| hidcupcake.com/wsf1nit26j?dev=r&key=7ff94e9461629d2f54ff14725863196e&kw=[%22april%22,%2220%22,%222024%22,%22-%22,%22onejav%22,%22com%22,%22-%22,%22free%22,%22jav%22,%22torrents%22]&nkwxz=50&pst=&refer=https://onejav.com/2024/04/20?page=2&jav=1&res=7.31&scrHeight=1152&scrWidth=2048&ship=&tz=8&v=20.8.v.1 | 192.243.59.20 | | 1.6 kB |
URL hidcupcake.com/wsf1nit26j?dev=r&key=7ff94e9461629d2f54ff14725863196e&kw=[%22april%22,%2220%22,%222024%22,%22-%22,%22onejav%22,%22com%22,%22-%22,%22free%22,%22jav%22,%22torrents%22]&nkwxz=50&pst=&refer=https://onejav.com/2024/04/20?page=2&jav=1&res=7.31&scrHeight=1152&scrWidth=2048&ship=&tz=8&v=20.8.v.1 IP192.243.59.20:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (775) Hash221842b5eee1eb6cdcae4b7f758c5716 3eeccf8cde1f37302067a37609e1d2338b0f2456 3044efba9fc15d9244b20c04e9a5ebf3a618fdeca44c6b305d170b5044189c02
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wsf1nit26j?dev=r&key=7ff94e9461629d2f54ff14725863196e&kw=[%22april%22,%2220%22,%222024%22,%22-%22,%22onejav%22,%22com%22,%22-%22,%22free%22,%22jav%22,%22torrents%22]&nkwxz=50&pst=&refer=https://onejav.com/2024/04/20?page=2&jav=1&res=7.31&scrHeight=1152&scrWidth=2048&ship=&tz=8&v=20.8.v.1 HTTP/1.1
Host: hidcupcake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 20 Apr 2024 07:18:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14217017; expires=Sun, 21 Apr 2024 07:18:05 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.bo0Cg-BuvL4mEuRG1UTNHmcyJ2UjB4oJNhNtbos8KPA; expires=Sat, 20 Apr 2024 07:19:05 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a777b841cacd772ab1450b7fb9218c5e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| hidcupcake.com/api/users?token=L3dzZjFuaXQyNmo_ZGV2PXImamF2PTEma2V5PTdmZjk0ZTk0NjE2MjlkMmY1NGZmMTQ3MjU4NjMxOTZlJmt3PSU1QiUyMmFwcmlsJTIyJTJDJTIyMjAlMjIlMkMlMjIyMDI0JTIyJTJDJTIyLSUyMiUyQyUyMm9uZWphdiUyMiUyQyUyMmNvbSUyMiUyQyUyMi0lMjIlMkMlMjJmcmVlJTIyJTJDJTIyamF2JTIyJTJDJTIydG9ycmVudHMlMjIlNUQmbmt3eHo9NTAmcHN0PTE3MTM1OTc1NDUmcmVmZXI9aHR0cHMlM0ElMkYlMkZvbmVqYXYuY29tJTJGMjAyNCUyRjA0JTJGMjAlM0ZwYWdlJTNEMiZyZXM9Ny4zMSZybXRjPXQmc2NySGVpZ2h0PTExNTImc2NyV2lkdGg9MjA0OCZzaGlwPSZzaHU9OWQ1MTk1MDAyMGViM2UyOGM0N2Y1NDM0OTQ5ZmE0Y2ZlMmI1M2Q0M2YwMzA1NmZiMDcyMGEzZDlmNzQ0NDE0MTA1ZGUxNWFmODFkZWJjMzYwMzA1N2M4MzQ1MTY3ZDBjOWVkOTdhZTIyYzQzOTgzZmViZjZhYjYxMjA2YTY2ODVjNGE0Y2E5ZTg3ZjE1NDg5YzgzNzRlYmYzZWU4ZDIyYWE1ODU3YzUzYmI3MTBmNTc3YjM2ZWNjZTUxYTZjOCZ0ej04JnY9MjAuOC52LjE&uuid=&pii=&in=false | 172.240.127.234 | 302 Found | 0 B |
URL User Request GET HTTP/1.1hidcupcake.com/api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false IP172.240.127.234:443
CertificateIssuerLet's Encrypt Subjecthidcupcake.com FingerprintC9:F2:AA:D8:B2:BB:6B:58:7D:80:E7:CC:0A:04:31:80:4D:31:6A:19 ValidityTue, 16 Apr 2024 10:21:40 GMT - Mon, 15 Jul 2024 10:21:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false HTTP/1.1
Host: hidcupcake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hidcupcake.com/api/users?token=L3dzZjFuaXQyNmo_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0xNDIxNzAxNw
Cookie: u_pl=14217017; ain=eyJhbGciOiJIUzI1NiJ9.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.bo0Cg-BuvL4mEuRG1UTNHmcyJ2UjB4oJNhNtbos8KPA; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 07:18:06 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://holdhostel.space/?6622842d7176c&ag_custom_domain=14217017
Set-Cookie: iprc380d115a2be968549203208db44db797=5182195; expires=Sun, 21 Apr 2024 07:18:06 GMT
pdhtkv=true; expires=Sun, 21 Apr 2024 07:18:06 GMT
uncs=1; expires=Sun, 21 Apr 2024 07:18:06 GMT
pdhtkv28=true; expires=Sun, 21 Apr 2024 07:18:06 GMT
uncs28=1; expires=Sun, 21 Apr 2024 07:18:06 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9f97a5dce233ef9dd35da547467820fe
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn1.png | 172.67.163.114 | 200 OK | 6.9 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn1.png IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typePNG image data, 339 x 207, 8-bit colormap, non-interlaced Hasha67051906425835b13dc4292c6fe2ef7 c96b01fb21c60a17fad9e89f235fdb8809ffc43d f000409df7dd5222fc51cc35113519a133596c011f61bc5a7f65f9dcd2843a37
GET /lg/lg_0324/land_lg_140324_en/image/btn1.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/png
content-length: 6866
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-1ad2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=diwtXVxTBiCJlJYc7tyr7Ar7G5kjQHKSMRXDq2vOwnIa%2FSOI9Zau3pfrhcab22wsdWgdcy7z85ZQeE21JLObIbADN0NkGQZBaOqau%2BCw8kdyjYO9uYEbInoreCDhe6xwIm%2BCa0dN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc368b556af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn2.png | 172.67.163.114 | 200 OK | 9.8 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn2.png IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typePNG image data, 339 x 207, 8-bit colormap, non-interlaced Hash8c7c430e736c07b069cf61a2870c7254 a1b6cf722997131aa569f2214df2ce8a9e6e5630 42269355807fe5c4d7dabbccff1cc602725b5ffccae86759412219b83198a180
GET /lg/lg_0324/land_lg_140324_en/image/btn2.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/png
content-length: 9771
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-262b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q0dj0bRsuJUnFG22pLG6Wi%2BflFGW8CGTQGUZa6Y6jnYFiQEeSjXK%2BgLFPBWCcYqoGDX8iqP0ZOYorjca76GqFWb4M9kq%2BtIlB234xAAe%2B11qVCc%2FwmsJe8kevCTe6jHSxX4megiU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc368b656af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ln.gamesrevenue.com/px1.js | 5.161.79.44 | 200 OK | 88 kB |
URL GET HTTP/2ln.gamesrevenue.com/px1.js IP5.161.79.44:443 ASN#213230 Hetzner Online GmbH
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subject*.gamesrevenue.com FingerprintB2:A3:99:AD:22:46:FC:93:41:E9:59:40:F5:09:B0:23:B7:5B:FA:67 ValidityWed, 13 Mar 2024 09:55:06 GMT - Tue, 11 Jun 2024 09:55:05 GMT
File typegzip compressed data, max speed, from Unix Hasha88c9946a6ffcabc015f8fa19b4ab13a 90f46164eed8ce33690f657a210c885cde93ecfe 8e6bb5c718a8583d6fdfb6e049a35189568e27600c07b288c4d3c6221e9c1c85
GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 10:12:56 GMT
etag: W/"65856128-3b88"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_close.jpg | 172.67.163.114 | 200 OK | 40 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_close.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash3d830c378aa76c9caa82a73805459893 4a48546372f2ef6311cbed974d536273bcfdd711 8d88b039c0e88133bd2f53dc2fef48ea2d8bdae4eb6e3162fec9db714f97adea
GET /lg/lg_0324/land_lg_140324_en/image/g1_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 40179
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-9cf3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kSrPraZA8l9XxlKKiCyWRYBvchJLDb9HRNKHceNQrHyvpm0o9G3xh9APU%2Bu720TgdWrfrGGfvjoXoOzfzb%2BTBkF%2By33ryYf%2FA9mY%2BnX%2B8B%2BztYBp36ApAM1AA5GVVSInRYGd7v%2Fy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc57ac656af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_open.jpg | 172.67.163.114 | 200 OK | 80 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_open.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash12e061b10b2c654a24ea704af3aaec43 9c506625e1fa700f0e6522cced2a53b0cde2bd54 d321fc26bb399bd642b1a3ae059a03308d286526e6b87a9cb37ba63833673372
GET /lg/lg_0324/land_lg_140324_en/image/g2_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 79598
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-136ee"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aM83IbMCM4LvrKjqD3bNqhhwhVd0m4pv8Yh4lqDn7IFH2xNmNkW2Wj5UtH2aJ1pattHIV4bdOSrXySAxPBDF2rTMaEzoo2g1T0PHwaWj2b29hbaCCXt6w43ms6flDsKy8HtoQBtK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc57acc56af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_close.jpg | 172.67.163.114 | 200 OK | 42 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_close.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash955f59a0876a28b432c71c0d274727c7 789778a09f2fa8f8bd24be2bb781914f5070dd3d 40e8cd16f27d5d6a0cfd007881651ef8acd93ba95423c05741bc410454eabf40
GET /lg/lg_0324/land_lg_140324_en/image/g2_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 41478
last-modified: Tue, 12 Mar 2024 16:35:34 GMT
etag: "65f08456-a206"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gctBX%2Feo4NdyHH4f524fdEHvPUMJVWUbzqSuBr9S660Lv9SYoZy3AHmjQamp5k7kjhYDAhqn%2BIlnNEUfYVvTtxTwl5ikQSSCTvBGXt8Cc3qEkzavpIkGrseFhbL9TlKy0TylCkA5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc58acf56af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_open.jpg | 172.67.163.114 | 200 OK | 63 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_open.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hashd837068776c28a251131d2c0138c5db4 bc8d3e395fa77a6b801f13d1c22ff159776cc430 a8364b19810c700ee3899c55089ca678291758ee0d62dbad821e2a6d73b08c93
GET /lg/lg_0324/land_lg_140324_en/image/g3_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 63206
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-f6e6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rLokU%2BH7gx5gLNT8MZTm66mS8kpR%2BaXmTowJCtuX0lag9%2FDh3JfH2%2F%2FTEUbelb8pMthjK%2FerJ8%2B7vaPAuR9poBrKKPxadBJFiUXdwOnDn0NzC3iqjQ6p6Zd%2FvFmnOzY6v%2BBillqR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc5aae856af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_close.jpg | 172.67.163.114 | 200 OK | 41 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_close.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hashaa7031c41077d720cfc935e8de98de95 47aaf9ec464983016d35bb8150928c7f96cdff8c 6a49dc8fe71fafd7db501c43d96537be26a508a2c8a932ff8f03746bc9a55a83
GET /lg/lg_0324/land_lg_140324_en/image/g3_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 40609
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-9ea1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9r4aVU%2BNUe%2Fpu%2FCW862VyTaRY%2FXUCjIh23JW7wouGkzKNkD1YDc29ibeJn2ZCD9E%2BJ45L2swMyERWJffVx43dQh%2BBWc85cwPqzKXLIKkiC%2Bn2BDPAbPtrM4Kcpe5KIPxPA63VIyj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc5aae956af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_open.jpg | 172.67.163.114 | 200 OK | 73 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_open.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hashc37fec311feadcbd0c77987b383b0596 9a8f5df2805241f6bc484151dc31f3b72bb9a196 a61a23797d6b68ed79222d950596e90da320e59f8ee23e7eb776c94ee0d6734c
GET /lg/lg_0324/land_lg_140324_en/image/g4_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 72874
last-modified: Tue, 12 Mar 2024 16:35:36 GMT
etag: "65f08458-11caa"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gIC0DVMXkrZub0zRW2WutHZCrVSoDzinXQco2tzJisAnJFEME91sDfnWRNUDSLFu1MSzDcRFklo7ePypUE5kZjFOvndN1%2FfUV0v%2FwXLrjdcnP0VAi%2FzqFZbeGpCVVkbqP9etsmIg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc5aaeb56af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_close.jpg | 172.67.163.114 | 200 OK | 41 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_close.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hash4735a029efd2d2e8b15fab5879842219 82ac18ec8aae9a2cc311cdb3b92862e56d161f99 11c0bdd5fc2ba1dfea6ccaedded312f27fd5d5ddf21f24ee607ad05c2c0f197b
GET /lg/lg_0324/land_lg_140324_en/image/g4_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 40656
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-9ed0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IoqnOD0siQaIBrTVz%2FMUJLm%2BcSlSSlHt%2BX43Buu7b2LtCCc%2FTir5wg97JWXCnyO5aU3SbTJVe00t73KDikt0OnraanKX%2B9Vg4ms1b9%2BwZzOtk0HOMd85BbqHp9ST0VOoOD1pi6Lx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc5aaee56af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/fav.png | 172.67.163.114 | 200 OK | 1.4 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/fav.png IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash10c5dd857fd3653492ef5eeaa86cd48b 193484a907a40d7b145af2136ef83bef593d2f21 a689201508b9dc7b2cc3049c7d89947f96a19790411506ecd6eb1875374fe329
GET /lg/lg_0324/land_lg_140324_en/image/fav.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:07 GMT
content-type: image/png
content-length: 1425
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-591"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1693
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=isdk2pUO1Xc0ilxIWSdTlJvpO97fv0DTuxqy0p8F8LcLrW669P2QCF3VqkC5X4Smi8wSecqvMIjhPxoDIWATS73P3%2BKIqNp2%2FlSFrkcNQ%2B5jl76WRNZb3qifXv%2FZNv8eGs3zJHB5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc60b4056af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/awpx_click.js?v=005 | 172.67.163.114 | 200 OK | 1.5 kB |
URL GET HTTP/3theeverydaygame.com/awpx_click.js?v=005 IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeASCII text, with very long lines (1544), with no line terminators Hash684379265eb9f58cc45bc0d82f0db964 dcceb2eb66dd485a8df52da17210e1ea660354ee 45f7be3af362b2f0b894e51e8394ecc08066d8b9004fb095ba7665edbd8ce078
GET /awpx_click.js?v=005 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 09:49:36 GMT
etag: W/"6409abb0-5d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HVLsGLoyF2ayxekCy5AieeBbGTOZb8%2FS7N8FURVnw58HzmVvzWn%2Bxcrkh4bJx3xnnUjdWMHz1qSXKsARraqjRkSUKTe7axsLMem%2FvFlIyLpRvsKCx98ssim0DXkBG7WJXnOStwxN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc358af56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 | 172.67.163.114 | 200 OK | 2.2 kB |
URL User Request GET HTTP/2theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 IP172.67.163.114:443
CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeHTML document, ASCII text, with very long lines (2342), with no line terminators Hashf610d79a049b22911f1e6c2bd37a4aee 42004ffdfe77bc85d8da4df1f7b7dc9c72eb527f c4b1dbd27978982fc23fedac9a3feac059909e8b969e3f0f337a7f529cd6f4b0
GET /lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hidcupcake.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9R%2FQDcx62ORPbT800nL4kkmxMK4jjXMN%2FUenB%2FAqy789IaNblxB8eIWy1cNBWIFXU%2BX4g3aPsAkIongK2lpAkSp1P0768aYDllBT1GMIkV2uKLBx1LzfzwFyqOx6kmnh0hMtjsfS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87735bc1dab10b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css | 172.67.163.114 | 200 OK | 3.3 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeASCII text, with very long lines (3548), with no line terminators Hashaac1493fdaa516c07b05dc277adf9047 40c8ee3e4d54dfff6dcaea969bcad3d20ec9b796 8f9a48a298195eefb30fffd1c8d458eac7ecc2503a77ba8a5bc47bad68b61c37
GET /lg/lg_0324/land_lg_140324_en/css/main.css HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 16:35:32 GMT
etag: W/"65f08454-ce3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1700
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GD9gOYPsWQ6xTSwJ%2B%2FUfuV6%2B5dTD5hecbMFpvZmy0JoUVWl0Yu7Dw515RSyNjEj2dqRNvO0jW3z1ag4sFU0yk8ivsqOmDtc5uO13PwQunL1FJ3tmYIJT4JR17Nt5amXTB1GZh7Ws"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc358aa56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js | 172.67.163.114 | 200 OK | 521 B |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (567), with no line terminators Hash42a310913ab3c9f8c9241c154fd7af4a 8acd5b33349b86bb7ea9da2f609ca7230ad5761d ac4d23ed1f3208f4515cb3561fc74ece439d34496675ae90917061a858c7b79a
GET /lg/lg_0324/land_lg_140324_en/scripts/main.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:38 GMT
etag: W/"65f0845a-209"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1693
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zSyEJ%2FTti8fUsBrOWxFseEH6xZv0h4djJCgrv%2BuOy1Y209KZnAgLvJlBvQ0um1CO5L4FJCpi8v4%2Bl1XNK5L%2FX%2BWJuvzLO7%2Br%2FG1zHzHlQEjuxq2%2FW519XndWd2DieDoNebM6SGdH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc368bc56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| holdhostel.space/?6622842d7176c&ag_custom_domain=14217017 | 172.67.192.172 | 302 Found | 2.2 kB |
URL User Request GET HTTP/2holdhostel.space/?6622842d7176c&ag_custom_domain=14217017 IP172.67.192.172:443
CertificateIssuerGoogle Trust Services LLC Subjectholdhostel.space Fingerprint14:CB:20:91:43:30:C5:BE:4E:FE:D8:C7:4C:E9:BF:3B:F4:B4:89:95 ValidityWed, 21 Feb 2024 16:45:55 GMT - Tue, 21 May 2024 16:45:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?6622842d7176c&ag_custom_domain=14217017 HTTP/1.1
Host: holdhostel.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hidcupcake.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: text/html
location: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
set-cookie: c_2022b6829ad3bc8a5d74a4bfe5cf4db8=1; Expires=Sun, 21-Apr-24 07:18:06 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
z_dd834028817d054ef3568898fa07ee8f=1; Expires=Sun, 21-Apr-24 07:18:06 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JddUkiBbfxROI4rhlOzVBg8SIZrW%2Ft7g8FFYxmGng2VkLRjRqBZQWpwpQhEMygIvHj%2BaEkUQgArfFeh01onkk8ecuV7taueIolMq5SEIEkLmm3eOxh%2BBXO6QWmv6uDEXg%2Fvs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87735bc169e0568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_open.jpg | 172.67.163.114 | 200 OK | 84 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_open.jpg IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3 Hasha3efbcb7561dddaeb36ba22fb8fae56f a9363a7f6b6e9a5a6dcbb37a0abfa7bb3ab3ea1d d95424c3f3857c13ff9f6a957f805b188a568ce769b51ee9fe68c8fd3537b319
GET /lg/lg_0324/land_lg_140324_en/image/g1_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: image/jpeg
content-length: 84260
last-modified: Tue, 12 Mar 2024 16:35:34 GMT
etag: "65f08456-14924"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1692
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UPgcxs794fP5uky94i0qbOzcYTt3vwh%2F8od7cIadqbmazHMt0JwxzuehCXkRXGAQHshaNkeYb1rolHeslZX7Upgwc5h%2BmBsJyQRd4k%2BHswlcem8qGzN%2FudLoYccFwcoJL9p1lF4O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc57ac556af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js | 172.67.163.114 | 200 OK | 87 kB |
URL GET HTTP/3theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js IP172.67.163.114:443
Requested byhttps://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 CertificateIssuerLet's Encrypt Subjecttheeverydaygame.com Fingerprint1C:2A:70:BB:0D:8A:A7:07:B6:01:2D:71:87:2E:C4:07:3D:FF:45:57 ValidityFri, 01 Mar 2024 17:23:46 GMT - Thu, 30 May 2024 17:23:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /lg/lg_0324/land_lg_140324_en/libs/jquery.min.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 07:18:06 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:38 GMT
etag: W/"65f0845a-1538f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1700
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qr4HLNx1W5RTykpYIyECm7iPRVNDFfGcBEVB0eUlvkehwaVKLG%2Fm1hRSfLucYXIYo6N3qQemkHJf6Meo9OhY5jyu%2B5t1OE7BI6snK5pJjrYpOCrphniaf5HLcRhrlTndPkMzsDEb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87735bc358ac56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|