Overview

URLyyhowje.gov.wy5532.com/
IP 199.115.115.102 (United States)
ASN#30633 LEASEWEB-USA-WDC
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 00:06:59 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (21)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ln.gamesrevenue.com (1) 117740 No data No data 5.161.79.44
r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-11-30 17:12:16 UTC 23.36.76.226
click-v4.expmdiadi.com (1) 0 No data No data 198.134.116.17 Unknown ranking
img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-11-30 17:26:07 UTC 34.120.237.76
main.realsrv.com (1) 91110 No data No data 95.211.229.248
ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mc.yandex.ru (4) 2672 2017-01-29 05:34:36 UTC 2022-11-30 18:58:07 UTC 87.250.251.119
simplewebanalysis.com (1) 0 2022-02-25 04:06:25 UTC 2022-11-30 17:25:03 UTC 52.28.211.11 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 17:13:24 UTC 34.117.237.239
e1.o.lencr.org (2) 6159 2021-08-20 07:36:30 UTC 2022-11-30 17:37:57 UTC 23.36.76.226
main.exoclick.com (1) 33599 No data No data 95.211.229.245
twistconcept.com (1) 0 No data No data 172.67.215.17 Unknown ranking
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-11-30 20:24:46 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-11-30 17:19:42 UTC 34.160.144.191
yyhowje.gov.wy5532.com (1) 0 No data No data 199.115.115.102 Unknown ranking
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-11-30 17:12:17 UTC 34.216.88.5
gracelessbrief.com (2) 0 No data No data 173.233.139.164 Unknown ranking
supanimegames.com (16) 0 No data No data 104.21.31.221 Unknown ranking
ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-11-30 17:14:19 UTC 104.18.21.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 17:12:31 UTC 34.102.187.140
professionalswebcheck.com (1) 0 No data No data 52.28.211.11 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 yyhowje.gov.wy5532.com/ Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.115.115.102
Date UQ / IDS / BL URL IP
2023-01-29 15:07:16 +0000 0 - 0 - 5 innovate4lifefund.com/2021/12/07/oide-yo-mizu (...) 199.115.115.102
2023-01-28 23:48:20 +0000 0 - 0 - 3 qmkmjno.cn.wy5532.com/ 199.115.115.102
2023-01-27 19:26:09 +0000 0 - 0 - 1 cneer8ce41.jv.wy5532.com/ 199.115.115.102
2023-01-27 02:52:33 +0000 0 - 0 - 5 condosbysmdc.ph/CPly-B0_HVfPMk-zUK/ACH/Paymen (...) 199.115.115.102
2023-01-26 11:19:11 +0000 0 - 0 - 1 qwqwq.85874.na.wy5532.com/ 199.115.115.102


Last 5 reports on ASN: LEASEWEB-USA-WDC
Date UQ / IDS / BL URL IP
2023-01-30 17:43:54 +0000 0 - 2 - 6 re85bab.nh.wy5532.com/ 162.210.196.168
2023-01-30 17:40:18 +0000 0 - 0 - 5 o2rjrw.cxcjghh.cn/ 199.115.116.43
2023-01-30 16:46:00 +0000 0 - 4 - 5 viptips4youlife.world/us/kamm/viaketogummies- (...) 108.62.118.31
2023-01-30 15:59:18 +0000 0 - 1 - 0 12kbps.xyz/repo/vir/others/memz.exe 162.210.199.85
2023-01-30 13:40:55 +0000 0 - 0 - 2 tgrrre.31a76.bw.wy5532.com/ 162.210.196.168


Last 5 reports on domain: wy5532.com
Date UQ / IDS / BL URL IP
2023-01-30 17:43:54 +0000 0 - 2 - 6 re85bab.nh.wy5532.com/ 162.210.196.168
2023-01-30 16:38:43 +0000 0 - 2 - 6 rrvyqsq.uu.wy5532.com/ 37.48.65.152
2023-01-30 13:52:04 +0000 0 - 0 - 1 wxsxc.601ae.vh.wy5532.com/ 37.48.65.150
2023-01-30 13:40:55 +0000 0 - 0 - 2 tgrrre.31a76.bw.wy5532.com/ 162.210.196.168
2023-01-30 13:28:03 +0000 0 - 0 - 1 cn3e15a.an.wy5532.com/ 37.48.65.150


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-15 21:33:34 +0000 0 - 0 - 6 www.emurom.net/es/emulacion/nintendo-roms/det (...) 51.15.62.143
2023-01-15 20:52:02 +0000 0 - 0 - 15 kyliehill7.blogspot.com/2022/09/sekaran-and-b (...) 142.250.74.161
2023-01-07 06:23:40 +0000 0 - 0 - 1 supanimegames.com/common/tr/ce/land_ce_300520 (...) 104.21.31.221
2022-12-09 04:48:54 +0000 0 - 0 - 25 elaina.bloggplatsen.seelaina.bloggplatsen.se/ 188.126.64.122
2022-12-03 18:51:04 +0000 0 - 0 - 3 2tty.584ce.wh.wy5532.com/ 37.48.65.152

JavaScript

Executed Scripts (9)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (58)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6357
Expires: Thu, 01 Dec 2022 01:52:44 GMT
Date: Thu, 01 Dec 2022 00:06:47 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5090
Cache-Control: 'max-age=158059'
Date: Thu, 01 Dec 2022 00:06:47 GMT
Last-Modified: Wed, 30 Nov 2022 22:41:57 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 23:18:04 GMT
cache-control: public,max-age=3600
age: 2923
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6984
Expires: Thu, 01 Dec 2022 02:03:11 GMT
Date: Thu, 01 Dec 2022 00:06:47 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: Imlohd5seimiN9nG29+i323zl7/cEUJu7pTOmNJNfXw47pKfHhUjMFotKw/ua9pFEuQFYCAm+9o=
x-amz-request-id: G6KN6WCT7ANZC9KY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 23:46:03 GMT
age: 1244
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 00:06:47 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 23:08:56 GMT
cache-control: public,max-age=3600
age: 3471
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5087
Cache-Control: 'max-age=158059'
Date: Thu, 01 Dec 2022 00:06:47 GMT
Last-Modified: Wed, 30 Nov 2022 22:42:00 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: yyhowje.gov.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: sid=a91180b8-7106-11ed-8792-da8642fe70e4
Upgrade-Insecure-Requests: 1

search
                                         199.115.115.102
HTTP/1.1 302 Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Thu, 01 Dec 2022 00:06:47 GMT
location: http://click-v4.expmdiadi.com/click?i=vT9JqDb5Hds_0
server: nginx


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   11
Md5:    32682312d17c7cbf18e73594f5570319
Sha1:   60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
Sha256: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pzj7vUF6igxFfelTTfavWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.216.88.5
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iPRLGISJcUAzly1BA7omChGD0No=

                                        
                                            GET /click?i=vT9JqDb5Hds_0 HTTP/1.1 
Host: click-v4.expmdiadi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         198.134.116.17
HTTP/1.1 302 Found
                                        
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://gracelessbrief.com/wq3ht79x1?key=61640e6829406cb5e3f614ac2a9e21c0&psid=wy5532.com
Pragma: no-cache

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "445684A354FCEC7174DB0C5359EB97AD0D700F9D375BBD817A831C70CE02F04A"
Last-Modified: Tue, 29 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5566
Expires: Thu, 01 Dec 2022 01:39:35 GMT
Date: Thu, 01 Dec 2022 00:06:49 GMT
Connection: keep-alive

                                        
                                            GET /wq3ht79x1?key=61640e6829406cb5e3f614ac2a9e21c0&psid=wy5532.com HTTP/1.1 
Host: gracelessbrief.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         173.233.139.164
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Thu, 01 Dec 2022 00:06:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=17612737; expires=Fri, 02 Dec 2022 00:06:49 GMT ain=eyJhbGciOiJIUzI1NiJ9.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.0sJNZQpNp2B2g1AFPQ2IA_R0P4UPTOsUG9JnuTDtMtU; expires=Thu, 01 Dec 2022 00:07:49 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 248aac8be1eac478a0fa72c3aaf6bec3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (341)
Size:   2405
Md5:    3d9c93816b488b7968225956a9eb16f0
Sha1:   65bb9d5662b0d74c3c3ec580546037e71e3c77df
Sha256: bb26566108bb3d1dbab9661b13cf175e585d9f8bb58ee88dfbb18531c3a80c2c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15945
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:06:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15945
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:06:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15945
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:06:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15945
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:06:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15945
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 00:06:49 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2382
x-amzn-requestid: 7279ff68-1e32-4c57-9b9d-f5803a19e8e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJYQuEmEIAMFkeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806d9e-2cf28dc150b53b9f3c60bb4c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:24:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UaUyc03Gw0P7G_7gjAyp-c3XxjIDbllO7lmG_8UWVCuBP4WgEgSydQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 14:26:41 GMT
age: 34808
etag: "b3eaec75f854d22cd1dcd6aa42e37f6d0df50036"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2382
Md5:    f5469e846da1e0f21cfc480f56a656a6
Sha1:   b3eaec75f854d22cd1dcd6aa42e37f6d0df50036
Sha256: d5701207a8b6b358359ebfd85a6916af7a3abf79acba235bf7d4131b0bc2e9b5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F_ZBWwAOPbEjvMD1ChrgN9QYUyyFYdtRT6CcX6gviowmeinPRgVtnA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 04:20:06 GMT
age: 71203
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10985
Md5:    f07f254d44ff2fb86ee22cee39ef3eb0
Sha1:   0660a548a491d4a58ca2246f094f0553437c3f61
Sha256: 859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q9y5-OF59ODaZRd9YFFdM2rIH0bYYyIT40rCwr8cBwBQd0GOqtNobg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:08:51 GMT
age: 7078
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10437
Md5:    291127b670135b42b6e9687aa2a13237
Sha1:   99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
Sha256: 49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2150
x-amzn-requestid: b8ce8dbd-9109-4abc-9136-e4ac1ec37f15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPdIFGdooAMFQmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382dbcd-6a718efd51051576132dd523;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:38:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z8LtaO2ywz0X9cGNU18a5eyA9jIy6hL9dEaZgcecoggpEelDxiTy7w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 14:43:12 GMT
age: 33817
etag: "9bc2e9039e9340b83ffcfb90e4e2c631a8723e60"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2150
Md5:    995eb3df7ec5507e3392fdb1ca6395b4
Sha1:   9bc2e9039e9340b83ffcfb90e4e2c631a8723e60
Sha256: 4c86fdcd3b338040ea8130ee6a1ed5c3bd66c4dd59fe461f81e5df88a379ebb3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1fe6f5b-2658-4434-b276-36d841c8ceee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8124
x-amzn-requestid: e000c0d5-82d0-41a8-8def-b36970226969
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0UqEd1oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdb7-27efd8c92b8f6e4f257cec3b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1GIxjB2nXfoxuqJHLtkXl4OJT_Po5DJA_w26E2K8WOmm_PZw1qU3IQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:19:35 GMT
etag: "ec0fd74a981603e197df26c6fb79ef039f737557"
age: 6434
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8124
Md5:    42c762f71487f8e0285dd2129700f069
Sha1:   ec0fd74a981603e197df26c6fb79ef039f737557
Sha256: 8a40883d87b1e2c6e116e3cf881a8b39c987200a8556b651f78a376b3ddbaa26
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 08:50:17 GMT
age: 54992
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4762
Md5:    d2dd5a4bcfd47db8f38544bf39ce3031
Sha1:   fa2217bae05b7beca2e12597eaad835298276b82
Sha256: 3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
                                        
                                            GET /wq3ht79x1?pst=1669853269&rmtc=t&uuid=&pii=&in=false&key=61640e6829406cb5e3f614ac2a9e21c0&shu=34531f045fb4b47bad3128e4c513097f4cb6004641c42c18fe98ffb6c92e7a5776c523479d6f3fa00c90fb6abaaf2688ba1acdbbbe4cc300091456045f6d91fa49ec278f540939dc0bc7e496361738511ec3f5cc1267805ea878641d5ddb&fr=0&sw2=1280&sh2=939&sw3=1280&sh3=176&sw4=1280&sh4=939&sw5=1280&sh5=1024&sw6=1280&sh6=1024&sw7=1280&sh7=1002 HTTP/1.1 
Host: gracelessbrief.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gracelessbrief.com/wq3ht79x1?key=9ca601a9f47c735df76d5ca46fa26a66&submetric=17612737
Cookie: u_pl=17612737; ain=eyJhbGciOiJIUzI1NiJ9.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.0sJNZQpNp2B2g1AFPQ2IA_R0P4UPTOsUG9JnuTDtMtU; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         173.233.139.164
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Thu, 01 Dec 2022 00:06:49 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Set-Cookie: iprcf195f41ce105c79bfbfbca64869727db=2270707; expires=Fri, 02 Dec 2022 00:06:49 GMT pdhtkv=true; expires=Fri, 02 Dec 2022 00:06:49 GMT uncs=1; expires=Fri, 02 Dec 2022 00:06:49 GMT pdhtkv28=true; expires=Fri, 02 Dec 2022 00:06:49 GMT uncs28=1; expires=Fri, 02 Dec 2022 00:06:49 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dfba4c752193f24d24549f8006c84743
Strict-Transport-Security: max-age=0; includeSubdomains

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3906
Cache-Control: max-age=170217
Date: Thu, 01 Dec 2022 00:06:49 GMT
Etag: "6387d6c0-117"
Expires: Fri, 02 Dec 2022 23:23:46 GMT
Last-Modified: Wed, 30 Nov 2022 22:18:40 GMT
Server: ECS (amb/6B97)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3907
Cache-Control: max-age=170217
Date: Thu, 01 Dec 2022 00:06:50 GMT
Etag: "6387d6c0-117"
Expires: Fri, 02 Dec 2022 23:23:47 GMT
Last-Modified: Wed, 30 Nov 2022 22:18:40 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/logo.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 4794
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-12ba"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3019
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jtSIGCuyDZx9OH7nXMa5bo%2BnklnDdWVgnB%2FikNJ2obQRBj0kRDXqQRZbq%2Bj5UPjX%2FNl%2Fx7HFOq6H9QpOBLRAPmJzsvuSNcSRPvFNVJ3sEBnadid3kE%2BifGu%2Bh9%2BTRByNMmVI%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443ae3b0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 291 x 93, 8-bit colormap, non-interlaced\012- data
Size:   4794
Md5:    d2ce778778e09563ac9eb50b06b2d6fb
Sha1:   79ee65334aa4e0f3d8fe45fa29dba31e4f9d979e
Sha256: 0f56b6c137e245f0b3d6af93e8f3ae48c15ff33e29e36df20530f40abeee8ee3
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/n1.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 3979
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-f8b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qmO44uyBHtNNtOx3I545nXkprrjf%2BsJkwD9gQggUOljqhWnS0Z9UE6ZtYa14GxPuvyGqwhkFDuwIs1Xi8t5y9IbIZyswlvkGDuIM0QEgZwr1pV74QfjFCzpq5yIEDsKk%2B7it0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be3e0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data
Size:   3979
Md5:    6620042f764faeabe7cc1cfb38ff601c
Sha1:   877812b21435579792db6aac1b56fde6cda905a2
Sha256: 2e0719b37a163591cfd41f5d16af5881c10363db67a3a3c69d4aa6d0e4d07fac
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card4.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 75470
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-126ce"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lI%2B2dfglHAQSsUe2ZS8klHy%2F3I5S7zUhUBMuBD4r233n2rdnxVN3pA0sKApVlCVF3HVHvggQrrL29XlrA7KFmHgkq0AFMDvHhUmHSzlDi7U5CR4xUxDeJx2uxjc%2BPp4a%2BbyC2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be430b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data
Size:   75470
Md5:    0f0dec893890c919db2c71f3de1f79bf
Sha1:   b2c9715eb4e6ef216f2c422496d56c11653b761e
Sha256: e5cad0062c33fa9b127ce49c05fd6dc46452c014905ab90ed65051d4cccd37ff
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/notice.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 23707
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-5c9b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2949
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sl6ntXNRcriJMCKwuD0iXyhTui9mtwRcal3KzA0H%2FnVAxgawNL7azhQVjgH7twxt2HtV2b1iJwTHwy1eZ8jDF6vufVZ9bdOFD6vA%2FP6wxKTnCDEDJUT6xwpNDx30MfOLz%2FZatg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443ae380b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 115, 8-bit colormap, non-interlaced\012- data
Size:   23707
Md5:    3cf58bc7ec31b37ba73eeed2e20922dd
Sha1:   ef0020a4afa74f34bf7496d8ab04171b69e19f26
Sha256: 9f791fa05194d8417e6d68995973bb43babe3b0704cb4c7011dbb63c69eec028
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/n3.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 4391
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-1127"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SfLk3lmOcTVovBH%2BTUadHXRLlRj%2B0CqijThDij6MEpi4TGy6BTVgy4hpGMI18jmWVSg%2BQuxGmmLKC7KMhC9bRO5j%2BYDK49EdaOM6pBhFCHG1c9EiazE7sqKiYhluUWRewsfJJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be420b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data
Size:   4391
Md5:    fc317e9bd9f72a1a5ba533ff7b075308
Sha1:   d45cb010a1858c7ab98453deaec177b0f7ec2a1a
Sha256: f9f14555016459f6f23714a23c1d9f8126fd698102fac67240324c0cb07b6ec0
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card3.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 70719
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-1143f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u6hyEXrDnY%2Fnjw%2FYnIK0UQo3OkePphr%2FYBp33TLa4NTDNW6B1T2OMHSbGXViPCR6PBZN4byeTU%2F6OxxvfXioq5kabXughFeMOCywXe4yBy8TX03B9lpVY5hdDM22gWff7SlNTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be410b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data
Size:   70719
Md5:    24e3ba1facc039348864b88bd2c6a368
Sha1:   8d45419064713a6014e1beabc988a115cef31ac5
Sha256: 95ab81627a772612d51e5fd9b0b0cec1131d2343ec107695fd5cf147234f2d13
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card2.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 73161
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-11dc9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3019
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=929y0yHU3sfeBXq8xshOMRzm5uBEFOxkyqH1E1KsRAU9i%2BEGtEz716LfjMYCHPk%2BuKKZ9y1%2FLfgwuay9krcV1EK6GeMeO2vMqqsVa2LKN9iS9wSBs5U6yWmaMvOC6hY%2BIa5Gng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be3f0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data
Size:   73161
Md5:    c35c1130835c4890905a1545b31cbd81
Sha1:   3ea153adfc6a29a18e6b9b81a44be24eefb888fc
Sha256: 08762ec4d73be8c26aba0c720410abcf204514f2d96a78956f008087a0481894
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card1.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 75556
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-12724"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ejH1yJ1t5X9vmDxXS5EJDRHhypTAfzkynRMe7LTwY%2BToRWjEJASgtGMWqs7uBRpy7EGX%2BobSCoKBTFDWt7dMJ0RgWyG1RklSuOpGI1FXdXi3ydrMITn9IW5Ip%2FAbnRvJoR5uDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be3d0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data
Size:   75556
Md5:    e35b87a58183c9d6050dd668f192bbf7
Sha1:   1c8ae327fd1fde27dc19400b653d1e23f9dbf73e
Sha256: fa8a6f284a1cabd4e57be38602f0833a67460e4abd9eb087b85d9e0c57bd0032
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/n2.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 3126
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-c36"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2okX1uV%2B37BRf%2By72TkqPAAUzPVcvxjXbw4Xv3inITIpzZSTok3PIocFYFQBwIV48pF8CYCYhgBatxD0YaNKpVPXYQj92MwPXaPpzGiJ6uQI7s%2FFkbfSApCz2srYFruHxipVqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be400b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data
Size:   3126
Md5:    cf90c3ff9f0490f4d07c3b4f6d2f2a28
Sha1:   e1b55d2deeb10a2660c776b6ae65b0623f96c7a5
Sha256: fe7ceed78142de7e4b88367e1e2eeb9d499a804f133b2800270a246b252abe0f
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/n4.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 4251
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-109b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3019
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IXu6LAnYoxdZstBt3y93a1%2FKV%2FPSRPggqg5GjPy87c5H7jSC%2BH3kVxV6fJ12iylAFqsiQ1cQR%2BUJPYNgXdfdZNYRBj3BNy0xS12dKjfmp%2B4h3m4tuQTfrFVp1N9uC%2Fb0Y%2BszpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be440b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data
Size:   4251
Md5:    65f74de29d19b60c93ba15b5deae46dd
Sha1:   4765ea691275a910643a97dddba71df97293e608
Sha256: 9c4b56d25b2290a9b04ca138b36c30286d8bcb3db442d1cbb8cc40bfec670208
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/btn.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
content-length: 9328
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-2470"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1787
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=poTfVnBfb2AKtsXySCF7EbwIhj%2FTb06Bzb2Lz7A9ALl67R5zMxRKcB8KM3H3NE%2FUol3FLvxTqNi9%2BjYFZ6G5qCG%2Bqmw1AZKMyVLVsnCCO9OZXsBIFGIGv50nSk0rfoonb7cVDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be450b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 505 x 117, 8-bit colormap, non-interlaced\012- data
Size:   9328
Md5:    672b08064278674893b0f1e8696c9bea
Sha1:   c54921816b08eccac3489c60d74756c8cdac6632
Sha256: ec1a15d6e26c6e263b93e313442959027839064a148318eb2341173f18a83550
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/libs/jq.js HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
last-modified: Thu, 15 Jul 2021 12:31:47 GMT
etag: W/"60f02ab3-15851"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3140
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d1vPq5YnGq2Inp9Ve6iMP6a7pt7rWwON6OWMNYJGAxYaO1vqWaYzm0%2BpOoGsAQyaNgD%2Fpg33YhUXGnk54HCch3FqTBbgASMt8fLoB6jwh%2BJeyv48McJcQ%2BSwGwbjBHVvCvLBSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443ae320b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65450), with CRLF line terminators
Size:   32241
Md5:    cbb2929011de818703b770b567b918aa
Sha1:   2bc7048d194e58f4333e6f4cb930d4fe06d1ce93
Sha256: c13c2487b27fc9bd096ae013d47b5dcf06ee6ace49ffde42cf65827bb6b8f243
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "963A48BC4B5B4EF5A169D63B33D937F02BCAEA95607D53A71645236E4A60C067"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13609
Expires: Thu, 01 Dec 2022 03:53:39 GMT
Date: Thu, 01 Dec 2022 00:06:50 GMT
Connection: keep-alive

                                        
                                            GET /tag.php?goal=d463e4eafcfd7a2c779b390efdb813cf HTTP/1.1 
Host: main.realsrv.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 00:06:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A52911%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-30%22%3B%7D%7D; expires=Fri, 01 Dec 2023 00:06:50 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/css/main.css HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: W/"5f5657d7-99f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3140
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GEc3PfibQheAOFZBFIsxjpSV8nem66DyCxK2R7HCHx0UA%2FqRbmVVoFEMfK81C5NemxuXPV6Nim3zpgO%2FjPKp3Oal%2BWdz62MuiHlPyDKXRF5ugSA58m3XgiERubkVsuCNJQSXEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443ae2e0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   644
Md5:    aaf00f127cbd4e361865351af32ec59b
Sha1:   9b25e14e23b4a3fc58bcbf699cd440f5650854e2
Sha256: 1cf8bace4e98600d0acabaec0d52bfb8d844538e37fb259d6105f63da4fc08ec
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "963A48BC4B5B4EF5A169D63B33D937F02BCAEA95607D53A71645236E4A60C067"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13609
Expires: Thu, 01 Dec 2022 03:53:39 GMT
Date: Thu, 01 Dec 2022 00:06:50 GMT
Connection: keep-alive

                                        
                                            GET /tag.php?goal=d463e4eafcfd7a2c779b390efdb813cf HTTP/1.1 
Host: main.exoclick.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 00:06:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A52911%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-30%22%3B%7D%7D; expires=Fri, 01 Dec 2023 00:06:50 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            POST /gseccovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 00:06:50 GMT
Content-Length: 938
Connection: keep-alive
Expires: Sun, 04 Dec 2022 20:22:12 GMT
ETag: "fd853f1f86203843f9a812c8fbe2bedecab4669b"
Last-Modified: Wed, 30 Nov 2022 20:22:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3415
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772794471a6afac4-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139702
Date: Thu, 01 Dec 2022 00:06:50 GMT
Etag: "63875b15-1d7"
Expires: Fri, 02 Dec 2022 14:55:12 GMT
Last-Modified: Wed, 30 Nov 2022 13:31:01 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3gv7GQAQYyS89Lt6P5FC_OQXYf3_5FVmw3KPpuaKTL1uVJ5rFxGxaQ==
Age: 5051

                                        
                                            GET /metrika/tag.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 73267
date: Thu, 01 Dec 2022 00:06:50 GMT
access-control-allow-origin: *
etag: "63875d46-11e33"
expires: Thu, 01 Dec 2022 01:06:50 GMT
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Size:   73267
Md5:    1d79426653c3b55939eaec59a2ce8ef5
Sha1:   c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
Sha256: 2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
                                        
                                            GET /px.gif?akey=42c6f09dc9e74035608496705631ef5d HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         52.28.211.11
HTTP/2 307 Temporary Redirect
content-type: image/gif
                                        
date: Thu, 01 Dec 2022 00:06:51 GMT
content-length: 0
location: https://professionalswebcheck.com/dbs?uuid=5eb433ad-5a5b-48a6-97cb-6bb65460102d&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODUzMjEwfSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg1MzIxMH19.7yriMp1G3toY-braL6zEEktB9HX2oa5euzmgflewP5A
server: nginx/1.17.6
set-cookie: uid_id2=5eb433ad-5a5b-48a6-97cb-6bb65460102d:2:1; expires=Sun, 28 Nov 2032 00:06:50 GMT; secure; SameSite=None ak=37,1669853210; expires=Wed, 01 Mar 2023 00:06:50 GMT; secure; SameSite=None acl=20,1,1669853210; expires=Wed, 01 Mar 2023 00:06:50 GMT; secure; SameSite=None
expires: Thu, 01 Dec 2022 00:06:51 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2

                                        
                                            GET /metrika/advert.gif HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Thu, 01 Dec 2022 00:06:51 GMT
access-control-allow-origin: *
etag: "63875d46-2b"
expires: Thu, 01 Dec 2022 01:06:51 GMT
accept-ranges: bytes
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg%3D%3D%26sub1%3Dpu_remnant%26sub2%3D17612737&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A942%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A551805340871%3Ahid%3A651944640%3Az%3A0%3Ai%3A20221201000649%3Aet%3A1669853210%3Ac%3A1%3Arn%3A218659735%3Arqn%3A1%3Au%3A166985321082929439%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A7%2C53%2C294%2C0%2C160%2C0%2C%2C419%2C1%2C%2C%2C%2C934%3Ans%3A1669853208320%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669853210%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supanimegames.com
Referer: https://supanimegames.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 400
date: Thu, 01 Dec 2022 00:06:51 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01-Dec-2022 00:06:51 GMT
last-modified: Thu, 01-Dec-2022 00:06:51 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Size:   400
Md5:    64f90e2543c97b28862043dbce331f24
Sha1:   ab6f337dda2c93c8bcf45155f6a1e3a032de449a
Sha256: 333f5cddc7934845568d0a09001a8dce9ac7584fce7fe3ea60a256693f97b194
                                        
                                            GET /dbs?uuid=5eb433ad-5a5b-48a6-97cb-6bb65460102d&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODUzMjEwfSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg1MzIxMH19.7yriMp1G3toY-braL6zEEktB9HX2oa5euzmgflewP5A HTTP/1.1 
Host: professionalswebcheck.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://supanimegames.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         52.28.211.11
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 01 Dec 2022 00:06:51 GMT
content-length: 7
server: nginx/1.17.6
set-cookie: uid_id2=5eb433ad-5a5b-48a6-97cb-6bb65460102d:2:1; expires=Sun, 28 Nov 2032 00:06:51 GMT; secure; SameSite=None ak=37,1669853210; expires=Wed, 01 Mar 2023 00:06:51 GMT; secure; SameSite=None acl=20,1,1669853210; expires=Wed, 01 Mar 2023 00:06:51 GMT; secure; SameSite=None
expires: Thu, 01 Dec 2022 00:06:51 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   7
Md5:    132d6af1b46048b45cf86cdee7991d31
Sha1:   eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
Sha256: ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9459
x-amzn-requestid: 9e243a73-18ff-4abf-9b9c-442719960125
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpppFXjoAMFehg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bca3-47620f39181264772d2fb52d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:13:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _v5hatZyEWVRB4Tebygbb-QfE02oaFxE8CRfQsUY7I_ektxE3YeIpw==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 17:08:01 GMT
age: 25135
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9459
Md5:    e1e6b6ba4f82221b41c3d9129008c76d
Sha1:   2f9532d698b4c28df23e18bbb66399ec776d5b9f
Sha256: 218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
                                        
                                            GET /index.min.js?pk=42c6f09dc9e74035608496705631ef5d HTTP/1.1 
Host: twistconcept.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.215.17
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
last-modified: Thu, 07 Apr 2022 08:49:08 GMT
etag: W/"624ea584-28c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4333
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YJ%2F6mQd9AigSeF4ar5anKcrek0sHbE8W9eaeh30iVBJps1UoX1d1cWjjKX9g1WEToEfq%2BDpx09H44Mnp920DEnms5D%2B3Id7ZI4S4gbn%2FWvE2VoHC%2FjxzRps8EFpB%2Bwi5xBEF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7727944688030b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737 HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gracelessbrief.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hQyyLW9ePLWcDFlHa8K9c5HThbn1mivHh0wgoSV%2B4MJDWtIvyG0q9MdGVvXPUgOxd1yOAR7qeGd7EFjekIZLFCXj3zDkT%2FnuXKKVQfFYr3EjB7by8HNpv2RZnDSbSq30OHCORQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772794418d220b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /watch/57021556?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg%3D%3D%26sub1%3Dpu_remnant%26sub2%3D17612737&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A942%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A551805340871%3Ahid%3A651944640%3Az%3A0%3Ai%3A20221201000649%3Aet%3A1669853210%3Ac%3A1%3Arn%3A218659735%3Arqn%3A1%3Au%3A166985321082929439%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A7%2C53%2C294%2C0%2C160%2C0%2C%2C419%2C1%2C%2C%2C%2C934%3Ans%3A1669853208320%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669853210%3At%3AEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 302 Found
                                        
location: /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg%3D%3D%26sub1%3Dpu_remnant%26sub2%3D17612737&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A942%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A551805340871%3Ahid%3A651944640%3Az%3A0%3Ai%3A20221201000649%3Aet%3A1669853210%3Ac%3A1%3Arn%3A218659735%3Arqn%3A1%3Au%3A166985321082929439%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A7%2C53%2C294%2C0%2C160%2C0%2C%2C419%2C1%2C%2C%2C%2C934%3Ans%3A1669853208320%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669853210%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 01 Dec 2022 00:06:51 GMT
access-control-allow-origin: https://supanimegames.com
set-cookie: yandexuid=175025911669853211; Expires=Fri, 01-Dec-2023 00:06:51 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yuidss=175025911669853211; Expires=Fri, 01-Dec-2023 00:06:51 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yabs-sid=1024933951669853211; Path=/; SameSite=None; Secure i=hkGada3J2wRjyTRp5nzrs6UTwBpVPU2IO1kTl06MZ+zuMugdhchDBybGr7bZcSCTwq+V3UG1PxAiM7miTz4/jUxUbvI=; Expires=Sun, 28-Nov-2032 00:06:37 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None ymex=1701389211.yc.1669853211#1701389211.yrts.1669853211#1701389211.yrtsi.1669853211; Expires=Fri, 01-Dec-2023 00:06:51 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01-Dec-2022 00:06:51 GMT
last-modified: Thu, 01-Dec-2022 00:06:51 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /px1.js HTTP/1.1 
Host: ln.gamesrevenue.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         5.161.79.44
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 00:06:50 GMT
last-modified: Fri, 21 Oct 2022 09:01:18 GMT
etag: W/"63525fde-3a8c"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /awpx_click.js?v=005 HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
last-modified: Mon, 22 Aug 2022 12:36:02 GMT
etag: W/"63037832-5cb"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s0GiBClg5KXeMKRBLXqn1ThgvhB%2BLsWzNrjQmONxG83ZiYovejMDsdD9TSVBY%2ButqYvdWO%2BvK4w4bw4DTSvtjHNegMvmybMHC%2Bh3FG90r8Jh20HJi2FCtxh9%2FyI4w39t8BM17A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443ae350b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/scripts/main.js HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc2MTI3Mzd8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODUzMjA5fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MzQ1MzFmMDQ1ZmI0YjQ3YmFkMzEyOGU0YzUxMzA5N2Y0Y2I2MDA0NjQxYzQyYzE4ZmU5OGZmYjZjOTJlN2E1Nzc2YzUyMzQ3OWQ2ZjNmYTAwYzkwZmI2YWJhYWYyNjg4YmExYWNkYmJiZTRjYzMwMDA5MTQ1NjA0NWY2ZDkxZmE0OWVjMjc4ZjU0MDkzOWRjMGJjN2U0OTYzNjE3Mzg1MTFlYzNmNWNjMTI2NzgwNWVhODc4NjQxZDVkZGJ8bHM9M3xvdHY9YXwwM2JmODJkYWFmZjE5MTA1YTc3MTEzYmNhMDg4YjBhMg==&sub1=pu_remnant&sub2=17612737
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.31.221
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Dec 2022 00:06:50 GMT
last-modified: Thu, 15 Jul 2021 12:31:47 GMT
etag: W/"60f02ab3-124"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3020
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AzNT53mY%2FIhuZSTPHahKcbSuU3%2BOlS67EbtBFurkaoNUCpSFnK0bLEMAzjFahsjltRSF9UxBFT6HtlY6N6gZQoa58qysoeVJXy%2F3rP8uF5jxCDWuigyEeu6Z%2B2OFXx%2Bq9v7XWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77279443be460b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---