188.42.218.249/901d8f690b53b56f52d1fc2223318636
188.42.218.249200 OK 1.0 kB URL HTTP/1.1 188.42.218.249/901d8f690b53b56f52d1fc2223318636
IP 188.42.218.249:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a18b56ea3742cc35ae7592c97cc239de
11d543ef6eeef444cd0cf167a8cacee192c7177f
404d8e838ff90a87868d65f9708c31a42d1c2eeb4e0ba2aaf68f69e183e67f8f
Analyzer Verdict Alert fortinet Phishing
GET /901d8f690b53b56f52d1fc2223318636 HTTP/1.1
Host: 188.42.218.249
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: fasthttp
Date: Sat, 19 Nov 2022 17:43:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1049
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6ed951622549ed76959631f8a1bf497b
682b2dd2a72190510e3fa7bdb0c0c6f25a322dfb
86f5e5ae2da408a899d16c83b7ca441033ac0c30062cd29f2db1b1b5be666746
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86F5E5AE2DA408A899D16C83B7CA441033AC0C30062CD29F2DB1B1B5BE666746"
Last-Modified: Sat, 19 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2635
Expires: Sat, 19 Nov 2022 18:27:36 GMT
Date: Sat, 19 Nov 2022 17:43:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f732c50f6a2482aeea20552e0370c2d0
6f33119d5c38e92a0a62f3a46766ff86014e4d68
a47e38c199c5fecd5594544a3889e1cfca5547d85f19056f06eaeeadf17f4fe9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 981
Cache-Control: max-age=147832
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 17:43:42 GMT
Etag: "6378b071-1d7"
Expires: Mon, 21 Nov 2022 10:47:34 GMT
Last-Modified: Sat, 19 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7724a1f27dc1b5b2fb63c7e486f74db
ef0ea648ce8bc189d31382baec4b181c724af93b
2a46916079563d95fa6a695104ebf41829ee95a156d6e4d45b9aef7231a8a80e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A46916079563D95FA6A695104EBF41829EE95A156D6E4D45B9AEF7231A8A80E"
Last-Modified: Fri, 18 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2219
Expires: Sat, 19 Nov 2022 18:20:41 GMT
Date: Sat, 19 Nov 2022 17:43:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 19 Nov 2022 16:45:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3512
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ALfHOvxRfAIbimC55fo4dI3PsZGYXPDJ7mmgvQvgW38sBcrQFLlk5vi+rnQkQ58NCSCpqNrGjzQ=
x-amz-request-id: E1T5KV5W7XRNWVWJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 19 Nov 2022 17:16:07 GMT
age: 1655
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 17:43:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
188.42.218.249/favicon.ico
188.42.218.249404 Not Found 9 B URL HTTP/1.1 188.42.218.249/favicon.ico
IP 188.42.218.249:0
File type ASCII text, with no line terminators
Hash 9e076f5885f5cc16a4b5aeb8de4adff5
475c848673a3f79fa778f01c2bd5a721d4c41707
e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
GET /favicon.ico HTTP/1.1
Host: 188.42.218.249
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.42.218.249/901d8f690b53b56f52d1fc2223318636
HTTP/1.1 404 Not Found
Server: fasthttp
Date: Sat, 19 Nov 2022 17:43:41 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 9
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d7d944d8d477358d0876997d9de41d63
a50e6770a8406ab9c07e8dfa568548b241ef2f12
4c02e85cf3d81e50eb53db09f258dfa2f6e03e0ebd8492b2c3ab90c9bc6282fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 978
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 17:43:42 GMT
Etag: "63785ec3-117"
Last-Modified: Sat, 19 Nov 2022 17:27:24 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 19 Nov 2022 17:25:01 GMT
cache-control: public,max-age=3600
age: 1121
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 060d538b33e370fcd033339830d33a42
4a37d427988358eb318e18e2678c3484ef4a5ebd
efa33f92547243814b5bd3bca4f94d26055d590a4431611b3ba251a8d774bfbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4765
Cache-Control: max-age=146555
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 17:43:42 GMT
Etag: "63789cac-1d7"
Expires: Mon, 21 Nov 2022 10:26:17 GMT
Last-Modified: Sat, 19 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d7d944d8d477358d0876997d9de41d63
a50e6770a8406ab9c07e8dfa568548b241ef2f12
4c02e85cf3d81e50eb53db09f258dfa2f6e03e0ebd8492b2c3ab90c9bc6282fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 978
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 17:43:42 GMT
Last-Modified: Sat, 19 Nov 2022 17:27:24 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
52.43.58.150101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.58.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bjKNa+0e3oMsW0kf3RnKAg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LcUonxnoKlfW21kTmMr/DOHYTJ0=
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/notice.png
104.21.235.53200 OK 41 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/notice.png
IP 104.21.235.53:0
File type PNG image data, 846 x 344, 8-bit colormap, non-interlaced\012- data
Hash a363f371d7ccbfc88c3d35885106c120
2c145c995fadd34d02d58a3daddbffac9dcdd3bf
885cbcb649154d7b30a5383f9e436a7b49f2a28884ea2c6bd3a4ab323c14bfde
GET /ce/ce_1020/land_ce_121020_na_en/image/notice.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 40589
last-modified: Mon, 12 Oct 2020 15:06:21 GMT
etag: "5f8470ed-9e8d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4303
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OPWULDM4kSTaLlXbq2ychAK87XM6O%2BHOBmDTByLzto6%2Blp3Zd7gFfWzV%2FxbGPl4pjn%2Fztyausvn7BMW8dFCN730jkJ8JnDs%2Bf%2BnYDzW3dHUVKgftbrnsc3Jnemie9Lx4H7nJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02efd7755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/p1.png
104.21.235.53200 OK 17 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/p1.png
IP 104.21.235.53:0
File type PNG image data, 220 x 223, 8-bit colormap, non-interlaced\012- data
Hash 6c53c13c0cd9dbe619265f182cc1d470
72f2c069bc297e4d6499cc04036dffa23a1e8d52
2b62f392506ef4e906863d9d0e0cd1fe763f9465e9277a07b1fa904c48ea15bd
GET /ce/ce_1020/land_ce_121020_na_en/image/p1.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 17135
last-modified: Fri, 16 Oct 2020 16:57:12 GMT
etag: "5f89d0e8-42ef"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4303
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=njG1MPHVMftZ4MBIPXH%2FMkGchbXI47cT2hcagTtmaKfPqS3rCxeRsD98i2P2sCo%2Fhgdbdgvc8UwkWHJjhyGM2qqkfeaLu3ms6zPE4KYKJumoL51OLni0Ff%2FfzBqyy3b5Pz4z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02f067755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/btn1.png
104.21.235.53200 OK 19 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/btn1.png
IP 104.21.235.53:0
File type PNG image data, 887 x 279, 8-bit colormap, non-interlaced\012- data
Hash e8cb10b8d70a78eee113245f21c1752b
ef536a2f8ed56067ade1de169c5f5d50dedfb748
459d55deb53c22d0c077a81873342e09eab0e2a77ac5e8f8d27118de43474ab8
GET /ce/ce_1020/land_ce_121020_na_en/image/btn1.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 19257
last-modified: Mon, 12 Oct 2020 15:06:19 GMT
etag: "5f8470eb-4b39"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQXUyOuLaX95rXy94AwctFcO82s428dL9IOcNU7oW0VCZ1fA744MjBlizWa%2FmJ88Ks9VX%2BlCUqzKwXgm1bKXHiNqUUH%2BsO0zTit%2FUQhX4Rmn7IAdOHiXH%2B3YFJscygUNVb4M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02f037755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/btn2.png
104.21.235.53200 OK 20 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/btn2.png
IP 104.21.235.53:0
File type PNG image data, 887 x 279, 8-bit colormap, non-interlaced\012- data
Hash fc8d2d0c8b9de698ed627937f72e3dba
cced889ce51f92b8370979a622fe7ed4c1252f6a
96fd461bb8cb988bb9d6dc9aec8e6eedce8d3f02b53394bbef0f13687daab79b
GET /ce/ce_1020/land_ce_121020_na_en/image/btn2.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 20419
last-modified: Mon, 12 Oct 2020 15:06:19 GMT
etag: "5f8470eb-4fc3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4303
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zTy85yMWjitlRs9B9Ao%2Fl2Gg23THu%2Fz9JlrKQW6eOeTqRi0jD0a%2Fn8eSLRQ3Y5cGvVUJdoo20NAQPKOhnw9n5hQ9y0gK2Sg8gG6%2BvOBtDIg%2B9OJD3EP9cx77HNo%2FIiATZFdW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02f047755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/p2.png
104.21.235.53200 OK 16 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/p2.png
IP 104.21.235.53:0
File type PNG image data, 200 x 223, 8-bit colormap, non-interlaced\012- data
Hash 10908e73fa952c6734cdcc899c5eec96
5d1a43c752bfd320b4d18dac15d29838e1c93b35
147f1c7195ae8fe904316ae1fd75badbb42c9d400ca12357c6486b677615e73d
GET /ce/ce_1020/land_ce_121020_na_en/image/p2.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 15920
last-modified: Fri, 16 Oct 2020 16:57:13 GMT
etag: "5f89d0e9-3e30"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2613
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IbdfvRbtlnSCuO%2BBQ67ZmPp6XcSSDZa%2BK6LzghTjVeQ2juF8UqHNW%2Fy2fNUijSYdGUDcrtpp9Hz6Jd5DtjtGZM8dtxf1LxG1Ops98V6zQFNgjnfXrXSfzmkzFRlhsHGRvhbz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02f077755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/chain.png
104.21.235.53200 OK 18 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/chain.png
IP 104.21.235.53:0
File type PNG image data, 157 x 306, 8-bit colormap, non-interlaced\012- data
Hash 96b536dfc5315191d392484be8f989b0
f96f9e2c43ccec72d3fedd33e10485fc6e5d0d14
1def00c869315f2970e0d4d4affc8919bc245d2ba4a46324fa06c7cb50c676da
GET /ce/ce_1020/land_ce_121020_na_en/image/chain.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 18208
last-modified: Mon, 12 Oct 2020 15:06:20 GMT
etag: "5f8470ec-4720"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WltTIwhd3gzRnnKSZz6HCsVfygNoquTwkdpK%2BumAPczKnBpdZBc5Fm%2BxsmILsee7oHhyQNx%2BxbXw448Jgbfw1UI%2F8EoWu1XesIJCLvWK8pLc4bhhtcbWBpFBbntu8JvfRe%2B4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02eff7755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/p3.png
104.21.235.53200 OK 17 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/p3.png
IP 104.21.235.53:0
File type PNG image data, 220 x 223, 8-bit colormap, non-interlaced\012- data
Hash deda1e0f8ee365f5ec608359f6aa3993
9a73d38cd014c85d7383e5031c300b93681b06ed
915aade99795b115c367f0f52eaaf799825cd6eafb86ecdd121471beb84f0cd3
GET /ce/ce_1020/land_ce_121020_na_en/image/p3.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 17276
last-modified: Mon, 12 Oct 2020 15:06:22 GMT
etag: "5f8470ee-437c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FpmjOWyLNJApmfbRQLR%2FV8DsEk5Sp5B5WjlFVFHGIv436iqzkr34on0a0WOcF1Ll13eC9h%2ByR3LPW5wpkYQnKjXW6I04%2BsB%2FtYHKPXabpDPipJ07R1xXx3ZfS2dygDK1q4oR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02f0a7755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/g1.png
104.21.235.53200 OK 166 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/g1.png
IP 104.21.235.53:0
File type PNG image data, 717 x 987, 8-bit colormap, non-interlaced\012- data
Size 166 kB (166407 bytes)
Hash 6a1afe5eecb460a0381bc7ed53dd9e56
724eef6621fe6abd9fea88d82a3455207eed9f5e
cc11bb36a8814c7d23271db06884462dc1f8f0b8f8b5455a66a4ed95de703690
GET /ce/ce_1020/land_ce_121020_na_en/image/g1.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 166407
last-modified: Tue, 20 Oct 2020 12:03:01 GMT
etag: "5f8ed1f5-28a07"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pg%2FxFFJvKNZcQn9MFu8sxntxgadnfjRQIBwBs7KgIExKtl%2FahAf6I2Tk4KUjeA51xTcDi72bYI3fv4r7bXQKwHQj08yrYDEXR4T0uuyPa4Pfcun8ycJ4k955yJxzB8xo3ZU4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02f0c7755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/g3.png
104.21.235.53200 OK 199 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/g3.png
IP 104.21.235.53:0
File type PNG image data, 924 x 999, 8-bit colormap, non-interlaced\012- data
Size 199 kB (198974 bytes)
Hash dc221a825704403c4dd45ca44b8572ec
732a7c380557463d8e6d189851399af7477bdbf6
eec64e269a57729b34dfebdeddae8de43fd3e937348dad5bf18534c2cff5ca7c
GET /ce/ce_1020/land_ce_121020_na_en/image/g3.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 198974
last-modified: Mon, 12 Oct 2020 15:06:21 GMT
etag: "5f8470ed-3093e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tgYMt79mq1p0aEeHq%2Fks8LQg8Vt%2BfSTRNVkEZIo5N2q9j%2FEEeSWizjiME%2FsjuJvchaO%2FFD9Gz55Wajf7%2BdeBz2ZqyD1Rl96ZYZwxytNnQW0FO1SJbgKy8IXDY8nrNcg5ZHJB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff04f317755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/g2.png
104.21.235.53200 OK 219 kB URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/image/g2.png
IP 104.21.235.53:0
File type PNG image data, 924 x 999, 8-bit colormap, non-interlaced\012- data
Size 219 kB (218565 bytes)
Hash dc526630ebb7494c6002d485ea9cffb3
4569f2df5cbc3a07f3b5b241e0f79c04558a7973
97764bc8f44c318256e31c99b25930e97b00fa506982d5d71df9a7b3c0bfb88b
GET /ce/ce_1020/land_ce_121020_na_en/image/g2.png HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: image/png
content-length: 218565
last-modified: Mon, 12 Oct 2020 15:06:21 GMT
etag: "5f8470ed-355c5"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TXsB3rPKNc%2FuLT1QgwLY1Q5TWv9Vl4YQe2RSNI5IgeL%2FrzCTjLXh8onYsZDCffdkd%2Bzu0rxfB7xc5oaBLIcx0YSRmg4Lu%2Bs%2BbPAStdLGaAZUtsJi5Yv15sX%2B9Dy7JLqb44Wf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff04f2f7755-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2e684fbb47c0f0229e5bd38cd721ff5
b273651aac2ab927ab57ba9cf17f0605d06e3e8c
769e405218e27f8e267aa2c891102a2b1a961039cadc500ddcb8cffaf0023a5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "769E405218E27F8E267AA2C891102A2B1A961039CADC500DDCB8CFFAF0023A5F"
Last-Modified: Sat, 19 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1816
Expires: Sat, 19 Nov 2022 18:13:59 GMT
Date: Sat, 19 Nov 2022 17:43:43 GMT
Connection: keep-alive
ln.gamesrevenue.com/px1.js
204.155.147.176200 OK 3.8 kB URL HTTP/1.1 ln.gamesrevenue.com/px1.js
IP 204.155.147.176:0
File type ASCII text, with very long lines (14987)
Hash 87bc20734ca121c44d99c77fcb98d15d
eb98ecb1dab49ebacae23732a417eab2c7c069a7
5dafad7fab2ff85a8dea59e83a1f4e8f42161a4c12e5abe4fb7ef9bae45a2530
GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 17:43:43 GMT
Content-Type: application/javascript
Last-Modified: Fri, 21 Oct 2022 09:01:18 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"63525fde-3a8c"
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 001909ffee1a57f408af00339aaeed75
3981a2c80bb59c24ae055ddd59372c97d5758ef4
742529c7f0df70033c57b883067a3a44eb86a516417ecc6aa5490ecec46846cd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "742529C7F0DF70033C57B883067A3A44EB86A516417ECC6AA5490ECEC46846CD"
Last-Modified: Fri, 18 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=606
Expires: Sat, 19 Nov 2022 17:53:49 GMT
Date: Sat, 19 Nov 2022 17:43:43 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 580b042e5acd0443956668f038b87870
c32a8a216244ecabe9a402a6d916a62c3aecc099
eaa6fb2d4c503470f3133593b2f5ac608292a2b99a9bd1db8e0a9b0e1c3af04d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "EAA6FB2D4C503470F3133593B2F5AC608292A2B99A9BD1DB8E0A9B0E1C3AF04D"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6096
Expires: Sat, 19 Nov 2022 19:25:20 GMT
Date: Sat, 19 Nov 2022 17:43:44 GMT
Connection: keep-alive
main.realsrv.com/tag.php?goal=2daf9eb6a6cc4da5b32440b6e6976c73
95.211.229.245200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=2daf9eb6a6cc4da5b32440b6e6976c73
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=2daf9eb6a6cc4da5b32440b6e6976c73 HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 17:43:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A85828%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-19%22%3B%7D%7D; expires=Sun, 19 Nov 2023 17:43:44 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.realsrv.com/tag.php?goal=8d05a2d9eb85edeb4327373d9fe7e1ec
95.211.229.245200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=8d05a2d9eb85edeb4327373d9fe7e1ec
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8d05a2d9eb85edeb4327373d9fe7e1ec HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 17:43:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A85832%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-19%22%3B%7D%7D; expires=Sun, 19 Nov 2023 17:43:44 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/scripts/main.js
104.21.235.53200 OK 269 B URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/scripts/main.js
IP 104.21.235.53:0
Hash 11fae0f1c7bbbce729069170cdef73d6
8726ae7843cf536ed4047dbeca29e924a0867d6a
6b3405e8f0a547adc316bb8f1bbec921fd2d06e00f885732c563dc8693efccfd
GET /ce/ce_1020/land_ce_121020_na_en/scripts/main.js HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 12:31:31 GMT
etag: W/"60f02aa3-309"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWXNsC5WcjdxW0VaGxnC9KmqWLGThd3XljRKSY5YLhQcEh3kZqCXo5FJd%2BP2gkDslr5Rzn36ogpI%2Ff8CBFLrlrAs0Em515LVLkM%2BaoLkdXh1pntEaopHcuLoxAAknEN1rspD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff04f327755-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
main.exdynsrv.com/tag.php?goal=2daf9eb6a6cc4da5b32440b6e6976c73
95.211.229.245200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=2daf9eb6a6cc4da5b32440b6e6976c73
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=2daf9eb6a6cc4da5b32440b6e6976c73 HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 17:43:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A85828%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-19%22%3B%7D%7D; expires=Sun, 19 Nov 2023 17:43:44 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 0f162707471b694d9472aaa730586029
8e772c5ff60be51dbae5fb8e630f1f832f5138a6
8dbe631994a2b21d73969d226fc7cc6a17961a9fd4cc0c2656bd858761441ddc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 19 Nov 2022 17:43:44 GMT
Last-Modified: Sat, 19 Nov 2022 16:35:44 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3QhauCS9ZWZTvul2vh2HFE5uDZMPiQSVmZoh9Q21L_DXpf3YF7Fpqw==
Age: 4080
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 419e11329b40f6d11706372a1618331f
f6846a20afbbe22c8ad5be20cc711014bc314a27
91f7516f31fec4ded19345ceda5e923324666f5d20c75c47bc36d95a31c43cf3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 17:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 18:25:19 GMT
Expires: Thu, 24 Nov 2022 18:25:18 GMT
Etag: "f6846a20afbbe22c8ad5be20cc711014bc314a27"
Cache-Control: max-age=433893,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76cabff41ce81bfe-OSL
my.rtmark.net/img.gif?f=sync&lr=1&partner=89baca0d01f67ac9acdac5c6b7471b6d3d3f29286b0677a3454a01280c228621
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=89baca0d01f67ac9acdac5c6b7471b6d3d3f29286b0677a3454a01280c228621
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=89baca0d01f67ac9acdac5c6b7471b6d3d3f29286b0677a3454a01280c228621 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 17:43:44 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ff457bc4e3df4b2f85d00466615f450b; expires=Sun, 19 Nov 2023 17:43:44 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3223
Expires: Sat, 19 Nov 2022 18:37:27 GMT
Date: Sat, 19 Nov 2022 17:43:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3223
Expires: Sat, 19 Nov 2022 18:37:27 GMT
Date: Sat, 19 Nov 2022 17:43:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3223
Expires: Sat, 19 Nov 2022 18:37:27 GMT
Date: Sat, 19 Nov 2022 17:43:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3223
Expires: Sat, 19 Nov 2022 18:37:27 GMT
Date: Sat, 19 Nov 2022 17:43:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WpaBFpaCu0GBiHiiQzCCsyXrA7uzesHS92c_PsgxROxPkqjZ8RyI6Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:52:45 GMT
age: 71459
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F680965e1-a075-4bd9-8788-73e1a3c92de2.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F680965e1-a075-4bd9-8788-73e1a3c92de2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e9f6e24e829065d4f201b4c9d9c8fd1
317ec439968641329b83210f7fcab59023310077
d1d304d12f3e1c2ad9cf9279bbb7cab4a954942ab86f41d5333e030cdc7a55c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F680965e1-a075-4bd9-8788-73e1a3c92de2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3842
x-amzn-requestid: 8effd7ec-299f-471f-8746-3cb81d94998b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: boYBREE6oAMFmfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63733a07-46160f6159dfb4a729e5d688;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 07:04:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 37fj6lqvqFTCEPkclxpI6OuYvlIB57GI2bS4wySNP3X4eQ3Lwy3WQA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 10:26:23 GMT
age: 26241
etag: "317ec439968641329b83210f7fcab59023310077"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6b026c34985bbf2ebf89a62d0724c66
72369ebeccf447fa91ef77711d6297063c99777e
e5598ada634274ab9995dedda8c1fd18344abcfdd49b3a1aaede0a86fafc0f40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3035
x-amzn-requestid: 3e3f3a7f-9a1d-4b37-b932-22c6e3e638f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRcFOuoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6f-09dc20ea5620dd167e3f7265;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xvVfLfP2DUilu7GSJMGArO90Kdoq5cPBVtmtyVjZmX5ZKnvOjpR_UQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 72439
etag: "72369ebeccf447fa91ef77711d6297063c99777e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KVRDYZKrzaOvLC1NCAb6clyHxqb40wjyE0itVFOi1cwdGTvS2zsjUg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:57:26 GMT
age: 71178
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 72439
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 459df915ce91b32b2dcc4850516d68a0
d7a5473d367e7965a4af55acbf4675ed7088fab2
a03e26ebee79ad9b9dda1bf680e0d2467ae6d5e582589ada9fe6ddfa437c483c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4851
x-amzn-requestid: 8c868655-d0eb-428d-9fc0-a7449f770bd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brtDFF9HoAMFV9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748ee0-4f7daf8f7451dc5e0840f620;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:18:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xirMw5z5GPbmx9Sii_I4iNeh1GS5k9lGmaaJvUGAPWoVyP0Tldhf1w==
via: 1.1 e9ba0a9a729ff2960a04323bf1833df8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 07:17:42 GMT
age: 37562
etag: "d7a5473d367e7965a4af55acbf4675ed7088fab2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
simplewebanalysis.com/px.gif?akey=a592307a2308064b46c9f9d28dad8a00
18.185.190.54307 Temporary Redirect 0 B URL HTTP/2 simplewebanalysis.com/px.gif?akey=a592307a2308064b46c9f9d28dad8a00
IP 18.185.190.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px.gif?akey=a592307a2308064b46c9f9d28dad8a00 HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 19 Nov 2022 17:43:44 GMT
content-type: image/gif
content-length: 0
location: https://professionalswebcheck.com/dbs?uuid=3e6d2647-fb3f-4927-97ee-0951076f944e&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsgIjE5MjAiOjE2Njg4Nzk4MjR9LCJhY2NsIjp7ICIyMCwwIjoxNjY4ODc5ODI0fX0.WuQ1zupt1_zVwUWf5fvr9fulYj9SIMEDzo-jGkkYRyI
server: nginx/1.17.6
set-cookie: uid_id2=3e6d2647-fb3f-4927-97ee-0951076f944e:3:1; expires=Tue, 16 Nov 2032 17:43:44 GMT; secure; SameSite=None
ak=1920,1668879824; expires=Fri, 17 Feb 2023 17:43:44 GMT; secure; SameSite=None
acl=20,0,1668879824; expires=Fri, 17 Feb 2023 17:43:44 GMT; secure; SameSite=None
expires: Sat, 19 Nov 2022 17:43:44 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
main.exoclick.com/tag.php?goal=8d05a2d9eb85edeb4327373d9fe7e1ec
95.211.229.246200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=8d05a2d9eb85edeb4327373d9fe7e1ec
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8d05a2d9eb85edeb4327373d9fe7e1ec HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 17:43:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A85832%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-11-19%22%3B%7D%7D; expires=Sun, 19 Nov 2023 17:43:44 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
theonlygames.com/awpx_click.js?v=005
104.21.235.53200 OK 615 B URL HTTP/2 theonlygames.com/awpx_click.js?v=005
IP 104.21.235.53:0
Hash 9957a1819d22d9af6d7c3579583facaa
2945b37d9ad3ab2a04adc1f9b46804d4a0eb24c3
a9a96174867f9621442c81bb2193845bbc99ae029050f8efb718cf73c1e21c8e
GET /awpx_click.js?v=005 HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 12:36:02 GMT
etag: W/"63037832-5cb"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3654
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DpppDca6P1iiBS237AtLKYGaB34l5Yjwz%2F9g1RGNpYlJ%2FPGZFesD80DILAGuBTmLNyyRQ7BnzRcHhuz7yfmdDcBAbhS5As%2FM6PtBMwbiOdv7ScbdMRs0xpQTRIpL7xoIORw5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff02ef87755-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash e519f5d1825efc4675dd1c6c3a491ead
b490f6af932b2b007277b45ac8ae8a81ee6d8f58
7c1aa14282fef2a8662e98edd422c51b66b3ff35b49ad9824f4fb4326380ded6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 17:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 23 Nov 2022 13:39:04 GMT
ETag: "b490f6af932b2b007277b45ac8ae8a81ee6d8f58"
Last-Modified: Sat, 19 Nov 2022 13:39:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3217
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76cabff6bd280b65-OSL
mc.yandex.ru/metrika/tag.js
93.158.134.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Sat, 19 Nov 2022 17:43:44 GMT
access-control-allow-origin: *
etag: "63776891-11e33"
expires: Sat, 19 Nov 2022 18:43:44 GMT
last-modified: Fri, 18 Nov 2022 14:12:17 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
professionalswebcheck.com/dbs?uuid=3e6d2647-fb3f-4927-97ee-0951076f944e&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsgIjE5MjAiOjE2Njg4Nzk4MjR9LCJhY2NsIjp7ICIyMCwwIjoxNjY4ODc5ODI0fX0.WuQ1zupt1_zVwUWf5fvr9fulYj9SIMEDzo-jGkkYRyI
18.185.190.54200 OK 7 B URL HTTP/2 professionalswebcheck.com/dbs?uuid=3e6d2647-fb3f-4927-97ee-0951076f944e&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsgIjE5MjAiOjE2Njg4Nzk4MjR9LCJhY2NsIjp7ICIyMCwwIjoxNjY4ODc5ODI0fX0.WuQ1zupt1_zVwUWf5fvr9fulYj9SIMEDzo-jGkkYRyI
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /dbs?uuid=3e6d2647-fb3f-4927-97ee-0951076f944e&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjozLCJhY3VzIjoxLCJhY2kiOnsgIjE5MjAiOjE2Njg4Nzk4MjR9LCJhY2NsIjp7ICIyMCwwIjoxNjY4ODc5ODI0fX0.WuQ1zupt1_zVwUWf5fvr9fulYj9SIMEDzo-jGkkYRyI HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://theonlygames.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:44 GMT
content-type: image/gif
content-length: 7
server: nginx/1.17.6
set-cookie: uid_id2=3e6d2647-fb3f-4927-97ee-0951076f944e:3:1; expires=Tue, 16 Nov 2032 17:43:44 GMT; secure; SameSite=None
ak=1920,1668879824; expires=Fri, 17 Feb 2023 17:43:44 GMT; secure; SameSite=None
acl=20,0,1668879824; expires=Fri, 17 Feb 2023 17:43:44 GMT; secure; SameSite=None
expires: Sat, 19 Nov 2022 17:43:44 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 19 Nov 2022 17:43:44 GMT
access-control-allow-origin: *
etag: "63776891-2b"
expires: Sat, 19 Nov 2022 18:43:44 GMT
accept-ranges: bytes
last-modified: Fri, 18 Nov 2022 14:12:17 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/57021556/1?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/57021556/1?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash a24ba6b48d2430b1313ac6a005aa394c
062d50af414f05c84e6c76432a08daef6c9587cd
8142cf43fe22cce963250ed87c09ba227839f311254afe764fea9d6b99d6edda
GET /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://theonlygames.com
Referer: https://theonlygames.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Sat, 19 Nov 2022 17:43:47 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://theonlygames.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 19-Nov-2022 17:43:47 GMT
last-modified: Sat, 19-Nov-2022 17:43:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/57021556?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/57021556?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
GET /watch/57021556?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://theonlygames.com
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/57021556/1?wmode=7&page-url=https%3A%2F%2Ftheonlygames.com%2Fce%2Fce_1020%2Fland_ce_121020_na_en%2F%3Flanding%3Dmodest%26haff_pid%3D5%26haff_oid%3D16%26haff_cid%3D4b73000076e53642%26haff_sub1%3D4787949%26haff_sub2%3D%26haff_sub3%3D%26haff_tag%3Dcpa%26utm_source%3Dhooligan&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1869%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1561002208788%3Ahid%3A852968364%3Az%3A0%3Ai%3A20221119174347%3Aet%3A1668879828%3Arn%3A868715336%3Arqn%3A1%3Au%3A16688798251050173952%3Aw%3A1113x827%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C708%2C0%2C%2C569%2C0%2C2667%2C2667%2C2%2C1836%3Ans%3A1668879822067%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668879828%3At%3ACuntEmpire&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Sat, 19 Nov 2022 17:43:47 GMT
access-control-allow-origin: https://theonlygames.com
set-cookie: yandexuid=7822574571668879827; Expires=Sun, 19-Nov-2023 17:43:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=7822574571668879827; Expires=Sun, 19-Nov-2023 17:43:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=133415971668879827; Path=/; SameSite=None; Secure
i=x7r4KWHDQz5B64OMW1E0iuRXRf5n+mQXB4xP3cryeiA+/Kr9Sl75PErYIQ+yfhqexZkcknSjIYaRckCpWGqBuP7adqc=; Expires=Tue, 16-Nov-2032 17:43:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1700415827.yc.1668879827#1700415827.yrts.1668879827#1700415827.yrtsi.1668879827; Expires=Sun, 19-Nov-2023 17:43:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 19-Nov-2022 17:43:47 GMT
last-modified: Sat, 19-Nov-2022 17:43:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
click.hooligapps.com/?pid=5&offer_id=16&land=457&ref_id=$%7bSUBID%7d&sub1=4787949
104.21.88.44302 Found 0 B URL HTTP/2 click.hooligapps.com/?pid=5&offer_id=16&land=457&ref_id=$%7bSUBID%7d&sub1=4787949
IP 104.21.88.44:0
GET /?pid=5&offer_id=16&land=457&ref_id=$%7bSUBID%7d&sub1=4787949 HTTP/1.1
Host: click.hooligapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.42.218.249/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 19 Nov 2022 17:43:42 GMT
content-type: text/html; charset=utf-8
location: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
x-clickid: 4b73000076e53642
x-frame-options: DENY
vary: Accept-Language, Origin
content-language: en
x-content-type-options: nosniff
referrer-policy: same-origin
set-cookie: haff_cid:5:16=4b73000076e53642; expires=Sun, 20 Nov 2022 17:43:42 GMT; Max-Age=86400; Path=/
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=011TfTZTLMk1JzR0Vw9x8aQbpbidRCTCV4qEy%2BlaJj41hecPQqcbYICgUY5JZDTsebsGeVrL8Xe1F7Ia%2Fv1jbMYej9LzZTGHdIOJmMyUGIyx21okiotHRU9T4BJ1itC3qgyyGGW0Cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76cabfe90ddc1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/css/main.css
104.21.235.53200 OK 0 B URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/css/main.css
IP 104.21.235.53:0
GET /ce/ce_1020/land_ce_121020_na_en/css/main.css HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: text/css
last-modified: Wed, 21 Oct 2020 17:32:19 GMT
etag: W/"5f9070a3-bd9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5060
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WoVrRDNEAd1R7%2BnQtTmrAHqN18P8tmCppvR1hzLWmFuKQVRabagoQ%2F4YrApwMdmWtxWEeywDJDcFk50utBRAAxqZudTFCcwBLgvspZAzvEYl83u4rAjt91APKWsDfK4%2BuXcq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff00eae7755-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
theonlygames.com/ce/ce_1020/land_ce_121020_na_en/libs/jquery.min.js
104.21.235.53200 OK 0 B URL HTTP/2 theonlygames.com/ce/ce_1020/land_ce_121020_na_en/libs/jquery.min.js
IP 104.21.235.53:0
GET /ce/ce_1020/land_ce_121020_na_en/libs/jquery.min.js HTTP/1.1
Host: theonlygames.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/ce/ce_1020/land_ce_121020_na_en/?landing=modest&haff_pid=5&haff_oid=16&haff_cid=4b73000076e53642&haff_sub1=4787949&haff_sub2=&haff_sub3=&haff_tag=cpa&utm_source=hooligan
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 12:31:31 GMT
etag: W/"60f02aa3-1538f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sH8uzf4a37UgJZuDyHXHWsLIW3rCUEnL76Ol%2FTgLk6fL90dbMYfBnhl3vlnfbLVKf2lvhdUEj004hC%2BLbsOtGub%2FCVwsa2y6tcECEdrRy%2FsXnAuso2fG4I%2FNtTCu9Wmu6yf2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff01ed97755-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
twistconcept.com/index.min.js?pk=a592307a2308064b46c9f9d28dad8a00
172.67.215.17200 OK 0 B URL HTTP/2 twistconcept.com/index.min.js?pk=a592307a2308064b46c9f9d28dad8a00
IP 172.67.215.17:0
GET /index.min.js?pk=a592307a2308064b46c9f9d28dad8a00 HTTP/1.1
Host: twistconcept.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://theonlygames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 17:43:43 GMT
content-type: application/javascript
last-modified: Thu, 07 Apr 2022 08:49:08 GMT
etag: W/"624ea584-28c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2062
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bWid52Tga0VZi7TOQ697oiOx9cr7FaTrYpLyD6qocRqjfqLkIc2zqvsorXbDEX8CMsfkkMVTd6ZQ9KiNXZtAW2iHb%2B6aYC%2FUkVKIU8dC%2Bq6hSWg%2F44O3DVLrEGnHAC%2B9oRdx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76cabff3acf1b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2