urlquery - report: trerw484a3.uv.wy5532.com/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	54.70.239.215
gracelessbrief.com (2)	0	2022-11-28 11:12:50 UTC	2022-11-28 11:50:43 UTC	192.243.61.227	Unknown ranking
img-getpocket.cdn.mozilla.net (7)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
supanimegames.com (10)	0	2022-01-10 09:10:44 UTC	2022-11-30 06:48:30 UTC	188.114.96.1	Unknown ranking
professionalswebcheck.com (1)	0	2022-04-01 22:47:29 UTC	2022-11-30 02:37:21 UTC	52.28.211.11	Unknown ranking
ocsp.digicert.com (4)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
ln.gamesrevenue.com (1)	117740	2017-01-29 20:27:07 UTC	2022-11-30 01:41:00 UTC	5.161.79.44
twistconcept.com (1)	0	2020-08-23 14:56:06 UTC	2022-11-30 02:37:21 UTC	104.21.86.46	Unknown ranking
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.165
mc.yandex.ru (10)	2672	2012-05-21 09:38:30 UTC	2022-11-30 04:08:52 UTC	87.250.251.119
simplewebanalysis.com (1)	0	2022-02-25 04:06:25 UTC	2022-11-29 17:11:48 UTC	52.28.211.11	Unknown ranking
trerw484a3.uv.wy5532.com (3)	0	No data	No data	199.115.116.216	Unknown ranking
r3.o.lencr.org (8)	344	No data	No data	23.36.76.226
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-30 04:06:17 UTC	34.102.187.140
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-30 04:06:04 UTC	34.117.237.239
click-v4.expmdiadi.com (1)	0	No data	No data	198.134.116.17	Unknown ranking
e1.o.lencr.org (2)	6159	No data	No data	23.36.76.226
main.realsrv.com (1)	91110	No data	No data	95.211.229.247
ocsp.globalsign.com (1)	2075	2012-07-20 17:46:16 UTC	2020-05-02 20:58:10 UTC	104.18.21.226

Scan Date	Severity	Indicator	Comment
2022-11-30	2	trerw484a3.uv.wy5532.com/	Malware

Date	UQ / IDS / BL	URL	IP
2023-01-29 16:43:43 +0000	0 - 0 - 5	10xprenuers.com/google.com/google.com/am9lLmF (...)	199.115.116.216
2023-01-29 06:25:04 +0000	0 - 0 - 5	rocket-league.pro/	199.115.116.216
2023-01-29 05:30:31 +0000	0 - 0 - 1	wgqenouh.google.wy5532.com/	199.115.116.216
2023-01-21 10:58:01 +0000	0 - 0 - 1	qhmvd.ii.wy5532.com/	199.115.116.216
2023-01-19 13:38:43 +0000	0 - 1 - 3	qwqwq.6ea25.hj.wy5532.com/	199.115.116.216

Date	UQ / IDS / BL	URL	IP
2023-01-30 18:10:07 +0000	0 - 2 - 5	greenlightsa.top/	199.115.116.43
2023-01-30 17:48:59 +0000	0 - 3 - 0	greenwichpizzeria.com/	64.131.64.86
2023-01-30 17:43:54 +0000	0 - 2 - 6	re85bab.nh.wy5532.com/	162.210.196.168
2023-01-30 17:40:18 +0000	0 - 0 - 5	o2rjrw.cxcjghh.cn/	199.115.116.43
2023-01-30 16:46:00 +0000	0 - 4 - 5	viptips4youlife.world/us/kamm/viaketogummies- (...)	108.62.118.31

Date	UQ / IDS / BL	URL	IP
2023-01-30 17:57:06 +0000	0 - 2 - 6	849e0.qq.wy5532.com/	185.107.56.200
2023-01-30 17:43:54 +0000	0 - 2 - 6	re85bab.nh.wy5532.com/	162.210.196.168
2023-01-30 16:38:43 +0000	0 - 2 - 6	rrvyqsq.uu.wy5532.com/	37.48.65.152
2023-01-30 13:52:04 +0000	0 - 0 - 1	wxsxc.601ae.vh.wy5532.com/	37.48.65.150
2023-01-30 13:40:55 +0000	0 - 0 - 2	tgrrre.31a76.bw.wy5532.com/	162.210.196.168

Date	UQ / IDS / BL	URL	IP
2023-01-15 21:33:34 +0000	0 - 0 - 6	www.emurom.net/es/emulacion/nintendo-roms/det (...)	51.15.62.143
2023-01-15 20:52:02 +0000	0 - 0 - 15	kyliehill7.blogspot.com/2022/09/sekaran-and-b (...)	142.250.74.161
2023-01-07 06:23:40 +0000	0 - 0 - 1	supanimegames.com/common/tr/ce/land_ce_300520 (...)	104.21.31.221
2022-12-09 04:48:54 +0000	0 - 0 - 25	elaina.bloggplatsen.seelaina.bloggplatsen.se/	188.126.64.122
2022-12-03 18:51:04 +0000	0 - 0 - 3	2tty.584ce.wh.wy5532.com/	37.48.65.152

Request	Response
GET / HTTP/1.1 Host: trerw484a3.uv.wy5532.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa Upgrade-Insecure-Requests: 1	URL: trerw484a3.uv.wy5532.com/ FQDN: trerw484a3.uv.wy5532.com IP: 199.115.116.216 HASH: dcda1474c1bb941c4968edac73ae25e63b3474760093e65c0514cafd5ee329c7 199.115.116.216 HTTP/1.1 200 OK content-type: text/html; charset=utf-8 accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile cache-control: max-age=0, private, must-revalidate connection: close content-length: 485 date: Wed, 30 Nov 2022 22:59:45 GMT server: nginx --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (485), with no line terminators Size: 485 Md5: b3a051bb7de45280bf0d923674e2e87f Sha1: bf8b1544d7ad4559f1de59c7ddc1e8f83cc15a90 Sha256: dcda1474c1bb941c4968edac73ae25e63b3474760093e65c0514cafd5ee329c7 Alerts: Blocklists: - fortinet: Malware
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3590 Expires: Wed, 30 Nov 2022 23:59:35 GMT Date: Wed, 30 Nov 2022 22:59:45 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 2d2e7649ce9e9ba6fc8b68aa89352e3c Sha1: 0153d1d3d830a457043e16bb40d48a0b9ddef4b8 Sha256: 8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1083 Cache-Control: max-age=128976 Date: Wed, 30 Nov 2022 22:59:46 GMT Etag: "638730f7-1d7" Expires: Fri, 02 Dec 2022 10:49:22 GMT Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: f3cf023c797da81728c0ac84c8759331 Sha1: fa07c5e39e4b0741ea484101cccb2202acea9d9c Sha256: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11005 Expires: Thu, 01 Dec 2022 02:03:11 GMT Date: Wed, 30 Nov 2022 22:59:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 9fce5679881bf302a8978a0b462f01a9 Sha1: b699fe030ea13ac73813e655c42ed9b531925e2b Sha256: a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 30 Nov 2022 22:18:04 GMT cache-control: public,max-age=3600 age: 2502 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: ylE2KAYF6kkDcFONSShPIMiGAlr+jli63I0fqj4pRJmCzJRWAnSDCcyzUEJa/HGR0jpCyVdVOZs= x-amz-request-id: KHS0KYK41008RVSF content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 30 Nov 2022 22:45:24 GMT age: 862 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Wed, 30 Nov 2022 22:59:46 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /favicon.ico HTTP/1.1 Host: trerw484a3.uv.wy5532.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://trerw484a3.uv.wy5532.com/ Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa	URL: trerw484a3.uv.wy5532.com/favicon.ico FQDN: trerw484a3.uv.wy5532.com IP: 199.115.116.216 HASH: 907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9 199.115.116.216 HTTP/1.1 404 Not Found cache-control: max-age=0, private, must-revalidate connection: close content-length: 9 date: Wed, 30 Nov 2022 22:59:45 GMT server: nginx --- Additional Info --- Magic: ASCII text, with no line terminators Size: 9 Md5: d8f4a1993546cc4b850cde3599e27aec Sha1: 094b763b4cfcc0b05e5d040581cd513c3ca08067 Sha256: 907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 30 Nov 2022 22:08:56 GMT cache-control: public,max-age=3600 age: 3050 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1065 Cache-Control: max-age=123890 Date: Wed, 30 Nov 2022 22:59:46 GMT Etag: "63871d2b-1d7" Expires: Fri, 02 Dec 2022 09:24:36 GMT Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: cfdd00e67ee6ca21712b867eb5288ab6 Sha1: b61d5d6ec3b7ad71619e13e32c87f2d01871b88a Sha256: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTg1NjM4NSwiaWF0IjoxNjY5ODQ5MTg1LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc203dHY2MWJvbnY5aGttYWswdmFsbzEiLCJuYmYiOjE2Njk4NDkxODUsInRzIjoxNjY5ODQ5MTg1ODg4NTU0fQ.GWxhp91F1TV-ZJtGeKiEWitGzMJ8NttP7iqkP1sG1vc&sid=222047b6-70fb-11ed-a60b-da86fb0353fa HTTP/1.1 Host: trerw484a3.uv.wy5532.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://trerw484a3.uv.wy5532.com/ Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa Upgrade-Insecure-Requests: 1	URL: trerw484a3.uv.wy5532.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsI (...) FQDN: trerw484a3.uv.wy5532.com IP: 199.115.116.216 HASH: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47 199.115.116.216 HTTP/1.1 302 Found cache-control: max-age=0, private, must-revalidate connection: close content-length: 11 date: Wed, 30 Nov 2022 22:59:46 GMT location: http://click-v4.expmdiadi.com/click?i=GeB8FNiYeWY_0 server: nginx set-cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa; path=/; domain=.wy5532.com; expires=Tue, 19 Dec 2090 02:13:53 GMT; max-age=2147483647; HttpOnly --- Additional Info --- Magic: ASCII text, with no line terminators Size: 11 Md5: 32682312d17c7cbf18e73594f5570319 Sha1: 60e22121bdd0bc71cdb2bae2a3aa577006b2eae9 Sha256: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 6v/QsN9omZD6AqZQbdgIfA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.70.239.215 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.70.239.215 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: dxTZTXKGyNR5oWDoXOCXLDKrnyQ= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=GeB8FNiYeWY_0 HTTP/1.1 Host: click-v4.expmdiadi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://trerw484a3.uv.wy5532.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: click-v4.expmdiadi.com/click?i=GeB8FNiYeWY_0 FQDN: click-v4.expmdiadi.com IP: 198.134.116.17 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 198.134.116.17 HTTP/1.1 302 Found Cache-Control: no-store Content-Length: 0 Age: 0 Connection: keep-alive Location: https://gracelessbrief.com/kqtx51t47j?key=9b87ef7b084290d03770b51b1c670488&psid=wy5532.com Pragma: no-cache --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 445684a354fcec7174db0c5359eb97ad0d700f9d375bbd817a831c70ce02f04a 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "445684A354FCEC7174DB0C5359EB97AD0D700F9D375BBD817A831C70CE02F04A" Last-Modified: Tue, 29 Nov 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9588 Expires: Thu, 01 Dec 2022 01:39:35 GMT Date: Wed, 30 Nov 2022 22:59:47 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 755df20cc1c2e1a3d11e35c272be0970 Sha1: e373c6058bd09935bc8d8fa9f56a3d468a990fb3 Sha256: 445684a354fcec7174db0c5359eb97ad0d700f9d375bbd817a831c70ce02f04a
GET /kqtx51t47j?key=9b87ef7b084290d03770b51b1c670488&psid=wy5532.com HTTP/1.1 Host: gracelessbrief.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://trerw484a3.uv.wy5532.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: gracelessbrief.com/kqtx51t47j?key=9b87ef7b084290d03770b (...) FQDN: gracelessbrief.com IP: 192.243.61.227 HASH: 2f76a83fbdb8c7ab744a7366ecee0705a30357bef41e2e6037742467ce2e9a95 192.243.61.227 HTTP/1.1 200 OK Content-Type: text/html Server: nginx/1.22.0 Date: Wed, 30 Nov 2022 22:59:48 GMT Transfer-Encoding: chunked Connection: keep-alive P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA Set-Cookie: u_pl=17713889; expires=Thu, 01 Dec 2022 22:59:48 GMT ain=eyJhbGciOiJIUzI1NiJ9.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.x2MPW4-_eKkEdc5zBhfyy6lfjYofe2z8FGdMrIAihCE; expires=Wed, 30 Nov 2022 23:00:48 GMT Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-cache X-Request-ID: 3925dc6a56b5c1f4fa5274327d1413af Strict-Transport-Security: max-age=0; includeSubdomains Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (319) Size: 2416 Md5: 0f312f3880f3b0b58cb162de36d5b156 Sha1: 750c6ec495cda65666476739c4fb7932a28fb9d3 Sha256: 2f76a83fbdb8c7ab744a7366ecee0705a30357bef41e2e6037742467ce2e9a95
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3444 Expires: Wed, 30 Nov 2022 23:57:12 GMT Date: Wed, 30 Nov 2022 22:59:48 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3444 Expires: Wed, 30 Nov 2022 23:57:12 GMT Date: Wed, 30 Nov 2022 22:59:48 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3444 Expires: Wed, 30 Nov 2022 23:57:12 GMT Date: Wed, 30 Nov 2022 22:59:48 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3444 Expires: Wed, 30 Nov 2022 23:57:12 GMT Date: Wed, 30 Nov 2022 22:59:48 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3444 Expires: Wed, 30 Nov 2022 23:57:12 GMT Date: Wed, 30 Nov 2022 22:59:48 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 2e081da1464a18d755a841558f63303634a9e22df888c9c43246565abfc3d48d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12655 x-amzn-requestid: db51cc10-5e13-4d63-a15b-a1c62b159f7b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbzNfFvloAMFgqg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cbef-67ec32d74521865c7f800ac6;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:31 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: mctLVf0ho2G4skGRA0gpSH5HVoAUeH7YOyY1QA4_abODLKqRIX0eTg== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 22:09:11 GMT etag: "06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac" age: 3037 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12655 Md5: 1039182464db1365a476dd88029b97d8 Sha1: 06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac Sha256: 2e081da1464a18d755a841558f63303634a9e22df888c9c43246565abfc3d48d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13411 x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbz6vH05oAMF_qw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:52:00 GMT etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60" age: 4068 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13411 Md5: 328ce221bcf3442f88d09373193ff594 Sha1: 63bfa2ea925aa2c188c664a7bf7af7b0e5417e60 Sha256: 21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4199 x-amzn-requestid: 61981ad5-3560-43e1-a1cd-37f823e89675 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cZQxoEz5IAMFzQQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6386c80a-291574e42bee51b2523b3920;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: fL5AwXN4Kitj3BB3DyYyYfFYk3GRgLvhNNTiQKrDcxPR6mkfzyUuzQ== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 22:05:04 GMT age: 12898 etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4199 Md5: 4fd5f7a9e04d27654062b3e18b8aecca Sha1: 07fafbd614cdb49f20bceea29d5e684725d3bdf6 Sha256: 0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3751 x-amzn-requestid: 80396218-5515-4f77-9d57-95b323e1f1c0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbzNHHGGoAMF8mA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cbed-09f83d1a5b7f65175fb137ab;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:29 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _mQdH9J5CaTiYNIQf5xVn-HGUP5tKhW_1foVDdpsVIoG_NKb9wZOJg== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:49:45 GMT age: 4203 etag: "bfb37735a2500848338a8fa12f28516a1ad9b5ba" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3751 Md5: 609419f1a2c58ae67febde5e2cb91c9f Sha1: bfb37735a2500848338a8fa12f28516a1ad9b5ba Sha256: 32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12898 x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cQZBNFxToAMF_9A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:47:30 GMT age: 4338 etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12898 Md5: 820cf89fcab8380adff42982c9fb11ed Sha1: 84241ddddbbfd7de30118307fb1a62800d0a4cb3 Sha256: 0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10437 x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cb0YpEeooAMFfvg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Q9y5-OF59ODaZRd9YFFdM2rIH0bYYyIT40rCwr8cBwBQd0GOqtNobg== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 22:08:51 GMT age: 3057 etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10437 Md5: 291127b670135b42b6e9687aa2a13237 Sha1: 99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1 Sha256: 49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
GET /kqtx51t47j?pst=1669849248&rmtc=t&uuid=&pii=&in=false&refer=http%3A%2F%2Ftrerw484a3.uv.wy5532.com%2F&key=9b87ef7b084290d03770b51b1c670488&shu=02477f8ae3a40c461268b9401ac1858208e7924e8e38c4124b0790f240e519b3aa4b57e698355132d9835acc720c2ee1c22bb59e9fcd5aeae0117439744d9de18d0a4d14fbcee298a000aa8bbaea57756fb7d7&fr=0&sw2=1280&sh2=939&sw3=1280&sh3=176&sw4=1280&sh4=939&sw5=1280&sh5=1024&sw6=1280&sh6=1024&sw7=1280&sh7=1002 HTTP/1.1 Host: gracelessbrief.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gracelessbrief.com/kqtx51t47j?key=9ca601a9f47c735df76d5ca46fa26a66&submetric=17713889 Cookie: u_pl=17713889; ain=eyJhbGciOiJIUzI1NiJ9.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.x2MPW4-_eKkEdc5zBhfyy6lfjYofe2z8FGdMrIAihCE; cjs=t Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin	URL: gracelessbrief.com/kqtx51t47j?pst=1669849248&rmtc=t&uui (...) FQDN: gracelessbrief.com IP: 192.243.61.227 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 192.243.61.227 HTTP/1.1 302 Found Content-Type: text/html Server: nginx/1.22.0 Date: Wed, 30 Nov 2022 22:59:48 GMT Content-Length: 0 Connection: keep-alive P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA Location: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Set-Cookie: iprc1e63d212e477b2c4f372e325294c512a=2270707; expires=Thu, 01 Dec 2022 22:59:48 GMT pdhtkv=true; expires=Thu, 01 Dec 2022 22:59:48 GMT uncs=1; expires=Thu, 01 Dec 2022 22:59:48 GMT pdhtkv28=true; expires=Thu, 01 Dec 2022 22:59:48 GMT uncs28=1; expires=Thu, 01 Dec 2022 22:59:48 GMT Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-cache X-Request-ID: ada454a3f8e21ac54f24d663532cf10f Strict-Transport-Security: max-age=0; includeSubdomains --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 390bd69972cb5d5f40531d255c6dfc2eab26347ce3b71a102b0379bcc1b60196 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4438 Cache-Control: 'max-age=158059' Date: Wed, 30 Nov 2022 22:59:48 GMT Last-Modified: Wed, 30 Nov 2022 21:45:51 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 278 --- Additional Info --- Magic: data Size: 278 Md5: 471fbc00c82725f3cc81cbd0ef6987f9 Sha1: 434278f7ad5bb22f99436e7b7f39cb6d28e73202 Sha256: 390bd69972cb5d5f40531d255c6dfc2eab26347ce3b71a102b0379bcc1b60196
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 390bd69972cb5d5f40531d255c6dfc2eab26347ce3b71a102b0379bcc1b60196 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4438 Cache-Control: 'max-age=158059' Date: Wed, 30 Nov 2022 22:59:48 GMT Last-Modified: Wed, 30 Nov 2022 21:45:51 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 278 --- Additional Info --- Magic: data Size: 278 Md5: 471fbc00c82725f3cc81cbd0ef6987f9 Sha1: 434278f7ad5bb22f99436e7b7f39cb6d28e73202 Sha256: 390bd69972cb5d5f40531d255c6dfc2eab26347ce3b71a102b0379bcc1b60196
GET /common/tr/ce/land_ce_300520_na_en/image/notice.png HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/ima (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: 9f791fa05194d8417e6d68995973bb43babe3b0704cb4c7011dbb63c69eec028 188.114.96.1 HTTP/2 200 OK content-type: image/png date: Wed, 30 Nov 2022 22:59:48 GMT content-length: 23707 last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: "5f5657d7-5c9b" cache-control: max-age=14400 cf-cache-status: HIT age: 6229 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JlO43WK4SIo1VNj6UEGpdd%2FKXEf2KHi5Ties%2FQGDyKDYP23gha7DzPEt%2B%2ByFALFtTHdlLOxF0ToPxF7sqIMaNEaOezDKmvCjr%2FQxK1SNwKYVCJzt2evvr6aTWCR42PtYjHobuA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732154af5b4fa-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 1920 x 115, 8-bit colormap, non-interlaced\012- data Size: 23707 Md5: 3cf58bc7ec31b37ba73eeed2e20922dd Sha1: ef0020a4afa74f34bf7496d8ab04171b69e19f26 Sha256: 9f791fa05194d8417e6d68995973bb43babe3b0704cb4c7011dbb63c69eec028
GET /common/tr/ce/land_ce_300520_na_en/image/logo.png HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/ima (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: 0f56b6c137e245f0b3d6af93e8f3ae48c15ff33e29e36df20530f40abeee8ee3 188.114.96.1 HTTP/2 200 OK content-type: image/png date: Wed, 30 Nov 2022 22:59:48 GMT content-length: 4794 last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: "5f5657d7-12ba" cache-control: max-age=14400 cf-cache-status: HIT age: 6229 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tZfOCJpeDMpYyEJ%2BHfUupzPJlMyL10Ud4uUkklNvzkODCtv6hzkb%2F95ydxNQeuEHfxyxC3yK96eRkx5ryasdogR5VQ4ES83oHenocpaxuUfyBWIdKgMMkmG8I8hFYCxcl9%2F6HA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732154af6b4fa-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 291 x 93, 8-bit colormap, non-interlaced\012- data Size: 4794 Md5: d2ce778778e09563ac9eb50b06b2d6fb Sha1: 79ee65334aa4e0f3d8fe45fa29dba31e4f9d979e Sha256: 0f56b6c137e245f0b3d6af93e8f3ae48c15ff33e29e36df20530f40abeee8ee3
GET /common/tr/ce/land_ce_300520_na_en/image/n1.png HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/ima (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: 2e0719b37a163591cfd41f5d16af5881c10363db67a3a3c69d4aa6d0e4d07fac 188.114.96.1 HTTP/2 200 OK content-type: image/png date: Wed, 30 Nov 2022 22:59:48 GMT content-length: 3979 last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: "5f5657d7-f8b" cache-control: max-age=14400 cf-cache-status: HIT age: 5043 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WujCOzYlZ0jSmFzWAIMwZ5iISHCVcG8%2FdqZgvJiXSPmXPime249nTkGZnP7mNf4AfcN%2FlC3PjLrui8cxM4ShS5Ug78HsGGWUyf6831GGWcsZS1Bq%2BPzTSNDD8lZnRXYXTr55%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732154afab4fa-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data Size: 3979 Md5: 6620042f764faeabe7cc1cfb38ff601c Sha1: 877812b21435579792db6aac1b56fde6cda905a2 Sha256: 2e0719b37a163591cfd41f5d16af5881c10363db67a3a3c69d4aa6d0e4d07fac
GET /common/tr/ce/land_ce_300520_na_en/image/card2.png HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/ima (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: 08762ec4d73be8c26aba0c720410abcf204514f2d96a78956f008087a0481894 188.114.96.1 HTTP/2 200 OK content-type: image/png date: Wed, 30 Nov 2022 22:59:48 GMT content-length: 73161 last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: "5f5657d7-11dc9" cache-control: max-age=14400 cf-cache-status: HIT age: 6229 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aYnxvYh91WtNOlfbihYQKaOjfuAXQ8STmAoQOUTOEBDKKsmfW%2BLYPx%2FycdoraDVscX2DrDvptUX246LQNfTYr691fxdV3wgELHhlsE0TmKUZoV47ovVHCaFYVLUfupQ3EZvpgg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732154afcb4fa-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data Size: 73161 Md5: c35c1130835c4890905a1545b31cbd81 Sha1: 3ea153adfc6a29a18e6b9b81a44be24eefb888fc Sha256: 08762ec4d73be8c26aba0c720410abcf204514f2d96a78956f008087a0481894
GET /common/tr/ce/land_ce_300520_na_en/image/n2.png HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/ima (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: fe7ceed78142de7e4b88367e1e2eeb9d499a804f133b2800270a246b252abe0f 188.114.96.1 HTTP/2 200 OK content-type: image/png date: Wed, 30 Nov 2022 22:59:48 GMT content-length: 3126 last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: "5f5657d7-c36" cache-control: max-age=14400 cf-cache-status: HIT age: 5044 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x1UlCpCqOc6UixfyYdm84cjO7bhr9HMSYLvn0LjsQAfe8JYvhkpBN5shhh5EWMHIK4evgMDVpaPzY0YaQQAgFDS2ka%2Bjn1oozXD9i2E9KEszieIaPxQw2jJ%2FesX6%2B7qwFklfpA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732154affb4fa-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data Size: 3126 Md5: cf90c3ff9f0490f4d07c3b4f6d2f2a28 Sha1: e1b55d2deeb10a2660c776b6ae65b0623f96c7a5 Sha256: fe7ceed78142de7e4b88367e1e2eeb9d499a804f133b2800270a246b252abe0f
GET /common/tr/ce/land_ce_300520_na_en/image/card1.png HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/ima (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: fa8a6f284a1cabd4e57be38602f0833a67460e4abd9eb087b85d9e0c57bd0032 188.114.96.1 HTTP/2 200 OK content-type: image/png date: Wed, 30 Nov 2022 22:59:48 GMT content-length: 75556 last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: "5f5657d7-12724" cache-control: max-age=14400 cf-cache-status: HIT age: 5044 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GNSRsfV1WIiuFybKZsiB4UyKXRgV1RHF5WW4QfVlgkw760%2FWQBC22zCZBDkPnT5I5JbOvhnEZzJ1%2BqauQ6jdwT0HxaKCRlEpQSCDWAtepm2kCVE90FoJm%2FW8SXVwB%2F3LvUZLuQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732154af8b4fa-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data Size: 75556 Md5: e35b87a58183c9d6050dd668f192bbf7 Sha1: 1c8ae327fd1fde27dc19400b653d1e23f9dbf73e Sha256: fa8a6f284a1cabd4e57be38602f0833a67460e4abd9eb087b85d9e0c57bd0032
GET /common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gracelessbrief.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1 (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: 44f99665df7ed8694366f5324da046d66b8dcb4b590a8fa4ae08ec5f08b62c68 188.114.96.1 HTTP/2 200 OK content-type: text/html; charset=UTF-8 date: Wed, 30 Nov 2022 22:59:48 GMT cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qOsZ6RAmJbsSzK7kluSif63OYqG9MxBpbX%2BL2giyH0%2FFIR9ukYydHVzpYz4h%2BzY1JE%2B0KAskgLwkWOx9UuSA%2BI77RQanqNzZ4gkK%2FTfKp7gJQ3yj3EaArQKteJzgURgxN2CJ2Q%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 77273213e9c8b4fa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (560) Size: 76757 Md5: 3d6405c7348d4de7698471fe0ce24439 Sha1: bce25d14a868d04cd83b1ac046f57dd7603d16ce Sha256: 44f99665df7ed8694366f5324da046d66b8dcb4b590a8fa4ae08ec5f08b62c68
GET /common/tr/ce/land_ce_300520_na_en/css/main.css HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/css (...) FQDN: supanimegames.com IP: 188.114.96.1 HASH: 169e51994d1ff90a75d8d0fb2af5363c3703820029ba622b52f097f7f69128b1 188.114.96.1 HTTP/2 200 OK content-type: text/css date: Wed, 30 Nov 2022 22:59:48 GMT last-modified: Mon, 07 Sep 2020 15:55:03 GMT etag: W/"5f5657d7-99f" cache-control: max-age=14400 cf-cache-status: HIT age: 6380 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OV%2FfmjCPvLEPJ8DPR7YypDT6mXKHkHq%2FLxJixyoAE8qjuGR4xPI6%2FFVgqw5OxajNiv9Zo8HovLDKyu1Umw6LYrWOhw%2FeeRzmQ6YNfAvUXpqyvUaoIq6ev9U8DLIIHhfTYsSiaQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732153aedb4fa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 1127 Md5: d12d8b20569bfc85a5aa5471f053f0a7 Sha1: 98789acc322259c4fd748321f1087b6ac69d235e Sha256: 169e51994d1ff90a75d8d0fb2af5363c3703820029ba622b52f097f7f69128b1
GET /awpx_click.js?v=005 HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/awpx_click.js?v=005 FQDN: supanimegames.com IP: 188.114.96.1 HASH: e196bae4cdb278e0ceba30b39c09b96f1dce1a7d30ed834574bc7b98bdccc9e8 188.114.96.1 HTTP/2 200 OK content-type: application/javascript date: Wed, 30 Nov 2022 22:59:48 GMT last-modified: Mon, 22 Aug 2022 12:36:02 GMT etag: W/"63037832-5cb" cache-control: max-age=14400 cf-cache-status: HIT age: 2007 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lGK3cDyD5JiQRjLKi9XTNwLYrwQL%2FG7wNwLCu9hAovqEN%2BCfRo5jjc%2FXgF3REhYjaGJd1Ws2%2F907dn6TN9jLAgHhDRRBxUQONsD3WSjRHAUzHKQDKoZ77RxefSr3tg3ALXLtoQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732153af4b4fa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 246375 Md5: 6ea1c99c23c9cfc8cabea5dced3d2251 Sha1: f66f1047ebe2bbf6913055eb83eab0308ceb6fc6 Sha256: e196bae4cdb278e0ceba30b39c09b96f1dce1a7d30ed834574bc7b98bdccc9e8
GET /px1.js HTTP/1.1 Host: ln.gamesrevenue.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ln.gamesrevenue.com/px1.js FQDN: ln.gamesrevenue.com IP: 5.161.79.44 HASH: 2cfef91eaadd460195724cb64805fb103073b2467d291b8f1b5aa2bed18587f0 5.161.79.44 HTTP/2 200 OK content-type: application/javascript server: nginx date: Wed, 30 Nov 2022 22:59:49 GMT last-modified: Fri, 21 Oct 2022 09:01:18 GMT etag: W/"63525fde-3a8c" content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (14987) Size: 3811 Md5: 70752d55d09eae9f76786657ba1e386e Sha1: 5c35b04c85d1d2ef12635ca15eb1773d8bffb98f Sha256: 2cfef91eaadd460195724cb64805fb103073b2467d291b8f1b5aa2bed18587f0
POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: e1.o.lencr.org/ FQDN: e1.o.lencr.org IP: 23.36.76.226 HASH: 756d765872e838bd1744767939fd1871d15feacfbc5c2e53331191f16677d439 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 344 ETag: "756D765872E838BD1744767939FD1871D15FEACFBC5C2E53331191F16677D439" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2999 Expires: Wed, 30 Nov 2022 23:49:48 GMT Date: Wed, 30 Nov 2022 22:59:49 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 344 Md5: 03ca7f3574c5a5173a7bdb4783526729 Sha1: ad3907f383c0ba4b7a640adec70b6554ef503004 Sha256: 756d765872e838bd1744767939fd1871d15feacfbc5c2e53331191f16677d439
GET /tag.php?goal=d463e4eafcfd7a2c779b390efdb813cf HTTP/1.1 Host: main.realsrv.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: main.realsrv.com/tag.php?goal=d463e4eafcfd7a2c779b390ef (...) FQDN: main.realsrv.com IP: 95.211.229.247 HASH: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf 95.211.229.247 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Wed, 30 Nov 2022 22:59:49 GMT Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: goals=a%3A1%3A%7Bi%3A52911%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-30%22%3B%7D%7D; expires=Thu, 30 Nov 2023 22:59:49 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none X-Robots-Tag: noindex, follow Content-Encoding: gzip --- Additional Info --- Magic: data Size: 20 Md5: a4745abc5e7fdb89cc6df3069f3c6e69 Sha1: 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: e1.o.lencr.org/ FQDN: e1.o.lencr.org IP: 23.36.76.226 HASH: 756d765872e838bd1744767939fd1871d15feacfbc5c2e53331191f16677d439 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 344 ETag: "756D765872E838BD1744767939FD1871D15FEACFBC5C2E53331191F16677D439" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2999 Expires: Wed, 30 Nov 2022 23:49:48 GMT Date: Wed, 30 Nov 2022 22:59:49 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 344 Md5: 03ca7f3574c5a5173a7bdb4783526729 Sha1: ad3907f383c0ba4b7a640adec70b6554ef503004 Sha256: 756d765872e838bd1744767939fd1871d15feacfbc5c2e53331191f16677d439
GET /index.min.js?pk=42c6f09dc9e74035608496705631ef5d HTTP/1.1 Host: twistconcept.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: twistconcept.com/index.min.js?pk=42c6f09dc9e74035608496 (...) FQDN: twistconcept.com IP: 104.21.86.46 HASH: 32858f596974eee59048d2b0a177e95bbe00e274bdda4c9fe490bf19acec62fb 104.21.86.46 HTTP/2 200 OK content-type: application/javascript date: Wed, 30 Nov 2022 22:59:49 GMT last-modified: Thu, 07 Apr 2022 08:49:08 GMT etag: W/"624ea584-28c" cache-control: max-age=14400 cf-cache-status: HIT age: 312 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4yoVBFqlF9A7JCzLF8izMwUK6pICjbdBmftcDZYGlIiY3ZBKBZE%2B%2BuT2mFUZX5Q2zlBH6Z2BHDwqbjCXZjF%2FX87iHGMAVSzhOS3XyPGMy%2Fw%2F0Tya%2BIFLE4pEdBqFTzXM34s"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732185c5b0af6-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (651) Size: 377 Md5: 1bbd15594e64bd1a1e03ccdb99f28d3c Sha1: a779fb5853cf4e2923086aa5f3a47a614a76b453 Sha256: 32858f596974eee59048d2b0a177e95bbe00e274bdda4c9fe490bf19acec62fb
POST /gseccovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/gseccovsslca2018 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: 42dd9526f1a393592988e799e6fe6dfafb44ebf89e7dc5b5e5b8fa09b33c463a 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 22:59:49 GMT Content-Length: 938 Connection: keep-alive Expires: Sun, 04 Dec 2022 21:10:20 GMT ETag: "005b2a3cec76522713c8096cc929c08fdec745ad" Last-Modified: Wed, 30 Nov 2022 21:10:21 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 2995 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7727321939651bfa-OSL --- Additional Info --- Magic: data Size: 938 Md5: 032051c1785608d0929a960f9dc6f7da Sha1: 005b2a3cec76522713c8096cc929c08fdec745ad Sha256: 42dd9526f1a393592988e799e6fe6dfafb44ebf89e7dc5b5e5b8fa09b33c463a
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.165 HASH: 9794d926ccf993a8cd760c76077cf94f5b270633aff450e45934a5c8fd52d62d 143.204.42.165 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=139702 Date: Wed, 30 Nov 2022 22:59:49 GMT Etag: "63875b15-1d7" Expires: Fri, 02 Dec 2022 13:48:11 GMT Last-Modified: Wed, 30 Nov 2022 13:31:01 GMT Server: ECS (nyb/1D2D) X-Cache: Miss from cloudfront Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Wab6ydTOqSH9GhyJSfcEmhtDdISjiSJ8cZHd48v9gOgou8Zm5kdkNQ== Age: 1030 --- Additional Info --- Magic: data Size: 471 Md5: 819f953b0edd066d30cf5847c5564d3c Sha1: 12f3ea06c2a617db03caa556e37c1cb106d44f93 Sha256: 9794d926ccf993a8cd760c76077cf94f5b270633aff450e45934a5c8fd52d62d
GET /metrika/tag.js HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: mc.yandex.ru/metrika/tag.js FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993 87.250.251.119 HTTP/2 200 OK content-type: application/javascript content-length: 73267 date: Wed, 30 Nov 2022 22:59:49 GMT access-control-allow-origin: * etag: "63875d46-11e33" expires: Wed, 30 Nov 2022 23:59:49 GMT last-modified: Wed, 30 Nov 2022 16:40:22 GMT cache-control: max-age=3600 content-encoding: br strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (587) Size: 73267 Md5: 1d79426653c3b55939eaec59a2ce8ef5 Sha1: c6db0314df7a4e5c08047f6306e0b79a1ad3bab2 Sha256: 2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /px.gif?akey=42c6f09dc9e74035608496705631ef5d HTTP/1.1 Host: simplewebanalysis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: simplewebanalysis.com/px.gif?akey=42c6f09dc9e7403560849 (...) FQDN: simplewebanalysis.com IP: 52.28.211.11 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.28.211.11 HTTP/2 307 Temporary Redirect content-type: image/gif date: Wed, 30 Nov 2022 22:59:49 GMT content-length: 0 location: https://professionalswebcheck.com/dbs?uuid=de5e2933-e809-48f1-a7b3-5687d217fcce&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoxLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODQ5MTg5fSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg0OTE4OX19.V0Mamuw3zToNOMBz-6C0PMhIFkxG6fOWVDtvKe3UK7A server: nginx/1.17.6 set-cookie: uid_id2=de5e2933-e809-48f1-a7b3-5687d217fcce:1:1; expires=Sat, 27 Nov 2032 22:59:49 GMT; secure; SameSite=None ak=37,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None acl=20,1,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None expires: Wed, 30 Nov 2022 22:59:49 GMT cache-control: max-age=0, : no-cache X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/advert.gif HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/metrika/advert.gif FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:49 GMT access-control-allow-origin: * etag: "63875d46-2b" expires: Wed, 30 Nov 2022 23:59:49 GMT accept-ranges: bytes last-modified: Wed, 30 Nov 2022 16:40:22 GMT cache-control: max-age=3600 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://supanimegames.com Referer: https://supanimegames.com/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/watch/57021556/1?wmode=7&page-url=https%3A (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 767ddf0669daea88b4b364b725fa24c2fdaba84d21831738611b62bfe134acd4 87.250.251.119 HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 400 date: Wed, 30 Nov 2022 22:59:49 GMT x-content-type-options: nosniff access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:49 GMT last-modified: Wed, 30-Nov-2022 22:59:49 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (400), with no line terminators Size: 400 Md5: 701040e35d76c6d515759bb3c48a8172 Sha1: c88227931b0b4b9771f3b193f8cc1fc37287ccbe Sha256: 767ddf0669daea88b4b364b725fa24c2fdaba84d21831738611b62bfe134acd4
GET /dbs?uuid=de5e2933-e809-48f1-a7b3-5687d217fcce&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoxLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODQ5MTg5fSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg0OTE4OX19.V0Mamuw3zToNOMBz-6C0PMhIFkxG6fOWVDtvKe3UK7A HTTP/1.1 Host: professionalswebcheck.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://supanimegames.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: professionalswebcheck.com/dbs?uuid=de5e2933-e809-48f1-a (...) FQDN: professionalswebcheck.com IP: 52.28.211.11 HASH: ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c 52.28.211.11 HTTP/2 200 OK content-type: image/gif date: Wed, 30 Nov 2022 22:59:49 GMT content-length: 7 server: nginx/1.17.6 set-cookie: uid_id2=de5e2933-e809-48f1-a7b3-5687d217fcce:1:1; expires=Sat, 27 Nov 2032 22:59:49 GMT; secure; SameSite=None ak=37,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None acl=20,1,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None expires: Wed, 30 Nov 2022 22:59:49 GMT cache-control: max-age=0, : no-cache X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 7 Md5: 132d6af1b46048b45cf86cdee7991d31 Sha1: eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 Sha256: ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
POST /webvisor/57021556?wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=632782213&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849191%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225950%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849191&t=gdpr(14)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 5539 Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/webvisor/57021556?wmode=0&wv-part=1&wv-hit (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:52 GMT access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:52 GMT last-modified: Wed, 30-Nov-2022 22:59:52 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/57021556?wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=512142459&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669849191%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225951%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849191&t=gdpr(14)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 54 Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/webvisor/57021556?wmode=0&wv-part=1&wv-hit (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:52 GMT access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:52 GMT last-modified: Wed, 30-Nov-2022 22:59:52 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/57021556?wmode=0&wv-part=2&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=131876122&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849193%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225952%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849193&t=gdpr(14)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 556 Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/webvisor/57021556?wmode=0&wv-part=2&wv-hit (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:54 GMT access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:54 GMT last-modified: Wed, 30-Nov-2022 22:59:54 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 16038 x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cbz80EHboAMFtmQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 21:52:00 GMT age: 4075 etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 16038 Md5: ffd12f9c423ffc627d9e3b3145944fe4 Sha1: 5cf9a7a784952e1bb0cbe499104f1774b1269d08 Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
POST /webvisor/57021556?wv-check=59734&wv-type=0&wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=378514876&browser-info=gdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 44 Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/webvisor/57021556?wv-check=59734&wv-type=0 (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:55 GMT access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:55 GMT last-modified: Wed, 30-Nov-2022 22:59:55 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/57021556?wmode=0&wv-part=2&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=795913007&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 21 Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/webvisor/57021556?wmode=0&wv-part=2&wv-hit (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:55 GMT access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:55 GMT last-modified: Wed, 30-Nov-2022 22:59:55 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/57021556?wmode=0&wv-part=3&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=111929974&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 432 Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/webvisor/57021556?wmode=0&wv-part=3&wv-hit (...) FQDN: mc.yandex.ru IP: 87.250.251.119 HASH: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 87.250.251.119 HTTP/2 200 OK content-type: image/gif content-length: 43 date: Wed, 30 Nov 2022 22:59:55 GMT access-control-allow-origin: https://supanimegames.com access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:55 GMT last-modified: Wed, 30-Nov-2022 22:59:55 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: df3e567d6f16d040326c7a0ea29a4f41 Sha1: ea7df583983133b62712b5e73bffbcd45cc53736 Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /common/tr/ce/land_ce_300520_na_en/libs/jq.js HTTP/1.1 Host: supanimegames.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: supanimegames.com/common/tr/ce/land_ce_300520_na_en/lib (...) FQDN: supanimegames.com IP: 188.114.96.1 188.114.96.1 HTTP/2 200 OK content-type: application/javascript date: Wed, 30 Nov 2022 22:59:48 GMT last-modified: Thu, 15 Jul 2021 12:31:47 GMT etag: W/"60f02ab3-15851" cache-control: max-age=14400 cf-cache-status: HIT age: 6380 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=udVmtT3a%2FcldOSo6IMKKC3iBkXXpgPOJkmt8d3V1vVQ9v7qZXbajgAavPpTAwDERF7W0whAsnwS1BcrO8BffPAidxoHRulm0kLFcqa91BM7AFrQ9jK1cqAaqTOXnRBsoMCi79g%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 772732153af0b4fa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---
GET /watch/57021556?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://supanimegames.com Connection: keep-alive Referer: https://supanimegames.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: mc.yandex.ru/watch/57021556?wmode=7&page-url=https%3A%2 (...) FQDN: mc.yandex.ru IP: 87.250.251.119 87.250.251.119 HTTP/2 302 Found location: /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 date: Wed, 30 Nov 2022 22:59:49 GMT access-control-allow-origin: https://supanimegames.com set-cookie: yandexuid=9456973721669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yuidss=9456973721669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yabs-sid=1101118231669849189; Path=/; SameSite=None; Secure i=+lIXAh1WzRi7XyzCpuCMdEfLcSKPxE9aDLqZxTqQ/KVMrIswBIKwcnFJDWzM0FJM8QV5gPnXGsAhpUytjzgaq1tGFGk=; Expires=Sat, 27-Nov-2032 22:59:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None ymex=1701385189.yc.1669849189#1701385189.yrts.1669849189#1701385189.yrtsi.1669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure access-control-allow-credentials: true pragma: no-cache x-xss-protection: 1; mode=block expires: Wed, 30-Nov-2022 22:59:49 GMT last-modified: Wed, 30-Nov-2022 22:59:49 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 1083 

                                        
                                            
Cache-Control: max-age=128976 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:46 GMT 

                                        
                                            
Etag: "638730f7-1d7" 

                                        
                                            
Expires: Fri, 02 Dec 2022 10:49:22 GMT 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT 

                                        
                                            
Server: ECS (ska/F71B) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    f3cf023c797da81728c0ac84c8759331

                                                Sha1:   fa07c5e39e4b0741ea484101cccb2202acea9d9c

                                                Sha256: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 22:18:04 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2502 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    30db107dcf4380cef05efea409c2e6a3

                                                Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9

                                                Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:46 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 22:08:56 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 3050 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTg1NjM4NSwiaWF0IjoxNjY5ODQ5MTg1LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc203dHY2MWJvbnY5aGttYWswdmFsbzEiLCJuYmYiOjE2Njk4NDkxODUsInRzIjoxNjY5ODQ5MTg1ODg4NTU0fQ.GWxhp91F1TV-ZJtGeKiEWitGzMJ8NttP7iqkP1sG1vc&sid=222047b6-70fb-11ed-a60b-da86fb0353fa HTTP/1.1 

                                        
                                            
Host: trerw484a3.uv.wy5532.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://trerw484a3.uv.wy5532.com/ 

                                        
                                            
Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         199.115.116.216

                                        
                                            HTTP/1.1 302 Found

                                        

                                        
                                            
cache-control: max-age=0, private, must-revalidate 

                                        
                                            
connection: close 

                                        
                                            
content-length: 11 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:46 GMT 

                                        
                                            
location: http://click-v4.expmdiadi.com/click?i=GeB8FNiYeWY_0 

                                        
                                            
server: nginx 

                                        
                                            
set-cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa; path=/; domain=.wy5532.com; expires=Tue, 19 Dec 2090 02:13:53 GMT; max-age=2147483647; HttpOnly 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   11

                                                Md5:    32682312d17c7cbf18e73594f5570319

                                                Sha1:   60e22121bdd0bc71cdb2bae2a3aa577006b2eae9

                                                Sha256: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

                                        
                                            GET /click?i=GeB8FNiYeWY_0 HTTP/1.1 

                                        
                                            
Host: click-v4.expmdiadi.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Referer: http://trerw484a3.uv.wy5532.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         198.134.116.17

                                        
                                            HTTP/1.1 302 Found

                                        

                                        
                                            
Cache-Control: no-store 

                                        
                                            
Content-Length: 0 

                                        
                                            
Age: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Location: https://gracelessbrief.com/kqtx51t47j?key=9b87ef7b084290d03770b51b1c670488&psid=wy5532.com 

                                        
                                            
Pragma: no-cache 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /kqtx51t47j?key=9b87ef7b084290d03770b51b1c670488&psid=wy5532.com HTTP/1.1 

                                        
                                            
Host: gracelessbrief.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: http://trerw484a3.uv.wy5532.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         192.243.61.227

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Set-Cookie: u_pl=17713889; expires=Thu, 01 Dec 2022 22:59:48 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.x2MPW4-_eKkEdc5zBhfyy6lfjYofe2z8FGdMrIAihCE; expires=Wed, 30 Nov 2022 23:00:48 GMT 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: 3925dc6a56b5c1f4fa5274327d1413af 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (319)

                                                Size:   2416

                                                Md5:    0f312f3880f3b0b58cb162de36d5b156

                                                Sha1:   750c6ec495cda65666476739c4fb7932a28fb9d3

                                                Sha256: 2f76a83fbdb8c7ab744a7366ecee0705a30357bef41e2e6037742467ce2e9a95

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3444 

                                        
                                            
Expires: Wed, 30 Nov 2022 23:57:12 GMT 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a97c452e75cf1d4833e777d7ba7f2c47

                                                Sha1:   58f15763fd33f742ce870f49f1c2dbed5b41205f

                                                Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3444 

                                        
                                            
Expires: Wed, 30 Nov 2022 23:57:12 GMT 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a97c452e75cf1d4833e777d7ba7f2c47

                                                Sha1:   58f15763fd33f742ce870f49f1c2dbed5b41205f

                                                Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 12655 

                                        
                                            
x-amzn-requestid: db51cc10-5e13-4d63-a15b-a1c62b159f7b 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cbzNfFvloAMFgqg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6387cbef-67ec32d74521865c7f800ac6;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:31 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: mctLVf0ho2G4skGRA0gpSH5HVoAUeH7YOyY1QA4_abODLKqRIX0eTg== 

                                        
                                            
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 22:09:11 GMT 

                                        
                                            
etag: "06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac" 

                                        
                                            
age: 3037 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   12655

                                                Md5:    1039182464db1365a476dd88029b97d8

                                                Sha1:   06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac

                                                Sha256: 2e081da1464a18d755a841558f63303634a9e22df888c9c43246565abfc3d48d

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4199 

                                        
                                            
x-amzn-requestid: 61981ad5-3560-43e1-a1cd-37f823e89675 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cZQxoEz5IAMFzQQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6386c80a-291574e42bee51b2523b3920;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:38 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: fL5AwXN4Kitj3BB3DyYyYfFYk3GRgLvhNNTiQKrDcxPR6mkfzyUuzQ== 

                                        
                                            
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 22:05:04 GMT 

                                        
                                            
age: 12898 

                                        
                                            
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4199

                                                Md5:    4fd5f7a9e04d27654062b3e18b8aecca

                                                Sha1:   07fafbd614cdb49f20bceea29d5e684725d3bdf6

                                                Sha256: 0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 12898 

                                        
                                            
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cQZBNFxToAMF_9A= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw== 

                                        
                                            
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 30 Nov 2022 21:47:30 GMT 

                                        
                                            
age: 4338 

                                        
                                            
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   12898

                                                Md5:    820cf89fcab8380adff42982c9fb11ed

                                                Sha1:   84241ddddbbfd7de30118307fb1a62800d0a4cb3

                                                Sha256: 0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8

                                        
                                            GET /kqtx51t47j?pst=1669849248&rmtc=t&uuid=&pii=&in=false&refer=http%3A%2F%2Ftrerw484a3.uv.wy5532.com%2F&key=9b87ef7b084290d03770b51b1c670488&shu=02477f8ae3a40c461268b9401ac1858208e7924e8e38c4124b0790f240e519b3aa4b57e698355132d9835acc720c2ee1c22bb59e9fcd5aeae0117439744d9de18d0a4d14fbcee298a000aa8bbaea57756fb7d7&fr=0&sw2=1280&sh2=939&sw3=1280&sh3=176&sw4=1280&sh4=939&sw5=1280&sh5=1024&sw6=1280&sh6=1024&sw7=1280&sh7=1002 HTTP/1.1 

                                        
                                            
Host: gracelessbrief.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://gracelessbrief.com/kqtx51t47j?key=9ca601a9f47c735df76d5ca46fa26a66&submetric=17713889 

                                        
                                            
Cookie: u_pl=17713889; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzcxMzg4OSwiayI6IjliODdlZjdiMDg0MjkwZDAzNzcwYjUxYjFjNjcwNDg4Iiwic2lkIjoid3k1NTMyLmNvbSIsImlzaWQiOjIsImFzaWQiOjEsInppZCI6MTcyMjM1OCwicGlkIjozODgwMTIsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MzIsImFpZCI6MjgsInB0Ijo0LCJwayI6ImtxdHg1MXQ0N2oiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly90cmVydzQ4NGEzLnV2Lnd5NTUzMi5jb20vIn19.x2MPW4-_eKkEdc5zBhfyy6lfjYofe2z8FGdMrIAihCE; cjs=t 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         192.243.61.227

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA 

                                        
                                            
Location: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 

                                        
                                            
Set-Cookie: iprc1e63d212e477b2c4f372e325294c512a=2270707; expires=Thu, 01 Dec 2022 22:59:48 GMT
pdhtkv=true; expires=Thu, 01 Dec 2022 22:59:48 GMT
uncs=1; expires=Thu, 01 Dec 2022 22:59:48 GMT
pdhtkv28=true; expires=Thu, 01 Dec 2022 22:59:48 GMT
uncs28=1; expires=Thu, 01 Dec 2022 22:59:48 GMT 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:01 GMT 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
X-Request-ID: ada454a3f8e21ac54f24d663532cf10f 

                                        
                                            
Strict-Transport-Security: max-age=0; includeSubdomains 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4438 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 21:45:51 GMT 

                                        
                                            
Server: ECS (ska/F71B) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 278 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   278

                                                Md5:    471fbc00c82725f3cc81cbd0ef6987f9

                                                Sha1:   434278f7ad5bb22f99436e7b7f39cb6d28e73202

                                                Sha256: 390bd69972cb5d5f40531d255c6dfc2eab26347ce3b71a102b0379bcc1b60196

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/logo.png HTTP/1.1 

                                        
                                            
Host: supanimegames.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         188.114.96.1

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
content-length: 4794 

                                        
                                            
last-modified: Mon, 07 Sep 2020 15:55:03 GMT 

                                        
                                            
etag: "5f5657d7-12ba" 

                                        
                                            
cache-control: max-age=14400 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 6229 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tZfOCJpeDMpYyEJ%2BHfUupzPJlMyL10Ud4uUkklNvzkODCtv6hzkb%2F95ydxNQeuEHfxyxC3yK96eRkx5ryasdogR5VQ4ES83oHenocpaxuUfyBWIdKgMMkmG8I8hFYCxcl9%2F6HA%3D%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 772732154af6b4fa-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 291 x 93, 8-bit colormap, non-interlaced\012- data

                                                Size:   4794

                                                Md5:    d2ce778778e09563ac9eb50b06b2d6fb

                                                Sha1:   79ee65334aa4e0f3d8fe45fa29dba31e4f9d979e

                                                Sha256: 0f56b6c137e245f0b3d6af93e8f3ae48c15ff33e29e36df20530f40abeee8ee3

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card2.png HTTP/1.1 

                                        
                                            
Host: supanimegames.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         188.114.96.1

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
content-length: 73161 

                                        
                                            
last-modified: Mon, 07 Sep 2020 15:55:03 GMT 

                                        
                                            
etag: "5f5657d7-11dc9" 

                                        
                                            
cache-control: max-age=14400 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 6229 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aYnxvYh91WtNOlfbihYQKaOjfuAXQ8STmAoQOUTOEBDKKsmfW%2BLYPx%2FycdoraDVscX2DrDvptUX246LQNfTYr691fxdV3wgELHhlsE0TmKUZoV47ovVHCaFYVLUfupQ3EZvpgg%3D%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 772732154afcb4fa-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data

                                                Size:   73161

                                                Md5:    c35c1130835c4890905a1545b31cbd81

                                                Sha1:   3ea153adfc6a29a18e6b9b81a44be24eefb888fc

                                                Sha256: 08762ec4d73be8c26aba0c720410abcf204514f2d96a78956f008087a0481894

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card1.png HTTP/1.1 

                                        
                                            
Host: supanimegames.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         188.114.96.1

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
content-length: 75556 

                                        
                                            
last-modified: Mon, 07 Sep 2020 15:55:03 GMT 

                                        
                                            
etag: "5f5657d7-12724" 

                                        
                                            
cache-control: max-age=14400 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 5044 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GNSRsfV1WIiuFybKZsiB4UyKXRgV1RHF5WW4QfVlgkw760%2FWQBC22zCZBDkPnT5I5JbOvhnEZzJ1%2BqauQ6jdwT0HxaKCRlEpQSCDWAtepm2kCVE90FoJm%2FW8SXVwB%2F3LvUZLuQ%3D%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 772732154af8b4fa-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data

                                                Size:   75556

                                                Md5:    e35b87a58183c9d6050dd668f192bbf7

                                                Sha1:   1c8ae327fd1fde27dc19400b653d1e23f9dbf73e

                                                Sha256: fa8a6f284a1cabd4e57be38602f0833a67460e4abd9eb087b85d9e0c57bd0032

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/css/main.css HTTP/1.1 

                                        
                                            
Host: supanimegames.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         188.114.96.1

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
date: Wed, 30 Nov 2022 22:59:48 GMT 

                                        
                                            
last-modified: Mon, 07 Sep 2020 15:55:03 GMT 

                                        
                                            
etag: W/"5f5657d7-99f" 

                                        
                                            
cache-control: max-age=14400 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 6380 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OV%2FfmjCPvLEPJ8DPR7YypDT6mXKHkHq%2FLxJixyoAE8qjuGR4xPI6%2FFVgqw5OxajNiv9Zo8HovLDKyu1Umw6LYrWOhw%2FeeRzmQ6YNfAvUXpqyvUaoIq6ev9U8DLIIHhfTYsSiaQ%3D%3D"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 772732153aedb4fa-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   1127

                                                Md5:    d12d8b20569bfc85a5aa5471f053f0a7

                                                Sha1:   98789acc322259c4fd748321f1087b6ac69d235e

                                                Sha256: 169e51994d1ff90a75d8d0fb2af5363c3703820029ba622b52f097f7f69128b1

                                        
                                            GET /px1.js HTTP/1.1 

                                        
                                            
Host: ln.gamesrevenue.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         5.161.79.44

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
last-modified: Fri, 21 Oct 2022 09:01:18 GMT 

                                        
                                            
etag: W/"63525fde-3a8c" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (14987)

                                                Size:   3811

                                                Md5:    70752d55d09eae9f76786657ba1e386e

                                                Sha1:   5c35b04c85d1d2ef12635ca15eb1773d8bffb98f

                                                Sha256: 2cfef91eaadd460195724cb64805fb103073b2467d291b8f1b5aa2bed18587f0

                                        
                                            GET /tag.php?goal=d463e4eafcfd7a2c779b390efdb813cf HTTP/1.1 

                                        
                                            
Host: main.realsrv.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         95.211.229.247

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=UTF-8

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Set-Cookie: goals=a%3A1%3A%7Bi%3A52911%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-30%22%3B%7D%7D; expires=Thu, 30 Nov 2023 22:59:49 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none 

                                        
                                            
X-Robots-Tag: noindex, follow 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   20

                                                Md5:    a4745abc5e7fdb89cc6df3069f3c6e69

                                                Sha1:   74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed

                                                Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

                                        
                                            GET /index.min.js?pk=42c6f09dc9e74035608496705631ef5d HTTP/1.1 

                                        
                                            
Host: twistconcept.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         104.21.86.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
last-modified: Thu, 07 Apr 2022 08:49:08 GMT 

                                        
                                            
etag: W/"624ea584-28c" 

                                        
                                            
cache-control: max-age=14400 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 312 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4yoVBFqlF9A7JCzLF8izMwUK6pICjbdBmftcDZYGlIiY3ZBKBZE%2B%2BuT2mFUZX5Q2zlBH6Z2BHDwqbjCXZjF%2FX87iHGMAVSzhOS3XyPGMy%2Fw%2F0Tya%2BIFLE4pEdBqFTzXM34s"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 772732185c5b0af6-OSL 

                                        
                                            
content-encoding: br 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (651)

                                                Size:   377

                                                Md5:    1bbd15594e64bd1a1e03ccdb99f28d3c

                                                Sha1:   a779fb5853cf4e2923086aa5f3a47a614a76b453

                                                Sha256: 32858f596974eee59048d2b0a177e95bbe00e274bdda4c9fe490bf19acec62fb

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         143.204.42.165

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=139702 

                                        
                                            
Date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
Etag: "63875b15-1d7" 

                                        
                                            
Expires: Fri, 02 Dec 2022 13:48:11 GMT 

                                        
                                            
Last-Modified: Wed, 30 Nov 2022 13:31:01 GMT 

                                        
                                            
Server: ECS (nyb/1D2D) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: Wab6ydTOqSH9GhyJSfcEmhtDdISjiSJ8cZHd48v9gOgou8Zm5kdkNQ== 

                                        
                                            
Age: 1030 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    819f953b0edd066d30cf5847c5564d3c

                                                Sha1:   12f3ea06c2a617db03caa556e37c1cb106d44f93

                                                Sha256: 9794d926ccf993a8cd760c76077cf94f5b270633aff450e45934a5c8fd52d62d

                                        
                                            GET /px.gif?akey=42c6f09dc9e74035608496705631ef5d HTTP/1.1 

                                        
                                            
Host: simplewebanalysis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         52.28.211.11

                                        
                                            HTTP/2 307 Temporary Redirect 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: https://professionalswebcheck.com/dbs?uuid=de5e2933-e809-48f1-a7b3-5687d217fcce&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoxLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODQ5MTg5fSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg0OTE4OX19.V0Mamuw3zToNOMBz-6C0PMhIFkxG6fOWVDtvKe3UK7A 

                                        
                                            
server: nginx/1.17.6 

                                        
                                            
set-cookie: uid_id2=de5e2933-e809-48f1-a7b3-5687d217fcce:1:1; expires=Sat, 27 Nov 2032 22:59:49 GMT; secure; SameSite=None
ak=37,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None
acl=20,1,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None 

                                        
                                            
expires: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
cache-control: max-age=0, : no-cache 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://supanimegames.com 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         87.250.251.119

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json; charset=utf-8

                                        

                                        
                                            
content-length: 400 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
access-control-allow-origin: https://supanimegames.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
pragma: no-cache 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
expires: Wed, 30-Nov-2022 22:59:49 GMT 

                                        
                                            
last-modified: Wed, 30-Nov-2022 22:59:49 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (400), with no line terminators

                                                Size:   400

                                                Md5:    701040e35d76c6d515759bb3c48a8172

                                                Sha1:   c88227931b0b4b9771f3b193f8cc1fc37287ccbe

                                                Sha256: 767ddf0669daea88b4b364b725fa24c2fdaba84d21831738611b62bfe134acd4

                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=632782213&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849191%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225950%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849191&t=gdpr(14)ti(2) HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain 

                                        
                                            
Content-Length: 5539 

                                        
                                            
Origin: https://supanimegames.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         87.250.251.119

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
content-length: 43 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:52 GMT 

                                        
                                            
access-control-allow-origin: https://supanimegames.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
pragma: no-cache 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
expires: Wed, 30-Nov-2022 22:59:52 GMT 

                                        
                                            
last-modified: Wed, 30-Nov-2022 22:59:52 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    df3e567d6f16d040326c7a0ea29a4f41

                                                Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736

                                                Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=2&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=131876122&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849193%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225952%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849193&t=gdpr(14)ti(2) HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain 

                                        
                                            
Content-Length: 556 

                                        
                                            
Origin: https://supanimegames.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         87.250.251.119

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
content-length: 43 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:54 GMT 

                                        
                                            
access-control-allow-origin: https://supanimegames.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
pragma: no-cache 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
expires: Wed, 30-Nov-2022 22:59:54 GMT 

                                        
                                            
last-modified: Wed, 30-Nov-2022 22:59:54 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    df3e567d6f16d040326c7a0ea29a4f41

                                                Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736

                                                Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

                                        
                                            POST /webvisor/57021556?wv-check=59734&wv-type=0&wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=378514876&browser-info=gdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain 

                                        
                                            
Content-Length: 44 

                                        
                                            
Origin: https://supanimegames.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         87.250.251.119

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
content-length: 43 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:55 GMT 

                                        
                                            
access-control-allow-origin: https://supanimegames.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
pragma: no-cache 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
expires: Wed, 30-Nov-2022 22:59:55 GMT 

                                        
                                            
last-modified: Wed, 30-Nov-2022 22:59:55 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    df3e567d6f16d040326c7a0ea29a4f41

                                                Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736

                                                Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=3&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=111929974&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain 

                                        
                                            
Content-Length: 432 

                                        
                                            
Origin: https://supanimegames.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         87.250.251.119

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
content-length: 43 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:55 GMT 

                                        
                                            
access-control-allow-origin: https://supanimegames.com 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
pragma: no-cache 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
expires: Wed, 30-Nov-2022 22:59:55 GMT 

                                        
                                            
last-modified: Wed, 30-Nov-2022 22:59:55 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    df3e567d6f16d040326c7a0ea29a4f41

                                                Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736

                                                Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

                                        
                                            GET /watch/57021556?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://supanimegames.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://supanimegames.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         87.250.251.119

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
location: /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 

                                        
                                            
date: Wed, 30 Nov 2022 22:59:49 GMT 

                                        
                                            
access-control-allow-origin: https://supanimegames.com 

                                        
                                            
set-cookie: yandexuid=9456973721669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9456973721669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1101118231669849189; Path=/; SameSite=None; Secure
i=+lIXAh1WzRi7XyzCpuCMdEfLcSKPxE9aDLqZxTqQ/KVMrIswBIKwcnFJDWzM0FJM8QV5gPnXGsAhpUytjzgaq1tGFGk=; Expires=Sat, 27-Nov-2032 22:59:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701385189.yc.1669849189#1701385189.yrts.1669849189#1701385189.yrtsi.1669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
pragma: no-cache 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
expires: Wed, 30-Nov-2022 22:59:49 GMT 

                                        
                                            
last-modified: Wed, 30-Nov-2022 22:59:49 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	trerw484a3.uv.wy5532.com/
IP	199.115.116.216 (United States)
ASN	#30633 LEASEWEB-USA-WDC
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-30 22:59:57 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (20)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.115.116.216

Last 5 reports on ASN: LEASEWEB-USA-WDC

Last 5 reports on domain: wy5532.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (10)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (59)

Overview

Domain Summary (20)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.115.116.216

Last 5 reports on ASN: LEASEWEB-USA-WDC

Last 5 reports on domain: wy5532.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (10)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (59)

Network Intrusion Detection Systems