Overview

URLtrerw484a3.uv.wy5532.com/
IP 199.115.116.216 (United States)
ASN#30633 LEASEWEB-USA-WDC
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-30 22:59:57 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (20)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.70.239.215
gracelessbrief.com (2) 0 2022-11-28 11:12:50 UTC 2022-11-28 11:50:43 UTC 192.243.61.227 Unknown ranking
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
supanimegames.com (10) 0 2022-01-10 09:10:44 UTC 2022-11-30 06:48:30 UTC 188.114.96.1 Unknown ranking
professionalswebcheck.com (1) 0 2022-04-01 22:47:29 UTC 2022-11-30 02:37:21 UTC 52.28.211.11 Unknown ranking
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
ln.gamesrevenue.com (1) 117740 2017-01-29 20:27:07 UTC 2022-11-30 01:41:00 UTC 5.161.79.44
twistconcept.com (1) 0 2020-08-23 14:56:06 UTC 2022-11-30 02:37:21 UTC 104.21.86.46 Unknown ranking
ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mc.yandex.ru (10) 2672 2012-05-21 09:38:30 UTC 2022-11-30 04:08:52 UTC 87.250.251.119
simplewebanalysis.com (1) 0 2022-02-25 04:06:25 UTC 2022-11-29 17:11:48 UTC 52.28.211.11 Unknown ranking
trerw484a3.uv.wy5532.com (3) 0 No data No data 199.115.116.216 Unknown ranking
r3.o.lencr.org (8) 344 No data No data 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 04:06:17 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 04:06:04 UTC 34.117.237.239
click-v4.expmdiadi.com (1) 0 No data No data 198.134.116.17 Unknown ranking
e1.o.lencr.org (2) 6159 No data No data 23.36.76.226
main.realsrv.com (1) 91110 No data No data 95.211.229.247
ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.21.226

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-30 2 trerw484a3.uv.wy5532.com/ Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.115.116.216
Date UQ / IDS / BL URL IP
2023-01-29 16:43:43 +0000 0 - 0 - 5 10xprenuers.com/google.com/google.com/am9lLmF (...) 199.115.116.216
2023-01-29 06:25:04 +0000 0 - 0 - 5 rocket-league.pro/ 199.115.116.216
2023-01-29 05:30:31 +0000 0 - 0 - 1 wgqenouh.google.wy5532.com/ 199.115.116.216
2023-01-21 10:58:01 +0000 0 - 0 - 1 qhmvd.ii.wy5532.com/ 199.115.116.216
2023-01-19 13:38:43 +0000 0 - 1 - 3 qwqwq.6ea25.hj.wy5532.com/ 199.115.116.216


Last 5 reports on ASN: LEASEWEB-USA-WDC
Date UQ / IDS / BL URL IP
2023-01-30 18:10:07 +0000 0 - 2 - 5 greenlightsa.top/ 199.115.116.43
2023-01-30 17:48:59 +0000 0 - 3 - 0 greenwichpizzeria.com/ 64.131.64.86
2023-01-30 17:43:54 +0000 0 - 2 - 6 re85bab.nh.wy5532.com/ 162.210.196.168
2023-01-30 17:40:18 +0000 0 - 0 - 5 o2rjrw.cxcjghh.cn/ 199.115.116.43
2023-01-30 16:46:00 +0000 0 - 4 - 5 viptips4youlife.world/us/kamm/viaketogummies- (...) 108.62.118.31


Last 5 reports on domain: wy5532.com
Date UQ / IDS / BL URL IP
2023-01-30 17:57:06 +0000 0 - 2 - 6 849e0.qq.wy5532.com/ 185.107.56.200
2023-01-30 17:43:54 +0000 0 - 2 - 6 re85bab.nh.wy5532.com/ 162.210.196.168
2023-01-30 16:38:43 +0000 0 - 2 - 6 rrvyqsq.uu.wy5532.com/ 37.48.65.152
2023-01-30 13:52:04 +0000 0 - 0 - 1 wxsxc.601ae.vh.wy5532.com/ 37.48.65.150
2023-01-30 13:40:55 +0000 0 - 0 - 2 tgrrre.31a76.bw.wy5532.com/ 162.210.196.168


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-15 21:33:34 +0000 0 - 0 - 6 www.emurom.net/es/emulacion/nintendo-roms/det (...) 51.15.62.143
2023-01-15 20:52:02 +0000 0 - 0 - 15 kyliehill7.blogspot.com/2022/09/sekaran-and-b (...) 142.250.74.161
2023-01-07 06:23:40 +0000 0 - 0 - 1 supanimegames.com/common/tr/ce/land_ce_300520 (...) 104.21.31.221
2022-12-09 04:48:54 +0000 0 - 0 - 25 elaina.bloggplatsen.seelaina.bloggplatsen.se/ 188.126.64.122
2022-12-03 18:51:04 +0000 0 - 0 - 3 2tty.584ce.wh.wy5532.com/ 37.48.65.152

JavaScript

Executed Scripts (10)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (59)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: trerw484a3.uv.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa
Upgrade-Insecure-Requests: 1

search
                                         199.115.116.216
HTTP/1.1 200 OK
content-type: text/html; charset=utf-8
                                        
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 485
date: Wed, 30 Nov 2022 22:59:45 GMT
server: nginx


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (485), with no line terminators
Size:   485
Md5:    b3a051bb7de45280bf0d923674e2e87f
Sha1:   bf8b1544d7ad4559f1de59c7ddc1e8f83cc15a90
Sha256: dcda1474c1bb941c4968edac73ae25e63b3474760093e65c0514cafd5ee329c7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3590
Expires: Wed, 30 Nov 2022 23:59:35 GMT
Date: Wed, 30 Nov 2022 22:59:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1083
Cache-Control: max-age=128976
Date: Wed, 30 Nov 2022 22:59:46 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:49:22 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11005
Expires: Thu, 01 Dec 2022 02:03:11 GMT
Date: Wed, 30 Nov 2022 22:59:46 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 22:18:04 GMT
cache-control: public,max-age=3600
age: 2502
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ylE2KAYF6kkDcFONSShPIMiGAlr+jli63I0fqj4pRJmCzJRWAnSDCcyzUEJa/HGR0jpCyVdVOZs=
x-amz-request-id: KHS0KYK41008RVSF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 22:45:24 GMT
age: 862
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 30 Nov 2022 22:59:46 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: trerw484a3.uv.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trerw484a3.uv.wy5532.com/
Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa

search
                                         199.115.116.216
HTTP/1.1 404 Not Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Wed, 30 Nov 2022 22:59:45 GMT
server: nginx


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    d8f4a1993546cc4b850cde3599e27aec
Sha1:   094b763b4cfcc0b05e5d040581cd513c3ca08067
Sha256: 907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 22:08:56 GMT
cache-control: public,max-age=3600
age: 3050
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1065
Cache-Control: max-age=123890
Date: Wed, 30 Nov 2022 22:59:46 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:24:36 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTg1NjM4NSwiaWF0IjoxNjY5ODQ5MTg1LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc203dHY2MWJvbnY5aGttYWswdmFsbzEiLCJuYmYiOjE2Njk4NDkxODUsInRzIjoxNjY5ODQ5MTg1ODg4NTU0fQ.GWxhp91F1TV-ZJtGeKiEWitGzMJ8NttP7iqkP1sG1vc&sid=222047b6-70fb-11ed-a60b-da86fb0353fa HTTP/1.1 
Host: trerw484a3.uv.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trerw484a3.uv.wy5532.com/
Cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa
Upgrade-Insecure-Requests: 1

search
                                         199.115.116.216
HTTP/1.1 302 Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Wed, 30 Nov 2022 22:59:46 GMT
location: http://click-v4.expmdiadi.com/click?i=GeB8FNiYeWY_0
server: nginx
set-cookie: sid=222047b6-70fb-11ed-a60b-da86fb0353fa; path=/; domain=.wy5532.com; expires=Tue, 19 Dec 2090 02:13:53 GMT; max-age=2147483647; HttpOnly


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   11
Md5:    32682312d17c7cbf18e73594f5570319
Sha1:   60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
Sha256: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6v/QsN9omZD6AqZQbdgIfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.70.239.215
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dxTZTXKGyNR5oWDoXOCXLDKrnyQ=

                                        
                                            GET /click?i=GeB8FNiYeWY_0 HTTP/1.1 
Host: click-v4.expmdiadi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://trerw484a3.uv.wy5532.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         198.134.116.17
HTTP/1.1 302 Found
                                        
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://gracelessbrief.com/kqtx51t47j?key=9b87ef7b084290d03770b51b1c670488&psid=wy5532.com
Pragma: no-cache

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "445684A354FCEC7174DB0C5359EB97AD0D700F9D375BBD817A831C70CE02F04A"
Last-Modified: Tue, 29 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9588
Expires: Thu, 01 Dec 2022 01:39:35 GMT
Date: Wed, 30 Nov 2022 22:59:47 GMT
Connection: keep-alive

                                        
                                            GET /kqtx51t47j?key=9b87ef7b084290d03770b51b1c670488&psid=wy5532.com HTTP/1.1 
Host: gracelessbrief.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://trerw484a3.uv.wy5532.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Wed, 30 Nov 2022 22:59:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=17713889; expires=Thu, 01 Dec 2022 22:59:48 GMT ain=eyJhbGciOiJIUzI1NiJ9.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.x2MPW4-_eKkEdc5zBhfyy6lfjYofe2z8FGdMrIAihCE; expires=Wed, 30 Nov 2022 23:00:48 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3925dc6a56b5c1f4fa5274327d1413af
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (319)
Size:   2416
Md5:    0f312f3880f3b0b58cb162de36d5b156
Sha1:   750c6ec495cda65666476739c4fb7932a28fb9d3
Sha256: 2f76a83fbdb8c7ab744a7366ecee0705a30357bef41e2e6037742467ce2e9a95
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3444
Expires: Wed, 30 Nov 2022 23:57:12 GMT
Date: Wed, 30 Nov 2022 22:59:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3444
Expires: Wed, 30 Nov 2022 23:57:12 GMT
Date: Wed, 30 Nov 2022 22:59:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3444
Expires: Wed, 30 Nov 2022 23:57:12 GMT
Date: Wed, 30 Nov 2022 22:59:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3444
Expires: Wed, 30 Nov 2022 23:57:12 GMT
Date: Wed, 30 Nov 2022 22:59:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3444
Expires: Wed, 30 Nov 2022 23:57:12 GMT
Date: Wed, 30 Nov 2022 22:59:48 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12655
x-amzn-requestid: db51cc10-5e13-4d63-a15b-a1c62b159f7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzNfFvloAMFgqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbef-67ec32d74521865c7f800ac6;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mctLVf0ho2G4skGRA0gpSH5HVoAUeH7YOyY1QA4_abODLKqRIX0eTg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:09:11 GMT
etag: "06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac"
age: 3037
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12655
Md5:    1039182464db1365a476dd88029b97d8
Sha1:   06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac
Sha256: 2e081da1464a18d755a841558f63303634a9e22df888c9c43246565abfc3d48d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13411
x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz6vH05oAMF_qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
age: 4068
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13411
Md5:    328ce221bcf3442f88d09373193ff594
Sha1:   63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
Sha256: 21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4199
x-amzn-requestid: 61981ad5-3560-43e1-a1cd-37f823e89675
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQxoEz5IAMFzQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c80a-291574e42bee51b2523b3920;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fL5AwXN4Kitj3BB3DyYyYfFYk3GRgLvhNNTiQKrDcxPR6mkfzyUuzQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:05:04 GMT
age: 12898
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4199
Md5:    4fd5f7a9e04d27654062b3e18b8aecca
Sha1:   07fafbd614cdb49f20bceea29d5e684725d3bdf6
Sha256: 0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3751
x-amzn-requestid: 80396218-5515-4f77-9d57-95b323e1f1c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzNHHGGoAMF8mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbed-09f83d1a5b7f65175fb137ab;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _mQdH9J5CaTiYNIQf5xVn-HGUP5tKhW_1foVDdpsVIoG_NKb9wZOJg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:45 GMT
age: 4203
etag: "bfb37735a2500848338a8fa12f28516a1ad9b5ba"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3751
Md5:    609419f1a2c58ae67febde5e2cb91c9f
Sha1:   bfb37735a2500848338a8fa12f28516a1ad9b5ba
Sha256: 32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 4338
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12898
Md5:    820cf89fcab8380adff42982c9fb11ed
Sha1:   84241ddddbbfd7de30118307fb1a62800d0a4cb3
Sha256: 0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q9y5-OF59ODaZRd9YFFdM2rIH0bYYyIT40rCwr8cBwBQd0GOqtNobg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:08:51 GMT
age: 3057
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10437
Md5:    291127b670135b42b6e9687aa2a13237
Sha1:   99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
Sha256: 49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
                                        
                                            GET /kqtx51t47j?pst=1669849248&rmtc=t&uuid=&pii=&in=false&refer=http%3A%2F%2Ftrerw484a3.uv.wy5532.com%2F&key=9b87ef7b084290d03770b51b1c670488&shu=02477f8ae3a40c461268b9401ac1858208e7924e8e38c4124b0790f240e519b3aa4b57e698355132d9835acc720c2ee1c22bb59e9fcd5aeae0117439744d9de18d0a4d14fbcee298a000aa8bbaea57756fb7d7&fr=0&sw2=1280&sh2=939&sw3=1280&sh3=176&sw4=1280&sh4=939&sw5=1280&sh5=1024&sw6=1280&sh6=1024&sw7=1280&sh7=1002 HTTP/1.1 
Host: gracelessbrief.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gracelessbrief.com/kqtx51t47j?key=9ca601a9f47c735df76d5ca46fa26a66&submetric=17713889
Cookie: u_pl=17713889; ain=eyJhbGciOiJIUzI1NiJ9.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.x2MPW4-_eKkEdc5zBhfyy6lfjYofe2z8FGdMrIAihCE; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         192.243.61.227
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Wed, 30 Nov 2022 22:59:48 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Set-Cookie: iprc1e63d212e477b2c4f372e325294c512a=2270707; expires=Thu, 01 Dec 2022 22:59:48 GMT pdhtkv=true; expires=Thu, 01 Dec 2022 22:59:48 GMT uncs=1; expires=Thu, 01 Dec 2022 22:59:48 GMT pdhtkv28=true; expires=Thu, 01 Dec 2022 22:59:48 GMT uncs28=1; expires=Thu, 01 Dec 2022 22:59:48 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ada454a3f8e21ac54f24d663532cf10f
Strict-Transport-Security: max-age=0; includeSubdomains

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4438
Cache-Control: 'max-age=158059'
Date: Wed, 30 Nov 2022 22:59:48 GMT
Last-Modified: Wed, 30 Nov 2022 21:45:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4438
Cache-Control: 'max-age=158059'
Date: Wed, 30 Nov 2022 22:59:48 GMT
Last-Modified: Wed, 30 Nov 2022 21:45:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/notice.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
content-length: 23707
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-5c9b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6229
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JlO43WK4SIo1VNj6UEGpdd%2FKXEf2KHi5Ties%2FQGDyKDYP23gha7DzPEt%2B%2ByFALFtTHdlLOxF0ToPxF7sqIMaNEaOezDKmvCjr%2FQxK1SNwKYVCJzt2evvr6aTWCR42PtYjHobuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732154af5b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 115, 8-bit colormap, non-interlaced\012- data
Size:   23707
Md5:    3cf58bc7ec31b37ba73eeed2e20922dd
Sha1:   ef0020a4afa74f34bf7496d8ab04171b69e19f26
Sha256: 9f791fa05194d8417e6d68995973bb43babe3b0704cb4c7011dbb63c69eec028
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/logo.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
content-length: 4794
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-12ba"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6229
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tZfOCJpeDMpYyEJ%2BHfUupzPJlMyL10Ud4uUkklNvzkODCtv6hzkb%2F95ydxNQeuEHfxyxC3yK96eRkx5ryasdogR5VQ4ES83oHenocpaxuUfyBWIdKgMMkmG8I8hFYCxcl9%2F6HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732154af6b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 291 x 93, 8-bit colormap, non-interlaced\012- data
Size:   4794
Md5:    d2ce778778e09563ac9eb50b06b2d6fb
Sha1:   79ee65334aa4e0f3d8fe45fa29dba31e4f9d979e
Sha256: 0f56b6c137e245f0b3d6af93e8f3ae48c15ff33e29e36df20530f40abeee8ee3
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/n1.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
content-length: 3979
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-f8b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5043
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WujCOzYlZ0jSmFzWAIMwZ5iISHCVcG8%2FdqZgvJiXSPmXPime249nTkGZnP7mNf4AfcN%2FlC3PjLrui8cxM4ShS5Ug78HsGGWUyf6831GGWcsZS1Bq%2BPzTSNDD8lZnRXYXTr55%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732154afab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data
Size:   3979
Md5:    6620042f764faeabe7cc1cfb38ff601c
Sha1:   877812b21435579792db6aac1b56fde6cda905a2
Sha256: 2e0719b37a163591cfd41f5d16af5881c10363db67a3a3c69d4aa6d0e4d07fac
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card2.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
content-length: 73161
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-11dc9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6229
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aYnxvYh91WtNOlfbihYQKaOjfuAXQ8STmAoQOUTOEBDKKsmfW%2BLYPx%2FycdoraDVscX2DrDvptUX246LQNfTYr691fxdV3wgELHhlsE0TmKUZoV47ovVHCaFYVLUfupQ3EZvpgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732154afcb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data
Size:   73161
Md5:    c35c1130835c4890905a1545b31cbd81
Sha1:   3ea153adfc6a29a18e6b9b81a44be24eefb888fc
Sha256: 08762ec4d73be8c26aba0c720410abcf204514f2d96a78956f008087a0481894
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/n2.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
content-length: 3126
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-c36"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5044
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x1UlCpCqOc6UixfyYdm84cjO7bhr9HMSYLvn0LjsQAfe8JYvhkpBN5shhh5EWMHIK4evgMDVpaPzY0YaQQAgFDS2ka%2Bjn1oozXD9i2E9KEszieIaPxQw2jJ%2FesX6%2B7qwFklfpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732154affb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 321 x 70, 8-bit colormap, non-interlaced\012- data
Size:   3126
Md5:    cf90c3ff9f0490f4d07c3b4f6d2f2a28
Sha1:   e1b55d2deeb10a2660c776b6ae65b0623f96c7a5
Sha256: fe7ceed78142de7e4b88367e1e2eeb9d499a804f133b2800270a246b252abe0f
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/image/card1.png HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
content-length: 75556
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: "5f5657d7-12724"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5044
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GNSRsfV1WIiuFybKZsiB4UyKXRgV1RHF5WW4QfVlgkw760%2FWQBC22zCZBDkPnT5I5JbOvhnEZzJ1%2BqauQ6jdwT0HxaKCRlEpQSCDWAtepm2kCVE90FoJm%2FW8SXVwB%2F3LvUZLuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732154af8b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 354 x 607, 8-bit colormap, non-interlaced\012- data
Size:   75556
Md5:    e35b87a58183c9d6050dd668f192bbf7
Sha1:   1c8ae327fd1fde27dc19400b653d1e23f9dbf73e
Sha256: fa8a6f284a1cabd4e57be38602f0833a67460e4abd9eb087b85d9e0c57bd0032
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889 HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gracelessbrief.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qOsZ6RAmJbsSzK7kluSif63OYqG9MxBpbX%2BL2giyH0%2FFIR9ukYydHVzpYz4h%2BzY1JE%2B0KAskgLwkWOx9UuSA%2BI77RQanqNzZ4gkK%2FTfKp7gJQ3yj3EaArQKteJzgURgxN2CJ2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77273213e9c8b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (560)
Size:   76757
Md5:    3d6405c7348d4de7698471fe0ce24439
Sha1:   bce25d14a868d04cd83b1ac046f57dd7603d16ce
Sha256: 44f99665df7ed8694366f5324da046d66b8dcb4b590a8fa4ae08ec5f08b62c68
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/css/main.css HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
last-modified: Mon, 07 Sep 2020 15:55:03 GMT
etag: W/"5f5657d7-99f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6380
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OV%2FfmjCPvLEPJ8DPR7YypDT6mXKHkHq%2FLxJixyoAE8qjuGR4xPI6%2FFVgqw5OxajNiv9Zo8HovLDKyu1Umw6LYrWOhw%2FeeRzmQ6YNfAvUXpqyvUaoIq6ev9U8DLIIHhfTYsSiaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732153aedb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1127
Md5:    d12d8b20569bfc85a5aa5471f053f0a7
Sha1:   98789acc322259c4fd748321f1087b6ac69d235e
Sha256: 169e51994d1ff90a75d8d0fb2af5363c3703820029ba622b52f097f7f69128b1
                                        
                                            GET /awpx_click.js?v=005 HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
last-modified: Mon, 22 Aug 2022 12:36:02 GMT
etag: W/"63037832-5cb"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2007
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lGK3cDyD5JiQRjLKi9XTNwLYrwQL%2FG7wNwLCu9hAovqEN%2BCfRo5jjc%2FXgF3REhYjaGJd1Ws2%2F907dn6TN9jLAgHhDRRBxUQONsD3WSjRHAUzHKQDKoZ77RxefSr3tg3ALXLtoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732153af4b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   246375
Md5:    6ea1c99c23c9cfc8cabea5dced3d2251
Sha1:   f66f1047ebe2bbf6913055eb83eab0308ceb6fc6
Sha256: e196bae4cdb278e0ceba30b39c09b96f1dce1a7d30ed834574bc7b98bdccc9e8
                                        
                                            GET /px1.js HTTP/1.1 
Host: ln.gamesrevenue.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         5.161.79.44
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 30 Nov 2022 22:59:49 GMT
last-modified: Fri, 21 Oct 2022 09:01:18 GMT
etag: W/"63525fde-3a8c"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14987)
Size:   3811
Md5:    70752d55d09eae9f76786657ba1e386e
Sha1:   5c35b04c85d1d2ef12635ca15eb1773d8bffb98f
Sha256: 2cfef91eaadd460195724cb64805fb103073b2467d291b8f1b5aa2bed18587f0
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "756D765872E838BD1744767939FD1871D15FEACFBC5C2E53331191F16677D439"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2999
Expires: Wed, 30 Nov 2022 23:49:48 GMT
Date: Wed, 30 Nov 2022 22:59:49 GMT
Connection: keep-alive

                                        
                                            GET /tag.php?goal=d463e4eafcfd7a2c779b390efdb813cf HTTP/1.1 
Host: main.realsrv.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 30 Nov 2022 22:59:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A52911%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-30%22%3B%7D%7D; expires=Thu, 30 Nov 2023 22:59:49 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "756D765872E838BD1744767939FD1871D15FEACFBC5C2E53331191F16677D439"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2999
Expires: Wed, 30 Nov 2022 23:49:48 GMT
Date: Wed, 30 Nov 2022 22:59:49 GMT
Connection: keep-alive

                                        
                                            GET /index.min.js?pk=42c6f09dc9e74035608496705631ef5d HTTP/1.1 
Host: twistconcept.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.86.46
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 30 Nov 2022 22:59:49 GMT
last-modified: Thu, 07 Apr 2022 08:49:08 GMT
etag: W/"624ea584-28c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4yoVBFqlF9A7JCzLF8izMwUK6pICjbdBmftcDZYGlIiY3ZBKBZE%2B%2BuT2mFUZX5Q2zlBH6Z2BHDwqbjCXZjF%2FX87iHGMAVSzhOS3XyPGMy%2Fw%2F0Tya%2BIFLE4pEdBqFTzXM34s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732185c5b0af6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (651)
Size:   377
Md5:    1bbd15594e64bd1a1e03ccdb99f28d3c
Sha1:   a779fb5853cf4e2923086aa5f3a47a614a76b453
Sha256: 32858f596974eee59048d2b0a177e95bbe00e274bdda4c9fe490bf19acec62fb
                                        
                                            POST /gseccovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 22:59:49 GMT
Content-Length: 938
Connection: keep-alive
Expires: Sun, 04 Dec 2022 21:10:20 GMT
ETag: "005b2a3cec76522713c8096cc929c08fdec745ad"
Last-Modified: Wed, 30 Nov 2022 21:10:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2995
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727321939651bfa-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139702
Date: Wed, 30 Nov 2022 22:59:49 GMT
Etag: "63875b15-1d7"
Expires: Fri, 02 Dec 2022 13:48:11 GMT
Last-Modified: Wed, 30 Nov 2022 13:31:01 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Wab6ydTOqSH9GhyJSfcEmhtDdISjiSJ8cZHd48v9gOgou8Zm5kdkNQ==
Age: 1030

                                        
                                            GET /metrika/tag.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 73267
date: Wed, 30 Nov 2022 22:59:49 GMT
access-control-allow-origin: *
etag: "63875d46-11e33"
expires: Wed, 30 Nov 2022 23:59:49 GMT
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Size:   73267
Md5:    1d79426653c3b55939eaec59a2ce8ef5
Sha1:   c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
Sha256: 2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
                                        
                                            GET /px.gif?akey=42c6f09dc9e74035608496705631ef5d HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         52.28.211.11
HTTP/2 307 Temporary Redirect
content-type: image/gif
                                        
date: Wed, 30 Nov 2022 22:59:49 GMT
content-length: 0
location: https://professionalswebcheck.com/dbs?uuid=de5e2933-e809-48f1-a7b3-5687d217fcce&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoxLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODQ5MTg5fSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg0OTE4OX19.V0Mamuw3zToNOMBz-6C0PMhIFkxG6fOWVDtvKe3UK7A
server: nginx/1.17.6
set-cookie: uid_id2=de5e2933-e809-48f1-a7b3-5687d217fcce:1:1; expires=Sat, 27 Nov 2032 22:59:49 GMT; secure; SameSite=None ak=37,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None acl=20,1,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None
expires: Wed, 30 Nov 2022 22:59:49 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2

                                        
                                            GET /metrika/advert.gif HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:49 GMT
access-control-allow-origin: *
etag: "63875d46-2b"
expires: Wed, 30 Nov 2022 23:59:49 GMT
accept-ranges: bytes
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supanimegames.com
Referer: https://supanimegames.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 400
date: Wed, 30 Nov 2022 22:59:49 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:49 GMT
last-modified: Wed, 30-Nov-2022 22:59:49 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Size:   400
Md5:    701040e35d76c6d515759bb3c48a8172
Sha1:   c88227931b0b4b9771f3b193f8cc1fc37287ccbe
Sha256: 767ddf0669daea88b4b364b725fa24c2fdaba84d21831738611b62bfe134acd4
                                        
                                            GET /dbs?uuid=de5e2933-e809-48f1-a7b3-5687d217fcce&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoxLCJhY3VzIjoxLCJhY2kiOnsgIjM3IjoxNjY5ODQ5MTg5fSwiYWNjbCI6eyAiMjAsMSI6MTY2OTg0OTE4OX19.V0Mamuw3zToNOMBz-6C0PMhIFkxG6fOWVDtvKe3UK7A HTTP/1.1 
Host: professionalswebcheck.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://supanimegames.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         52.28.211.11
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 30 Nov 2022 22:59:49 GMT
content-length: 7
server: nginx/1.17.6
set-cookie: uid_id2=de5e2933-e809-48f1-a7b3-5687d217fcce:1:1; expires=Sat, 27 Nov 2032 22:59:49 GMT; secure; SameSite=None ak=37,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None acl=20,1,1669849189; expires=Tue, 28 Feb 2023 22:59:49 GMT; secure; SameSite=None
expires: Wed, 30 Nov 2022 22:59:49 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   7
Md5:    132d6af1b46048b45cf86cdee7991d31
Sha1:   eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
Sha256: ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=632782213&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849191%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225950%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849191&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 5539
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:52 GMT
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:52 GMT
last-modified: Wed, 30-Nov-2022 22:59:52 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=512142459&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669849191%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225951%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849191&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:52 GMT
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:52 GMT
last-modified: Wed, 30-Nov-2022 22:59:52 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=2&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=131876122&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849193%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225952%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849193&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 556
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:54 GMT
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:54 GMT
last-modified: Wed, 30-Nov-2022 22:59:54 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 4075
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16038
Md5:    ffd12f9c423ffc627d9e3b3145944fe4
Sha1:   5cf9a7a784952e1bb0cbe499104f1774b1269d08
Sha256: a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
                                        
                                            POST /webvisor/57021556?wv-check=59734&wv-type=0&wmode=0&wv-part=1&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=378514876&browser-info=gdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:55 GMT
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:55 GMT
last-modified: Wed, 30-Nov-2022 22:59:55 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=2&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=795913007&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:55 GMT
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:55 GMT
last-modified: Wed, 30-Nov-2022 22:59:55 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /webvisor/57021556?wmode=0&wv-part=3&wv-hit=822500714&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&rn=111929974&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669849194%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130225954%3Au%3A1669849188958993477%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669849194&t=gdpr(14)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 432
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
date: Wed, 30 Nov 2022 22:59:55 GMT
access-control-allow-origin: https://supanimegames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:55 GMT
last-modified: Wed, 30-Nov-2022 22:59:55 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /common/tr/ce/land_ce_300520_na_en/libs/jq.js HTTP/1.1 
Host: supanimegames.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supanimegames.com/common/tr/ce/land_ce_300520_na_en/?p1=https://click.hooligapps.com&pid=3&offer_id=12&ref_id=VjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy&sub1=pu_remnant&sub2=17713889
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         188.114.96.1
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 30 Nov 2022 22:59:48 GMT
last-modified: Thu, 15 Jul 2021 12:31:47 GMT
etag: W/"60f02ab3-15851"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6380
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=udVmtT3a%2FcldOSo6IMKKC3iBkXXpgPOJkmt8d3V1vVQ9v7qZXbajgAavPpTAwDERF7W0whAsnwS1BcrO8BffPAidxoHRulm0kLFcqa91BM7AFrQ9jK1cqAaqTOXnRBsoMCi79g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772732153af0b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /watch/57021556?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supanimegames.com
Connection: keep-alive
Referer: https://supanimegames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.250.251.119
HTTP/2 302 Found
                                        
location: /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Fsupanimegames.com%2Fcommon%2Ftr%2Fce%2Fland_ce_300520_na_en%2F%3Fp1%3Dhttps%3A%2F%2Fclick.hooligapps.com%26pid%3D3%26offer_id%3D12%26ref_id%3DVjN8MTc3MTM4ODl8MjI3MDcwN3w5MDc1MzQ1N3wxNjY5ODQ5MTg4fDAwMDAwMDAwLTAwMDAtMDAwMC0wMDAwLTAwMDAwMDAwMDAwMHw5MS45MC40Mi4xNTR8MXxwc3ViPXd5NTUzMi5jb218c2g9MDI0NzdmOGFlM2E0MGM0NjEyNjhiOTQwMWFjMTg1ODIwOGU3OTI0ZThlMzhjNDEyNGIwNzkwZjI0MGU1MTliM2FhNGI1N2U2OTgzNTUxMzJkOTgzNWFjYzcyMGMyZWUxYzIyYmI1OWU5ZmNkNWFlYWUwMTE3NDM5NzQ0ZDlkZTE4ZDBhNGQxNGZiY2VlMjk4YTAwMGFhOGJiYWVhNTc3NTZmYjdkN3xscz0zfG90dj1hfDAzYmY4MmRhYWZmMTkxMDVhNzcxMTNiY2EwODhiMGEy%26sub1%3Dpu_remnant%26sub2%3D17713889&page-ref=https%3A%2F%2Fgracelessbrief.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A816%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A678583521280%3Ahid%3A822500714%3Az%3A0%3Ai%3A20221130225948%3Aet%3A1669849188%3Ac%3A1%3Arn%3A535098660%3Arqn%3A1%3Au%3A1669849188958993477%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C24%2C155%2C1%2C138%2C0%2C%2C450%2C2%2C%2C%2C%2C803%3Ans%3A1669849186985%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669849188%3At%3AEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 30 Nov 2022 22:59:49 GMT
access-control-allow-origin: https://supanimegames.com
set-cookie: yandexuid=9456973721669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yuidss=9456973721669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure yabs-sid=1101118231669849189; Path=/; SameSite=None; Secure i=+lIXAh1WzRi7XyzCpuCMdEfLcSKPxE9aDLqZxTqQ/KVMrIswBIKwcnFJDWzM0FJM8QV5gPnXGsAhpUytjzgaq1tGFGk=; Expires=Sat, 27-Nov-2032 22:59:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None ymex=1701385189.yc.1669849189#1701385189.yrts.1669849189#1701385189.yrtsi.1669849189; Expires=Thu, 30-Nov-2023 22:59:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 22:59:49 GMT
last-modified: Wed, 30-Nov-2022 22:59:49 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---