r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 28 Mar 2023 14:03:27 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17214
Expires: Tue, 28 Mar 2023 18:05:04 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Backoff, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 12:28:03 GMT
content-type: application/json
age: 3007
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15090
Expires: Tue, 28 Mar 2023 17:29:40 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 100Dj5dYcQ6GgMqxjzS+JB95chOymEiLRFnfLkzP3oD526VFLg3zQvPvSq61xeR6ytnH9oTTlKcvvbLKQWT+Jg==
x-amz-request-id: J1K2YXHD01605W2T
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 12:56:13 GMT
age: 1317
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Cache-Control, Expires, ETag, Pragma, Backoff, Last-Modified, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 13:17:25 GMT
age: 45
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash da5340ee69a1000f751686df9e716663
a5da880a61ed119790a7990bbdcc0c97eecf04f2
d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7900
Expires: Tue, 28 Mar 2023 15:29:50 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive
push.services.mozilla.com/
52.36.246.241101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.246.241:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gJP10kpJWO3Hv3lUABG/Ww==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QxHpTO6O6EVps81YQ6L/QQcfG50=
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
31.31.198.181200 OK 3.9 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash f5abd3440fc3004712c7d53c2df7f8fa
2510a61125722becbabac561f3986f2573680a51
c072e38b5277eb6c87a59dac7ac9ff2fdfc815f6431098c00b8f704862a89840
Analyzer Verdict Alert openphish Facebook, Inc.
GET /PUBG/N1/5054417714/ HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/8.0.17, PleskLin
Content-Encoding: gzip
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css
31.31.198.181200 OK 2.6 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type assembler source, ASCII text
Hash 68088c914b952e66a6ffa353043d53c8
2af6ec93cb58ca1d06f24382a156316bd349240c
747db045441eba3c2e50a29fa3c8cec7f6fb9fce7a72fa3762b3f03bf893ede1
GET /PUBG/N1/5054417714/css/style.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-3122"
X-Powered-By: PleskLin
Content-Encoding: gzip
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/twitter.css
31.31.198.181200 OK 716 B URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/twitter.css
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash b3fb62f29a908e3690588ef71c3090c3
3ceb16599736b52ac70bd54b9677210d55099913
f98b5a99fdec07466edb3c158148b0bd6aba19fed6c85b68cd51519d67ccb4cc
GET /PUBG/N1/5054417714/css/login/twitter.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-9f5"
X-Powered-By: PleskLin
Content-Encoding: gzip
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/facebook.css
31.31.198.181200 OK 840 B URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/facebook.css
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash 582e427dc17eaab22e81f77b2d75d517
8d81fcda53d004459ed51269c9ef373dc3fb9ae2
1020df49af20003fc6ab5ce7854f29db12a6a70aa97b5bffcb0b3830362a0a62
GET /PUBG/N1/5054417714/css/login/facebook.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-eb7"
X-Powered-By: PleskLin
Content-Encoding: gzip
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/animate.css
31.31.198.181200 OK 4.7 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/animate.css
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash fdec17f65030ba990d90758057daa1a5
fef117fca16e4cddc3e732dc93125acd10a12aad
f0107b433d264c1de870a39e76c2b023b788f6647f3b0c474b3832a52ba58fe9
GET /PUBG/N1/5054417714/css/animate.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-13052"
X-Powered-By: PleskLin
Content-Encoding: gzip
www.pubgmobile.com/images/event/common/nav_logo.svg
95.101.10.64200 OK 130 kB URL HTTP/2 www.pubgmobile.com/images/event/common/nav_logo.svg
IP 95.101.10.64:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 130 kB (129759 bytes)
Hash 30b0f3ced63d0ae1e9c221fa358cc8c7
424cdec6620c51fab21a7fcea111e90dbf1dce3d
2efbfe6c3fb89659ef7895efca11b1e99b9db6038dbd2570567e8f211b92c65e
GET /images/event/common/nav_logo.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Thu, 27 Oct 2022 06:45:15 GMT
etag: "635a28fb-61052"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 129759
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/Nizam.js
31.31.198.181200 OK 1.6 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/Nizam.js
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (5223)
Hash 62720487dbeb17f8cee764b869c36f87
6bc358575936e3735d2e4f2a2c7f3ac8cf754b0e
530fc64dfbaa956d7ceb2853b9bca20af222c01eb1b57911e98e82740ef35d3a
GET /PUBG/N1/5054417714/js/Nizam.js HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-147d"
X-Powered-By: PleskLin
Content-Encoding: gzip
www.pubgmobile.com/common/images/icon_logo.jpg
95.101.10.64200 OK 982 kB URL HTTP/2 www.pubgmobile.com/common/images/icon_logo.jpg
IP 95.101.10.64:0
ASN #20940 Akamai International B.V.
File type JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size 982 kB (982437 bytes)
Hash b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d
GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
cache-control: max-age=187
expires: Tue, 28 Mar 2023 13:21:18 GMT
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/script.js
31.31.198.181200 OK 1.2 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/script.js
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash 01b9241088b7f98a85b76606d43d9015
b1428d2696ea945ab527e22b9d6051c6f8faab16
61be856dd707aac92ac626d95aa2e06d236e02111fd58a09f9a384c06c81af1e
GET /PUBG/N1/5054417714/js/script.js HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-1239"
X-Powered-By: PleskLin
Content-Encoding: gzip
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/showHide.js
31.31.198.181200 OK 271 B URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/showHide.js
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with CRLF line terminators
Hash 460af155748a40ddb42f497ae4f5633a
9d845ad6da2fb4f976cde44345e090a5c5c5dc44
55e6394b8d75a2fac3b023a95407530b666dc09f0b420c1a2a2ac11af66a5eda
GET /PUBG/N1/5054417714/js/showHide.js HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-433"
X-Powered-By: PleskLin
Content-Encoding: gzip
code.jquery.com/jquery-1.10.2.min.js
69.16.175.10200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.10.2.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32072)
Hash 68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 13:18:11 GMT
content-encoding: gzip
content-length: 32788
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16bb3"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1680009491.dop202.sk1.t,1680009491.cds210.sk1.hn,1680009491.cds243.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ibb.co/V9rgBqw/twitter-text.png
162.19.58.161200 OK 4.3 kB URL HTTP/2 i.ibb.co/V9rgBqw/twitter-text.png
IP 162.19.58.161:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f
GET /V9rgBqw/twitter-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 4298
last-modified: Mon, 18 Oct 2021 19:35:41 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.battlegroundsmobileindia.com/common/img/icon/icon_shop_50.png
95.101.11.56200 OK 1.4 kB URL HTTP/2 www.battlegroundsmobileindia.com/common/img/icon/icon_shop_50.png
IP 95.101.11.56:0
ASN #20940 Akamai International B.V.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash a48f175e92215f456d59c0cbfdd7ced9
631e7dced44f909d6182fea873e51e167307a07c
8c9556f9a57cf08d7a116f85e1685d0e348a90de18769cc29c999ef0c2ff52ac
GET /common/img/icon/icon_shop_50.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1429
last-modified: Fri, 17 Sep 2021 01:57:06 GMT
etag: "595-5cc273f9c339d"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
www.battlegroundsmobileindia.com/common/img/btn/sns_y_w.png
95.101.11.56200 OK 2.4 kB URL HTTP/2 www.battlegroundsmobileindia.com/common/img/btn/sns_y_w.png
IP 95.101.11.56:0
ASN #20940 Akamai International B.V.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 888954c471597ea2fdcca77103f505b1
c16d8786c8232f657583507a1257b5d2be978c58
f8fd1f87d08b5e87f6b12577883a00bc6340d84cbd3b8b837b4f6472d2dc27cc
GET /common/img/btn/sns_y_w.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2369
last-modified: Fri, 14 May 2021 10:49:25 GMT
etag: "941-5c247ff491740"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
www.battlegroundsmobileindia.com/common/img/btn/sns_i_w.png
95.101.11.56200 OK 2.6 kB URL HTTP/2 www.battlegroundsmobileindia.com/common/img/btn/sns_i_w.png
IP 95.101.11.56:0
ASN #20940 Akamai International B.V.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d4e9b873d6494773a9f585a1cfafc26f
0d3b37b5345415a2e9c8572041fb7906a67c2f8a
7167f2fd7e13d728e91d8ba6ed8e7b1fcd714087c59910463e11e2b08cfdfa54
GET /common/img/btn/sns_i_w.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2638
last-modified: Fri, 14 May 2021 10:49:24 GMT
etag: "a4e-5c247ff39d500"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/popup-close.png
31.31.198.181200 OK 422 B URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/popup-close.png
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash d45afd0750df1473f2835dceb7933be8
25fe98b2ed17c8d857094d1d254fcc2a2f34c363
fd5d4a16b40eb27ac0372e93f5f0f9faa21032d1004a980838024f99798b37c8
GET /PUBG/N1/5054417714/img/popup-close.png HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/png
Content-Length: 422
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
ETag: "1a6-5e83a954aae80"
Accept-Ranges: bytes
X-Powered-By: PleskLin
i.ibb.co/Wg8qQxh/facebook-text.png
162.19.58.161200 OK 29 kB URL HTTP/2 i.ibb.co/Wg8qQxh/facebook-text.png
IP 162.19.58.161:0
File type PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /Wg8qQxh/facebook-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 28789
last-modified: Mon, 18 Oct 2021 19:35:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/jwMxWFh/menu.png
162.19.58.161200 OK 3.9 kB URL HTTP/2 i.ibb.co/jwMxWFh/menu.png
IP 162.19.58.161:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 7777bd0a549e245607ebc0cad73cb093
8d68e31d4704d127426209330de4e8ecf8e5d7b2
8cb72ee9fa30b299783be0d40f5e708db873984c27c2824d066af6c7bacfa738
GET /jwMxWFh/menu.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 3906
last-modified: Mon, 04 Jul 2022 04:38:38 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/3.jpg
31.31.198.181200 OK 24 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/3.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Hash e6f2999343fb376c74a193cdc3824c5c
884d902c6453fb4ee6b7f1dc63cbc5fd2126ae24
5a78cda8e00686ab5b85944c4977f32769a588597b422358b692285f67a65af5
GET /PUBG/N1/5054417714/img/rewards/3.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 24413
Last-Modified: Wed, 11 Jan 2023 22:53:46 GMT
Connection: keep-alive
ETag: "63bf3dfa-5f5d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/5.jpg
31.31.198.181200 OK 26 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/5.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Hash 54e9ee6e10b644fd49b711aba9dc795d
1928a2f897b52543fd393a4edc181bffba583a8e
e11c1ca823826ca3bd553fa6e44bec2628ce1f5e56b46224b3b6a20cca02302c
GET /PUBG/N1/5054417714/img/rewards/5.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 25971
Last-Modified: Wed, 11 Jan 2023 22:53:46 GMT
Connection: keep-alive
ETag: "63bf3dfa-6573"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.postimg.cc/66bK3tfJ/Amod.png
162.19.88.69200 OK 86 kB URL HTTP/2 i.postimg.cc/66bK3tfJ/Amod.png
IP 162.19.88.69:0
File type PNG image data, 1280 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash c984d71cd905f49da568e4065129d87e
659edc07148f7197cdf025bd0ed9ac1d296f9131
c428adc61eebb6d5fb1fab43436b08fc12d7c63419f435395e436babd0adf789
GET /66bK3tfJ/Amod.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 86253
last-modified: Wed, 17 Aug 2022 14:47:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.battlegroundsmobileindia.com/common/img/btn/sns_f_w.png
95.101.11.56200 OK 2.4 kB URL HTTP/2 www.battlegroundsmobileindia.com/common/img/btn/sns_f_w.png
IP 95.101.11.56:0
ASN #20940 Akamai International B.V.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 57b33ef147508d9a59ce3b90d6cc10c3
c402619796c175d8d1f77f39082c51583e365df3
347be294958042503fc06f16c339c6eb9e9341fc8b4ee7ccb535abb8cd9f372b
GET /common/img/btn/sns_f_w.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2369
last-modified: Fri, 14 May 2021 10:49:24 GMT
etag: "941-5c247ff39d500"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/2.jpg
31.31.198.181200 OK 18 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/2.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 221x221, components 3\012- data
Hash 2d913f303024e808e9d90a63d972e1b3
5c01ee1352ce7e054dee835d62c96cc88719602b
bbc126d07873ce345a53c2d205d487192c4c14c0b917b6c13e719bc167fe30ed
GET /PUBG/N1/5054417714/img/rewards/2.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 17962
Last-Modified: Fri, 20 Jan 2023 17:34:34 GMT
Connection: keep-alive
ETag: "63cad0aa-462a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/container.jpg
31.31.198.181200 OK 12 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/container.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x249, components 3\012- data
Hash 531e37667fabfed28e1c50d0f507a682
e270314d8b547798297a6acf66e4e4c46fb2004a
663d3b275d582e6c0bfa5e72585311b9e9504b1c2d2cc0714946d029ebb0cf49
GET /PUBG/N1/5054417714/img/container.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 12109
Last-Modified: Tue, 27 Sep 2022 06:25:26 GMT
Connection: keep-alive
ETag: "63329756-2f4d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/6.jpg
31.31.198.181200 OK 116 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/6.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 116 kB (115621 bytes)
Hash 395765a5f7711369e20b5686aec125ed
ed0ab3f00cbee69e7f87bb718c8599ed23c1a98c
ea147ace3b1f8402765a738f07b7519486fe67888ab97427835f15d7195eb0d3
GET /PUBG/N1/5054417714/img/rewards/6.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 115621
Last-Modified: Wed, 11 Jan 2023 22:53:48 GMT
Connection: keep-alive
ETag: "63bf3dfc-1c3a5"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/8.jpg
31.31.198.181200 OK 296 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/8.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 296 kB (296469 bytes)
Hash 0c0fc0dce7139c9f12e48f9362387f95
78d16356b1f67b1e95ab551375a82893face020e
f76f40f5507beb6cf669ccbd6d4acd47bc356fb9d0f83571ad92ec044c5b40ae
GET /PUBG/N1/5054417714/img/rewards/8.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 296469
Last-Modified: Wed, 11 Jan 2023 22:53:44 GMT
Connection: keep-alive
ETag: "63bf3df8-48615"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 82631e6ae870cbc58c4ca6fbb29dcf7f
11abef6735c132dc2060363ad3e1ec2c88ae1bc4
b3a9075f9cb01c3cf689da0aef6e878e9e406e5188003d60bd64970edb14a9ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3A9075F9CB01C3CF689DA0AEF6E878E9E406E5188003D60BD64970EDB14A9EF"
Last-Modified: Sun, 26 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5219
Expires: Tue, 28 Mar 2023 14:45:10 GMT
Date: Tue, 28 Mar 2023 13:18:11 GMT
Connection: keep-alive
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/header.jpg
31.31.198.181200 OK 129 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/header.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x721, components 3\012- data
Size 129 kB (128897 bytes)
Hash 9f2c0ff676d8e836a7ea18d47e015f36
c8a70612a4baf8f6a68a419d33270a6e19ea213d
6112d082863ebcc48cc0b16b49751e000e3c4644d03976858d2b33acc5d0613d
GET /PUBG/N1/5054417714/img/header.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 128897
Last-Modified: Thu, 19 Jan 2023 10:27:24 GMT
Connection: keep-alive
ETag: "63c91b0c-1f781"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/btn_item.jpg
31.31.198.181200 OK 1.8 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/btn_item.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 203 x 66, 4-bit colormap, non-interlaced\012- data
Hash 10dda51951925c543cba06644184d0d0
afc4a0d90d43680258a42b709213ff8b9a68dc98
efab4a3f3cc37bbbd25a9adede1c3f08f8ad9d37d418c1a18f946737adf397bd
GET /PUBG/N1/5054417714/img/btn_item.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 1776
Last-Modified: Thu, 19 Jan 2023 10:27:24 GMT
Connection: keep-alive
ETag: "63c91b0c-6f0"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/4.jpg
31.31.198.181200 OK 36 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/4.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 665x704, components 3\012- data
Hash 1a0eeafe16c36bac530cdfec4d9b3c75
d59d88d27ad95aab516c27ee743ebbe1aedc2fcc
be3ccf03ec4b6507f710edaba88db3632a1c486f9cde711620d0617f393aea22
GET /PUBG/N1/5054417714/img/rewards/4.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 35742
Last-Modified: Sun, 13 Nov 2022 13:12:06 GMT
Connection: keep-alive
ETag: "6370ed26-8b9e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/1.jpg
31.31.198.181200 OK 572 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/1.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 1080 x 1081, 8-bit/color RGB, non-interlaced\012- data
Size 572 kB (571553 bytes)
Hash 8bc207cd54418cc92926b248a50adaaf
e3e3a3286df65a7dc157fa8b8721bc3af44c3b5b
879b0feec9779eccf62a28b9beadab4dcb9f94fdcee13102533f6e038ff6a1e5
GET /PUBG/N1/5054417714/img/rewards/1.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 571553
Last-Modified: Wed, 11 Jan 2023 22:35:08 GMT
Connection: keep-alive
ETag: "63bf399c-8b8a1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
l.top4top.io/m_1725u5z7i1.mp3
65.21.235.194206 Partial Content 20 kB URL HTTP/2 l.top4top.io/m_1725u5z7i1.mp3
IP 65.21.235.194:0
ASN #24940 Hetzner Online GmbH
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash ee5b5d12064ae26f839b882edb33da62
6fa93ef00f294eec4ef05276e81813db1e95e346
4bc5852e5cec62ceab9260f712961f59609868151e01b63e7b7cae2b00efed54
GET /m_1725u5z7i1.mp3 HTTP/1.1
Host: l.top4top.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: audio/mpeg
content-length: 19781
set-cookie: klj_40d147_downloads=kh51z; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Wed, 29 Mar 2023 12:54:51 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="open_reward_tab.mp3"
etag: "5f685351-4d45"
expires: Tue, 28 Mar 2023 15:18:11 GMT
cache-control: max-age=7200
x-file-id: x34392023x
content-range: bytes 0-19780/19781
X-Firefox-Spdy: h2
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/7.jpg
31.31.198.181200 OK 26 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/7.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 75977713fd215e74a3bae59119619ca8
21651aa1ac69487abbadb14a1dcdff2994d76d40
2171ac78bc73a4144adad7ec88f69692b63c8017124383cec89a74924effff70
GET /PUBG/N1/5054417714/img/rewards/7.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 26338
Last-Modified: Sun, 13 Nov 2022 01:47:36 GMT
Connection: keep-alive
ETag: "63704cb8-66e2"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2e7cbc70ee4e1c57a3ffee8d8fb2920
c5ed4b31a38070a52571e1160fd1a1b11642f325
e0b30c967d0c8f5f1f1f5923d3a491da56a87fde4acbe5d54e77412ec6448e68
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0B30C967D0C8F5F1F1F5923D3A491DA56A87FDE4ACBE5D54E77412EC6448E68"
Last-Modified: Tue, 28 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18508
Expires: Tue, 28 Mar 2023 18:26:39 GMT
Date: Tue, 28 Mar 2023 13:18:11 GMT
Connection: keep-alive
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/9.jpg
31.31.198.181200 OK 31 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/9.jpg
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 663x702, components 3\012- data
Hash 964e267600840379b1d6039a631c3f43
b8d77cea7012b6e7e0b694d5faf19fbeb1ad02c8
7fa6bfc6e686228ffa28d0259137ee544b949311154d1971335444e30ca93492
GET /PUBG/N1/5054417714/img/rewards/9.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 31141
Last-Modified: Sun, 13 Nov 2022 13:12:12 GMT
Connection: keep-alive
ETag: "6370ed2c-79a5"
X-Powered-By: PleskLin
Accept-Ranges: bytes
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/event-notification-content.png
31.31.198.181200 OK 320 kB URL HTTP/1.1 u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/event-notification-content.png
IP 31.31.198.181:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, height=390, software=PicsArt, orientation=upper-left, datetime=2023:01:16 04:08:50, width=2783], baseline, precision 8, 4096x558, components 3\012- data
Size 320 kB (320289 bytes)
Hash 8e7c35e61eb8a4cf0ca14eae7eec5cb7
c4bf55357bac7b3215ea97e7ee917fc443766149
40404db05ae392d91e4c9063d2a92a5e1d34280da74a2429f84a3baca3c32133
GET /PUBG/N1/5054417714/img/event-notification-content.png HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/png
Content-Length: 320289
Last-Modified: Thu, 19 Jan 2023 10:27:24 GMT
Connection: keep-alive
ETag: "63c91b0c-4e321"
X-Powered-By: PleskLin
Accept-Ranges: bytes
a.top4top.io/m_1725zobal2.mp3
51.159.64.45206 Partial Content 18 kB URL HTTP/2 a.top4top.io/m_1725zobal2.mp3
IP 51.159.64.45:0
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash 70ded6b0b406f9710307bc35e221629f
7034ec2ff72c936255b04c0890ce8976599380cc
22e1575a06426f427b46598d6599c565e80ed3e937b1872b0d5d928bfe5b2d65
GET /m_1725zobal2.mp3 HTTP/1.1
Host: a.top4top.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: audio/mpeg
content-length: 17691
set-cookie: klj_40d147_downloads=kh520; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Wed, 29 Mar 2023 12:54:51 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="close_reward_popup.mp3"
etag: "5f685351-451b"
expires: Tue, 28 Mar 2023 15:18:11 GMT
cache-control: max-age=7200
x-file-id: x34392024x
content-range: bytes 0-17690/17691
X-Firefox-Spdy: h2
www.battlegroundsmobileindia.com/common/img/main/app.png
95.101.11.56200 OK 30 kB URL HTTP/2 www.battlegroundsmobileindia.com/common/img/main/app.png
IP 95.101.11.56:0
ASN #20940 Akamai International B.V.
File type PNG image data, 117 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ae43b6c707f6c559b4b19ba64ba6f4e
8a67a6bbe6d443180fb3a0d88355cef490ec85b1
e85ade5d6786ebf81122a53e42d731a33edf5368d8b18e8dc397c0fbf06b9268
GET /common/img/main/app.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 30182
last-modified: Mon, 17 May 2021 08:48:00 GMT
etag: "75e6-5c282a696f000"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4002
Expires: Tue, 28 Mar 2023 14:24:54 GMT
Date: Tue, 28 Mar 2023 13:18:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4002
Expires: Tue, 28 Mar 2023 14:24:54 GMT
Date: Tue, 28 Mar 2023 13:18:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1da68df9d96e2758e37b9f15daab027b
5ff19ed6dc5752aa4b15fb88da972b736fd55783
ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdcsgGZsoAMFQkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: VYUarzUegSCD6A4s7tUQ-0O1mjal3BAW7SiiXSpOnFEDd5-HHoA5Cw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:55:21 GMT
age: 55371
etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 07:55:07 GMT
age: 19385
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fdd8a3f935830ca9e5ffdb5824acebc
39caaddec703fdad962d03fff8687bad2c1df4ad
6fe6301fb3610c3e8a9b62671579db53189bb62ead4cf5ab30a1f1e0b90b8ca2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7537
x-amzn-requestid: 4f7aaf6e-3eca-4033-aa21-27b5e7df6a0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbupFURIAMFlZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cc3-153c4e0b6b9d1b586c985f8d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 07sU32yK0Sqkqg_YzC_cfw3stDMOa2cViR6IrpHw5cfSEjUOHTITAA==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:37 GMT
age: 55775
etag: "39caaddec703fdad962d03fff8687bad2c1df4ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 789f11978a1149984408fbbb9a2b3f81
078bd523107096bab5e26d42b18e316c253f1ca7
7974980290443b64126f512686261150cd27331cb7b32a96d1167a97d046e8a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 9277e35d-8fe8-482e-b65c-b132dfcbd87e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbqBGl0IAMFy4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca6-7869936b33cbf3633c68e7ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: niXBcLXb34cBs5-FqU8flhIK5sZ_ykmhwnozGbLigHI3jwXySoF_xw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:49:49 GMT
age: 55703
etag: "078bd523107096bab5e26d42b18e316c253f1ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee9c83faa5fdb77ba988a41207800b0e
4ac4c600767de39c5134cb97f78fcb29a681ee18
9039f7232ada16ae6d8a447225a15ef949c705a6f9e7aa20b367d001cd88c94f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11894
x-amzn-requestid: 27689ac4-87c8-4c3b-bb2b-5577c82793c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cdb7_EoHIAMFprQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220d19-0c2e035d4465b1d458a996c9;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:39:37 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vGkA0y2G3zApNzW9bdZ4TyUWXMGjIXNHHQKrD2T8767oA7qBnqKDqQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:01:37 GMT
age: 54995
etag: "4ac4c600767de39c5134cb97f78fcb29a681ee18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada29e049501b12a35b0bcc5f68e3e57
5c1ba9bffbcc9007e7f119dbb3197db34a12f8da
b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: uCaEsILUx4u_fBJ7J9CgQanUW-BmV69mFvGRjZ0roFWluE_joVyVrA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 55791
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
34.120.237.76200 OK 20 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e093e7b5c12cfc2aee601f823ea47e
d76b3958471b2ed70a2b52f078ec638748fdb441
de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 20349
x-amzn-requestid: 2de7d242-f277-42a6-9dc4-2fc98207a978
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbumFzOIAMF3hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cc3-5f20ad7b2216219138f7b557;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pnby7LhwZDWxJHtyWBlI7l_AO8l-tjjTVHatiCKG2htZ4RQNQOZkgQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 55797
etag: "d76b3958471b2ed70a2b52f078ec638748fdb441"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP 142.250.74.106:0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Mar 2023 13:18:11 GMT
date: Tue, 28 Mar 2023 13:18:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.11.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 25456245
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7af028584d55b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2