| thortracker.com/tracking.php?hash=d78e94eb12195103f3639a0f92f031c1&aff_sub=809247654373498881&source=7349251&sub_source=[publisher_id]&device_id=[idfa_or_gaid] | 185.32.28.169 | 302 Moved Temporarily | 2 B |
URL User Request GET HTTP/1.1thortracker.com/tracking.php?hash=d78e94eb12195103f3639a0f92f031c1&aff_sub=809247654373498881&source=7349251&sub_source=[publisher_id]&device_id=[idfa_or_gaid] IP185.32.28.169:443 ASN#15699 OGIC Informatica S.L.
CertificateIssuerLet's Encrypt Subjectthortracker.com Fingerprint0B:FB:E6:D6:4D:CF:E3:D5:44:D5:F9:A3:63:D4:5F:F2:E8:3D:26:70 ValiditySun, 24 Mar 2024 04:01:27 GMT - Sat, 22 Jun 2024 04:01:26 GMT
Hash9dd172a836334f81b8e77c6bdd621ba2 832abef04a64dc2d61130026ce6c2425c48c4f02 34a6225b83a638ed08f01ecdbf30cf0be3478ffdd36be92295fee92c5585d57c
GET /tracking.php?hash=d78e94eb12195103f3639a0f92f031c1&aff_sub=809247654373498881&source=7349251&sub_source=[publisher_id]&device_id=[idfa_or_gaid] HTTP/1.1
Host: thortracker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 30 Apr 2024 20:48:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://stalkpro.com/getme/pubrequest.php?subid=1714510118goa663159260b9e7&id=1996
|
|
| stalkpro.com/getme/pubrequest.php?subid=1714510118goa663159260b9e7&id=1996 | 139.59.3.239 | 302 Found | 0 B |
URL User Request GET HTTP/1.1stalkpro.com/getme/pubrequest.php?subid=1714510118goa663159260b9e7&id=1996 IP139.59.3.239:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerSectigo Limited Subjectstalkpro.com Fingerprint54:80:D3:77:8D:AF:CF:E0:4E:DF:F5:5D:FD:A8:BE:AD:B5:93:58:EB ValidityTue, 04 Jul 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getme/pubrequest.php?subid=1714510118goa663159260b9e7&id=1996 HTTP/1.1
Host: stalkpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 30 Apr 2024 20:48:41 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: http://www.esports.playme.in.net/promo.php?sid=422&req=he&id=1996&subid=1714510118goa663159260b9e7
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| www.esports.playme.in.net/promo.php?sid=422&req=he&id=1996&subid=1714510118goa663159260b9e7 | 139.59.3.239 | 302 Found | 0 B |
URL User Request GET HTTP/1.1www.esports.playme.in.net/promo.php?sid=422&req=he&id=1996&subid=1714510118goa663159260b9e7 IP139.59.3.239:80 ASN#14061 DIGITALOCEAN-ASN
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /promo.php?sid=422&req=he&id=1996&subid=1714510118goa663159260b9e7 HTTP/1.1
Host: www.esports.playme.in.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 30 Apr 2024 20:48:41 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: PHPSESSID=ibf1cf4ekvdd2s4vh1ch5qa35h; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ZainIQHE_lp.php?lastid=298699
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 | 139.59.3.239 | 200 OK | 54 kB |
URL User Request GET HTTP/1.1www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 IP139.59.3.239:80 ASN#14061 DIGITALOCEAN-ASN
File typeJavaScript source, ASCII text, with very long lines (65045) Hash265c422ac87ef3556eba0d795e8f1ffb 15f31283f78fdc9ad1c4d68bfd78889f6d4f85a8 39ca426ae6ad62c3caebed95199e4015551a2cff8828a6017896636a5afaa0af
GET /ZainIQHE_lp.php?lastid=298699 HTTP/1.1
Host: www.esports.playme.in.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=ibf1cf4ekvdd2s4vh1ch5qa35h
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 20:48:41 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 54227
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| sg.d.shield.monitoringservice.co/ | 139.162.21.64 | 200 OK | 0 B |
URL POST HTTP/1.1sg.d.shield.monitoringservice.co/ IP139.162.21.64:443 ASN#63949 Akamai Connected Cloud
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 CertificateIssuerLet's Encrypt Subjectsg.d.shield.monitoringservice.co Fingerprint48:29:C2:E0:93:93:BE:38:89:B3:5E:D6:1B:7E:38:8B:3E:DC:00:3E ValidityMon, 15 Apr 2024 12:33:55 GMT - Sun, 14 Jul 2024 12:33:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: sg.d.shield.monitoringservice.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 736
Origin: http://www.esports.playme.in.net
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
server: MCP-Shield
date: Tue, 30 Apr 2024 20:48:43 GMT
content-length: 0
x-server: Data-3
|
|
| sg.ws.shield.monitoringservice.co/ | 139.162.21.64 | | 0 B |
URL sg.ws.shield.monitoringservice.co/ IP139.162.21.64:0 ASN#63949 Akamai Connected Cloud
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: sg.ws.shield.monitoringservice.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.esports.playme.in.net
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Jq9VfkCvwRhW8FWRhL4bOw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
upgrade: websocket
connection: Upgrade
sec-websocket-accept: vBEm1ObmZ/58oT4OOQIeHJBXmeE=
origin: http://www.esports.playme.in.net
x-server: WS-1
|
|
| 139.59.3.239/back.png | 139.59.3.239 | 200 OK | 5.5 kB |
IP139.59.3.239:80 ASN#14061 DIGITALOCEAN-ASN
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
File typePNG image data, 1920 x 970, 8-bit/color RGB, non-interlaced Hash7cc836f9d7bd66ac95667ec67101681c da6e3dd8635ce1882b9b7694fb45f8a0a2f079b9 506c2675705ea6531c33ef3cb5f9b2413214b6d7d3de5f60fff6acd77cf1c4cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /back.png HTTP/1.1
Host: 139.59.3.239
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 20:48:43 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 30 Aug 2018 09:35:47 GMT
ETag: "15a9-574a3ccbd42c0"
Accept-Ranges: bytes
Content-Length: 5545
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
|
|
| sg.d.shield.monitoringservice.co/?d=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 | 139.162.21.64 | 200 OK | 0 B |
URL GET HTTP/1.1sg.d.shield.monitoringservice.co/?d=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 IP139.162.21.64:443 ASN#63949 Akamai Connected Cloud
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 CertificateIssuerLet's Encrypt Subjectsg.d.shield.monitoringservice.co Fingerprint48:29:C2:E0:93:93:BE:38:89:B3:5E:D6:1B:7E:38:8B:3E:DC:00:3E ValidityMon, 15 Apr 2024 12:33:55 GMT - Sun, 14 Jul 2024 12:33:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?d=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 HTTP/1.1
Host: sg.d.shield.monitoringservice.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
access-control-allow-origin: *
server: MCP-Shield
content-type: image/png
date: Tue, 30 Apr 2024 20:48:43 GMT
content-length: 0
x-server: Data-3
|
|
| www.esports.playme.in.net/landing_page/assets/img/24.png | 139.59.3.239 | 200 OK | 79 kB |
URL GET HTTP/1.1www.esports.playme.in.net/landing_page/assets/img/24.png IP139.59.3.239:80 ASN#14061 DIGITALOCEAN-ASN
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
File typePNG image data, 2860 x 439, 8-bit/color RGBA, non-interlaced Hash19191be0c7106a60d7addea663265c27 fd627c59739f27c9fa068b8b42fc7787e30fdcfc eddce87e6dce8f1a8b487bc8d1050e11a9b0c8ee42b1f78ad434810c7d9e369a
GET /landing_page/assets/img/24.png HTTP/1.1
Host: www.esports.playme.in.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=ibf1cf4ekvdd2s4vh1ch5qa35h; _s_ZisSess=1; _wCk=ad4b0c3efa683ce5fdec3daf5c2aa723
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 20:48:43 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 07 Nov 2022 11:48:22 GMT
ETag: "1343f-5ece00018ad80"
Accept-Ranges: bytes
Content-Length: 78911
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.esports.playme.in.net/landing_page/assets/img/bg/hero-position-img.webp | 139.59.3.239 | 200 OK | 47 kB |
URL GET HTTP/1.1www.esports.playme.in.net/landing_page/assets/img/bg/hero-position-img.webp IP139.59.3.239:80 ASN#14061 DIGITALOCEAN-ASN
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
File typeRIFF (little-endian) data, Web/P image Hash1f5867f8036d938b9dfdaed5530c9249 077121b84bcf0e08796b7d74b7c17266a6c56d99 19935c52c9a15a2c1670e51a165fc406a168b52b5255a1f0aef5776af8bb18d4
GET /landing_page/assets/img/bg/hero-position-img.webp HTTP/1.1
Host: www.esports.playme.in.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=ibf1cf4ekvdd2s4vh1ch5qa35h; _s_ZisSess=1; _wCk=ad4b0c3efa683ce5fdec3daf5c2aa723
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 20:48:43 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 21 Jul 2022 06:45:00 GMT
ETag: "b610-5e44b0e82cfcd"
Accept-Ranges: bytes
Content-Length: 46608
Keep-Alive: timeout=5
Connection: Keep-Alive
|
|
| sg.r.shield.monitoringservice.co/p.png?ak=ad4b0c3efa683ce5fdec3daf5c2aa723&isSession=ZmFsc2U&w=MTI4MA&h=MTAyNA&vpw=MTI4MA&vph=MTAyNA&vvw=MTI4MA&vvh=MA&vvb=MA&vvr=MTI4MA&_wOh=MTAyNA&_wOw=MTI4MA&_wIh=MTAyNA&_wIw=MTI4MA&_dPr=MQ&an=TmV0c2NhcGU&p=bGludXggeDg2XzY0&_ifc=ZmFsc2U&sah=MTAyNA&saw=MTI4MA&sc=MjQ&spd=MjQ&sh=MTAyNA&sw=MTI4MA&_sat=MA&_sal=MA&sot=bGFuZHNjYXBlLXByaW1hcnk&sa=MA&_sX=MA&_sY=MA&_lB=ZmFsc2U&_mB=dHJ1ZQ&_pB=dHJ1ZQ&_sB=dHJ1ZQ&_sTb=dHJ1ZQ&_tb=dHJ1ZQ&oL=Mg&nL=ZW4tVVM&nLs=ZW4tVVMsZW4&hC=NDg&_lR=ZmFsc2U&_lsR=ZmFsc2U&_nP=R2Vja28&_nV=&_nPs=MjAxMDAxMDE&_a=ZmFsc2U&_fC=OQ&_ckV=dHJ1ZQ&_ckS=dHJ1ZQ&dr=bnVsbA&wo=bnVsbA&_oV=dHJ1ZQ&_iB=ZmFsc2U&_t=blQ&_mcpc=NDQ3ZmZkYWFiODgxMjA0N2YwN2U5ZjlkYTVkMmMzZmQ&_ts=eyJfbXRwIjowLCJfdGUiOmZhbHNlfQ&_p=ZmFsc2U&_i=ZmFsc2U&_b=ZmFsc2U&_ofst=MA&_iw=dHJ1ZQ&hidb=dHJ1ZQ&hls=dHJ1ZQ&hss=dHJ1ZQ&_cN=dHJ1ZQ&hswfl=ZmFsc2U&_iii=ZmFsc2U&_osc=TGludXggeDg2XzY0&_cE=dHJ1ZQ&_aV=ZmFsc2U&_apV=NS4wIChYMTEp&_nC=MA&_nW=ZmFsc2U&_nPc=NQ&_nMc=Mg&_wA=dHJ1ZQ&_isM=ZmFsc2U&_wDiW=dHJ1ZQ&_wDw=ZmFsc2U&_xDr=ZmFsc2U&_dA=ZmFsc2U&_cP=ZmFsc2U&_wO=ZmFsc2U&_eL=Mzc&_tO=dHJ1ZQ&_tI=dHJ1ZQ&_eFp=dHJ1ZQ&_isNd=ZmFsc2U&_isIi=MA&_gC=ZmFsc2U&_cIden=dW5kZWZpbmVk&_isCr=dW5kZWZpbmVk&_isO=dHJ1ZQ&_gB=&_hLl=ZmFsc2U&_gDnT=MQ&_lOs=ZmFsc2U<s=MTcxNDUxMDEyMjI3OQ&isGCLID=ZmFsc2U&isFBCLID=ZmFsc2U&cts=MTcxNDUxMDEyMzY1MQ&_v=VmlzaWJsZQ&_version=Ny4xLjAwNQ | 139.162.21.64 | 200 OK | 0 B |
URL GET HTTP/1.1sg.r.shield.monitoringservice.co/p.png?ak=ad4b0c3efa683ce5fdec3daf5c2aa723&isSession=ZmFsc2U&w=MTI4MA&h=MTAyNA&vpw=MTI4MA&vph=MTAyNA&vvw=MTI4MA&vvh=MA&vvb=MA&vvr=MTI4MA&_wOh=MTAyNA&_wOw=MTI4MA&_wIh=MTAyNA&_wIw=MTI4MA&_dPr=MQ&an=TmV0c2NhcGU&p=bGludXggeDg2XzY0&_ifc=ZmFsc2U&sah=MTAyNA&saw=MTI4MA&sc=MjQ&spd=MjQ&sh=MTAyNA&sw=MTI4MA&_sat=MA&_sal=MA&sot=bGFuZHNjYXBlLXByaW1hcnk&sa=MA&_sX=MA&_sY=MA&_lB=ZmFsc2U&_mB=dHJ1ZQ&_pB=dHJ1ZQ&_sB=dHJ1ZQ&_sTb=dHJ1ZQ&_tb=dHJ1ZQ&oL=Mg&nL=ZW4tVVM&nLs=ZW4tVVMsZW4&hC=NDg&_lR=ZmFsc2U&_lsR=ZmFsc2U&_nP=R2Vja28&_nV=&_nPs=MjAxMDAxMDE&_a=ZmFsc2U&_fC=OQ&_ckV=dHJ1ZQ&_ckS=dHJ1ZQ&dr=bnVsbA&wo=bnVsbA&_oV=dHJ1ZQ&_iB=ZmFsc2U&_t=blQ&_mcpc=NDQ3ZmZkYWFiODgxMjA0N2YwN2U5ZjlkYTVkMmMzZmQ&_ts=eyJfbXRwIjowLCJfdGUiOmZhbHNlfQ&_p=ZmFsc2U&_i=ZmFsc2U&_b=ZmFsc2U&_ofst=MA&_iw=dHJ1ZQ&hidb=dHJ1ZQ&hls=dHJ1ZQ&hss=dHJ1ZQ&_cN=dHJ1ZQ&hswfl=ZmFsc2U&_iii=ZmFsc2U&_osc=TGludXggeDg2XzY0&_cE=dHJ1ZQ&_aV=ZmFsc2U&_apV=NS4wIChYMTEp&_nC=MA&_nW=ZmFsc2U&_nPc=NQ&_nMc=Mg&_wA=dHJ1ZQ&_isM=ZmFsc2U&_wDiW=dHJ1ZQ&_wDw=ZmFsc2U&_xDr=ZmFsc2U&_dA=ZmFsc2U&_cP=ZmFsc2U&_wO=ZmFsc2U&_eL=Mzc&_tO=dHJ1ZQ&_tI=dHJ1ZQ&_eFp=dHJ1ZQ&_isNd=ZmFsc2U&_isIi=MA&_gC=ZmFsc2U&_cIden=dW5kZWZpbmVk&_isCr=dW5kZWZpbmVk&_isO=dHJ1ZQ&_gB=&_hLl=ZmFsc2U&_gDnT=MQ&_lOs=ZmFsc2U<s=MTcxNDUxMDEyMjI3OQ&isGCLID=ZmFsc2U&isFBCLID=ZmFsc2U&cts=MTcxNDUxMDEyMzY1MQ&_v=VmlzaWJsZQ&_version=Ny4xLjAwNQ IP139.162.21.64:443 ASN#63949 Akamai Connected Cloud
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 CertificateIssuerLet's Encrypt Subjectsg.r.shield.monitoringservice.co Fingerprint33:9B:39:47:38:87:F3:91:34:C9:D8:A6:40:56:C3:6E:BC:BB:3F:74 ValidityMon, 15 Apr 2024 12:34:12 GMT - Sun, 14 Jul 2024 12:34:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p.png?ak=ad4b0c3efa683ce5fdec3daf5c2aa723&isSession=ZmFsc2U&w=MTI4MA&h=MTAyNA&vpw=MTI4MA&vph=MTAyNA&vvw=MTI4MA&vvh=MA&vvb=MA&vvr=MTI4MA&_wOh=MTAyNA&_wOw=MTI4MA&_wIh=MTAyNA&_wIw=MTI4MA&_dPr=MQ&an=TmV0c2NhcGU&p=bGludXggeDg2XzY0&_ifc=ZmFsc2U&sah=MTAyNA&saw=MTI4MA&sc=MjQ&spd=MjQ&sh=MTAyNA&sw=MTI4MA&_sat=MA&_sal=MA&sot=bGFuZHNjYXBlLXByaW1hcnk&sa=MA&_sX=MA&_sY=MA&_lB=ZmFsc2U&_mB=dHJ1ZQ&_pB=dHJ1ZQ&_sB=dHJ1ZQ&_sTb=dHJ1ZQ&_tb=dHJ1ZQ&oL=Mg&nL=ZW4tVVM&nLs=ZW4tVVMsZW4&hC=NDg&_lR=ZmFsc2U&_lsR=ZmFsc2U&_nP=R2Vja28&_nV=&_nPs=MjAxMDAxMDE&_a=ZmFsc2U&_fC=OQ&_ckV=dHJ1ZQ&_ckS=dHJ1ZQ&dr=bnVsbA&wo=bnVsbA&_oV=dHJ1ZQ&_iB=ZmFsc2U&_t=blQ&_mcpc=NDQ3ZmZkYWFiODgxMjA0N2YwN2U5ZjlkYTVkMmMzZmQ&_ts=eyJfbXRwIjowLCJfdGUiOmZhbHNlfQ&_p=ZmFsc2U&_i=ZmFsc2U&_b=ZmFsc2U&_ofst=MA&_iw=dHJ1ZQ&hidb=dHJ1ZQ&hls=dHJ1ZQ&hss=dHJ1ZQ&_cN=dHJ1ZQ&hswfl=ZmFsc2U&_iii=ZmFsc2U&_osc=TGludXggeDg2XzY0&_cE=dHJ1ZQ&_aV=ZmFsc2U&_apV=NS4wIChYMTEp&_nC=MA&_nW=ZmFsc2U&_nPc=NQ&_nMc=Mg&_wA=dHJ1ZQ&_isM=ZmFsc2U&_wDiW=dHJ1ZQ&_wDw=ZmFsc2U&_xDr=ZmFsc2U&_dA=ZmFsc2U&_cP=ZmFsc2U&_wO=ZmFsc2U&_eL=Mzc&_tO=dHJ1ZQ&_tI=dHJ1ZQ&_eFp=dHJ1ZQ&_isNd=ZmFsc2U&_isIi=MA&_gC=ZmFsc2U&_cIden=dW5kZWZpbmVk&_isCr=dW5kZWZpbmVk&_isO=dHJ1ZQ&_gB=&_hLl=ZmFsc2U&_gDnT=MQ&_lOs=ZmFsc2U<s=MTcxNDUxMDEyMjI3OQ&isGCLID=ZmFsc2U&isFBCLID=ZmFsc2U&cts=MTcxNDUxMDEyMzY1MQ&_v=VmlzaWJsZQ&_version=Ny4xLjAwNQ HTTP/1.1
Host: sg.r.shield.monitoringservice.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
access-control-allow-origin: *
server: MCP-Shield
content-disposition: attachment; filename=_sp
content-length: 0
content-type: image/png
set-cookie: sSk=ad4b0c3efa683ce5fdec3daf5c2aa723; Domain=monitoringservice.co; Path=/
date: Tue, 30 Apr 2024 20:48:44 GMT
x-server: Report-2
|
|
| www.esports.playme.in.net/landing_page/assets/img/Game.png | 139.59.3.239 | 200 OK | 2.0 MB |
URL GET HTTP/1.1www.esports.playme.in.net/landing_page/assets/img/Game.png IP139.59.3.239:80 ASN#14061 DIGITALOCEAN-ASN
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
File typePNG image data, 2295 x 2611, 8-bit/color RGBA, non-interlaced Size2.0 MB (1959036 bytes) Hashe7609723363390f0bcc231f9aa0ca949 f4e6dc7abbcb37c1394d7cf1555173de72121b21 57f0c380ce48eeb3c13ab3242e08e806cfbacfb703b0f2f9ea71211610815f7a
GET /landing_page/assets/img/Game.png HTTP/1.1
Host: www.esports.playme.in.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=ibf1cf4ekvdd2s4vh1ch5qa35h; _s_ZisSess=1; _wCk=ad4b0c3efa683ce5fdec3daf5c2aa723
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Apr 2024 20:48:43 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 07 Nov 2022 11:48:30 GMT
ETag: "1de47c-5ece00092bf80"
Accept-Ranges: bytes
Content-Length: 1959036
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
|
|
| sg.r.shield.monitoringservice.co/vtx/ad4b0c3efa683ce5fdec3daf5c2aa723 | 139.162.21.64 | 200 OK | 0 B |
URL POST HTTP/1.1sg.r.shield.monitoringservice.co/vtx/ad4b0c3efa683ce5fdec3daf5c2aa723 IP139.162.21.64:443 ASN#63949 Akamai Connected Cloud
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 CertificateIssuerLet's Encrypt Subjectsg.r.shield.monitoringservice.co Fingerprint33:9B:39:47:38:87:F3:91:34:C9:D8:A6:40:56:C3:6E:BC:BB:3F:74 ValidityMon, 15 Apr 2024 12:34:12 GMT - Sun, 14 Jul 2024 12:34:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vtx/ad4b0c3efa683ce5fdec3daf5c2aa723 HTTP/1.1
Host: sg.r.shield.monitoringservice.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 266349
Origin: http://www.esports.playme.in.net
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
access-control-allow-origin: *
access-control-allow-method: POST
server: MCP-Shield
date: Tue, 30 Apr 2024 20:48:47 GMT
content-length: 0
x-server: Report-2
|
|
| m2.mobimgs.com/sf/img/gamesmania/fav100x100.png?v=3 | 0.0.0.0 | | 0 B |
URL GET m2.mobimgs.com/sf/img/gamesmania/fav100x100.png?v=3 IP0.0.0.0:0
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sf/img/gamesmania/fav100x100.png?v=3 HTTP/1.1
Host: m2.mobimgs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Pragma: no-cache
Cache-Control: no-cache
|
|
| sg.ws.shield.monitoringservice.co/ | 139.162.21.64 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1sg.ws.shield.monitoringservice.co/ IP139.162.21.64:443 ASN#63949 Akamai Connected Cloud
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699 CertificateIssuerLet's Encrypt Subjectsg.ws.shield.monitoringservice.co FingerprintE5:20:F9:DD:E4:52:CF:BF:99:2E:0E:6E:77:D4:60:69:AB:B5:E5:42 ValidityMon, 15 Apr 2024 12:34:23 GMT - Sun, 14 Jul 2024 12:34:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: sg.ws.shield.monitoringservice.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.esports.playme.in.net
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Jq9VfkCvwRhW8FWRhL4bOw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
upgrade: websocket
connection: Upgrade
sec-websocket-accept: vBEm1ObmZ/58oT4OOQIeHJBXmeE=
origin: http://www.esports.playme.in.net
x-server: WS-1
|
|
| m2.mobimgs.com/sf/img/gamesmania/dwn-app-banner.png?v=491 | 0.0.0.0 | | 0 B |
URL GET m2.mobimgs.com/sf/img/gamesmania/dwn-app-banner.png?v=491 IP0.0.0.0:0
Requested byhttp://www.esports.playme.in.net/ZainIQHE_lp.php?lastid=298699
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sf/img/gamesmania/dwn-app-banner.png?v=491 HTTP/1.1
Host: m2.mobimgs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.esports.playme.in.net/
Pragma: no-cache
Cache-Control: no-cache
|
|