firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 18:14:02 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 34DfsIGRjZa3CrudD1n5I2d9bz11pFdJrp12-LCZo3SvPfgxnGZYDQ==
Age: 1198
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10455
Expires: Thu, 22 Sep 2022 21:28:15 GMT
Date: Thu, 22 Sep 2022 18:34:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: daPpmRiJ4YKnF33SP1btIiZ__NAGHPOIxE7B8D0FdNroJyjRowkt-w==
age: 50326
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 18:34:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
c.adup.app/34125
68.183.246.137200 OK 4.1 kB IP 68.183.246.137:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (303), with CRLF line terminators
Hash cbbe93eb1098ef6f740b94ec12fc9dc9
15ebbef76755f985b80ed0e1f64434595d2f25ce
4a1c6b40b1541fb2e3965f63e1f335a94ec5b84caa7c4fd8410a29b1d6cf0b47
Analyzer Verdict Alert fortinet Phishing
GET /34125 HTTP/1.1
Host: c.adup.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
x-powered-by: Express
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
content-type: text/html; charset=utf-8
content-length: 4139
etag: W/"102b-Feu+92dV+YW4DtDh9kQ0WV0vJc4"
vary: Accept-Encoding
date: Thu, 22 Sep 2022 18:34:00 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 22 Sep 2022 18:03:22 GMT
Expires: Thu, 22 Sep 2022 18:12:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5AAourvQjGgt5G76rgryT4KyOhTTsphYKaZLAcVQnkuHdmcDt79WkA==
Age: 1838
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 4e51102e95a08e058fb76d7aa4be48a0
9537322dd40e8059d5a1e3794b179785a4712ab8
8fd50501e2f57aaf5591a613a0fe7be5a2ba2e574b41002c6322cfbcef70e83b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:34:00 GMT
Server: ECS (dcb/7F82)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HYNJeGeofOcVMoGsuQmkgl-kdGszAOeYdNvksII7IAjv4FtXQKyV5Q==
crt.gameloft.com/?texo=true&adid=435699&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125
15.197.158.185302 Found 1.3 kB URL HTTP/2 crt.gameloft.com/?texo=true&adid=435699&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125
IP 15.197.158.185:0
File type XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1253), with no line terminators
Hash 3934daa366f8116ec1102fe2a88dcfa0
dcace86bd5f50947db2bcd8e13e30745d21af842
f80a3c2c4586c6372a2d8d75329d1d9ef150b3f08b63d22b15cabfba76e656fb
GET /?texo=true&adid=435699&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125 HTTP/1.1
Host: crt.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://c.adup.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 22 Sep 2022 18:34:01 GMT
content-type: text/vnd.wap.wml;charset=UTF-8
content-length: 1253
location: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
server: Apache/2.4.54 (Debian)
x-powered-by: PHP/7.4.30
set-cookie: gltrck_crt=RURJdFFGU2ZzalZheUJhN2lBQjBkSG1pRmhUM3h5Vmw4d2k4YmFtNDhybFAzM1h2a0FaRmw4dHhuUUdBY25sWTo6fnDe2rrPD51EX5yMpk%2FRoQ%3D%3D; expires=Thu, 22-Sep-2022 20:34:00 GMT; Max-Age=7200; path=/
gltrck_cloud_crt=dlJRbmszb09aaytYcitmZGFrbTVXcytKMnVLQmRUWFd4Q21oUExIN2daZVd4SmtoNGRMYXFJR3NEM2dYV3REL2w5Z0lYaTVEV1lZVnBodFZROFc1T0VIZXhLb1JvcFArN1JZVXYwUml3d2xRbWttYkxOVW90OWR0d0Q0WWdtK1pia3JNSjlXYlAvMU1oQUtESVFUQ213PT06Ot4WP6bRpIjehf23ViCNrhc%3D; expires=Thu, 22-Sep-2022 20:34:00 GMT; Max-Age=7200; path=/
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:01 GMT
Last-Modified: Thu, 22 Sep 2022 16:47:55 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 24d3Gu2QMVnwjdDCfRYlOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 70F5x7eHK4Cy/1w5yfMRKebpzDM=
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 482e780b9f02c16ad038c0b1eea5838d
23789c152356b678d6a6208a1b69fd3b21c81415
71f45d0d03d909e7b1cd79cc83e84eaef2c47f39bfca00077343ba8793c6128d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "71F45D0D03D909E7B1CD79CC83E84EAEF2C47F39BFCA00077343BA8793C6128D"
Last-Modified: Thu, 22 Sep 2022 13:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Thu, 22 Sep 2022 19:33:59 GMT
Date: Thu, 22 Sep 2022 18:34:01 GMT
Connection: keep-alive
play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
208.71.186.40200 OK 1.7 kB URL HTTP/1.1 play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
IP 208.71.186.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (432), with CRLF line terminators
Hash 555e97d51bae76b407d92065c5dd7e66
8eb7ded1bd378f521bcc22396ddb4249444acbd8
a0ef0cec90dac0a4dea82a15b9c0c3324e82c944d9a376b73bc8e0723d7bbe4e
GET /preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://c.adup.app/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:34:01 GMT
Content-Type: text/html
Content-Length: 1660
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 07:10:46 GMT
ETag: "d89-5e77014456980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash b21700cc7924b1b1058c28a63674f441
4af090724b8246038b72e56623cc2713bc7aed2e
2f0e82641241b04108233a28ddb5adbd850eab3fe952a0f3e762587660266a41
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "2F0E82641241B04108233A28DDB5ADBD850EAB3FE952A0F3E762587660266A41"
Last-Modified: Thu, 22 Sep 2022 07:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Thu, 22 Sep 2022 19:29:11 GMT
Date: Thu, 22 Sep 2022 18:34:01 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash b21700cc7924b1b1058c28a63674f441
4af090724b8246038b72e56623cc2713bc7aed2e
2f0e82641241b04108233a28ddb5adbd850eab3fe952a0f3e762587660266a41
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "2F0E82641241B04108233A28DDB5ADBD850EAB3FE952A0F3E762587660266A41"
Last-Modified: Thu, 22 Sep 2022 07:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Thu, 22 Sep 2022 19:29:11 GMT
Date: Thu, 22 Sep 2022 18:34:01 GMT
Connection: keep-alive
media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/js/main.js?v=210730-2
54.230.111.120200 OK 19 kB URL HTTP/2 media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/js/main.js?v=210730-2
IP 54.230.111.120:0
Hash b5a634cb27d5e5417a01dad5d6505f54
5351c91d128622c302c8a1a934c5eff1e86dacf1
c94b983ed8ca933c84da72f8adbd401fdd7be998f56d4fc2457b31a5b8ed1916
GET /ludigames/root_220413/js/main.js?v=210730-2 HTTP/1.1
Host: media06-gl-ssl-gzip.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18609
server: nginx
last-modified: Wed, 13 Apr 2022 10:36:45 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
date: Thu, 22 Sep 2022 02:31:00 GMT
cache-control: max-age=86400, public
expires: Sat, 24 Sep 2022 02:31:00 GMT
etag: "17776-5dc86c0fba940-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rSXJZ79h7MmJqXLeD-t5uH1SAWWMhjT0f2IFQjJSFvwnCZkhTZVk8Q==
age: 57781
X-Firefox-Spdy: h2
cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
104.110.8.184200 OK 2.2 kB URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
IP 104.110.8.184:0
File type ASCII text, with very long lines (7385), with no line terminators
Hash c8b45f6b3dc0944f344d4a28bd7ea971
6045e9906fd1ef5043e5b3336ff33af820439acc
08256047c49c79e3a774ca7a67327453da296df7735ad497411c5d8d16e8c3d9
GET /ludigames/adlite_220830/dist/index.css HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 2155
last-modified: Tue, 30 Aug 2022 07:07:15 GMT
etag: "1cd9-5e77007b1cec0-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=22795
expires: Fri, 23 Sep 2022 00:53:56 GMT
date: Thu, 22 Sep 2022 18:34:01 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/css/style.css?v=1
54.230.111.120200 OK 21 kB URL HTTP/2 media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/css/style.css?v=1
IP 54.230.111.120:0
File type ASCII text, with very long lines (5477)
Hash 6f48a4b8ed30b2b9d57f78b2ec3c3503
dfd5ef910f3a04f63bb3382ce0a0da9ebb2fe0a5
394ed16935aa3a4fc88bd302a040226e85dcd0a226c518b1e335a5351bfa0816
GET /ludigames/root_220413/css/style.css?v=1 HTTP/1.1
Host: media06-gl-ssl-gzip.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 21356
server: nginx
last-modified: Wed, 13 Apr 2022 10:32:24 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
date: Thu, 22 Sep 2022 03:56:12 GMT
cache-control: max-age=86400, public
expires: Fri, 23 Sep 2022 03:56:12 GMT
etag: "15609-5dc86b16d1e00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LxGkd8Fhoef_L8NZvIZ3Il6hRd3RvTTI-JVmO--2SdZ-jei_aG6sQw==
age: 52669
X-Firefox-Spdy: h2
cdn.ludigames.com/ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js
104.110.8.184200 OK 31 kB URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js
IP 104.110.8.184:0
File type Unicode text, UTF-8 text, with very long lines (34986), with LF, NEL line terminators
Hash 21fc15b9dbede3294d92752fea5175de
8385bd3e2b855b6f393622bebb2c5bb4cb5b0400
37cf2fd5f91e6ea73fac18450a3bf047947a0c7459e63ca39bf30b615ec647cf
GET /ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
content-length: 30838
last-modified: Tue, 30 Aug 2022 07:07:17 GMT
etag: "15748-5e77007d05340-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=15838
expires: Thu, 22 Sep 2022 22:57:59 GMT
date: Thu, 22 Sep 2022 18:34:01 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Roboto&display=swap
142.250.74.10200 OK 995 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto&display=swap
IP 142.250.74.10:0
Hash 586700648df17bd30267b9e6ba2b6338
8f37de5aad54dc4c92f98fb381aeee131a2f82e0
3678caba18666cc1b9ee6909353739ae8d68ff7537b47183f848f9a917a4e735
GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 18:34:01 GMT
date: Thu, 22 Sep 2022 18:34:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Quicksand:wght@400;500;700&display=swap
142.250.74.10200 OK 928 B URL HTTP/2 fonts.googleapis.com/css2?family=Quicksand:wght@400;500;700&display=swap
IP 142.250.74.10:0
Hash 27a6e840c5872a617cda566626510012
4659d6b36cfc2800182f6b91f545f33513c76c4b
c7b563a48012ac7b0073851a01f617f39980089640f36b654938c73cfe622a10
GET /css2?family=Quicksand:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://media06-gl-ssl-gzip.gameloft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 18:34:01 GMT
date: Thu, 22 Sep 2022 18:34:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
142.250.74.10200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP 142.250.74.10:0
Hash c168248ed9b93b1cf50bdca6f2aeccb6
b380e7911f538b65b3d868a44dc112d7a599818b
f49306b578b39d6e9bf0f7707fc32c2046d0393438e7f3b3e35b20abf9164907
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 18:34:01 GMT
date: Thu, 22 Sep 2022 18:34:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.ludigames.com/preload/animation.gif
208.71.186.40200 OK 8.9 kB URL HTTP/1.1 play.ludigames.com/preload/animation.gif
IP 208.71.186.40:0
File type GIF image data, version 89a, 288 x 288\012- data
Hash 24dbd456dedc3db33c054973ff1aca56
843c88e4b3c3d60771e2340d6f33414fdf1ccece
e38f565a7a57091689ab3f521b4291df4f7b8021cca9dab95073f905c4fbd5b5
GET /preload/animation.gif HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:34:01 GMT
Content-Type: image/gif
Content-Length: 8918
Connection: keep-alive
Last-Modified: Tue, 09 Nov 2021 09:17:51 GMT
ETag: "22d6-5d05795696dc0"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400, public
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap
142.250.74.10200 OK 60 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap
IP 142.250.74.10:0
Hash 39a90ff517c45b36f5e110d87728eb5b
c15a46f4614f6521c2127b39b753029db1c5c92e
a88435ffa13e46a2bb8f8de8de5f67fe8bbba0bf43bea774fc640cd12f731731
GET /css2?family=Roboto:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://media06-gl-ssl-gzip.gameloft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 18:34:01 GMT
date: Thu, 22 Sep 2022 18:34:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=GTM-NTFFQWZ
142.250.74.174200 OK 42 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-NTFFQWZ
IP 142.250.74.174:0
File type ASCII text, with very long lines (1720)
Hash 1d3a21d2b2a7ef51b6d27e8c4f4401fd
eac4ee0e29ec769a203c0dce70089585f2e209b0
faef79589771cc130fd5e5fdc3468e0ce1ef8f09fd5a52b09841092b2aa5f91b
GET /gtm/optimize.js?id=GTM-NTFFQWZ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 18:34:01 GMT
expires: Thu, 22 Sep 2022 18:34:01 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41591
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.ludigames.com/favicon.ico
208.71.186.40200 OK 4.3 kB URL HTTP/1.1 play.ludigames.com/favicon.ico
IP 208.71.186.40:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash b3c56a8e551fa25d1b22dc644002537e
759c5e237985e3fb111faa257f042965f0ebbf0f
1955dbdc76f50d7f303732937ab1d9791958650fb5a53cf3889f57e26fee5265
GET /favicon.ico HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:34:01 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Mon, 22 Mar 2021 07:06:12 GMT
ETag: "10be-5be1ab3694100"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400, public
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&gjid=1510837377&_gid=1253922422.1663871642&_u=YADAAEAAQAAAAC~&z=342508517
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&gjid=1510837377&_gid=1253922422.1663871642&_u=YADAAEAAQAAAAC~&z=342508517
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&gjid=1510837377&_gid=1253922422.1663871642&_u=YADAAEAAQAAAAC~&z=342508517 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://play.ludigames.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 22 Sep 2022 18:34:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6561e23e9d181a4b18c7174cb89a590
221a300522f62c4bde7dd23420609a12ae3bd5b6
a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 04fcf7ddca845d2b087ec43ab5ff0d59
39060a9af77ba92e5db529ba7c79013d205c9423
1ae0d60b572f2075bddfe8ae2034ddd093150d0d18c72d967b3bb8c4abffb23e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&_u=YADAAEAAQAAAAC~&z=264013458
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&_u=YADAAEAAQAAAAC~&z=264013458
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&_u=YADAAEAAQAAAAC~&z=264013458 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:34:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&_u=YADAAEAAQAAAAC~&z=264013458
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&_u=YADAAEAAQAAAAC~&z=264013458
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-49606359-38&cid=1862224886.1663871642&jid=950241492&_u=YADAAEAAQAAAAC~&z=264013458 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:34:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13180
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:34:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13180
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:34:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13180
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:34:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 6badb939-afe6-4432-a0ad-3a2b7f85a7e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1G-rFbuIAMFTeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b852a-3e9ac3331503b41d5e734a01;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:42:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: PeFdtN-ow0NE39XAV9pCHX9VSno5L9z56rg-T6Bd1fks7f1ESDDzWA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:27 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 74735
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:26 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 74736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: bc551b18-fddb-4502-8c11-b8de83d75def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwlKzF9FoAMFp_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329b578-7e030b2e0af1d1c309d2dde6;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 12:43:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dRyKwUtxiHGz_bqMMSlRKS1cDNhKm_g1ocpZLmE15k8owH789jueWA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:19:10 GMT
age: 72892
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 75593
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: 18122f14-4c48-43b3-b312-218f3ae84d93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8EVfoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-3d23a04565d70f3c5403007b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9zc5SsL1SB9GtwMkVWcNLJzC-MfOd-5TiQck5s6-MV23RWPqWPAgtA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 18:00:45 GMT
age: 1997
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eYUP9NfAkmU4A-mZvysejq1228Qfb8vbfdXOaHQvr6mjXhnVoWdqJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
age: 75593
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f08468f742203b67cafd4eb9d919877c
0ab9c6875fa317315e2e7dcdb1ba8c5d28bfef68
b66d3243be1a67a813352f3c2efa4259d4e0c7960b2206a381b52ee97dc3ff23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-8PQSSCTXQ2>m=2oe9l0&_p=1102757221&cid=1862224886.1663871642&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663871641&sct=1&seg=0&dl=https%3A%2F%2Fplay.ludigames.com%2Fpreload%2F%3Futm_source%3Dcrt%26utm_medium%3Dweb%26utm_campaign%3DCRT01%26texo%3Dtrue%26opref%3Dxsparrow%26click_id%3D22I23000400A0341250301765HIaQ%26pub_id%3D34125%26sv%3D127g4uil12wp3ohog86754wzc%257CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8%26country%3D160%26from%3DADID-435699%26fromcrt%3D1%26crt_param%3Dtexo&dr=http%3A%2F%2Fc.adup.app%2F&dt=Ludigames%20-%20Preload%20Page&en=page_view&_fv=1&_nsi=1&_ss=1&ep.cookieExpires=31556926
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-8PQSSCTXQ2>m=2oe9l0&_p=1102757221&cid=1862224886.1663871642&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663871641&sct=1&seg=0&dl=https%3A%2F%2Fplay.ludigames.com%2Fpreload%2F%3Futm_source%3Dcrt%26utm_medium%3Dweb%26utm_campaign%3DCRT01%26texo%3Dtrue%26opref%3Dxsparrow%26click_id%3D22I23000400A0341250301765HIaQ%26pub_id%3D34125%26sv%3D127g4uil12wp3ohog86754wzc%257CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8%26country%3D160%26from%3DADID-435699%26fromcrt%3D1%26crt_param%3Dtexo&dr=http%3A%2F%2Fc.adup.app%2F&dt=Ludigames%20-%20Preload%20Page&en=page_view&_fv=1&_nsi=1&_ss=1&ep.cookieExpires=31556926
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-8PQSSCTXQ2>m=2oe9l0&_p=1102757221&cid=1862224886.1663871642&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663871641&sct=1&seg=0&dl=https%3A%2F%2Fplay.ludigames.com%2Fpreload%2F%3Futm_source%3Dcrt%26utm_medium%3Dweb%26utm_campaign%3DCRT01%26texo%3Dtrue%26opref%3Dxsparrow%26click_id%3D22I23000400A0341250301765HIaQ%26pub_id%3D34125%26sv%3D127g4uil12wp3ohog86754wzc%257CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8%26country%3D160%26from%3DADID-435699%26fromcrt%3D1%26crt_param%3Dtexo&dr=http%3A%2F%2Fc.adup.app%2F&dt=Ludigames%20-%20Preload%20Page&en=page_view&_fv=1&_nsi=1&_ss=1&ep.cookieExpires=31556926 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://play.ludigames.com
date: Thu, 22 Sep 2022 18:34:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
208.71.186.40200 OK 4.0 kB URL HTTP/1.1 play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
IP 208.71.186.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (411), with CRLF, LF line terminators
Hash 4a781b35c1b72885ff6df8195986a24a
e2ece105bd0c4953fa2e2d59dc4d6ad46b84054a
02d22fb7e3bd74e41ad65415a75c701416cca5beb5abff3ffe04deffa8b955ae
GET /adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871641.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:34:08 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3997
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
X-XSS-Protection: 1
X-Frame-Options: ALLOW-FROM black.co.za
Set-Cookie: GameloftShop=g3vtc33rc24o9tlrkldp03sm7m5fdt2v; path=/; domain=.gameloft.com
gltrck_sess_nu13214=13214; expires=Fri, 22-Sep-2023 18:34:07 GMT; Max-Age=31536000; path=/
gltrck_sess_op127g4uil12wp3ohog86754wzc=13214; expires=Thu, 22-Sep-2022 19:34:07 GMT; Max-Age=3600; path=/
gltrck_uuid=trkceb4b9e7-1d2b-bdec-0278-76dfb495866d; expires=Fri, 22-Sep-2023 18:34:07 GMT; Max-Age=31536000; path=/
gltrck_sess=127g4uil12wp3ohog86754wzc%2Cc2644d59130f99e3e18b5a6fce397f3f; expires=Thu, 22-Sep-2022 19:34:07 GMT; Max-Age=3600; path=/
gltrck_sess_ex127g4uil12wp3ohog86754wzc=1663871647; expires=Thu, 22-Sep-2022 19:34:07 GMT; Max-Age=3600; path=/
wsid=896814bc6cc32c0aafbf3b7245123362b90d4ff2; expires=Fri, 22-Sep-2023 18:34:07 GMT; Max-Age=31536000; path=/; domain=.gameloft.com
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
cdn.ludigames.com/ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js
104.110.8.184200 OK 10 kB URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js
IP 104.110.8.184:0
File type ASCII text, with very long lines (35983), with no line terminators
Hash b25f8816050787d7ffe4801de5573ff1
0cf35e6527b9433efca88939252eeff711d35047
2efaed0b979437e3d32a1f0bc2e2b3611ae33cbd97c0043f8f9980da308756b5
GET /ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
content-length: 10419
last-modified: Tue, 30 Aug 2022 07:07:16 GMT
etag: "8c8f-5e77007c11100-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=15269
expires: Thu, 22 Sep 2022 22:48:37 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.ludigames.com/ludigames/adlite_220830/prebid4.17.0.js
104.110.8.184200 OK 82 kB URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/prebid4.17.0.js
IP 104.110.8.184:0
File type ASCII text, with very long lines (65491)
Hash 287aba717515929dc298d04786ddea80
eb3b8ed95e161aa6885dbcf04bbc5f0f41e376ed
2d290ebfd84f999142bf77f85736245c3e0ec2146c1141d7c5c0d0ec463e4b51
GET /ludigames/adlite_220830/prebid4.17.0.js HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
content-length: 81934
last-modified: Tue, 30 Aug 2022 07:07:28 GMT
etag: "3f643-5e77008782c00-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=32742
expires: Fri, 23 Sep 2022 03:39:50 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.ludigames.com/ludigames/adlite_220830/dist/f802e72f452f70d2ba0d.svg
104.110.8.184200 OK 21 kB URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/dist/f802e72f452f70d2ba0d.svg
IP 104.110.8.184:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20989)
Hash 987aa1ceea349c38346c47a2a8d716e1
9867f4aa8535c30b8a618b2d0806c6e960ce72bf
59429b0aa36c92c63c063c445d29025054c31c842abba9b37ab482a695f88060
GET /ludigames/adlite_220830/dist/f802e72f452f70d2ba0d.svg HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
content-length: 21366
last-modified: Tue, 30 Aug 2022 07:07:15 GMT
etag: "5376-5e77007b1cec0"
accept-ranges: bytes
access-control-allow-origin: https://m.gameloft.com
access-control-allow-headers: range
cache-control: max-age=15385
expires: Thu, 22 Sep 2022 22:50:33 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
cdn.ludigames.com/ludigames/adlite_220830/dist/0eec3fe8e27a81902cd4.svg
104.110.8.184200 OK 796 B URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/dist/0eec3fe8e27a81902cd4.svg
IP 104.110.8.184:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (692)
Hash a6ae2916be840498163966d4300ef1e1
ebd28b3211ffba5077804a33462b8ae3266c2d32
ddda80c5a6223dd6177076f67f22505079e9cd7151c4cf251d359014f36c4fbd
GET /ludigames/adlite_220830/dist/0eec3fe8e27a81902cd4.svg HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
content-length: 796
last-modified: Tue, 30 Aug 2022 07:07:10 GMT
etag: "31c-5e77007658380"
accept-ranges: bytes
access-control-allow-origin: https://m.gameloft.com
access-control-allow-headers: range
cache-control: max-age=15358
expires: Thu, 22 Sep 2022 22:50:06 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
cdn.ludigames.com/ludigames/adlite_220830/images/dummy.png
104.110.8.184200 OK 143 B URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/images/dummy.png
IP 104.110.8.184:0
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash c93f56aab6f03ab2bcc4fa6f68b1e68e
3b83960f87c8c6b0b68716f18991d906b0aca229
db3d0072f3bbb09533e155bcd3269ab85e393c61e7e9e82c40f12f623c778081
GET /ludigames/adlite_220830/images/dummy.png HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 143
last-modified: Tue, 30 Aug 2022 07:07:19 GMT
etag: "8f-5e77007eed7c0"
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=27673
expires: Fri, 23 Sep 2022 02:15:21 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 82800
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.ludigames.com/adlite/images/dummy.png
208.71.186.40200 OK 143 B URL HTTP/1.1 play.ludigames.com/adlite/images/dummy.png
IP 208.71.186.40:0
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash c93f56aab6f03ab2bcc4fa6f68b1e68e
3b83960f87c8c6b0b68716f18991d906b0aca229
db3d0072f3bbb09533e155bcd3269ab85e393c61e7e9e82c40f12f623c778081
GET /adlite/images/dummy.png HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1; gltrck_sess_nu13214=13214; gltrck_sess_op127g4uil12wp3ohog86754wzc=13214; gltrck_uuid=trkceb4b9e7-1d2b-bdec-0278-76dfb495866d; gltrck_sess=127g4uil12wp3ohog86754wzc%2Cc2644d59130f99e3e18b5a6fce397f3f; gltrck_sess_ex127g4uil12wp3ohog86754wzc=1663871647
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:34:08 GMT
Content-Type: image/png
Content-Length: 143
Connection: keep-alive
Last-Modified: Thu, 07 Oct 2021 04:38:44 GMT
ETag: "8f-5cdbbd6731d00"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400, public
play.ludigames.com/adlite/api/products.php?cat=all
208.71.186.40200 OK 7.8 kB URL HTTP/1.1 play.ludigames.com/adlite/api/products.php?cat=all
IP 208.71.186.40:0
File type JSON data\012- , ASCII text, with very long lines (65534), with CRLF line terminators
Hash 17a9ec807143a34db50ed940872c0f30
d6bb1a5cd14cb29b7a69b5baacba48b4a627aead
5d6d5e50e75152ebf936a6dfab1623812e3b6a780dc36f1430c43e6114dc173b
GET /adlite/api/products.php?cat=all HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&texo=true&opref=xsparrow&click_id=22I23000400A0341250301765HIaQ&pub_id=34125&sv=127g4uil12wp3ohog86754wzc%7CeyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdiI6IjEyN2c0dWlsMTJ3cDNvaG9nODY3NTR3emMiLCJ0aW1lX3N0YW1wIjoiMjAyMi0wOS0yMiAxODozNDowMCJ9.gn82OzpSgo2AlLIhtC0BiZIpWCWHIZsQdeb35lN1AU8&country=160&from=ADID-435699&fromcrt=1&crt_param=texo
Connection: keep-alive
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1; gltrck_sess_nu13214=13214; gltrck_sess_op127g4uil12wp3ohog86754wzc=13214; gltrck_uuid=trkceb4b9e7-1d2b-bdec-0278-76dfb495866d; gltrck_sess=127g4uil12wp3ohog86754wzc%2Cc2644d59130f99e3e18b5a6fce397f3f; gltrck_sess_ex127g4uil12wp3ohog86754wzc=1663871647
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:34:08 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7771
Connection: keep-alive
Cache-Control: s-maxage=1800
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
cdn.ludigames.com/ludigames/adlite_220830/favicon.ico
104.110.8.184200 OK 4.3 kB URL HTTP/2 cdn.ludigames.com/ludigames/adlite_220830/favicon.ico
IP 104.110.8.184:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash b3c56a8e551fa25d1b22dc644002537e
759c5e237985e3fb111faa257f042965f0ebbf0f
1955dbdc76f50d7f303732937ab1d9791958650fb5a53cf3889f57e26fee5265
GET /ludigames/adlite_220830/favicon.ico HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1663871641.1.0.1663871647.0.0.0; _ga=GA1.2.1862224886.1663871642; _gid=GA1.2.1253922422.1663871642; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/vnd.microsoft.icon
content-length: 4286
last-modified: Tue, 30 Aug 2022 07:07:28 GMT
etag: "10be-5e77008782c00"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: range
cache-control: public, max-age=20376
expires: Fri, 23 Sep 2022 00:13:44 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.207.194200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (45119)
Hash 5b9296a4e3992924300593e2432cb5bb
a3b9557f3857ae4633cadf19fb359e8c86f8f01b
163ee041e617b5115d251ed4ded0913536ab75aa2d6b1d458a03bed42b8058bf
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27807
date: Thu, 22 Sep 2022 18:34:08 GMT
expires: Thu, 22 Sep 2022 18:34:08 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1342 / 246 of 1000 / last-modified: 1663844945"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fplay.ludigames.com&pubid=301e06e9-d3c2-474e-9878-ea8f67bdc38b
54.230.111.210200 OK 248 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fplay.ludigames.com&pubid=301e06e9-d3c2-474e-9878-ea8f67bdc38b
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3004e1ee3b8e3b0d18ebd19b4a54cd3a
613d1261a6e0e26f88b3f8d7c8c9dcfeb1377964
7beb96ef759b267b4159270a64ca009646a2e9a725882896b3dd431198b92058
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fplay.ludigames.com&pubid=301e06e9-d3c2-474e-9878-ea8f67bdc38b HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 248
access-control-allow-origin: https://play.ludigames.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Thu, 22 Sep 2022 15:40:30 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v4lW7ACXgO2i13YPOXO4JQtlPPmzMS47reIcJB2Rj6ZxSm-yIsqycQ==
age: 10417
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 2.7 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
File type ASCII text, with very long lines (6557), with no line terminators
Hash ef9c38bc06f83591bd4e7d6eca68be37
13eedb1da21666c153ada906a396e53d91ba3c78
8a90032bf8f956f4268579c46de40da95d05f1f0b034766cad3a0755cfb7cc87
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 09:37:07 GMT
x-amz-version-id: I95TjGhhrR3O7F99m0mjPLrSrnJRj9o4
server: AmazonS3
content-encoding: gzip
date: Thu, 22 Sep 2022 17:07:13 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VyONUA4TW2z9UXJtFUp9mNX7-Z4xh55zauCHOxf5mQSdgdSgwEYNfw==
age: 32210
X-Firefox-Spdy: h2
secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
23.32.89.171200 OK 17 kB URL HTTP/2 secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
IP 23.32.89.171:0
File type Unicode text, UTF-8 text, with very long lines (31039), with LF, NEL line terminators
Hash 08cf2d083056b37ed3d81450fcae9e10
b00cfd2cfd7ae7b4c417ebdcf8e1ea60f6bde206
1b3dbda1abbc3d8852d3b65ca80fe0646d32e7ca0df4f32dfa3cb630ca2fb18d
GET /js/pubcid/latest/pubcid.min.js HTTP/1.1
Host: secure.cdn.fastclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 08 Sep 2022 20:10:31 GMT
etag: "d71e-5e830058020dd-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17404
content-type: application/javascript
cache-control: max-age=900
expires: Thu, 22 Sep 2022 18:49:08 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
media07d-gl-ssl-gzip.gameloft.com/products/2920/default/html5/banners/242/banner.jpg
23.38.200.27200 OK 18 kB URL HTTP/2 media07d-gl-ssl-gzip.gameloft.com/products/2920/default/html5/banners/242/banner.jpg
IP 23.38.200.27:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 242x256, components 3\012- data
Hash 95c2570d294d6857f3dfc6bb5bd42c19
94e85808048792803f5c2392d6c370d55b67a760
ce8934b4fd3662c6662d24fc1e84d0de83d2d1254f875ad9595e87e71e909aa6
GET /products/2920/default/html5/banners/242/banner.jpg HTTP/1.1
Host: media07d-gl-ssl-gzip.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 17746
last-modified: Wed, 27 Feb 2019 21:25:47 GMT
etag: "4552-582e6d12c8cc0"
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=5574
expires: Thu, 22 Sep 2022 20:07:02 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
media07a-gl-ssl-gzip.gameloft.com/products/4924/default/html5/banners/242/banner.jpg
23.38.200.27200 OK 16 kB URL HTTP/2 media07a-gl-ssl-gzip.gameloft.com/products/4924/default/html5/banners/242/banner.jpg
IP 23.38.200.27:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 242x256, components 3\012- data
Hash 0c6ec5987766b04a6bd351810b3bd394
5a6fdbe93a25b01d18a45ab1d5ff9a7b6477dd80
e9f6d9e1469d536d956fab4203a1e6cb4a2c5d7c7273d0ffcf24ff65c04f671f
GET /products/4924/default/html5/banners/242/banner.jpg HTTP/1.1
Host: media07a-gl-ssl-gzip.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 16046
last-modified: Wed, 04 Nov 2020 15:00:44 GMT
etag: "3eae-5b3493e5fbf00"
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=45218
expires: Fri, 23 Sep 2022 07:07:46 GMT
date: Thu, 22 Sep 2022 18:34:08 GMT
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 22 Sep 2022 17:39:26 GMT
last-modified: Thu, 15 Sep 2022 20:15:32 GMT
etag: W/"0b4d277527066dd35dd7c0288cb596b4"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 bc0a0f9f99d36a68240a31a25e39addc.cloudfront.net (CloudFront), 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: ej4e-6WEq2M-zAu3AWXwDF2JznnK0CX6rslrq3GrJq_AxdiYLYKxDg==
age: 3283
X-Firefox-Spdy: h2