
f2547e81d1bea61adae74dd456f4f8ab2c9334a3
e648db0320398fbc494434e2105541aa5c91a77e8ce0d844ccbcf7a95a42a36b
POST /push.php HTTP/1.1
Host: event.uuuuzzzz.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 109
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oMnXO5tsGpi4i7kB7ZUbjvEcn7VqGOqciyVhTzoNvKkZmee16pzEU7LlO78C18gcf%2FYhhDc8DTdYsh7Mlh0XgbBYf93sI%2FO7dqx4yyh%2FZmMYetEQHnsKSTGRmQ68PSH9xm3mwuVm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcc2786f5684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
rumt-sg.com/speed/performance?dnsLookup=1&tcp=29&ssl=27&ttfb=183&contentDownload=2&domParse=89&resourceDownload=2719&firstScreenTiming=3274&id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer=
204 No Content 0 B URL GET HTTP/2 rumt-sg.com/speed/performance?dnsLookup=1&tcp=29&ssl=27&ttfb=183&contentDownload=2&domParse=89&resourceDownload=2719&firstScreenTiming=3274&id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer=
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
Certificate IssuerDigiCert Inc
Subject*.rumt-sg.com
FingerprintC9:49:6F:7B:5F:03:08:00:E6:A1:15:B5:56:02:0C:2A:AF:5B:3A:ED
ValidityTue, 30 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /speed/performance?dnsLookup=1&tcp=29&ssl=27&ttfb=183&contentDownload=2&domParse=89&resourceDownload=2719&firstScreenTiming=3274&id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer= HTTP/1.1
Host: rumt-sg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 10 May 2024 11:54:59 GMT
access-control-allow-origin: *
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
cdn.pooo.win/global/egretlib/all2.js
200 OK 123 kB URL GET HTTP/3 cdn.pooo.win/global/egretlib/all2.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Size 123 kB (122643 bytes)
Hash ea8aed4df564c95270aa73cc299d79ed
024cbb6d24e4d04b8264180fafe95d3ffbaa2b39
0c150b6dbb42915ec4e477a89cfabd756d108e8e9a0cb96eac6524efddda3161
GET /global/egretlib/all2.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Fri, 13 Mar 2020 08:39:26 GMT
etag: W/"5e6b46be-6e14c"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HPDh3dE3UNKJ1WMsjwBGipk8MyHoRqpr9ZOg1zUDAbjJJEByhO8K0oUUiL7tXe8ZG6%2BYrHsr8C1YW89dpG5F0qRrrPP7sntwQdtPEPE7Yf7xarHsyzJiz5jV6nUjg%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb97aaab515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_bj.png
200 OK 58 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_bj.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type gzip compressed data, from Unix
Hash 7a9268436f72b8f0ec864d998d63a21b
c90d98646f59bfae965fcf4c5138ba7fc724a9fd
ffcf12cc998270e032bd53b4dece56bd60479aaecf6233e4106d7d3bda6b8812
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_bj.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-bb28"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N18%2BS2UNvrI1hN6D1TYVjqmxTbz0lUlsg%2BrspsBypkIZlYWzo%2FXwPnIZvh2PerghL4QcBjYxMOvtRbOAi92%2FPOpH7%2FSr9rIKd12rzVetxGhiES4apu0hXICE7WAbddk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc24b89b515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc/clubShare.php?
200 OK 455 kB URL GET HTTP/2 api.pooo.win/kny_pesavegas/global/v9_gsoHpc/clubShare.php?
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
Size 455 kB (454762 bytes)
Hash 72ae03dba2c8784b5352a390ea3c041e
042d1d4de271a7fdfe9db6151e3d974bbdf8c81a
bfbdd62cf9fbc99a33ae56178483aa77857f11bb863c5c3187d6e7b174da6a90
GET /kny_pesavegas/global/v9_gsoHpc/clubShare.php? HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7DRktXtqMx%2FpNBIZ%2By31eff7AiQVrNFkDoC0Ihi6g5ZPnqaFmEEivUVw53PGk62OpWuPuATAjg3MooeQqcd5A6jxNIsH%2B%2B21Tvx75OKMx%2BfV5CNmTvzmQin0IC82gYU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcbafecb56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_Register.png
200 OK 10 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_Register.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 430 x 116, 8-bit colormap, non-interlaced
Hash 0f73d8391e77297d267781ad63718fb5
9bf339ae9068a90e4acd6993a83b6d48e630560d
0cfe060f3eb06743a86f4d52683a3bdd783715d5255596fd390b879728369502
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_Register.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-27cf"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qZUzz7U3icSVf1HASMbW1e1OlSZbjVfgnO4aen1JB5pjPmc%2BL%2F%2FPGBhmsLm1p3xDKQJGWovrvolzOLVa7FaBuIIREeuVDMYHEUlbmkiRn8JXdtMItfIsYoMcILI2Sac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc46dccb515-OSL
alt-svc: h3=":443"; ma=86400
api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58
101 Switching Protocols 0 B URL GET HTTP/1.1 api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58
IP
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.5/customer/rtm/ws?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TCW2OvOwJO2qUM2EGVC8cA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: nXBJuL1eW/6zrHY/IlkVAQ3uHpA=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
Date: Fri, 10 May 2024 11:54:56 GMT
Upgrade: websocket
Connection: Upgrade
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_BigMatch.png
200 OK 12 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_BigMatch.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 153 x 96, 8-bit colormap, non-interlaced
Hash 93c439643510f630bc22cd2928859701
204ed547072bd5d30fd3091220af7e7ba9a8f0f2
e07650005192724589d9edd8f6edcd76f4481eae15af1f65bbe840475fdb14b2
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_BigMatch.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:14 GMT
etag: W/"655c1e6a-2f57"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Og4xgkSaygQK0LZ0dichC071o%2BFg8dQZtfj4BUyrgQvyIEP4IO%2FmaaD73Z%2FH9OwLAD9AX30t7dCYK8HYHsHJBCL%2Ft%2BfxmWaOM3GJ8m%2BYNa%2F5o8JGIn7UMWmhnZ9%2B33k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc6b889b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa/global/logo1/ProgressBarBG.png
200 OK 810 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/logo1/ProgressBarBG.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 586 x 56, 8-bit colormap, non-interlaced
Hash 051c53a32ddd8ea5c9012ba82a7d388a
5115e2c035a74aee1434eb9e3bcf66624ac1daae
d8e993f1b45fc07eb658e707822f0e665050bcdbc62355bc104ad79ea5c56809
GET /kny_games/Mallpesa/global/logo1/ProgressBarBG.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
content-length: 810
last-modified: Sat, 15 Jul 2023 08:44:05 GMT
etag: "64b25c55-32a"
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fO4mh3vtBJHObb1a5F2YktMW7eqbuo%2BFATLAZrJVB3X6oncw%2Btl3tX8LBuhlvVl%2Bjc622Q4dTjGvYaljzy9YtY%2FS42DdiaWL1aHF%2B4qNfToP9RfIBl68%2BXBzdPRtodo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbb4c5bb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/menu_btn2.png
200 OK 1.4 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/menu_btn2.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 125 x 50, 8-bit/color RGBA, non-interlaced
Hash 2108597cfbbbef252623a790f9538b88
d9da7570299d1809fe8e152944038f1cc249737b
0f4180714d3713426a7b6e2a89ae13efcdb21786f7ba2b7659ab0a9a7a6a0a53
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/menu_btn2.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:51 GMT
etag: W/"662a09f3-555"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jE7NzX7e4Y%2FWcTbxhl%2Fm3DjBxrYD8qRG64aNdA06inNDY6FZLfb3yW8iSsH0fkUO35I4hvlXZqRfsigx5oqQ4t0xbcYM7d04yiFr13XAncUHQEDC%2F7PlnjHmTGfPP%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc33c9fb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Home.png
200 OK 5.5 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Home.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 76 x 68, 8-bit/color RGBA, non-interlaced
Hash 28857c82b995129382ccbf15830c0bff
4a724693b6deea8b5787ffc405ec9c9cdd56da12
db96e192f5afea982babe9dca4d7ac93560563c1976160de94fd3877c3f26bba
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Home.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-1576"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aABrUrVq3AzZW4MipT9bEwG9Kt%2BQp%2FucAjtjV33xDNyDuDdeDRjXzcM%2BWz%2FUo7DQTlewoAsJVcLfmZsr3JHKru7dmNULbBAg7AEn4rQfkXZuGE%2FN%2F9718ObhTFFmYmo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc3cd29b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/heise.png
200 OK 111 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/heise.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Hash 2002ff0e2cea4a6a5e82994418fc9413
e619878faa2c07c534ca33efc8bf1b27068ed051
d6d19dfa76ff99c507aa610b9a209afeaf08c6bb957f3ed849ee6be3a2ee549a
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/heise.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
content-length: 111
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: "662a09f0-6f"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5t7HmdrAiJ9YeNRAIX6P0geMBVJKQnyxiuVP0V2dGU%2FglMEVqJRSnV3V%2FbI05XCa7ouDign3A0jph3jvd7bE3ZgLAI6Qu7gBots8U2XX3VL9tTB7bJH1Hmz%2BpZ5Fb3o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbbbcdeb515-OSL
alt-svc: h3=":443"; ma=86400
api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58&version=384c496c023913b78d3837c106ac447e_7450eec06404882885bdb052316de4af&language=en&group_id=0&jsonp=__lc_localization
200 OK 11 kB URL GET HTTP/2 api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58&version=384c496c023913b78d3837c106ac447e_7450eec06404882885bdb052316de4af&language=en&group_id=0&jsonp=__lc_localization
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.4/customer/action/get_localization?organization_id=5eb397ab-d59b-46d7-b05c-818a75138f58&version=384c496c023913b78d3837c106ac447e_7450eec06404882885bdb052316de4af&language=en&group_id=0&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Fri, 10 May 2024 12:04:55 GMT
date: Fri, 10 May 2024 11:54:55 GMT
content-length: 3963
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_HOT.png
200 OK 5.5 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_HOT.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 97 x 56, 8-bit/color RGBA, non-interlaced
Hash 1befbd1deee0a416954ac4d8d38ab73c
39fcdc8e051e239f47a2f114f716de00862cfca4
c3a8d4b609bf4b4a558971c1cd6806bf4ac801f2048ef238a69951c358a00be2
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_HOT.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-156a"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TmJbgKecOFUaFYIdPlc47kHDJ6LS0KOTk6vC7bdt5EF%2BzvIE0y7sqh5DleaGKuShIKRt83IBu54ciLFA5weehTBqsb%2BdUnmuO4uhpMrxN6BmIeZpGqlhQNdLwFiErPg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc7fa26b515-OSL
alt-svc: h3=":443"; ma=86400
www.mallpesa.com/v2MainIJSeFHl.php
200 OK 68 kB URL GET HTTP/3 www.mallpesa.com/v2MainIJSeFHl.php
IP
Certificate IssuerLet's Encrypt
Subjectmallpesa.com
FingerprintDC:F9:69:6C:ED:B6:8D:7C:40:20:39:2A:BE:9A:F0:04:4F:CB:86:5F
ValidityWed, 27 Mar 2024 15:33:49 GMT - Tue, 25 Jun 2024 15:33:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2MainIJSeFHl.php HTTP/1.1
Host: www.mallpesa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: fk-pan-only-one2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pm2oXR46dQX3IUHoG9SZRJF9bdaGoln5q1wfuCWcenCNiL0doyY4gPhGmpVuKz7sLPxKY0IQjj1bmFhu1u2nrXsYLYyGwjsUN7JAR2PRwPxNGZYhU4t4HJGvqtyKpVrnUbZs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcb7fdf556c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//banner/LuckyprizeTopBanner_RankComm.png
200 OK 33 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//banner/LuckyprizeTopBanner_RankComm.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 700 x 220, 8-bit colormap, non-interlaced
Hash 344556eacf69903cd10fbdd4fd38fe60
dcdb8c83290ec1c29d94f9b2ac833e79b25790aa
3c1b244ac02d74aa0ddcaa2b860da948a6a2149d88a6be675c108c3a09b50e46
GET /global/AllImg/kny_img//banner/LuckyprizeTopBanner_RankComm.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 23 Jan 2024 07:21:28 GMT
etag: W/"65af68f8-80e8"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hGSsOQmICFRf%2BAejSETst%2BMNAHP89XSL0%2BZ5RRTiuMe6ANv7NKWumfS0SIi8KdISm4OGRaCIdsD4fDFR3mrALyN68wuKZAn7%2B5Z%2FDWYUFW9DU4c6OZsm3N9vRLZReUs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc55ee6b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/loading.png
200 OK 1.9 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/loading.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 80 x 80, 8-bit colormap, non-interlaced
Hash a17f089feb78fbae8e1531ecae002c52
96c2245dd10d49b6928759e6b8c1189f8e6bf15a
abcb715363230ef93bc0c7133f024506bb5aeb53f58c12b356c3fd1e17c420ca
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/loading.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-740"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A59ZpT2y84%2BYieLzJr%2BJUu8ZPSLCq%2Fu2ywkR1S2j5lpxugSCXP3rnE%2FU3oloNH3hoTfR%2FYAk4hzd%2BlDs56CGzxt1MuR1js3AL6Kkr3MB7%2BLEXx0ChTN4jYTXIB5dlIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc4ae0bb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa/global/JSModule/CustomModule/CustomMain_v11.js
200 OK 11 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/JSModule/CustomModule/CustomMain_v11.js
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type ASCII text, with very long lines (10772), with no line terminators
Hash a9eb8e0a5e972552b368e722652381d5
4d573b816181907067950bf6d2e9a8bbf1d74954
70700e94dc23821241ce23cb6442926cfe6a50126e3155a8ba73d7743bff69f5
GET /kny_games/Mallpesa/global/JSModule/CustomModule/CustomMain_v11.js HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: application/javascript
last-modified: Sat, 23 Mar 2024 11:25:51 GMT
etag: W/"65febc3f-2a14"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DxJBvWwg%2FQXiaWQoUTshcwx%2FTJLA4iKPD%2Fi3QHOWNQNrV8YrCThJeiCubeYQCFtfGmBk7knbvTBwFlZh01Lge31k%2B%2BYE8zoWsfiPa0WhQg%2Bf5xbzGzm51F3DtAlkuFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb98ab9b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//banner/SpinPesaTopBanner_DownloadAPK2.png
200 OK 44 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//banner/SpinPesaTopBanner_DownloadAPK2.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 700 x 220, 8-bit colormap, non-interlaced
Hash 6019f8d3b334659ca740daa83aff619f
2547b704434356ace876d12f172e015be43bc8e1
334102ee088ec9834594f68310c65650b1935d9947e22010634f471ebe5ea678
GET /global/AllImg/kny_img//banner/SpinPesaTopBanner_DownloadAPK2.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 16 Apr 2024 06:18:08 GMT
etag: W/"661e1820-a9ca"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AOkZ87SdG5DdaqAs3gUx9uSWFClgC%2FZD4qBHRracGysjLWbkspH9innOK5qJwi4MvjSqfbyaMm%2BxucvZUEPW5NO6b1ZJxFVTlHe1JqOFEtn0iAgCDFiDcFIosmIG9eo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc52ec0b515-OSL
alt-svc: h3=":443"; ma=86400
mallpesa.com/favicon.ico
200 OK 18 kB IP
Certificate IssuerLet's Encrypt
Subjectmallpesa.com
FingerprintDC:F9:69:6C:ED:B6:8D:7C:40:20:39:2A:BE:9A:F0:04:4F:CB:86:5F
ValidityWed, 27 Mar 2024 15:33:49 GMT - Tue, 25 Jun 2024 15:33:48 GMT
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Hash 594c2b9c2f9d668062d532b55edd001d
c753d05a4d7eca0c79710913567e365c3a2bbf13
74d23fe6344221b567146063b8f1a5f3fd30e08c44652621bb25733000b79b8b
GET /favicon.ico HTTP/1.1
Host: mallpesa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/x-icon
last-modified: Tue, 19 Mar 2024 08:12:56 GMT
etag: W/"65f94908-47c4"
access-control-allow-origin: *
jptype: fk-pan-only-one2
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hwtWNbsGxawaxaqpGsTYgsJ6eyIVLMXSAkH%2Bvzmqj0FhuGcyIE47gbPBDnJzozAPHoc9hmxD0Q9ECP7pHjgzfi5UOyBwaA7HOgP7%2FRT2DdsOO286n4men0xJShxOWYQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbaaa5e56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/btnTypes1.png
200 OK 1.4 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/btnTypes1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 132 x 60, 8-bit/color RGBA, non-interlaced
Hash c9f4a524cb41e147c3b7c8e7744d233e
36c65b152ce48976724ade8aacf006eac11cfa76
3b029b58f528f88f3cca138240f60ab699e2d6211ded91ce963cc3f8ce8b8da2
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/btnTypes1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-595"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3aBkwZRrR10GeIwH6xFx2VTYFAX8BzAwr6Ev99qiPR%2BMCGq7jv%2BFmrbNmCdt5L8pF9d8HeRLWsEuzDX8l1X%2BXAVMHuDYqdrAN6TqUns2MFwMTFG8RrapZt6qSmgvmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc3fd51b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot_Show.png
200 OK 3.1 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot_Show.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 100 x 42, 8-bit colormap, non-interlaced
Hash 966c41d6a0cc400a9a0bc63127da82b4
47c3277415edc32722a935f2f8ad831c068a1fa9
cc1b7d7be0c2bf94a29604c61fd6a49c8a577ba2e31bf7902f14f74d24a36517
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot_Show.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-c2a"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hNcC52JGEQIYGbV5ToH4c11CrSiykd6jmCg2UnT2Lu3OxzHyBGBJWZPzPON8oSXyZJUTS62H4LeutzdKfqNwOsmvmGFusAMLcr8xh0DdD1lp5ook5wgSfCtZnZ4ZLDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc85a81b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.livechat-static.com/api/file/lc/img/rich-greetings/new-handwave.gif
200 OK 454 kB URL GET HTTP/2 cdn.livechat-static.com/api/file/lc/img/rich-greetings/new-handwave.gif
IP
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type GIF image data, version 89a, 230 x 150
Size 454 kB (454210 bytes)
Hash ed057fa0ad3b529e5c06fdd1f15e0384
cf7ce3a247dba54fdb08d14a1e28c05e017bedc0
b934a01e62fb5db925a4fd5ad0e1c5ce6ae386017aa79f3a641868a1ab0163a5
GET /api/file/lc/img/rich-greetings/new-handwave.gif HTTP/1.1
Host: cdn.livechat-static.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 454210
content-type: image/gif
cache-control: private, max-age=26190
date: Fri, 10 May 2024 11:55:05 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/moveContactUs.png
200 OK 10 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/moveContactUs.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 140 x 154, 8-bit colormap, non-interlaced
Hash 9f7d09340ab5148f50bba1c6b6cf3ec9
64bb0bc4b03119e1330f0695888528cc8ff14e51
5f0b747f787cfcd32d2399f1bdd61268e4dd2fc726e86867b45196113f27e480
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/moveContactUs.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:51 GMT
etag: W/"662a09f3-2783"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VzxwZ6iUv7hxQrvqj%2B4aZCy7g%2BDFmp6BN2w1epgJs%2FPgKrEE6FEBeazPxV3aD1CV5ve7%2B4Ov7xa29oTXaBogpKy0EDYSsC3E%2FJRks8Az1RyEN%2FZtmIC1TLcxXSheKT8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc4de69b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/help_left.png
200 OK 1.4 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/help_left.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 102 x 24, 8-bit/color RGBA, non-interlaced
Hash b0c46858aa8d09010696c2db818d7b8d
56c49fa1ab455a82616e3975faeda6cb64596296
acebc89416a84cc4fbb485d651899323891b93a62759384d0c2780f59d339038
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/help_left.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-54c"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hOqLgiDTBVd8cbcQmhRfjdtyM5Q4Oi%2BiUHAqxxeRqHuDwV7Xoc3xPb90FOGRZLn8BmyO2mJmF1HY06b4r%2BfJnwop9dR9tbF5TkUQ6SAhvcMniqzBGejNQLtuPEmU7hE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc7490fb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewinColorfulFruits.png
200 OK 27 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewinColorfulFruits.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 8-bit colormap, non-interlaced
Hash 29ba6a364db5facd3f34efa6794fb183
44d6a9b476dcf5ca2abebf4b1ae758b49054cadb
72ac36614259d0701bcd3cdc29e8f3c5f69d25a06e7b854c72e907253b00424b
GET /global/AllImg/kny_img//gameImg/NewHugewinColorfulFruits.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Wed, 13 Mar 2024 08:09:12 GMT
etag: W/"65f15f28-68bf"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NBvWvTaIK1yL6fBN0FHAzszMn3cmMDsQwv%2B9hdRAd6%2F360C96dG1G6iT4o7Ga0tiU90idORvOS0lMQT05N5PmXwyrsbVubC%2FyA2KtyOMV55xGpI5d8Vg3sz2IYSlvmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc7998bb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot_bjt.png
200 OK 16 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot_bjt.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 700 x 68, 8-bit colormap, non-interlaced
Hash 8271ab6fd1bca0016164b0611255b3dd
2a71fdd9b9fe2132e7013c5c61b0268a3790df27
a2eabf1921479ec0f391fc495955d5b3d79d25949e7d6aa0a8ca72e17ae6c9c9
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot_bjt.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-3e0f"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OQDf9dcQMrm3eiBOIRMjhxx7OrQlqLVu%2Bs6iATuER4Laigeg76CtbqS5H351heLj9zvQwNAy7aQjhGxOKJGdgeh66VNJIkjN6VeyvLYCHO%2BubkoBfIPFwKcJzjDm304%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc85a88b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/logoPesaVegas.png
200 OK 2.3 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/logoPesaVegas.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 160 x 24, 8-bit/color RGBA, non-interlaced
Hash 45ef60cb29b88fa1adb0f63945d304b4
4146101d479b724e56f51966a84d74c3a074c059
5be9e698f9fe574079c3c97c2b2a60929a06dfaab23121304ebd8dcabb53308a
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/logoPesaVegas.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-909"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OurOrcWTF3jYwH7WBhgm%2FNqM3RLoMsC8lz1YonSiTiCoVObcuZ0MiHwz0t8kMPZcgA9kAvhpNW8HOX8IITfzL6L8TwPAJbLCNTq3XyGW91BYODmESKXfJafwbX%2BWwqY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc24b91b515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=10001&r=0
200 OK 45 B URL GET HTTP/3 api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=10001&r=0
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 5b533398c8487a90cd87c622706b4b77
467ca277fbc95aa7a28bf78042b65c8ddefa08e7
d43f6c2fc8534b7fe46e35b0b38a7a96634642d03101dfa10ac29afc708cb802
GET /kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=10001&r=0 HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cTZW5n9MMsqXrEAYb%2FrxsEk2kd94vXBt6hmMa3M3j0T33bUlAPNCEXdcwd1BIYB1GYz3esa9EvMc4EfJ5Ez6rSw2Lzsr4AYq%2BrbQE0uiwr1tS0tfqogZz0vnS86iNWM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcbd5e76b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=31001&r=0
200 OK 45 B URL GET HTTP/3 api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=31001&r=0
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash dcd241b6d6f7e46d6f39c4caac04aa0d
a05bc30896b0c49bf759ecf69415ea44005a2b32
720b56635c9a917e94a85a7f36ccb31119ee2bb0bb4925c4d6cd189b4c54000b
GET /kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=31001&r=0 HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4OlJCjhpOCeol9fUF8jhuaN%2F%2B%2FDIMYiJZCF0V25NjzqxEdRdsERrcItl%2B7R7rMSsch4zFAYFIq2QMA6DJfpR5NTXcKL3f3SxnXQyISk2KuC52x59hvbUQUL6uo9Nbf8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcc25b9cb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_LuckyRoll.png
200 OK 10 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_LuckyRoll.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 153 x 96, 8-bit colormap, non-interlaced
Hash b7abdd54869f5ceadfeed07f44f30069
f8315142eb9812ca984f79a3157d2683c75aef81
1b4a8f83fb002464ece81a30fa05f2175d87da96df0730100d29dcb2cfce98be
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_LuckyRoll.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:24 GMT
etag: W/"655c1e74-27d1"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=53P6F5grLuc5dpzA7X35huu0kxqeBb7iocpv6cySo8btPQZQfRTV6WvJKj0%2BxBVokwRT5Oumn9Z8DLVnxc0Th8bmBV%2BtsVBEs1ZD5ggkzG6zhHsVBk4XjEOc%2FjD8mZA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc64ffbb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa/global/logo1/ProgressBar.png
200 OK 1.9 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa/global/logo1/ProgressBar.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 586 x 56, 8-bit colormap, non-interlaced
Hash 54bc7f2b039d6773d413ffe529312b68
f3311d102d20cc2f35a3eb20a7161ef702cecc15
86b34ac64088af6836f5a18fb2768ac635772f2ce4cb2b4af90ae13efa2bcb78
GET /kny_games/Mallpesa/global/logo1/ProgressBar.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
last-modified: Sat, 15 Jul 2023 08:44:05 GMT
etag: W/"64b25c55-75f"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BrojmNRhJkzkDty1Dum6FsNTHx9qvKMttcLF9Zx%2FdRNFhO6oGqpeGvT84wgq%2BrhB2AK0YBDedoK7oRH%2B98pxTqnMbuSa%2BxVSjk9vqmWp%2FydiVurIK76PmSXYki9%2F2S4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbb3c54b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_JingleFruits.png
200 OK 8.7 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_JingleFruits.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 153 x 96, 8-bit colormap, non-interlaced
Hash df2c6f1e351b86ddd09690369581177d
030bb4fc8dd54823999b3c782aaf781080fc545d
651471d0012745e6aa93fe47051871d2ca54e1a0ca81315e1c6e3b0d5d7dbc30
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_JingleFruits.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:22 GMT
etag: W/"655c1e72-21dd"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q3p4k%2BJUJM1fUvVvBTS4UXHu4Kh06tBopvDYmColoR9%2BME61wAYZ3ioVk34T2eVWU5Wj1MXrlFA6Pm2TivKsjF5l9gH1q5VUalmQrm8RH4k%2FdjFlnFu27YDKm9D%2BgH4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc6a87ab515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/18icon.png
200 OK 2.5 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/18icon.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 54 x 54, 8-bit colormap, non-interlaced
Hash a0b5bc5b34d1875a3b18d6db242f5a78
375adb6acd3117cca0b2dfd218f2a3b05b28f571
ba80a90eba6a1cf50496eda0cd627dae2dc46efd6fbbbb07bfbcb9ff6fb7406e
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/18icon.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-9b7"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BuWimkpm3PNt%2BFMrV43goJCvfmTa8IKpM7qDu%2FDWTwH8rUZ%2B3WnpXF2Jmsr7xSVZI6W0irAo%2F3%2BaLMAzYNJzMq%2FUTKthhq0jDPgMkNn6%2BefwyxM60R5cEjpsNBVF8og%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc6e8b2b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_bigimg1.png
200 OK 110 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_bigimg1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 750 x 912, 8-bit colormap, non-interlaced
Size 110 kB (109865 bytes)
Hash 120295727417cd3bdc5f9d838b13af8d
fdc07ec095c2e1200d51fe0223f43b6eb22aa3ee
99a2818aa0866290284bf1bf1a38848a3bbff543e6bcddd0613a845ff475940e
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_bigimg1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-1ad29"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nMs8KxDkqBg1W9MO1x%2FHOMnJZYpLXNeNSuE05HI%2BohTZ0UDfxlFr6e0NEFySpuchEigcAzCWRchINccadxvsg6ycnoVEZ6XErYzTRReL4ZX4Tz1QLy2GvOhW5P09PGM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc49dfab515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewin_Spin10@1.png
200 OK 25 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewin_Spin10@1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 8-bit colormap, non-interlaced
Hash 28d21df4eecb24f944006ba5c43fd40c
06c7d8dd6eeb6cc2c69fdbf52ebbcebee6f8e548
52d930f4876bde48dde11c2b4109a41bb0158c612bc18fa4e531baf6b1397c42
GET /global/AllImg/kny_img//gameImg/NewHugewin_Spin10@1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Mon, 07 Mar 2022 10:35:59 GMT
etag: W/"6225e00f-6215"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uu3jUZeCU%2FGWvPYEAIWpkPLiu8SKh%2FjcFkFa3gMhzRiOUtqV7z%2FYKtdhHOlpNPAizZr13OYAWH3eXk%2BtcvFBf0QVnexD5wtL%2B8rBLDHkmUjGhuJ2YA97pXlx6mHeOGU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc7ea03b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/cz_10img.png
200 OK 2.9 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/cz_10img.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 64 x 36, 8-bit colormap, non-interlaced
Hash 6b69b58cadbdc0e717b729ac3cd1142e
ba6c6bbc8cba3811c31dfbea2733741ee7b1f16b
9e6a3af330d9067ed361a1c4e1003c733e5889f22362bc6d94f580779f288cd6
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/cz_10img.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-b5b"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=38CkstqRpuRqk57Xu4C9QBPqoblc5X8wQsRnm7YsMLa1megpI1j%2Bu%2FTtPSO3Xw9g%2B51Wi%2F3yEBUeJb0S6%2FWrE%2FQhUm3VFu8cgquhFzMzlXji%2F6SetUzhSmJ1DT0Z8cY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc8caf6b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/help_right.png
200 OK 1.4 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/help_right.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 102 x 24, 8-bit/color RGBA, non-interlaced
Hash 3209a9aef019b9560d6a44d752717a72
7db1b54439196474f9674a29351a881f8e3258da
4d5e25e86cb1d3b2efe0c0367c7470fd2dbb0b762eddce6b91cca2cb0d950aa0
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/help_right.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-557"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4yKiOYYlIvr8gY9tkDNmXkfuNqlTmNXfc2H1oBLEjZq5JzGfOFHg4SbgSUbflJhTvHVidTDbF802ozgHrgDPqOIay9i5gtcP%2BauDQOo%2F3yQCtLgvx1hxaut2NDGhAgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc708d2b515-OSL
alt-svc: h3=":443"; ma=86400
accounts.livechatinc.com/v2/customer/token
200 OK 195 B URL POST HTTP/2 accounts.livechatinc.com/v2/customer/token
IP
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=16751001&group=0&embedded=1&widget_version=3&unique_groups=0
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 32fb187418eb6ff82f6e605037ad483f
ef1ef26c41da18b6804ac230a398d716ccee13e8
730adae1859c718a5d709a81b6568f93b6a8c0378caaa894bcc6a702bd09dd9e
POST /v2/customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 225
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 195
date: Fri, 10 May 2024 11:54:56 GMT
set-cookie: __lc_cid=2cceef7c-7797-48cb-a4ca-be900a187d98; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 10 May 2026 11:54:56 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=73aaccfe4031c94a74d6e93d921180d08a76ae81c37cac343243f404756f1d4c2ae926aedea473f6ec936c76fd6aa657addba11fbff362b70ecd1629bd08; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 10 May 2026 11:54:56 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cid=2cceef7c-7797-48cb-a4ca-be900a187d98; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 10 May 2026 11:54:56 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=73aaccfe4031c94a74d6e93d921180d08a76ae81c37cac343243f404756f1d4c2ae926aedea473f6ec936c76fd6aa657addba11fbff362b70ecd1629bd08; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 10 May 2026 11:54:56 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__oauth_redirect_detector=counter=1&t=1715342126&tag=24e887f28d148aa52e66ecdba916656d327b0209; Path=/; Expires=Fri, 10 May 2024 11:55:26 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewinCrazy777.png
200 OK 24 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewinCrazy777.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 8-bit colormap, non-interlaced
Hash 7919813bf6708b2f3263b010b20f61f6
435dec4b672f374b492ebc1e5c2f086f49df6d3f
28cbb79b9bd62d251b4994c7ace3b3333361f9a4a754bbfb605857c3cb41e8ce
GET /global/AllImg/kny_img//gameImg/NewHugewinCrazy777.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 16 Mar 2023 08:20:43 GMT
etag: W/"6412d15b-5f51"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d12UgiWrCVghA3TbNUMRv2%2FW5kM6YjChNhKnAlSJ1pn%2BcvlITn142%2B4M0qAbvr9aY69eZHwbaFZA5JKAwXtvbG%2F%2FFxos5hBPqkDOm%2Ff%2FWPmAnT2BB5Fa5cOYn2BEO5A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc77950b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/gongg_tx.png
200 OK 2.0 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/gongg_tx.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced
Hash 51be82dec04f53f781f8deccc990aa86
2a1f476dfad87dc587a024f2a759e72871b2134a
7dd53f472409645e19ba19e1276b18769c6ccf40b102bcf76ee63211327ffbb4
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/gongg_tx.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-7f9"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mP%2BZSZsRrYz%2BVoFoE2uIC%2F7R1Mld4LvcjPuylpjfgv%2Bi83gVrbepMreerbmuS4fR%2F0Ytd5GFpN5%2BHsENiOQnc5Xe3%2BlXDPODhI%2BUVJtEFmdummfj2hk3Hcd2VwEDFsM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbd0e1cb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//banner/LuckyprizeTopBanner_VIP1.png
200 OK 77 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//banner/LuckyprizeTopBanner_VIP1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 700 x 220, 8-bit colormap, non-interlaced
Hash 195f9e24b653c862f4edb92d0c553ecb
6bd8b3952f356eb97d8e7825466ad1e70d370934
854086e90468bbf956215e3b75bb3686a675d727357d528f4d62ae7cd41e08ff
GET /global/AllImg/kny_img//banner/LuckyprizeTopBanner_VIP1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Mon, 13 Nov 2023 07:17:30 GMT
etag: W/"6551cd8a-12c9b"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UCv7WofKdW%2B1qDeGP8BwusLivb6EvSrouygUsprKa3F8x52%2Fr77kaWAR5en%2FDsRnUm4SAVLjsV64DQnXmTkuO37beUwWdhqNlQjOU8PUdJqDDByNR7vtmjdzT7jhgFE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc57f19b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xialaMenu.png
200 OK 685 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xialaMenu.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 700 x 152, 8-bit colormap, non-interlaced
Hash 770c335c06559f3a64f4077277a26aa9
764a7996d05f228dbefc09149c961f2d5b54f078
5cab796eef97ce4b331d6b4f54f0c3c5fb1654d6aa34ce598ebdc3025a92bd24
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xialaMenu.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 685
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-2ad"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jKezCMJHrcpBvVm1sJXzNQsn7VqcfbUrp00AbmFUnps%2BlnwrLr5iMvBteMFAPjmTxc8cMrwXkwv1oqcDk7d5XuFmb8sPhIM2yk2P%2FAv0JRA6MzNHpbEEif3KUzHLavw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc5af52b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/lg_topimg.png
200 OK 85 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/lg_topimg.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 750 x 352, 8-bit colormap, non-interlaced
Hash 3f22c347795e685ef26ee501cdb8c658
7b1615e700139c50fd6bb37ae0d315b829194828
81da10a14c5631bf73c57c752b74a18e25a07fe39fa92baf2ef241af6f1f7a90
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/lg_topimg.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-14d89"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XFAOIWQSquHZwJyHrEZn7cuNhDMyhWakeN4ObFKOvQyLWBKBUgaCQCeul2WkIjtVMCiNuR1S17S3A%2FZNiPnGaCq6VBZaEqbsh31h3VbLTJmj9bgfex7PALcZzIEVyV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbbbcd9b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa/global/logo1//luckyPooo2.jpg
0 B URL GET cdn.pooo.win/kny_games/Mallpesa/global/logo1//luckyPooo2.jpg
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kny_games/Mallpesa/global/logo1//luckyPooo2.jpg HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/jpeg
last-modified: Mon, 18 Mar 2024 23:50:46 GMT
etag: W/"65f8d356-c1d8"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2BYwUr8ndJGx%2FPQC8oAl0O7kNlKZ0AOSGTTpyHOjgtrSFMOaqExPIcRvqapifgL1lort5qprUYTx0kjxEd4fjgNzSKLjtEMEr5C25VD4nlwFgsrFUTx3aqpkvuo%2BZh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcb98ac1b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/lg_close.png
200 OK 1.7 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/lg_close.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 76 x 76, 8-bit colormap, non-interlaced
Hash f32ad702372d2c2d89a7cf8e777f91c2
e4b1ef373b55feb458d4d4067034d7840d9c3ce9
caea4934904ee2f22eab7e31cbd257201446cbce139c3fbf0cc4671abe25cb02
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/lg_close.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-6bf"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nf3sIiP%2BEHR6mWJEUrGZeEUf5icOp%2FqJCDCjus51yXojO%2BLNZwyOLyIRYYgBWROi%2Fp7Fe%2B9uak10AsjfQhwHAAgitpUqiqrUJlY6BrcK0ClND2UVv68NBmg6oKMV4WU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcbbacd4b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewin_yabao.png
200 OK 30 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewin_yabao.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 8-bit colormap, non-interlaced
Hash 95c737148b2adb9d9cdf362871fa3015
bcb090690dc68b5f47e014545a436779dda41575
961a24323000cb0e7915542d7dfc9f86b82e1a7da673312eaa8af793925d2960
GET /global/AllImg/kny_img//gameImg/NewHugewin_yabao.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Mon, 07 Mar 2022 10:35:57 GMT
etag: W/"6225e00d-766a"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O6PO8XDWlDJG9L8TYpQ3CNUxeO1j%2B3dmTMDNEKFc%2FHxnbswlMBumcs5tDfU%2FhDJI992%2B0KQZxddQyBZ1SiQE3GZZCFCJ8XQIeu5LFAx930VZXdox4e0KSGl0xk8tDf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc77943b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/dt_y2.png
200 OK 206 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/dt_y2.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Hash 68a581a6e63c529712ae746d3bc9608e
fd00400e45c1b3ab8a9c3083fa7d0c4ef6a31505
0ed03f040687d886ac9361117d042a75bcf82d065fff3f93018b0505137c7554
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/dt_y2.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 206
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: "662a09f0-ce"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kcp%2FABlFX4hYWr4dA6znIUr0b%2FfxCeP7njmHPvqHacbw1xmS3Fzi6UZnz2ZZzgMYj1VgjKI8fl2WscjG7dPfAhbbgXQWUvE3chBe5vo9E4MSHg5nqfG8P5Fzuesmx7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc51eb6b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/downsellect.png
200 OK 8.5 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/downsellect.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 150 x 102, 8-bit/color RGBA, non-interlaced
Hash 7a52946f32a0de3770aa706b18ff484d
6f099c99a0620af829dd30d853db00432034c850
a31dd6238f4f86ded14325d7bc2c4cba38c1b9f9e958588d07099b8f955e3e7e
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/downsellect.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-212d"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9g%2F7JoTi601O7LDMKWRtere2RN3ogi7enaUWtgL7CjbJUqOESawE5ZE9hfR4WujUHoDRrrB83IMTQzMs33dLB1Mn5dvZ2TJofCcC5SE67G2DADqrjyYxYs9QAhLYx2U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc3cd2db515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_MagicWheel.png
200 OK 6.9 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_MagicWheel.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 153 x 96, 8-bit colormap, non-interlaced
Hash 2f874e6ab134201eace554c91513103d
6e95ab94328245dc4543fa46fec87b8d1be24199
c13ceba84c95220c36d5836f1dc0c160c5d264760065833b2c2b17e5c0262d65
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_MagicWheel.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:26 GMT
etag: W/"655c1e76-1ad1"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=062ahuRl%2Bo3IlX%2BY6DCnRzWIvRXjBKQhrUVlg5zfodBr6SlQflxAiWyVTfxjoXKBa4dpx4%2F7APGqzipO5zkEzNcW7RsyKpbOZT9a%2FFFF8vB%2FMi2FnHbnegWGsPS0vKI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc6a877b515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=11001&r=0
200 OK 45 B URL GET HTTP/3 api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=11001&r=0
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 5b533398c8487a90cd87c622706b4b77
467ca277fbc95aa7a28bf78042b65c8ddefa08e7
d43f6c2fc8534b7fe46e35b0b38a7a96634642d03101dfa10ac29afc708cb802
GET /kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=11001&r=0 HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTwz48SlOAplV4grer71H97bavZPa5JlkEIWALqJES5LOgfB9aCM7ztS0lFgmmPCLQhDkRTaqnyCSO67HbdsW%2BdFjh9nJbxn2%2FqBmK%2BCHjK5Ju56bcDTPiukF6pEge4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcbd5e67b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=30001&r=0
200 OK 45 B URL GET HTTP/3 api.pooo.win/kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=30001&r=0
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 5b533398c8487a90cd87c622706b4b77
467ca277fbc95aa7a28bf78042b65c8ddefa08e7
d43f6c2fc8534b7fe46e35b0b38a7a96634642d03101dfa10ac29afc708cb802
GET /kny_pesavegas/global/v9_gsoHpc//countData.php?gid=10000&t=30001&r=0 HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NSu8e5eLgx8RX81c2kkeOjUCSu0enlxE5fuFraxUOmyITBnlxL9BQa54ny%2BU018%2B7svIJ6iW%2FNuMNCJZ8jculxctlb3rv%2FB1I4FM57KbGG6Yg9oXXGXPa0V4sS%2Bj%2BP4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcc25b9fb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shuaxin.png
200 OK 1.1 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shuaxin.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced
Hash 163f84da240225c795f88d4dd190349f
435cbaeceabbce63cc2d1594e5c6e23c6dd754ed
ea6ddf78392c458a72d616dddfc07b1a2b2dd9e531e42566640d32d79a71bfdd
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shuaxin.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-441"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TnHeJOtZ%2Bhxw%2FBkF4sY6y7610POWIGtTI%2FMIs8GZkpVcV356PcMvjXVmKhwW1Bvmz3ry5rKjwBHwsANBSqK5oP1RbfJBTtXohJ%2BoB3JBqdk73eoCNfAZkxXqAekvIk4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc24b97b515-OSL
alt-svc: h3=":443"; ma=86400
rumt-sg.com/collect/whitelist?id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer=
200 OK 60 B URL GET HTTP/2 rumt-sg.com/collect/whitelist?id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer=
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
Certificate IssuerDigiCert Inc
Subject*.rumt-sg.com
FingerprintC9:49:6F:7B:5F:03:08:00:E6:A1:15:B5:56:02:0C:2A:AF:5B:3A:ED
ValidityTue, 30 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 2f212962ecd3a6e974273d764c3310a5
7d578a5f1cac1188bc704c17d29baf9bac70e05f
b7e35114bb06df1930d014f88265b8c97b5af1118eeeff50b922d177c8dd17f4
GET /collect/whitelist?id=aZwjGhDk34nywjKXnX&uin=&version=1.43.6&aid=0cdfb75e-0392-4c77-b524-b9f870feaa48&env=production&from=https%3A%2F%2Fmallpesa.com%2F&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1715342096771&referer= HTTP/1.1
Host: rumt-sg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:58 GMT
content-type: application/json
content-length: 60
access-control-allow-origin: *
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_SpinBig.png
200 OK 7.1 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_SpinBig.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 153 x 96, 8-bit colormap, non-interlaced
Hash df099fbbd87bc21a629ee8a46ace2012
55c3c71632c89ef6eea3e9d01f5fb4b4980e2163
dd51424d2744c8f239e75168d4db50789a61e7fecf78bfdac356fe9013463def
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_SpinBig.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:28 GMT
etag: W/"655c1e78-1bc8"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1H0ZQslku27TiYrKNG5jQUHJdKBLMpoKlETn4XefZl3wPe07t3TQ%2BuvdG2nP42rSdp0oZ5%2BkAzfWMTJMwFDUaqX3E1%2F7f8zGYytcc0UCr%2Bi%2BRyZ02%2Bx%2F06TAHsG8WT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc63fecb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sd_xl_1.png
200 OK 776 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sd_xl_1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Hash 8cbd7ca024b88261f7a5d2c821cf449b
470f6a2ba67c79638d21b6867b164437423f7157
71bbbdeeaa3d033aaa00911c153eb70fa3c32f0cdecb9a8d63401c61c6e12b94
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sd_xl_1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 776
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-308"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LaPtLbO6fy1PA4gLs8%2FEQ17wVhZWhIJBm%2FnNUhxdHpwBdms9l8qgLRmsgYgiTjm34EMZBkceIuX2cTK3sLwu1pRiaX%2BiRdTnwlRovfMpWLBpOrjK3s2FOsc4uemfk2Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc75917b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_Play.png
200 OK 4.1 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_Play.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 218 x 46, 8-bit colormap, non-interlaced
Hash 032bb0eb1a95add7aae6c08f5ec80432
2ca948b4c02dde110f59faf3380113acff68474b
b75ecf1e234db73a0d1077e4085656587b7e8485cd49da045f00343b9d186351
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/xin_Play.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-1013"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NDXGE4A9pE93xlYkQTJK48aDkgw5GexnZPu2Kr0NeeJg8Tj45J5ItUPDv4L%2F%2BTubSSFMCIFtLpnV5yP5ygOMnRW4lYk%2BMxO%2BEC9cMYb9Lk1Mlp3dwqc5eoK9Lw8nOfk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc81a42b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugeWin_sgj3.png
200 OK 30 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugeWin_sgj3.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 8-bit colormap, non-interlaced
Hash 1a8c7bcc5a14b8001b49630899854298
3def2a7da9f5ccc697eb70675febed7c8992654a
67d4fca11a6062aa7e7d66f2c1e9e4fa8f32f43beaec97e5e62ea1baaf187e35
GET /global/AllImg/kny_img//gameImg/NewHugeWin_sgj3.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Fri, 26 Aug 2022 08:24:18 GMT
etag: W/"63088332-7613"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eQc90uNwObxBWntzxqB4NxgspdC24J3VzNsfjBxbeX1TcktZXhXayDXLpCZu59rFSAl0IN87a2sT3QqKM790ZovBME8kKBDLphEzqEn1BWgAf5dMN58DmidlLvOjVLY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc7a9a5b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/kb_redP.png
200 OK 480 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/kb_redP.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 34 x 34, 8-bit colormap, non-interlaced
Hash 28f172554b9e47d3c549b71cf65544c6
1a37f7139ea7aa484e0ef3c98e3d809e8fc5add4
d427c44de4ead05ef5e95503548297b68ee0d0fd6f457f59da1177bc32f708cb
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/kb_redP.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 480
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: "662a09f0-1e0"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qvhUKVdEHXFTjlGY%2F9jbq1VY6fhO9nldVNIYnEsvGDqDmytO0kg2mlD460tApg%2F2M1eEEQoqEhbc5dapqbxAPfsK2Q5ud79YmkJsbBSiVjcIEHoTcIMyk0bn6IHHWYw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc44db2b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_Spin10.png
200 OK 7.0 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/luckyPrize_min_Spin10.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 153 x 96, 8-bit colormap, non-interlaced
Hash b4bc6368b1f434e969531b15b6d34f1e
c89d8d7bba589a7ba9a385b204d3ad3012fa3893
47d9b74dd0533116f94d7b947d31067c7295d6168df288c35241226db17344ba
GET /global/AllImg/kny_img//gameImg/luckyPrize_min_Spin10.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:55:02 GMT
content-type: image/png
last-modified: Tue, 21 Nov 2023 03:05:28 GMT
etag: W/"655c1e78-1b72"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pv%2FDP%2BMtU7UvAQmjwg8AGCI7gHxyLGVgYqs802Fu7Dg9Sm0lfRvaqEJKjDDN94QuonxwOt3JhItdE2RyG2xxoMNmBIi%2FyrJSaF%2Bryy%2FR1vo2DAYpvoHhyPDWXcMagHs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bced0be6b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Contactusicon.png
200 OK 1.0 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Contactusicon.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Hash 3826f505e466056513ba52bec2e17339
41bb76d70a9f86a2fa5e6f4b017895b43cb76f27
69334055f48e8a73026e09e69dc7b4a71feb24d1f183ce1ccc31f254a4894294
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Contactusicon.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-40d"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pfN1mZ9p5XsfCR4vg0RsI4PVKzEwzA7RkjaKU6xMDT1VhmSaFd7DFYq5LhLJiMeYpuup%2FlgAl1S%2FEOrd%2Fzao8l%2FNJ2JHVE9Jy2W6yggtKFksiko27%2F%2Ffh8dtuoabeEI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc708cdb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//banner/DownBanner_mallpesa3.png
200 OK 20 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//banner/DownBanner_mallpesa3.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 750 x 105, 8-bit colormap, non-interlaced
Hash 4b1410f4a3d80bbfcc2c658fc328d517
4e67551b051f2a0aaabb5fd54848261381d5a670
96c1491b78525c37b50dfffe182ce570177c6aeed02b8d99e1ed88100e03612e
GET /global/AllImg/kny_img//banner/DownBanner_mallpesa3.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Mon, 18 Mar 2024 10:53:33 GMT
etag: W/"65f81d2d-4d4a"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EE%2BaPZN4qcVWr%2BYRph8oBmyxzLVj759X3hrJqvfWntCbQuwJEhOZCbZ570RBIxaNa2%2BKmP5xGj8bFhtMD7dVpC32vlCcLh8nhMy23VvaSPkq6WnHgo%2F40E9O2PBzZPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc5ff93b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan_Open.png
200 OK 2.3 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan_Open.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 110 x 42, 8-bit/color RGBA, non-interlaced
Hash 9509a4c3083841d9691984a31d5daa5a
6d8ac05759fb703b8ff9fe7875f87bf3f85c98b7
15389b8cfd3011101bd9aefd1cfe904b75eaac3dd52a591ac3d10c9e24e33ebd
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/shaidan_Open.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-907"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BqzhaUQkelT09K0r%2BIp7H8U18NG7m2nhyerazI8BGP%2Fcq5KNFSjagltUL3REjY7IBHVHfmtg96uN%2FyMenH4U5wdg1ktwDuqFze11olQjeuaNix7vjXs2iip9%2Fi0xRGs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc6c8a2b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Newicon.png
200 OK 4.3 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Newicon.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 66 x 48, 8-bit/color RGBA, non-interlaced
Hash ef7f5a223a18510f206339b4c05c3bfd
92e0a86cb2ece8ed1c6183939e02911ca5d4ce86
04a2c0fa2083f7dd7fe12085634b08b8446df228f4f3f41fa465abbb408d3d4c
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Newicon.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:51 GMT
etag: W/"662a09f3-10ef"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bkGTc0qqtSn0OUsR2UqcFV%2FYy252BuDpKsQjUU4%2BSQug07jZbaO7Q7ucfRakJD47o3nSH7%2BX0MNARvojPelVv33aIeXVac403PLeofaBKYEn4h%2Fe9Q%2BIBkPKwpZi21Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc42d8fb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewin_lianxian.png
200 OK 34 kB URL GET HTTP/3 cdn.pooo.win/global/AllImg/kny_img//gameImg/NewHugewin_lianxian.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 338 x 176, 8-bit colormap, non-interlaced
Hash d00e8a28e6ad11900275dbade0349a15
a8686442823ffbd6b352e97fb1bb4c73e5ca9663
844f621006d2feb1a7cb488c40383e06047651b26f4e134d5a9ca8d11bfed9f9
GET /global/AllImg/kny_img//gameImg/NewHugewin_lianxian.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Mon, 07 Mar 2022 10:36:11 GMT
etag: W/"6225e01b-83a1"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W60OOp9sGIXlc8Ae6vreT0kd2KmnbQnHUX9Y%2B0JKksQrYMtEbgA42tiiCHBTyisGoJNNoEFQaiq5ef2ygu5h5lqU7clkggxPKUDrU1MDc7j8H3K%2FiT%2Ba80NPy47%2BOV8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc7c9e1b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_RegisterBtn.png
200 OK 983 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_RegisterBtn.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 170 x 46, 8-bit colormap, non-interlaced
Hash 4ca01aa2259782d66a90f6f23c383812
1aefc557db722a302c1644dd8651fd2bae837063
beb4bb651ff0d910a5fcf25b9dcd81ba41e8e52a1669451ae22653c2497ba2da
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_RegisterBtn.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 983
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-3d7"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u6uoM79E2b8XGyOp9DFhmI%2FQRZ3u7mQEzL9n8nyBwsV4icmTgTLXBTE%2BwZS6qi0Zvb5UxzMBCtAoZWeQNg0XizdP2VtCdZGJ46apux2gvAMwWNO5QTdgNpDB7VxpJQ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc43da7b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/hotClose.png
200 OK 1.1 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/hotClose.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced
Hash 3bbfd7acf45899d6f09944c0d2326396
eed3841bf2ef26e92a27bd43e66ad0b017bb0483
49d335026b4ac4e41bb912a0926cb401cdda409e7758f7b65543f223e354a99d
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/hotClose.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-41b"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mxIMs58%2BvJeA0nAhRldr%2BvZ8QYU53bwsMjLzkOSnjYzo2V72tjzxvIGGGKEGygltUf28w2yc%2FMiza41vv4H0fqD%2FrQTCJCGwQm5oH12IOSUTWH3%2Fkjy%2FNIEGgj8Q39w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc4de57b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_renshu.png
200 OK 534 B URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_renshu.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 22 x 22, 8-bit colormap, non-interlaced
Hash cad537cf1f6885bd11901719515d2970
1d47a4c0d09d88c0251368eeed77ff7d9d8c0687
23f0be2248e9f9b9d621c6c7bed382ac1ad3481f86183a355466dbdff670c41d
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/sy_renshu.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
content-length: 534
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: "662a09f6-216"
access-control-allow-origin: *
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dwdhV60MRx8tsekFYKNI0iwv%2BKazrX%2Bm9%2FHKXSPQVvtTi6ysdzoiVDFgNuXD2AIBhw3xEaxr36h88DeLW3zyTQweeXYd96szguQK0VISuEeid7aXbFyHGHPnXj%2BZC%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc80a2db515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/cz_Deposit.png
200 OK 1.3 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/cz_Deposit.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 140 x 46, 8-bit colormap, non-interlaced
Hash da60a41f2668e6de52727fbfd94d2324
467a3348e32481019143bc95467c7b43446a0751
921ede1cc797e9bb1b6de6c3df747d553e5d92660927731d6ffdd5375e8aea7d
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/cz_Deposit.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-501"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UTvzGipyv6qhzgw5Hq%2F0hCbGhCH%2BvcBbpH%2F1BB5f5IwpX9IbmzpTpBLf19YezMog72AkgTvelfIEIiJyR3mAcWaEsrVQE%2BROLa%2FbYqjxfHlNE2JmaAMDdstVgBt5DGw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc91b3cb515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc/hot.php?
200 OK 2.5 kB URL GET HTTP/2 api.pooo.win/kny_pesavegas/global/v9_gsoHpc/hot.php?
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2940), with no line terminators
Hash 36d152cf97b55a3a54a6c5002517f89a
930deb37ef3f0d660e45ca7cf7ca6cf37adf8598
949bd6d328be8e2e860e72fd5cb0d530088d3bf2cb55d3af2ba3d167e8e4ab53
GET /kny_pesavegas/global/v9_gsoHpc/hot.php? HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OKiPh4YjrgRPFU4PQ0jvpeJQf7yH4buEG6ooYHXSRW8DXY36Fmy85DcbDqvlFPFuLUBHTiy1CKmQvWyjXmVnWQ8zVxgzL13fZb6Bb097OEpvtnzQfBjz5Tv04%2BlV%2F64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcbaeeb656b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot.png
200 OK 9.6 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 76 x 68, 8-bit/color RGBA, non-interlaced
Hash c2d09cdd149a494d1035011a52bbc89f
b2015b6d40d503e1be6342a6081e5b1e8fd572a2
26160fc3ea23c2cc82aea863f48b3446935f6d6c97e5add9af2bb35766115090
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/Jackpot.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:48 GMT
etag: W/"662a09f0-2575"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8duYCLvnb4HiJ6ATiVkgGtrtcRoUc0uqEOgJcLA5PHK0sXRAshyY5vQHGQzjM3jOYJtYDBLiTIOwxFwMYy%2BDqKjGmHvg0XvrffMtt7bcWQsnaJTr9LE0QdO5vNEPr7U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc39cfeb515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/menu_btn1.png
200 OK 1.4 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/menu_btn1.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 127 x 50, 8-bit/color RGBA, non-interlaced
Hash 34bcadcae36d5fdab89cfe3cdd3e36c4
d61f3c5d0f4e596fc7f3ac4dc92db42efe332de1
f385225c365dcb7222d79c2f50dea184868c30408201c6fe07a26dda03fff930
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/menu_btn1.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:55 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:51 GMT
etag: W/"662a09f3-55b"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JSl7X3y9v5mHXi6KSDqgr%2BhfPwLVE80Bber6DVmTXjNdKiuFUsSo4akrU2xKNBPe2UV0MqcE79xwJEc6fH7YkZju%2FVkjRfo1KD%2Fp%2BPjQP4P3iAQj31EeU80so%2BEjBXE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc33ca1b515-OSL
alt-svc: h3=":443"; ma=86400
cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_bigclose.png
200 OK 2.9 kB URL GET HTTP/3 cdn.pooo.win/kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_bigclose.png
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type PNG image data, 66 x 66, 8-bit colormap, non-interlaced
Hash bdc8e3fa9c24cc8d4360b1c5f836be60
be85963bea2c5672ee5d6bb9264ec5e255577060
208d2d0dbedb0db12c2dea941f74ad0d1875160e54875ca5d18ab206e82c42e7
GET /kny_games/Mallpesa//global/client/240425160101/resource/assets/images/ui/yd_tc_bigclose.png HTTP/1.1
Host: cdn.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 11:54:56 GMT
content-type: image/png
last-modified: Thu, 25 Apr 2024 07:44:54 GMT
etag: W/"662a09f6-b48"
access-control-allow-origin: *
content-encoding: gzip
jptype: fk-pan-only-one
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ksn9pYVi3q5xJOnvoBE4pOdD1P55Rx7DbvW1e0c9ylBkNmBEe1tFtyTfSFXVogkrR6VjQE1HJSYj%2FYy4F%2F9j43BBOpnEK0%2BXObuJSHGL5MinYvOjH3NHNxR1sE%2FmF2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8819bcc49df9b515-OSL
alt-svc: h3=":443"; ma=86400
api.pooo.win/kny_pesavegas/global/v9_gsoHpc/getLastMonthBro2.php?
200 OK 581 B URL GET HTTP/2 api.pooo.win/kny_pesavegas/global/v9_gsoHpc/getLastMonthBro2.php?
IP
Requested by https://www.mallpesa.com/v2MainIJSeFHl.php
Certificate IssuerGoogle Trust Services LLC
Subjectpooo.win
Fingerprint26:EC:3A:97:B1:83:21:1F:A0:2F:F2:BC:4B:92:06:DC:30:36:D8:D2
ValidityWed, 27 Mar 2024 15:09:55 GMT - Tue, 25 Jun 2024 15:09:54 GMT
File type troff or preprocessor input, ASCII text, with very long lines (699), with no line terminators
Hash 84a6c42d44bca0bc023c94e14a9eb200
82a373ec483a3464cc1b368aa58ad14b7657b35b
39d6ee68de1a347194176c865c18bdd20e386f098aaba2cb79bfd280a0b1f1d3
GET /kny_pesavegas/global/v9_gsoHpc/getLastMonthBro2.php? HTTP/1.1
Host: api.pooo.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.mallpesa.com
DNT: 1
Connection: keep-alive
Referer: https://www.mallpesa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 11:54:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
jptype: us-pan-only-one
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xxcPChJ5V1XPzAeY8H%2FnVcAWudoM%2Bb%2BcF%2FCAVkW4D5RqYauU9wspyTlKha5F7B1Qfb9uC8BQB9cx5vq72o8%2BnB4aYQkxnlOBOY8Rxnch6vxYcFCCHh2hkTgxD0JXn3M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8819bcbaeec856b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
172.67.183.22
43.152.14.106
43.156.86.55
95.101.10.202
104.21.32.47