Report - u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

Report Overview

Submitted URL
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
IP
31.31.198.181
ASN
#197695 Domain names registrar REG.RU, Ltd
Submitted
2023-03-28 13:18:21
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
i.ibb.co	13485	2018-11-25T11:13:48Z	2023-03-29T13:51:20Z	1.2 kB	38 kB	162.19.58.161
a.top4top.io	588496	2019-12-05T19:36:40Z	2023-03-29T03:28:05Z	444 B	18 kB	51.159.64.45
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	52.36.246.241
www.pubgmobile.com	21653	2018-04-27T13:06:13Z	2023-03-29T12:11:12Z	863 B	1.1 MB	95.101.10.64
code.jquery.com	634	2012-05-21T19:28:02Z	2023-03-29T05:20:03Z	384 B	33 kB	69.16.175.10
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.7 kB	7.1 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
i.postimg.cc	23840	2018-04-11T12:01:12Z	2023-03-29T12:30:48Z	413 B	87 kB	162.19.88.69
www.battlegroundsmobileindia.com	unknown	2021-07-19T06:25:22Z	2023-03-28T17:25:01Z	2.2 kB	40 kB	95.101.11.56
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.8 kB	78 kB	34.120.237.76
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-29T13:32:47Z	432 B	903 B	104.18.11.207
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	433 B	630 B	142.250.74.106
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
u1980954.plsk.regruhosting.ru	unknown	2023-03-20T09:02:47Z	2023-03-29T18:40:06Z	8.2 kB	1.6 MB	31.31.198.181
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	1.7 kB	3.5 kB	142.250.74.131
l.top4top.io	926491	2020-01-15T00:19:40Z	2023-03-29T14:42:39Z	444 B	20 kB	65.21.235.194

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-28 13:18:31	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-03-28	medium	u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/	Facebook, Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/Nizam.js	5.2 kB	2023-03-07	2024-03-25
Pretty URL u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/Nizam.js IP 31.31.198.181 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:02 Last Seen2024-03-25 06:34:56 Times Seen204 Hash 1c0bc4ee6269a78e646823fd245b07f7 72d2d04e1bdd7dda8b4206f0ddf2fd65776922de 0c2f2fb4cea2e6b2ac9c06a6c27c4c65e18b233d7ab6008deef20efab921d991 Loading...

	code.jquery.com/jquery-1.10.2.min.js	93 kB	2023-03-07	2024-04-25
Pretty URL code.jquery.com/jquery-1.10.2.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 12:03:35 Times Seen10153 Hash 628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 13:58:07 Times Seen14075 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js	84 kB	2023-03-07	2024-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 14:41:35 Times Seen13723 Hash e40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4 Loading...

	u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/script.js	4.7 kB	2023-03-07	2024-03-17
Pretty URL u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/script.js IP 31.31.198.181 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:52 Last Seen2024-03-17 06:55:08 Times Seen204 Hash 08735a1f343ed3a7d46f7b5afbcf0e70 a30a821eaca01beb999f6477fa3658f63c9b0fe3 5fb438e931fa145db1ff5e453d5b1580608feaf87215b5dd03590eb6300340d7 Loading...

	u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/showHide.js	1.1 kB	2023-03-07	2024-04-19
Pretty URL u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/showHide.js IP 31.31.198.181 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 19:21:56 Times Seen1165 Hash d3e46c4a7d95270da519489746521b1a 5f5a383b6a1a635695e2c72aace79363708f82be 8023fc37af7de956061342860b38dd1646ce1f1fa7ecc2ce703e2b544b2bd283 Loading...

HTTP Transactions (63)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 28 Mar 2023 14:03:27 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17214
Expires: Tue, 28 Mar 2023 18:05:04 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Backoff, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 12:28:03 GMT
content-type: application/json
age: 3007
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15090
Expires: Tue, 28 Mar 2023 17:29:40 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 100Dj5dYcQ6GgMqxjzS+JB95chOymEiLRFnfLkzP3oD526VFLg3zQvPvSq61xeR6ytnH9oTTlKcvvbLKQWT+Jg==
x-amz-request-id: J1K2YXHD01605W2T
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 12:56:13 GMT
age: 1317
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Cache-Control, Expires, ETag, Pragma, Backoff, Last-Modified, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 13:17:25 GMT
age: 45
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
da5340ee69a1000f751686df9e716663
a5da880a61ed119790a7990bbdcc0c97eecf04f2
d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7900
Expires: Tue, 28 Mar 2023 15:29:50 GMT
Date: Tue, 28 Mar 2023 13:18:10 GMT
Connection: keep-alive

push.services.mozilla.com/

52.36.246.241

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.36.246.241:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gJP10kpJWO3Hv3lUABG/Ww==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QxHpTO6O6EVps81YQ6L/QQcfG50=

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

31.31.198.181

200 OK

3.9 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Size
3.9 kB (3884 bytes)
Hash
f5abd3440fc3004712c7d53c2df7f8fa
2510a61125722becbabac561f3986f2573680a51
c072e38b5277eb6c87a59dac7ac9ff2fdfc815f6431098c00b8f704862a89840

Detections

Analyzer	Verdict	Alert
openphish	Facebook, Inc.

HTTP Headers

GET /PUBG/N1/5054417714/ HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/8.0.17, PleskLin
Content-Encoding: gzip

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css

31.31.198.181

200 OK

2.6 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
assembler source, ASCII text
Size
2.6 kB (2602 bytes)
Hash
68088c914b952e66a6ffa353043d53c8
2af6ec93cb58ca1d06f24382a156316bd349240c
747db045441eba3c2e50a29fa3c8cec7f6fb9fce7a72fa3762b3f03bf893ede1

HTTP Headers

GET /PUBG/N1/5054417714/css/style.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-3122"
X-Powered-By: PleskLin
Content-Encoding: gzip

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/twitter.css

31.31.198.181

200 OK

716 B

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/twitter.css
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text
Size
716 B (716 bytes)
Hash
b3fb62f29a908e3690588ef71c3090c3
3ceb16599736b52ac70bd54b9677210d55099913
f98b5a99fdec07466edb3c158148b0bd6aba19fed6c85b68cd51519d67ccb4cc

HTTP Headers

GET /PUBG/N1/5054417714/css/login/twitter.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-9f5"
X-Powered-By: PleskLin
Content-Encoding: gzip

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/facebook.css

31.31.198.181

200 OK

840 B

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/login/facebook.css
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text
Size
840 B (840 bytes)
Hash
582e427dc17eaab22e81f77b2d75d517
8d81fcda53d004459ed51269c9ef373dc3fb9ae2
1020df49af20003fc6ab5ce7854f29db12a6a70aa97b5bffcb0b3830362a0a62

HTTP Headers

GET /PUBG/N1/5054417714/css/login/facebook.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-eb7"
X-Powered-By: PleskLin
Content-Encoding: gzip

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/animate.css

31.31.198.181

200 OK

4.7 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/animate.css
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text
Size
4.7 kB (4670 bytes)
Hash
fdec17f65030ba990d90758057daa1a5
fef117fca16e4cddc3e732dc93125acd10a12aad
f0107b433d264c1de870a39e76c2b023b788f6647f3b0c474b3832a52ba58fe9

HTTP Headers

GET /PUBG/N1/5054417714/css/animate.css HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-13052"
X-Powered-By: PleskLin
Content-Encoding: gzip

www.pubgmobile.com/images/event/common/nav_logo.svg

95.101.10.64

200 OK

130 kB

URL HTTP/2
www.pubgmobile.com/images/event/common/nav_logo.svg
IP
95.101.10.64:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
130 kB (129759 bytes)
Hash
30b0f3ced63d0ae1e9c221fa358cc8c7
424cdec6620c51fab21a7fcea111e90dbf1dce3d
2efbfe6c3fb89659ef7895efca11b1e99b9db6038dbd2570567e8f211b92c65e

HTTP Headers

GET /images/event/common/nav_logo.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Thu, 27 Oct 2022 06:45:15 GMT
etag: "635a28fb-61052"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 129759
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/Nizam.js

31.31.198.181

200 OK

1.6 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/Nizam.js
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text, with very long lines (5223)
Size
1.6 kB (1558 bytes)
Hash
62720487dbeb17f8cee764b869c36f87
6bc358575936e3735d2e4f2a2c7f3ac8cf754b0e
530fc64dfbaa956d7ceb2853b9bca20af222c01eb1b57911e98e82740ef35d3a

HTTP Headers

GET /PUBG/N1/5054417714/js/Nizam.js HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-147d"
X-Powered-By: PleskLin
Content-Encoding: gzip

www.pubgmobile.com/common/images/icon_logo.jpg

95.101.10.64

200 OK

982 kB

URL HTTP/2
www.pubgmobile.com/common/images/icon_logo.jpg
IP
95.101.10.64:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size
982 kB (982437 bytes)
Hash
b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d

HTTP Headers

GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
cache-control: max-age=187
expires: Tue, 28 Mar 2023 13:21:18 GMT
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/script.js

31.31.198.181

200 OK

1.2 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/script.js
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text
Size
1.2 kB (1214 bytes)
Hash
01b9241088b7f98a85b76606d43d9015
b1428d2696ea945ab527e22b9d6051c6f8faab16
61be856dd707aac92ac626d95aa2e06d236e02111fd58a09f9a384c06c81af1e

HTTP Headers

GET /PUBG/N1/5054417714/js/script.js HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-1239"
X-Powered-By: PleskLin
Content-Encoding: gzip

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/showHide.js

31.31.198.181

200 OK

271 B

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/js/showHide.js
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text, with CRLF line terminators
Size
271 B (271 bytes)
Hash
460af155748a40ddb42f497ae4f5633a
9d845ad6da2fb4f976cde44345e090a5c5c5dc44
55e6394b8d75a2fac3b023a95407530b666dc09f0b420c1a2a2ac11af66a5eda

HTTP Headers

GET /PUBG/N1/5054417714/js/showHide.js HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631afd6a-433"
X-Powered-By: PleskLin
Content-Encoding: gzip

code.jquery.com/jquery-1.10.2.min.js

69.16.175.10

200 OK

33 kB

URL HTTP/2
code.jquery.com/jquery-1.10.2.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32072)
Size
33 kB (32788 bytes)
Hash
68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c

HTTP Headers

GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 28 Mar 2023 13:18:11 GMT
content-encoding: gzip
content-length: 32788
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16bb3"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1680009491.dop202.sk1.t,1680009491.cds210.sk1.hn,1680009491.cds243.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i.ibb.co/V9rgBqw/twitter-text.png

162.19.58.161

200 OK

4.3 kB

URL HTTP/2
i.ibb.co/V9rgBqw/twitter-text.png
IP
162.19.58.161:0
ASN
#16276 OVH SAS

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4298 bytes)
Hash
fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f

HTTP Headers

GET /V9rgBqw/twitter-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 4298
last-modified: Mon, 18 Oct 2021 19:35:41 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.battlegroundsmobileindia.com/common/img/icon/icon_shop_50.png

95.101.11.56

200 OK

1.4 kB

URL HTTP/2
www.battlegroundsmobileindia.com/common/img/icon/icon_shop_50.png
IP
95.101.11.56:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Size
1.4 kB (1429 bytes)
Hash
a48f175e92215f456d59c0cbfdd7ced9
631e7dced44f909d6182fea873e51e167307a07c
8c9556f9a57cf08d7a116f85e1685d0e348a90de18769cc29c999ef0c2ff52ac

HTTP Headers

GET /common/img/icon/icon_shop_50.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1429
last-modified: Fri, 17 Sep 2021 01:57:06 GMT
etag: "595-5cc273f9c339d"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

www.battlegroundsmobileindia.com/common/img/btn/sns_y_w.png

95.101.11.56

200 OK

2.4 kB

URL HTTP/2
www.battlegroundsmobileindia.com/common/img/btn/sns_y_w.png
IP
95.101.11.56:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2369 bytes)
Hash
888954c471597ea2fdcca77103f505b1
c16d8786c8232f657583507a1257b5d2be978c58
f8fd1f87d08b5e87f6b12577883a00bc6340d84cbd3b8b837b4f6472d2dc27cc

HTTP Headers

GET /common/img/btn/sns_y_w.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2369
last-modified: Fri, 14 May 2021 10:49:25 GMT
etag: "941-5c247ff491740"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

www.battlegroundsmobileindia.com/common/img/btn/sns_i_w.png

95.101.11.56

200 OK

2.6 kB

URL HTTP/2
www.battlegroundsmobileindia.com/common/img/btn/sns_i_w.png
IP
95.101.11.56:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2638 bytes)
Hash
d4e9b873d6494773a9f585a1cfafc26f
0d3b37b5345415a2e9c8572041fb7906a67c2f8a
7167f2fd7e13d728e91d8ba6ed8e7b1fcd714087c59910463e11e2b08cfdfa54

HTTP Headers

GET /common/img/btn/sns_i_w.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2638
last-modified: Fri, 14 May 2021 10:49:24 GMT
etag: "a4e-5c247ff39d500"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/popup-close.png

31.31.198.181

200 OK

422 B

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/popup-close.png
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
422 B (422 bytes)
Hash
d45afd0750df1473f2835dceb7933be8
25fe98b2ed17c8d857094d1d254fcc2a2f34c363
fd5d4a16b40eb27ac0372e93f5f0f9faa21032d1004a980838024f99798b37c8

HTTP Headers

GET /PUBG/N1/5054417714/img/popup-close.png HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/png
Content-Length: 422
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 09 Sep 2022 08:46:34 GMT
ETag: "1a6-5e83a954aae80"
Accept-Ranges: bytes
X-Powered-By: PleskLin

i.ibb.co/Wg8qQxh/facebook-text.png

162.19.58.161

200 OK

29 kB

URL HTTP/2
i.ibb.co/Wg8qQxh/facebook-text.png
IP
162.19.58.161:0
ASN
#16276 OVH SAS

File type
PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Size
29 kB (28789 bytes)
Hash
74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401

HTTP Headers

GET /Wg8qQxh/facebook-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 28789
last-modified: Mon, 18 Oct 2021 19:35:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/jwMxWFh/menu.png

162.19.58.161

200 OK

3.9 kB

URL HTTP/2
i.ibb.co/jwMxWFh/menu.png
IP
162.19.58.161:0
ASN
#16276 OVH SAS

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3906 bytes)
Hash
7777bd0a549e245607ebc0cad73cb093
8d68e31d4704d127426209330de4e8ecf8e5d7b2
8cb72ee9fa30b299783be0d40f5e708db873984c27c2824d066af6c7bacfa738

HTTP Headers

GET /jwMxWFh/menu.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 3906
last-modified: Mon, 04 Jul 2022 04:38:38 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/3.jpg

31.31.198.181

200 OK

24 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/3.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Size
24 kB (24413 bytes)
Hash
e6f2999343fb376c74a193cdc3824c5c
884d902c6453fb4ee6b7f1dc63cbc5fd2126ae24
5a78cda8e00686ab5b85944c4977f32769a588597b422358b692285f67a65af5

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/3.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 24413
Last-Modified: Wed, 11 Jan 2023 22:53:46 GMT
Connection: keep-alive
ETag: "63bf3dfa-5f5d"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/5.jpg

31.31.198.181

200 OK

26 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/5.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Size
26 kB (25971 bytes)
Hash
54e9ee6e10b644fd49b711aba9dc795d
1928a2f897b52543fd393a4edc181bffba583a8e
e11c1ca823826ca3bd553fa6e44bec2628ce1f5e56b46224b3b6a20cca02302c

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/5.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 25971
Last-Modified: Wed, 11 Jan 2023 22:53:46 GMT
Connection: keep-alive
ETag: "63bf3dfa-6573"
X-Powered-By: PleskLin
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 13:18:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i.postimg.cc/66bK3tfJ/Amod.png

162.19.88.69

200 OK

86 kB

URL HTTP/2
i.postimg.cc/66bK3tfJ/Amod.png
IP
162.19.88.69:0
ASN
#16276 OVH SAS

File type
PNG image data, 1280 x 54, 8-bit/color RGBA, non-interlaced\012- data
Size
86 kB (86253 bytes)
Hash
c984d71cd905f49da568e4065129d87e
659edc07148f7197cdf025bd0ed9ac1d296f9131
c428adc61eebb6d5fb1fab43436b08fc12d7c63419f435395e436babd0adf789

HTTP Headers

GET /66bK3tfJ/Amod.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: image/png
content-length: 86253
last-modified: Wed, 17 Aug 2022 14:47:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.battlegroundsmobileindia.com/common/img/btn/sns_f_w.png

95.101.11.56

200 OK

2.4 kB

URL HTTP/2
www.battlegroundsmobileindia.com/common/img/btn/sns_f_w.png
IP
95.101.11.56:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2369 bytes)
Hash
57b33ef147508d9a59ce3b90d6cc10c3
c402619796c175d8d1f77f39082c51583e365df3
347be294958042503fc06f16c339c6eb9e9341fc8b4ee7ccb535abb8cd9f372b

HTTP Headers

GET /common/img/btn/sns_f_w.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2369
last-modified: Fri, 14 May 2021 10:49:24 GMT
etag: "941-5c247ff39d500"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/2.jpg

31.31.198.181

200 OK

18 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/2.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 221x221, components 3\012- data
Size
18 kB (17962 bytes)
Hash
2d913f303024e808e9d90a63d972e1b3
5c01ee1352ce7e054dee835d62c96cc88719602b
bbc126d07873ce345a53c2d205d487192c4c14c0b917b6c13e719bc167fe30ed

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/2.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 17962
Last-Modified: Fri, 20 Jan 2023 17:34:34 GMT
Connection: keep-alive
ETag: "63cad0aa-462a"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/container.jpg

31.31.198.181

200 OK

12 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/container.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x249, components 3\012- data
Size
12 kB (12109 bytes)
Hash
531e37667fabfed28e1c50d0f507a682
e270314d8b547798297a6acf66e4e4c46fb2004a
663d3b275d582e6c0bfa5e72585311b9e9504b1c2d2cc0714946d029ebb0cf49

HTTP Headers

GET /PUBG/N1/5054417714/img/container.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 12109
Last-Modified: Tue, 27 Sep 2022 06:25:26 GMT
Connection: keep-alive
ETag: "63329756-2f4d"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/6.jpg

31.31.198.181

200 OK

116 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/6.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size
116 kB (115621 bytes)
Hash
395765a5f7711369e20b5686aec125ed
ed0ab3f00cbee69e7f87bb718c8599ed23c1a98c
ea147ace3b1f8402765a738f07b7519486fe67888ab97427835f15d7195eb0d3

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/6.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 115621
Last-Modified: Wed, 11 Jan 2023 22:53:48 GMT
Connection: keep-alive
ETag: "63bf3dfc-1c3a5"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/8.jpg

31.31.198.181

200 OK

296 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/8.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size
296 kB (296469 bytes)
Hash
0c0fc0dce7139c9f12e48f9362387f95
78d16356b1f67b1e95ab551375a82893face020e
f76f40f5507beb6cf669ccbd6d4acd47bc356fb9d0f83571ad92ec044c5b40ae

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/8.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 296469
Last-Modified: Wed, 11 Jan 2023 22:53:44 GMT
Connection: keep-alive
ETag: "63bf3df8-48615"
X-Powered-By: PleskLin
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
82631e6ae870cbc58c4ca6fbb29dcf7f
11abef6735c132dc2060363ad3e1ec2c88ae1bc4
b3a9075f9cb01c3cf689da0aef6e878e9e406e5188003d60bd64970edb14a9ef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3A9075F9CB01C3CF689DA0AEF6E878E9E406E5188003D60BD64970EDB14A9EF"
Last-Modified: Sun, 26 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5219
Expires: Tue, 28 Mar 2023 14:45:10 GMT
Date: Tue, 28 Mar 2023 13:18:11 GMT
Connection: keep-alive

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/header.jpg

31.31.198.181

200 OK

129 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/header.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x721, components 3\012- data
Size
129 kB (128897 bytes)
Hash
9f2c0ff676d8e836a7ea18d47e015f36
c8a70612a4baf8f6a68a419d33270a6e19ea213d
6112d082863ebcc48cc0b16b49751e000e3c4644d03976858d2b33acc5d0613d

HTTP Headers

GET /PUBG/N1/5054417714/img/header.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 128897
Last-Modified: Thu, 19 Jan 2023 10:27:24 GMT
Connection: keep-alive
ETag: "63c91b0c-1f781"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/btn_item.jpg

31.31.198.181

200 OK

1.8 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/btn_item.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 203 x 66, 4-bit colormap, non-interlaced\012- data
Size
1.8 kB (1776 bytes)
Hash
10dda51951925c543cba06644184d0d0
afc4a0d90d43680258a42b709213ff8b9a68dc98
efab4a3f3cc37bbbd25a9adede1c3f08f8ad9d37d418c1a18f946737adf397bd

HTTP Headers

GET /PUBG/N1/5054417714/img/btn_item.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 1776
Last-Modified: Thu, 19 Jan 2023 10:27:24 GMT
Connection: keep-alive
ETag: "63c91b0c-6f0"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/4.jpg

31.31.198.181

200 OK

36 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/4.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 665x704, components 3\012- data
Size
36 kB (35742 bytes)
Hash
1a0eeafe16c36bac530cdfec4d9b3c75
d59d88d27ad95aab516c27ee743ebbe1aedc2fcc
be3ccf03ec4b6507f710edaba88db3632a1c486f9cde711620d0617f393aea22

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/4.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 35742
Last-Modified: Sun, 13 Nov 2022 13:12:06 GMT
Connection: keep-alive
ETag: "6370ed26-8b9e"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/1.jpg

31.31.198.181

200 OK

572 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/1.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 1080 x 1081, 8-bit/color RGB, non-interlaced\012- data
Size
572 kB (571553 bytes)
Hash
8bc207cd54418cc92926b248a50adaaf
e3e3a3286df65a7dc157fa8b8721bc3af44c3b5b
879b0feec9779eccf62a28b9beadab4dcb9f94fdcee13102533f6e038ff6a1e5

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/1.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 571553
Last-Modified: Wed, 11 Jan 2023 22:35:08 GMT
Connection: keep-alive
ETag: "63bf399c-8b8a1"
X-Powered-By: PleskLin
Accept-Ranges: bytes

l.top4top.io/m_1725u5z7i1.mp3

65.21.235.194

206 Partial Content

20 kB

URL HTTP/2
l.top4top.io/m_1725u5z7i1.mp3
IP
65.21.235.194:0
ASN
#24940 Hetzner Online GmbH

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Size
20 kB (19781 bytes)
Hash
ee5b5d12064ae26f839b882edb33da62
6fa93ef00f294eec4ef05276e81813db1e95e346
4bc5852e5cec62ceab9260f712961f59609868151e01b63e7b7cae2b00efed54

HTTP Headers

GET /m_1725u5z7i1.mp3 HTTP/1.1
Host: l.top4top.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 206 Partial Content
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: audio/mpeg
content-length: 19781
set-cookie: klj_40d147_downloads=kh51z; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Wed, 29 Mar 2023 12:54:51 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="open_reward_tab.mp3"
etag: "5f685351-4d45"
expires: Tue, 28 Mar 2023 15:18:11 GMT
cache-control: max-age=7200
x-file-id: x34392023x
content-range: bytes 0-19780/19781
X-Firefox-Spdy: h2

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/7.jpg

31.31.198.181

200 OK

26 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/7.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Size
26 kB (26338 bytes)
Hash
75977713fd215e74a3bae59119619ca8
21651aa1ac69487abbadb14a1dcdff2994d76d40
2171ac78bc73a4144adad7ec88f69692b63c8017124383cec89a74924effff70

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/7.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 26338
Last-Modified: Sun, 13 Nov 2022 01:47:36 GMT
Connection: keep-alive
ETag: "63704cb8-66e2"
X-Powered-By: PleskLin
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2e7cbc70ee4e1c57a3ffee8d8fb2920
c5ed4b31a38070a52571e1160fd1a1b11642f325
e0b30c967d0c8f5f1f1f5923d3a491da56a87fde4acbe5d54e77412ec6448e68

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0B30C967D0C8F5F1F1F5923D3A491DA56A87FDE4ACBE5D54E77412EC6448E68"
Last-Modified: Tue, 28 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18508
Expires: Tue, 28 Mar 2023 18:26:39 GMT
Date: Tue, 28 Mar 2023 13:18:11 GMT
Connection: keep-alive

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/9.jpg

31.31.198.181

200 OK

31 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/rewards/9.jpg
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 663x702, components 3\012- data
Size
31 kB (31141 bytes)
Hash
964e267600840379b1d6039a631c3f43
b8d77cea7012b6e7e0b694d5faf19fbeb1ad02c8
7fa6bfc6e686228ffa28d0259137ee544b949311154d1971335444e30ca93492

HTTP Headers

GET /PUBG/N1/5054417714/img/rewards/9.jpg HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/jpeg
Content-Length: 31141
Last-Modified: Sun, 13 Nov 2022 13:12:12 GMT
Connection: keep-alive
ETag: "6370ed2c-79a5"
X-Powered-By: PleskLin
Accept-Ranges: bytes

u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/event-notification-content.png

31.31.198.181

200 OK

320 kB

URL HTTP/1.1
u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/img/event-notification-content.png
IP
31.31.198.181:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, height=390, software=PicsArt, orientation=upper-left, datetime=2023:01:16 04:08:50, width=2783], baseline, precision 8, 4096x558, components 3\012- data
Size
320 kB (320289 bytes)
Hash
8e7c35e61eb8a4cf0ca14eae7eec5cb7
c4bf55357bac7b3215ea97e7ee917fc443766149
40404db05ae392d91e4c9063d2a92a5e1d34280da74a2429f84a3baca3c32133

HTTP Headers

GET /PUBG/N1/5054417714/img/event-notification-content.png HTTP/1.1
Host: u1980954.plsk.regruhosting.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/PUBG/N1/5054417714/css/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 28 Mar 2023 13:18:11 GMT
Content-Type: image/png
Content-Length: 320289
Last-Modified: Thu, 19 Jan 2023 10:27:24 GMT
Connection: keep-alive
ETag: "63c91b0c-4e321"
X-Powered-By: PleskLin
Accept-Ranges: bytes

a.top4top.io/m_1725zobal2.mp3

51.159.64.45

206 Partial Content

18 kB

URL HTTP/2
a.top4top.io/m_1725zobal2.mp3
IP
51.159.64.45:0
ASN
#12876 Online S.a.s.

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Size
18 kB (17691 bytes)
Hash
70ded6b0b406f9710307bc35e221629f
7034ec2ff72c936255b04c0890ce8976599380cc
22e1575a06426f427b46598d6599c565e80ed3e937b1872b0d5d928bfe5b2d65

HTTP Headers

GET /m_1725zobal2.mp3 HTTP/1.1
Host: a.top4top.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 206 Partial Content
server: nginx
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: audio/mpeg
content-length: 17691
set-cookie: klj_40d147_downloads=kh520; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Wed, 29 Mar 2023 12:54:51 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="close_reward_popup.mp3"
etag: "5f685351-451b"
expires: Tue, 28 Mar 2023 15:18:11 GMT
cache-control: max-age=7200
x-file-id: x34392024x
content-range: bytes 0-17690/17691
X-Firefox-Spdy: h2

www.battlegroundsmobileindia.com/common/img/main/app.png

95.101.11.56

200 OK

30 kB

URL HTTP/2
www.battlegroundsmobileindia.com/common/img/main/app.png
IP
95.101.11.56:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 117 x 117, 8-bit/color RGBA, non-interlaced\012- data
Size
30 kB (30182 bytes)
Hash
6ae43b6c707f6c559b4b19ba64ba6f4e
8a67a6bbe6d443180fb3a0d88355cef490ec85b1
e85ade5d6786ebf81122a53e42d731a33edf5368d8b18e8dc397c0fbf06b9268

HTTP Headers

GET /common/img/main/app.png HTTP/1.1
Host: www.battlegroundsmobileindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 30182
last-modified: Mon, 17 May 2021 08:48:00 GMT
etag: "75e6-5c282a696f000"
accept-ranges: bytes
date: Tue, 28 Mar 2023 13:18:11 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4002
Expires: Tue, 28 Mar 2023 14:24:54 GMT
Date: Tue, 28 Mar 2023 13:18:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4002
Expires: Tue, 28 Mar 2023 14:24:54 GMT
Date: Tue, 28 Mar 2023 13:18:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7426 bytes)
Hash
1da68df9d96e2758e37b9f15daab027b
5ff19ed6dc5752aa4b15fb88da972b736fd55783
ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdcsgGZsoAMFQkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: VYUarzUegSCD6A4s7tUQ-0O1mjal3BAW7SiiXSpOnFEDd5-HHoA5Cw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:55:21 GMT
age: 55371
etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4000 bytes)
Hash
85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 07:55:07 GMT
age: 19385
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7537 bytes)
Hash
5fdd8a3f935830ca9e5ffdb5824acebc
39caaddec703fdad962d03fff8687bad2c1df4ad
6fe6301fb3610c3e8a9b62671579db53189bb62ead4cf5ab30a1f1e0b90b8ca2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7537
x-amzn-requestid: 4f7aaf6e-3eca-4033-aa21-27b5e7df6a0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbupFURIAMFlZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cc3-153c4e0b6b9d1b586c985f8d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 07sU32yK0Sqkqg_YzC_cfw3stDMOa2cViR6IrpHw5cfSEjUOHTITAA==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:37 GMT
age: 55775
etag: "39caaddec703fdad962d03fff8687bad2c1df4ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8961 bytes)
Hash
789f11978a1149984408fbbb9a2b3f81
078bd523107096bab5e26d42b18e316c253f1ca7
7974980290443b64126f512686261150cd27331cb7b32a96d1167a97d046e8a3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 9277e35d-8fe8-482e-b65c-b132dfcbd87e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbqBGl0IAMFy4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca6-7869936b33cbf3633c68e7ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: niXBcLXb34cBs5-FqU8flhIK5sZ_ykmhwnozGbLigHI3jwXySoF_xw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:49:49 GMT
age: 55703
etag: "078bd523107096bab5e26d42b18e316c253f1ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11894 bytes)
Hash
ee9c83faa5fdb77ba988a41207800b0e
4ac4c600767de39c5134cb97f78fcb29a681ee18
9039f7232ada16ae6d8a447225a15ef949c705a6f9e7aa20b367d001cd88c94f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11894
x-amzn-requestid: 27689ac4-87c8-4c3b-bb2b-5577c82793c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cdb7_EoHIAMFprQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220d19-0c2e035d4465b1d458a996c9;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:39:37 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vGkA0y2G3zApNzW9bdZ4TyUWXMGjIXNHHQKrD2T8767oA7qBnqKDqQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:01:37 GMT
age: 54995
etag: "4ac4c600767de39c5134cb97f78fcb29a681ee18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10744 bytes)
Hash
ada29e049501b12a35b0bcc5f68e3e57
5c1ba9bffbcc9007e7f119dbb3197db34a12f8da
b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: uCaEsILUx4u_fBJ7J9CgQanUW-BmV69mFvGRjZ0roFWluE_joVyVrA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 55791
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

20 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
20 kB (20349 bytes)
Hash
b3e093e7b5c12cfc2aee601f823ea47e
d76b3958471b2ed70a2b52f078ec638748fdb441
de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 20349
x-amzn-requestid: 2de7d242-f277-42a6-9dc4-2fc98207a978
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbumFzOIAMF3hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cc3-5f20ad7b2216219138f7b557;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pnby7LhwZDWxJHtyWBlI7l_AO8l-tjjTVHatiCKG2htZ4RQNQOZkgQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 55797
etag: "d76b3958471b2ed70a2b52f078ec638748fdb441"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Mar 2023 13:18:11 GMT
date: Tue, 28 Mar 2023 13:18:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.11.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://u1980954.plsk.regruhosting.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 28 Mar 2023 13:18:11 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 25456245
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7af028584d55b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (63)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type