mcmo22.com/g?visitorid=c8455e5ec5229d87ab7aab33d0be44ef&refid=2dd48c67&bannerid=29cc11a7&extra_data1=&extra_data2=
104.21.76.224302 Found 207 B URL HTTP/1.1 mcmo22.com/g?visitorid=c8455e5ec5229d87ab7aab33d0be44ef&refid=2dd48c67&bannerid=29cc11a7&extra_data1=&extra_data2=
IP 104.21.76.224:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash d38e205f2e792b21b1fcc016368b4b96
24f44ae919fa7e84d54d59b51377b391b1fdeff2
18d9da1587108af2d36b50239c233e1dad95e9885239af5b073473d2ffcd7f15
GET /g?visitorid=c8455e5ec5229d87ab7aab33d0be44ef&refid=2dd48c67&bannerid=29cc11a7&extra_data1=&extra_data2= HTTP/1.1
Host: mcmo22.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 04 Sep 2022 19:56:18 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache
Location: https://go.tffkroute.com/click?pid=6&offer_id=3&ref_id=c8455e5ec5229d87ab7aab33d0be44ef_2dd48c67_29cc11a7&sub1=2dd48c67&sub8=
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 3cc9afc5-8d91-4cfc-8188-13d5e9e1e825
X-Runtime: 0.007678
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZlZVC1XSOMBA10xqmRhKYPzaYcRP%2B1Iq0%2FoxaBW6ZoLjy%2FHZJ0jcqpXZ8%2BN6PJlMydblW9s%2FS30MbWP6JyjByEeg6wZAZ7WJ4qFI1U7MJ3n6FMuL1mK5flY2HIpq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745949a5998eb505-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 19:44:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WLHXBVw0XOgxUkMuDw--tMHVNLMscN-dSiIVDt6usTY5wKX6aisHrQ==
Age: 719
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2470
Expires: Sun, 04 Sep 2022 20:37:28 GMT
Date: Sun, 04 Sep 2022 19:56:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zSttYxuQsX2kLl_S-dDejurvij14FrpdgvyJyDIulcQ2m0K5OLfm8g==
age: 67261
X-Firefox-Spdy: h2
go.tffkroute.com/click?pid=6&offer_id=3&ref_id=c8455e5ec5229d87ab7aab33d0be44ef_2dd48c67_29cc11a7&sub1=2dd48c67&sub8=
172.67.195.138302 Found 0 B URL HTTP/2 go.tffkroute.com/click?pid=6&offer_id=3&ref_id=c8455e5ec5229d87ab7aab33d0be44ef_2dd48c67_29cc11a7&sub1=2dd48c67&sub8=
IP 172.67.195.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=6&offer_id=3&ref_id=c8455e5ec5229d87ab7aab33d0be44ef_2dd48c67_29cc11a7&sub1=2dd48c67&sub8= HTTP/1.1
Host: go.tffkroute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 04 Sep 2022 19:56:18 GMT
content-length: 0
location: https://turnhub.net/?a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
set-cookie: afclick=631502e2867fe4000132b6b8; expires=Mon, 04 Sep 2023 19:56:18 GMT; secure; SameSite=None
afoffers={"3":1662321378}; expires=Mon, 04 Sep 2023 19:56:18 GMT; secure; SameSite=None
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lWmx9gWaqz4qW%2BzBOaX3iFZktQoovBKqc38ctFv4zexdK%2FD81bdzdLlSeK96b6dSeL%2BOZNRdx%2FrofzFFFEx4zbH6XZJEqaaFUWRUuXJhRVmCfOiHQ%2FLW0%2Bnxg7rHUA8UsgvT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745949a75fa8b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
turnhub.net/?a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
104.18.42.149302 Found 0 B URL HTTP/2 turnhub.net/?a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
IP 104.18.42.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67 HTTP/1.1
Host: turnhub.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
set-cookie: data=eyJzaXRlIjoiZGFwcGxheXMuY29tIiwicmVxdWVzdGVkVGhlbWUiOiJtLTItcGFudGhlciIsInJvdXRlZFRoZW1lIjoibS0yLXBhbnRoZXJzaG9ydFgiLCJ2aXNpdG9ySWQiOiJmNjdiMzk5ZS04ZmVjLTAzNGItZjEyYy1mMDg4MWIwN2ZlNDUifQ==; Max-Age=3600; Expires=Sun, 04 Sep 2022 19:56:22 GMT;
vary: Accept-Encoding
server: cloudflare
cf-ray: 745949a818bab509-OSL
X-Firefox-Spdy: h2
dapplays.com/img/logos/gamez/min/dapplays.png
172.64.144.198200 OK 1.6 kB URL HTTP/2 dapplays.com/img/logos/gamez/min/dapplays.png
IP 172.64.144.198:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash 99e8e528f9cb896d28c2a2a4b21587f5
b22eda2ecca13951f40becea8f9c841ceb94a5db
d84808349a8ba768857c5d2aa99e32ba14ed3357ddc30c15ce5d1440277ea3e3
GET /img/logos/gamez/min/dapplays.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 1636
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-664"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa9cc61c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/ar.png
172.64.144.198200 OK 428 B URL HTTP/2 dapplays.com/img/flags/min/ar.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 4e110e39a343e4d63fe179ee1878a808
a09c49969d0fb253614f3e7bb2206151177b40c6
d42be6e56327fef927abfcdbed9a90ff588ed85eb7dc6d4fd977f23484b53776
GET /img/flags/min/ar.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 428
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-1ac"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa9cc91c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/de.png
172.64.144.198200 OK 364 B URL HTTP/2 dapplays.com/img/flags/min/de.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash dd6833f4d45b73bb67785c3235c9ea5c
1a1147ea7a1d9767f9b2bdb3640152a9014c660a
21f38ae028adb9455c66a185775d4ea208add60aae4e4f2376f57227a48756a7
GET /img/flags/min/de.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 364
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16c"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa9cd01c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/en.png
172.64.144.198200 OK 545 B URL HTTP/2 dapplays.com/img/flags/min/en.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 83e5633f13d8eed97aaad89c42bda148
f98ebc926c3bdbdcb58ad2854aaa533226fabaae
e6cf87f6b6f6c3cd542a6156d69257c1dba10b58fa034d291bcf83b1713938e9
GET /img/flags/min/en.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 545
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-221"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa9cc81c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/da.png
172.64.144.198200 OK 352 B URL HTTP/2 dapplays.com/img/flags/min/da.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash ac122dcf0c9d72093852a94df3f69001
c808192d8f1befd3ccc20b4063d903e6b9f62062
95253486ae74b2987697e95e810fb4e2c5866e7290d3e8c3bfa64b33ed7fb76b
GET /img/flags/min/da.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 352
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-160"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa9cce1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/cs.png
172.64.144.198200 OK 367 B URL HTTP/2 dapplays.com/img/flags/min/cs.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 636bc5657643f89dab11f3b5f00980cc
8483457413b381d4843d3ede515c5826b796c773
6ee6ca9123499443fd843ef95ad18cd0b9093d22df4addaab7020ab631068890
GET /img/flags/min/cs.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 367
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa9ccc1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/it.png
172.64.144.198200 OK 367 B URL HTTP/2 dapplays.com/img/flags/min/it.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 78490d64712a3d85eb3d33109632a977
ad97c780ac07f52e56f2292591b37c32c575ff76
0663f724002541f06390415b77e85ac575e7a37d6e4cbc560ac6f73df3a952eb
GET /img/flags/min/it.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 367
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabcea1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/fr.png
172.64.144.198200 OK 369 B URL HTTP/2 dapplays.com/img/flags/min/fr.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 77723db0c670fe456d47c49b1edda010
b958d026f0d196c538600e85a2d05ce1fb9f5cd8
3f414502d6c48e571dd4baf8bfbdf6fb5dabdd791cf6c789a0264806b314ca58
GET /img/flags/min/fr.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 369
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-171"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabce51c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/es.png
172.64.144.198200 OK 344 B URL HTTP/2 dapplays.com/img/flags/min/es.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 029b93b89bb93e4dec432acb2aa95499
53822ca2aa8828b3dce57d9fbe8c025cdce3f1ac
d0326c79a8e173153873aa2b31581b54aebc0bcbf4ab2d55807f5d84098d523b
GET /img/flags/min/es.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 344
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-158"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aaace41c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/nl.png
172.64.144.198200 OK 310 B URL HTTP/2 dapplays.com/img/flags/min/nl.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash cc26ac6ad68e968750752c0cde0d6892
dd4896be40309671612c6deee312da6fab236ced
e188f98c3d1c722d93cf24bb7c2561584a6fc3ea2d1ab35a7fd52b3bbb2188cd
GET /img/flags/min/nl.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 310
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-136"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabced1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/pl.png
172.64.144.198200 OK 321 B URL HTTP/2 dapplays.com/img/flags/min/pl.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash c310e7ff6567b10c61a3a02387fc3687
157fb1dca4970513f57945d29c5e1b7253635c27
804dd30e6b7acf54c88fc492844d920a4cd85964bbf5d59bb5684a279e377f1f
GET /img/flags/min/pl.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 321
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-141"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabcf51c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/ja.png
172.64.144.198200 OK 367 B URL HTTP/2 dapplays.com/img/flags/min/ja.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash bdd62e57f4e74564569eb30db687fdc7
fba840b0b651ff0ea564f44ab3c71ae7f7c64e31
4f5019eb975755b20517d6cf20e32ab0730389f47752bc252537e9c8d4942983
GET /img/flags/min/ja.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 367
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-16f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabceb1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/no.png
172.64.144.198200 OK 397 B URL HTTP/2 dapplays.com/img/flags/min/no.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 37de62b530e99e86f8786099b2dca8c3
f505131ad7b0e731b2b31ad9308d5cd4ee622a9c
f59e4cf0fa6ee21a54ba82946499f611b0333a1fc15e55590567a812d464b6fb
GET /img/flags/min/no.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: image/png
content-length: 397
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-18d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabcf11c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/pt.png
172.64.144.198200 OK 407 B URL HTTP/2 dapplays.com/img/flags/min/pt.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 215e6c09ff86c0a60c97ff966c4bbd82
aa22d321174ec605630b69ccd65373c3ed619c71
2af22923899eea4a4997481bae73840ab2f4294798b85509f3cb63c05fe68e2c
GET /img/flags/min/pt.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: image/png
content-length: 407
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-197"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabcf91c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/hu.png
172.64.144.198200 OK 293 B URL HTTP/2 dapplays.com/img/flags/min/hu.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 8aa8e070461e7128844996427c91ae52
f1f69aa2b40f6ab613fd1cad1b6dc14aeb142ff5
b8cd13968a135da90e96df17a666170a9ee63c61b312fb89922e6c8057f3aa06
GET /img/flags/min/hu.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: image/png
content-length: 293
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-125"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5987
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aabce71c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/sv.png
172.64.144.198200 OK 389 B URL HTTP/2 dapplays.com/img/flags/min/sv.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash feb548aeac88795159e9ed7ec2690710
cb3ef0069bf1d1e35f2bf65d385e3b8ad1f389ef
6f96fc8f9f474e8b8a6a82ed9bb5e22e19c6c5921fd363bb903fa693dfb9447a
GET /img/flags/min/sv.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: image/png
content-length: 389
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-185"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5988
expires: Sun, 04 Sep 2022 23:56:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aacd111c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/flags/min/zh.png
172.64.144.198200 OK 349 B URL HTTP/2 dapplays.com/img/flags/min/zh.png
IP 172.64.144.198:0
File type PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 0c6d1ad678de1c3807a7c832a014466e
9d8239ecc96b38f374fa066ee45091ed14adf200
0242f535f7ee0cc26bd88cc9f807ece4a6d70129303b902a232b38c58e66ef51
GET /img/flags/min/zh.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: image/png
content-length: 349
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-15d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5988
expires: Sun, 04 Sep 2022 23:56:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aafd4c1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/img/logos/gamez/min/dapplays_dark.png
172.64.144.198200 OK 1.6 kB URL HTTP/2 dapplays.com/img/logos/gamez/min/dapplays_dark.png
IP 172.64.144.198:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash 99e8e528f9cb896d28c2a2a4b21587f5
b22eda2ecca13951f40becea8f9c841ceb94a5db
d84808349a8ba768857c5d2aa99e32ba14ed3357ddc30c15ce5d1440277ea3e3
GET /img/logos/gamez/min/dapplays_dark.png HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: image/png
content-length: 1636
last-modified: Wed, 31 Aug 2022 16:53:36 GMT
etag: "630f9210-664"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5988
expires: Sun, 04 Sep 2022 23:56:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949ab0d6a1c02-OSL
X-Firefox-Spdy: h2
dapplays.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.css
172.64.144.198200 OK 7.1 kB URL HTTP/2 dapplays.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.css
IP 172.64.144.198:0
Hash 1e1e3a43c900e778abb92173a14b85cf
aca482a8df1acbe199fe8008b24d414606924b95
60f7d48047b9724da8e9018fc254c9c296bcd852638981042453a1491054c34e
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.css HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
vary: Accept-Encoding
etag: W/"630f920d-97eb"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 5470
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa7c9a1c02-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dapplays.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css
172.64.144.198200 OK 6.1 kB URL HTTP/2 dapplays.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css
IP 172.64.144.198:0
Hash 5dee3c7bc62a549473d522aebc00cc7b
e34c25beb4c039613c1938d4428e4941ac93539c
021ac191c0becd1a37d080793c98638b035a4857a76ba820b636192fa71cbf7f
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.css HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
vary: Accept-Encoding
etag: W/"630f920d-5fcc"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 1901
expires: Sun, 04 Sep 2022 23:56:18 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aa7c971c02-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 147936
expires: Fri, 25 Aug 2023 19:56:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7tn59tgjAOpWd5sp9%2F4crYmgX%2BQ6Xj2wUPSgfYqA2cxL9dnRDUIZwKckksUryK5nETsWVFV2j6dT85L3Xj8cUQBU7Muj26UvSCXTM7e0of0RPZHPtnsGOep4s9TzXSFgO1BS4Xly"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 745949ab6e67b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9b13e1ef10b6290e24199c04a0934866
8c364a3b697f439a4af3390643b6a5e1acd0c255
24729a0156f4228c8d9c849a31e243c7c3d1f1b10315770caff65eaf0103cdbd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Last-Modified: Sun, 04 Sep 2022 19:00:17 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
fonts.googleapis.com/css?family=Oswald:200,300,400
142.250.74.10200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Oswald:200,300,400
IP 142.250.74.10:0
Hash 9ce380d96ef634539ea699b4ff9d479f
efb17528c5b993a973e8deeeb649eb7f56119623
5db285b05a4579086c0f6890e0f1d1bda176187dd6347cc97ab58d52188347a8
GET /css?family=Oswald:200,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9b13e1ef10b6290e24199c04a0934866
8c364a3b697f439a4af3390643b6a5e1acd0c255
24729a0156f4228c8d9c849a31e243c7c3d1f1b10315770caff65eaf0103cdbd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Last-Modified: Sun, 04 Sep 2022 19:00:17 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
142.250.74.10200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
IP 142.250.74.10:0
Hash e617ec5c9b527aac130757420787cdca
30c67313a5158939863cfc88ebc78a9e1e74e854
6ff845d71631b9a895dc51eeee284eb128a185a7f50441f44003537e5f8791d6
GET /css?family=Raleway:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dapplays.com/theme/Master/SubscriptionPages/img/bg/connsmythe.jpg
172.64.144.198200 OK 229 kB URL HTTP/2 dapplays.com/theme/Master/SubscriptionPages/img/bg/connsmythe.jpg
IP 172.64.144.198:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 729x748, components 3\012- data
Size 229 kB (229330 bytes)
Hash 5565a68b343a9390bf655af103bea6b8
674ad59b51fad494071bb25692a557215256a24c
27ac17d4718b60d19207373dfcabeac8227bcd9192f99a5c2955b3b37b57e415
GET /theme/Master/SubscriptionPages/img/bg/connsmythe.jpg HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.css
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: image/jpeg
content-length: 229330
cf-bgj: h2pri
etag: "630f920d-37fd2"
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
x-fruit: banana
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 5470
expires: Sun, 04 Sep 2022 23:56:19 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949ac6f291c02-OSL
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 19:38:16 GMT
Expires: Sun, 04 Sep 2022 20:06:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IRW1Ln2Hq1JQGtBeGWh8IZWEJQX9iPEktZg25j5hApevFb4GtJO5eA==
Age: 1083
www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
142.250.74.72200 OK 55 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
IP 142.250.74.72:0
File type ASCII text, with very long lines (3152)
Hash ee7a975b18081cb601ec692f8ba910e2
97f633d6e9c98b2c4d82795bc039b79dd0c6496b
3d6872736f92ab02ac33308950411c181ceeef7571dfc98df3bc02f20d2b5fcf
GET /gtm.js?id=GTM-MMPL24Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Sep 2022 19:56:19 GMT
expires: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98125354dbaa891018a9429a7aae3ea1
a692cc9a073c9666971db41444342fc9d7dab2e2
771b96e4fb485d1ef041ee20fc060bb5b4b521043ec7a51ceaccefcbe837bd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dapplays.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.js
172.64.144.198200 OK 1.4 kB URL HTTP/2 dapplays.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.js
IP 172.64.144.198:0
Hash 3495e8ca982dbd44cd5fea48814d37c1
97c0436bbdc17d99e41603131f1a037089154ace
4f968dcda04e19e30ae7dd17d44dad949b0367ca6cf7f14c020fc17bc1ab9f6f
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.js HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: W/"630f920d-f1b"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 1902
expires: Sun, 04 Sep 2022 23:56:19 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949ab0d6d1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dapplays.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:39 GMT
expires: Tue, 29 Aug 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 522160
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
54.230.245.209200 OK 18 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
IP 54.230.245.209:0
File type ASCII text, with very long lines (58159)
Hash 208999c2bfaa80353f3f37c256fd3a3d
b980b8388a475167ed9c0bf908275e5ed6b9df0e
f01fc32845b584dea4dffebe4aaa74979b46798398de2cc98a4263d1bfbf5cf5
GET /libs/amplitude-5.8.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dapplays.com
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18497
date: Mon, 18 Apr 2022 14:27:12 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 06 Dec 2019 21:57:52 GMT
etag: "208999c2bfaa80353f3f37c256fd3a3d"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: JayGW0K7hcKEk8hUb5nZ1QRH3tobN7O9
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 38aCXL1xYKgbPfvZTPpCGqYJt1g51YLF1QNGs0tImyQ5rMj-RdssWw==
age: 12029348
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3639
Cache-Control: max-age=133866
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:56:19 GMT
Etag: "63145c96-1d7"
Expires: Tue, 06 Sep 2022 09:07:25 GMT
Last-Modified: Sun, 04 Sep 2022 08:06:46 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
static.hotjar.com/c/hotjar-916387.js?sv=7
54.230.111.8200 OK 68 kB URL HTTP/2 static.hotjar.com/c/hotjar-916387.js?sv=7
IP 54.230.111.8:0
File type ASCII text, with very long lines (3789)
Hash d60745fd36aa09cfafc819e32521155d
8562e81df3c3b9d4f5bbbdfef836f31b769f679a
13d1674a20dc5865843be6aa77d074a9c0382b1f9787c1b16ce2930a2c0d33c7
GET /c/hotjar-916387.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=86400; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 04 Sep 2022 19:56:00 GMT
cache-control: max-age=60
etag: W/d9a0e4b4b6ccd210eba9dc969a0d6e42
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ha09S_RSL9i2g68thXWiXGZpws9VLBhXFqD3Mly75IAqQuyEWTG_Aw==
age: 58
X-Firefox-Spdy: h2
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash 0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a
GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SGw5Qghl88B2XwsHjlBqVmmRFwDp_TlUw8Moh_MwK_AXV3LBhWQNdQ==
age: 4620193
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.217.237.91101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.217.237.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oYuNyrVQiUnXxpfTJAGCyg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IWqUB/0uBLWm2OqSCZCw5kct7bA=
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 1513eca75dfe6b198077d98a2ca80c94
e8a76e4e2bcfb69e52cb8938c69c46e5bc51b57c
5820e00fa93ec410dad6360484aba78400021692598e7ba1b6e9c20fb9295f35
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 04 Sep 2022 19:56:19 GMT
Last-Modified: Sun, 04 Sep 2022 19:02:06 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8jBoXn_8kkbAuPtzubJ_A79qXs6iV8jVAnON1o39CR2Auf2DpwYF-Q==
Age: 3253
region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe8v0&_p=1991209440&cid=359809318.1662321376&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662321375&sct=1&seg=0&dl=https%3A%2F%2Fdapplays.com%2Fregistration%3Ftheme%3Dm-2-panthershortX%26v_id%3Df67b399e-8fec-034b-f12c-f0881b07fe45%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26a_aid%3D864kjuyuio54%26page%3Dm-2-panther%26clickid%3D631502e2867fe4000132b6b8%26pubid%3D2dd48c67&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe8v0&_p=1991209440&cid=359809318.1662321376&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662321375&sct=1&seg=0&dl=https%3A%2F%2Fdapplays.com%2Fregistration%3Ftheme%3Dm-2-panthershortX%26v_id%3Df67b399e-8fec-034b-f12c-f0881b07fe45%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26a_aid%3D864kjuyuio54%26page%3Dm-2-panther%26clickid%3D631502e2867fe4000132b6b8%26pubid%3D2dd48c67&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe8v0&_p=1991209440&cid=359809318.1662321376&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662321375&sct=1&seg=0&dl=https%3A%2F%2Fdapplays.com%2Fregistration%3Ftheme%3Dm-2-panthershortX%26v_id%3Df67b399e-8fec-034b-f12c-f0881b07fe45%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26a_aid%3D864kjuyuio54%26page%3Dm-2-panther%26clickid%3D631502e2867fe4000132b6b8%26pubid%3D2dd48c67&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dapplays.com
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://dapplays.com
date: Sun, 04 Sep 2022 19:56:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7793
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:56:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7793
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:56:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7793
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:56:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7793
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:56:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1bdfdf7e36f78f2f0e4d7ede9fdb76a8
babb88202741bbf2d4fd25e0731a4a7a6fcc28f8
949ea108642789e1014150909060f11d99608f082760d0e868a90282f2768d43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9690
x-amzn-requestid: 614c99f8-116a-4603-bcde-3fbd5bfa14d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wx1HInIAMFiYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c80b-25c09c3227d72395408782f0;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5_jCLvdAC-XR-ax3RUbbx9275KPwACOPtAMxSbmv-aP-Lra4sC5zvw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:51:26 GMT
age: 79495
etag: "babb88202741bbf2d4fd25e0731a4a7a6fcc28f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb4b1d74f1443bc3328301ab3ae6464
2768253dacaaad6cb498c6b2eb7694208b0ce0a6
07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: e408351e-ba6c-4e55-815d-449af808282f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5yMEFBLoAMFtqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313ca4d-13831d8572a3b3cf54a0e747;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:42:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GFM9jerDkTPdhlUTm99E7Lpksw2ZGnV81bNVaZLvWSAiRNDNtkZi4g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
age: 79694
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c475e9b-fa82-4942-8a4a-d6d3f5061558.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c475e9b-fa82-4942-8a4a-d6d3f5061558.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cdd0826b7d8be62cc2ed532e04e137b
383a0661fa09d9b48745b507389d0505303b6182
f2d04cf1ee9b5a885c246060c1036b21af4ecd3e51e5d05a529dbe0d63f7c2ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c475e9b-fa82-4942-8a4a-d6d3f5061558.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10713
x-amzn-requestid: d546a12c-c549-4ad3-80ad-6bad452927d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5winGzHIAMFTPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7aa-2060c6611eb4abb777cc17a8;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FRD_E3IP_SmjPQuoVEijMnLszBb5bhc_1PxJXOlmdyufLKzx33joTw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
age: 79694
etag: "383a0661fa09d9b48745b507389d0505303b6182"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10318189f33f071dda64249ab9c8c5bb
e5b5b649a243e5c004d9923d19d4421d1ea96d23
3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uz2NbcE4AmOvFQkhJALSpXCGizilya0TuFcczfEwtV09cGXtgVNlpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:04:35 GMT
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
content-type: image/jpeg
age: 78706
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca50f9c56ff869b0b63ca71b1a9f8170
13b16ca74113dfd52ccf23e6bb39307fc713f984
76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M9Y8U9vqVs1ATiPP9jLPybTJ-xwC--5oiRUpj9-imTWfh6_rmtL5Kw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:58:42 GMT
age: 79059
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc4ceb10dd9fcaab21ae58dcf10c401f
6ce530af682094dc5413db9de02565691fab4da7
84ad58e126cce2ab6b1568ffe89a116bc1de0310bb72d4530eead2fb8191572c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11380
x-amzn-requestid: 61f37e21-33a8-49e6-b384-4ca1fcfbffa5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8TLFA3oAMFQjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117414-42de5c4128eb9e011d848356;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sywGj-wLtW091vZYhx1AbRAgljYQWe6LuffDjwTDhEebqVzxpQuzEQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 03:48:58 GMT
age: 58043
etag: "6ce530af682094dc5413db9de02565691fab4da7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
IP 142.250.74.10:0
GET /css?family=Roboto:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Anton
IP 142.250.74.10:0
GET /css?family=Anton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans
IP 142.250.74.10:0
GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.10.207:0
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dapplays.com
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 01/30/2022 11:18:43
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 53e17eb266e5e1f8a75d946aaf44b6e8
cdn-cache: HIT
cf-cache-status: HIT
age: 5713536
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 745949aba864b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
172.64.144.198200 OK 0 B URL HTTP/2 dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
IP 172.64.144.198:0
GET /registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67 HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:18 GMT
content-type: text/html
cf-ray: 745949a8eb071c02-OSL
age: 46484
cache-control: public, max-age=604800
expires: Sun, 11 Sep 2022 19:56:18 GMT
last-modified: Sun, 04 Sep 2022 07:01:34 GMT
strict-transport-security: max-age=0; includeSubDomains
vary: Accept-Encoding
cf-cache-status: HIT
cache-tag: 1527,dapplays.com,/registration,NO,m-2-panthershortX,eng
set-cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; Path=/; Secure; Max-Age=9999999
CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; Path=/; Secure; Max-Age=9999999
CakeCookie[entityId]=Mg%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[lang]=eng; Path=/; Secure; Max-Age=9999999
CakeCookie[pubid]=MmRkNDhjNjc%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1; Path=/; Secure; Max-Age=9999999
x-cache-url: https://dapplays.com/registration?lang=eng&theme=m-2-panthershortX&cacheHash=MTUyNyxkYXBwbGF5cy5jb20sL3JlZ2lzdHJhdGlvbixOTyxtLTItcGFudGhlcnNob3J0WCxlbmc=
x-frame-options: SAMEORIGIN
x-fruit: banana
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.10:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 142.250.74.10:0
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dapplays.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.js
172.64.144.198200 OK 0 B URL HTTP/2 dapplays.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.js
IP 172.64.144.198:0
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.js HTTP/1.1
Host: dapplays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/registration?theme=m-2-panthershortX&v_id=f67b399e-8fec-034b-f12c-f0881b07fe45&capo=dHVybmh1Yi5uZXQ=&entityId=2&a_aid=864kjuyuio54&page=m-2-panther&clickid=631502e2867fe4000132b6b8&pubid=2dd48c67
Cookie: CakeCookie[a_aid]=ODY0a2p1eXVpbzU0; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[clickid]=NjMxNTAyZTI4NjdmZTQwMDAxMzJiNmI4; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MmRkNDhjNjc%3D; CakeCookie[v_id]=ZjY3YjM5OWUtOGZlYy0wMzRiLWYxMmMtZjA4ODFiMDdmZTQ1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 31 Aug 2022 16:53:33 GMT
etag: W/"630f920d-435fc"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 1902
expires: Sun, 04 Sep 2022 23:56:19 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 745949aafd4d1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Candal
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Candal
IP 142.250.74.10:0
Analyzer Verdict Alert fortinet Malware
GET /css?family=Candal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
34.251.112.219200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
IP 34.251.112.219:0
POST /api/v2/client/sites/916387/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 149
Origin: https://dapplays.com
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Yanone+Kaffeesatz
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Yanone+Kaffeesatz
IP 142.250.74.10:0
GET /css?family=Yanone+Kaffeesatz HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abel
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abel
IP 142.250.74.10:0
GET /css?family=Abel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 142.250.74.10:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
IP 142.250.74.10:0
GET /css?family=Libre+Baskerville:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 19:56:19 GMT
date: Sun, 04 Sep 2022 19:56:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.0.13/css/all.css
104.21.63.54200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.0.13/css/all.css
IP 104.21.63.54:0
GET /releases/v5.0.13/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dapplays.com
Connection: keep-alive
Referer: https://dapplays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:56:19 GMT
content-type: text/css
x-amz-id-2: lTw7K3yz4zdXgjALDLjHZ8Cl4Qh3VYDO9EUPAmGTm0ur2NF/dXqq6WP+7RiCPwtYW4kVYCs2KE0=
x-amz-request-id: 58X1KW9VHEYQ44K5
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:31 GMT
etag: W/"d61bfe9b56c13ecff5313ee3abb45e8b"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 358640
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K9IlfCVRqO%2BdK3Q0I93mvof514g%2BMNY27bW%2BJ%2FhV8NuG24jwSwf83Pgb0Qy75ZciTut4uWGmQefmUOnvzDcGHbsSknUN43lkncjb%2B9t7AZTwCdSblUh50W8gri82uK1k7j0ikvKn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745949ab6cfeb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2