Report - c.adup.app/34362

Report Overview

Submitted URL
c.adup.app/34362
IP
68.183.246.137
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2022-10-04 06:30:18
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	865 B	143.204.42.165
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	958 B	34 kB	216.58.207.195
c.adup.app	140529	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	335 B	4.5 kB	68.183.246.137
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	65 kB	142.250.74.10
media06-gl-ssl-gzip.gameloft.com	997586	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	814 B	41 kB	54.230.111.44
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	600 B	713 B	74.125.131.156
securepubads.g.doubleclick.net	190	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	29 kB	216.58.207.194
c.amazon-adsystem.com	300	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	176 kB	143.204.46.73
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.164.146.235
play.ludigames.com	279947	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.3 kB	30 kB	208.71.186.40
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	5.9 kB	104.110.10.32
cdn.ludigames.com	314102	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	155 kB	104.110.8.184
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	7.7 kB	142.250.74.3
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	42 kB	142.250.74.174
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	694 B	142.250.74.3
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
crt.gameloft.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	538 B	2.0 kB	15.197.158.185

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	c.adup.app/34362	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	168 B	2023-03-07	2023-04-19
Pretty URL play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2023-04-19 02:16:13 Times Seen3 Hash e993e6029801d3c21d85f178084ed0a5 75944906600cfddf68bc6c65d83be431a7379396 3efb20af36b4121888acbf89c9eae70c58c62c52c418b6f93acfbd1b3ab307f9 Loading...

	play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	55 B	2023-03-07	2023-03-26
Pretty URL play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2023-03-26 04:21:23 Times Seen2 Hash a81070359f3ba7324302c2d555b5160a 0490ba3099b08903539cfe145305af8a2e41d78b aa068c40cbed222cb4fe7d43552154e5472075d145de70c5592ef2c781c7e63d Loading...

	play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	447 B	2023-03-07	2024-04-04
Pretty URL play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:14 Times Seen6 Hash bf2c42e33cd3c7fb68f889461e5b5519 64334a765ff884eeffd040629d2d69ecce5a2758 4b2aedc6512f615ada1e19ddb8cf0e35d9b13155861fd4c028fdf096e4e6dce9 Loading...

	play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	253 B	2023-03-07	2024-04-04
Pretty URL play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:14 Times Seen5 Hash 8c9f02976392d376dc9e8260497f5d3f a3c71c83b339ba3dbea98d1601cd3528fd354b89 9d3a5ac2591d4ba7b919a046281c77416aa905c40199dac605bd6a8d99b14610 Loading...

	securepubads.g.doubleclick.net/gpt/pubads_impl_2022092701.js	387 kB	2023-03-08	2023-03-08
Pretty URL securepubads.g.doubleclick.net/gpt/pubads_impl_2022092701.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:53:24 Last Seen2023-03-08 05:53:58 Times Seen1 Hash 8d3146c687aaae3fd8de0a1ead30b132 7ef669001940b4c76951bfde8cbe562418aa500a 34c9ee51c2dd7fafb4df5f5e0bbb0a2a3508db0692f97b90b44ab89a50a545ef Loading...

	c.adup.app/34362	337 B	2023-03-08	2023-03-08
Pretty URL c.adup.app/34362 IP 68.183.246.137 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:31:00 Last Seen2023-03-08 05:31:00 Times Seen1 Hash f7f1c41d4c270043c077b554455234c7 7b824838af926a436c9b9c23151fd0e93c0b1dd7 6555fcf4a9874e4e5b0561d9707b5a9efe8cb67c7b9e6f6f71f9b1b0ded20e0e Loading...

	play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	349 B	2023-03-07	2024-04-04
Pretty URL play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:15 Times Seen5 Hash 61ffb4cd00946a25f4c1435d1dc5b59f 5146fd0f6ee2db40e7482f8815cc76b950c40063 202080e18ce3755fcfccc673557689eab1de159f529bfa7034dd2a642f78bf7f Loading...

	play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	80 B	2023-03-07	2024-04-04
Pretty URL play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:15 Times Seen5 Hash 553175995d95cbd92b4ad3d190ffcf34 3495bba936bf27e3dd20548e43299484426025f6 742e0f09336803c49aa8cd1f07f7800bfb62316815b206f9557c767a42b13f1a Loading...

	cdn.ludigames.com/ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js	88 kB	2023-03-07	2024-04-04
Pretty URL cdn.ludigames.com/ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js IP 104.110.8.184 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:15 Times Seen18 Hash f25343dc87d9f76e0f6d46b69477f892 38576024034c0692a8138745c7a6f5a116e9eb79 56530a2f5d954de138446dd803634c56eb2cc14c9bfdd9ac21c1ee9006b5860f Loading...

	play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	778 B	2023-03-07	2023-03-26
Pretty URL play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2023-03-26 04:21:23 Times Seen2 Hash 3cb5bed8ffe42aaaf013122aa797b343 8e7038e6014e1d15d52c89f21a12b9027c1f189e ebacc482604066ba48135c7b8832b38b0f2a4281366b1a5d5232cf052e219f40 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PLZ2PKZ	185 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PLZ2PKZ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:31:00 Last Seen2023-03-08 05:31:00 Times Seen1 Hash b96eec31babdb0aecea7e74fc841e4f6 a278e0f54306b3fc10c77df0e0f98e3d637b80f2 825aa7020a110d28658bb27d67caec944f6b88ba67019459939d1478b9747c8e Loading...

	www.googletagmanager.com/gtag/js?id=G-8PQSSCTXQ2&l=dataLayer&cx=c	222 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-8PQSSCTXQ2&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:31:00 Last Seen2023-03-08 05:31:00 Times Seen1 Hash d3523fe09747591d20f16dda62c5fdf0 d46d5ed87571576c24382f85a89305667c8ae421 ad880d85da5bec3c2fbb36167557909271040039d9851d7ec166ef9ea8b04814 Loading...

	cdn.ludigames.com/ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js	36 kB	2023-03-07	2023-03-08
Pretty URL cdn.ludigames.com/ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js IP 104.110.8.184 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2023-03-08 05:31:00 Times Seen1 Hash 80632e1a1ef97b95259eaf2a0b81b2a8 de149f49a318c65b6280c9e3a432a8965369db22 a5806af34278f7cf2caa9c8d4aee031951021db5f700a60fbe9318086c5f7c41 Loading...

	cdn.ludigames.com/ludigames/adlite_220830/prebid4.17.0.js	260 kB	2023-03-07	2024-04-04
Pretty URL cdn.ludigames.com/ludigames/adlite_220830/prebid4.17.0.js IP 104.110.8.184 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:15 Times Seen9 Hash b878bad34352912f8aa1724c8c68401b 64cec1eee7b5b73fcc9e533da1c73c1f1498edaa bc9671f039091623cffb7a01a992ae95a47fe51ca781456b657167ec56bd144a Loading...

	c.amazon-adsystem.com/aax2/apstag.js	171 kB	2023-03-07	2023-03-17
Pretty URL c.amazon-adsystem.com/aax2/apstag.js IP 143.204.46.73 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:35:55 Last Seen2023-03-17 12:47:36 Times Seen1 Hash 0b4d277527066dd35dd7c0288cb596b4 cfdee94c585da7255dfd0149c0e229d368c34905 45877403f3c1932bbdbf87c7f02f250b9ddd3d5ed4dc59b30ac9c4f876d83d4b Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	82 kB	2023-03-08	2023-03-08
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:31:00 Last Seen2023-03-08 05:34:49 Times Seen1 Hash 2b7b7776c63f31dfef37cac62f7527ad 1c8611fb16ae4748a838bfdb7908a9dbe4c18cca 438f205cd90a0f473d1f70e7f4da79df93ba6bfa0916705915904d3cecab6480 Loading...

	play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	341 B	2023-03-07	2023-03-26
Pretty URL play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2023-03-26 04:21:23 Times Seen2 Hash 4ce3064d9d77f262396545c971c3d4f5 5af1de6487eaea51f3e5f041e36b51a197bb198b 425039b870d094e2fe0e771fb19079506fe22df10ac9499b1d66f2046b8dd554 Loading...

	www.google-analytics.com/gtm/optimize.js?id=GTM-NTFFQWZ	107 kB	2023-03-08	2023-03-08
Pretty URL www.google-analytics.com/gtm/optimize.js?id=GTM-NTFFQWZ IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:31:00 Last Seen2023-03-08 05:31:00 Times Seen1 Hash 52336905a86861648eceefa29d0d5988 062841ed32791a8b790aa1d39138ba9c60d941fa fd370580df71cf3c9f5312a47b415f7db190ab494b4580e1cc3114d1974ce0ca Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-25 17:52:53 Times Seen1528 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang	505 B	2023-03-07	2024-04-04
Pretty URL play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang IP 208.71.186.40 ASN #11807 GAMELOFT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:14 Times Seen6 Hash 159c844d35b4d9d6db78c6e024f7c611 fb251bb83fe2ced871d9a7850018cee19ff2055e 672bb8e3ada4eefefd2f135ff7048be89de6cccbc9e041186f1e710d8f59c0f2 Loading...

	c.adup.app/34362	3.2 kB	2023-03-08	2023-03-08
Pretty URL c.adup.app/34362 IP 68.183.246.137 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:31:00 Last Seen2023-03-08 05:31:00 Times Seen1 Hash 7e5065ee5bc89b5a84239863309cc530 c000fd68fd9343a7cc5533f6d549c30d4f32a725 629f2d7d656d1a03f73a4b881d61cacdc99b4914d03a8a0309b84255757d4e9b Loading...

		Size	First Seen	Last Seen
	#1 Write - b09e6a12a072fabbb0a8a77a5c33664f	111 B	2023-03-07	2024-04-04
Pretty Observations First Seen2023-03-07 23:21:05 Last Seen2024-04-04 09:50:15 Times Seen7 Hash b09e6a12a072fabbb0a8a77a5c33664f 604316721776dcb65e5c31928d35993b8a8d4afd d64431b837b301672855bc91495658ec541d0277707c81cee82af45f1d538d57 Loading...

HTTP Transactions (63)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 05:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yGRs5YlYs2yeFcv0cM9vz8sQD5l8Pj32un0nv33X9-ZkrJ5q_zP7ZQ==
Age: 2583

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8328
Expires: Tue, 04 Oct 2022 08:48:56 GMT
Date: Tue, 04 Oct 2022 06:30:08 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VC1blZdLW7p4cmaMXuddDPaEpUgs3y5kIirXcTFT6nfxqeXQoOl4yw==
age: 3701
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 06:30:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

c.adup.app/34362

68.183.246.137

200 OK

4.1 kB

URL HTTP/1.1
c.adup.app/34362
IP
68.183.246.137:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (303), with CRLF line terminators
Size
4.1 kB (4140 bytes)
Hash
1d1f94fbf5eef5247906210ffa36183b
c784b7eea15807545e160d5e9505c0be59efbafa
f90a302b2c2dd9a8e79ff51049d4d79bcf7458a5afb13c5d595d9449e505c28d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /34362 HTTP/1.1
Host: c.adup.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
x-powered-by: Express
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
content-type: text/html; charset=utf-8
content-length: 4140
etag: W/"102c-x4S37qFYB1ReFg1elQXAvlnvuvo"
vary: Accept-Encoding
date: Tue, 04 Oct 2022 06:30:08 GMT

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ece7ecb985fc37ae8ad685629f9f6828
9d8c00e1069cd1141b7abfefab140d3907d43c69
42704abb165b969f3e5e5ed84208ecdda96476bb69b0cf11190b527d037c5924

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 06:30:08 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e_tGBykXyyybkTy3sVy8juIH-Kb0eov2ojRMXhXe63NCO-0_9LICyg==

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 06:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 07:12:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6-d-ro0Eoi7_iqUFU7Y6Q37rBrzxUsnqRAikYewpWk84yCyUMKqYNw==
Age: 35

crt.gameloft.com/?pang=true&adid=435699&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362

15.197.158.185

302 Found

1.0 kB

URL HTTP/2
crt.gameloft.com/?pang=true&adid=435699&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362
IP
15.197.158.185:0
ASN
#16509 AMAZON-02

File type
XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1015), with no line terminators
Size
1.0 kB (1015 bytes)
Hash
aff543bdb48088fa080e40a3ec09627d
0aa83da6af9be13d7f49dea7590a7ada79c806e0
f8d4bca5f509c66f2de336c8d90eea8012713830f290a2774bfb523d3151af50

HTTP Headers

GET /?pang=true&adid=435699&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362 HTTP/1.1
Host: crt.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://c.adup.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Tue, 04 Oct 2022 06:30:08 GMT
content-type: text/vnd.wap.wml;charset=UTF-8
content-length: 1015
location: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
server: Apache/2.4.54 (Debian)
x-powered-by: PHP/7.4.30
set-cookie: gltrck_crt=SFlMM0diTWltUEZUeGZhUjNBai8rMU9LNG52SGp2TU4wNHlPT0FTVXRCWFJsb091cWlhYzRHcWxVZHpwRHIxWTo6xobQN3sYIZ6HpGgbEIrUmg%3D%3D; expires=Tue, 04-Oct-2022 08:30:08 GMT; Max-Age=7200; path=/
gltrck_cloud_crt=cWhoV1o5OUtmUEVnNGFMcnhKYkJmMEVJaGZua0RudjEzWnUxOUpDVStOWHFVcVRHcTBFeDFsZ29NejBXR0dteWo1TU95UHZoY3ppcjlwRzc3OThVdEkwMW1IeGdmakl3RGdhaUFHR2ZxQlVUYjZsaGtDcDhyRlhBUmZhVTZlWmprMGZ3aTQwaXZWMnpXd1ZCZnY5UjZ3PT06OiREFHjjQOSGnmOGlGo18C8%3D; expires=Tue, 04-Oct-2022 08:30:08 GMT; Max-Age=7200; path=/
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 780
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:08 GMT
Last-Modified: Tue, 04 Oct 2022 06:17:08 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
03bc928947f9ce567b7d6503ff9273ce
753761086e39e2f44562e25633580c0734dc905f
2dffdb86944e21b8a35582134435286344c35aa9ed66018994fe710044970a56

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "2DFFDB86944E21B8A35582134435286344C35AA9ED66018994FE710044970A56"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3520
Expires: Tue, 04 Oct 2022 07:28:49 GMT
Date: Tue, 04 Oct 2022 06:30:09 GMT
Connection: keep-alive

push.services.mozilla.com/

35.164.146.235

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.146.235:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZInGb80FdKWAjzYBHUlQpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: b0giL8c/NiHkmzpf2Cu7jwJiofI=

play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang

208.71.186.40

200 OK

1.7 kB

URL HTTP/1.1
play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
IP
208.71.186.40:0
ASN
#11807 GAMELOFT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (432), with CRLF line terminators
Size
1.7 kB (1660 bytes)
Hash
555e97d51bae76b407d92065c5dd7e66
8eb7ded1bd378f521bcc22396ddb4249444acbd8
a0ef0cec90dac0a4dea82a15b9c0c3324e82c944d9a376b73bc8e0723d7bbe4e

HTTP Headers

GET /preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://c.adup.app/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 06:30:09 GMT
Content-Type: text/html
Content-Length: 1660
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 07:10:46 GMT
ETag: "d89-5e77014456980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
8793cb249042a498919ef23f9a0e0ea6
56510b282591e15b4584c1a0a25912131316fc38
66b49d4429f9dae28ecfb56bcc744618a9a7e2e9e3d91c3301ecbd7387a3c83e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "66B49D4429F9DAE28ECFB56BCC744618A9A7E2E9E3D91C3301ECBD7387A3C83E"
Last-Modified: Mon, 03 Oct 2022 19:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3368
Expires: Tue, 04 Oct 2022 07:26:17 GMT
Date: Tue, 04 Oct 2022 06:30:09 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
8793cb249042a498919ef23f9a0e0ea6
56510b282591e15b4584c1a0a25912131316fc38
66b49d4429f9dae28ecfb56bcc744618a9a7e2e9e3d91c3301ecbd7387a3c83e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "66B49D4429F9DAE28ECFB56BCC744618A9A7E2E9E3D91C3301ECBD7387A3C83E"
Last-Modified: Mon, 03 Oct 2022 19:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3384
Expires: Tue, 04 Oct 2022 07:26:33 GMT
Date: Tue, 04 Oct 2022 06:30:09 GMT
Connection: keep-alive

media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/css/style.css?v=1

54.230.111.44

200 OK

21 kB

URL HTTP/2
media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/css/style.css?v=1
IP
54.230.111.44:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (5477)
Size
21 kB (21356 bytes)
Hash
6f48a4b8ed30b2b9d57f78b2ec3c3503
dfd5ef910f3a04f63bb3382ce0a0da9ebb2fe0a5
394ed16935aa3a4fc88bd302a040226e85dcd0a226c518b1e335a5351bfa0816

HTTP Headers

GET /ludigames/root_220413/css/style.css?v=1 HTTP/1.1
Host: media06-gl-ssl-gzip.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 21356
server: nginx
last-modified: Wed, 13 Apr 2022 10:32:24 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
date: Mon, 03 Oct 2022 08:34:34 GMT
cache-control: max-age=86400, public
expires: Tue, 04 Oct 2022 08:34:34 GMT
etag: "15609-5dc86b16d1e00-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2CSRWLGN2xvjNGXO4w_F1fEj3kLBLrfP2HSxDk2h5-dPQNyflr2dqA==
age: 78935
X-Firefox-Spdy: h2

cdn.ludigames.com/ludigames/adlite_220830/dist/index.css

104.110.8.184

200 OK

2.2 kB

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (7385), with no line terminators
Size
2.2 kB (2155 bytes)
Hash
c8b45f6b3dc0944f344d4a28bd7ea971
6045e9906fd1ef5043e5b3336ff33af820439acc
08256047c49c79e3a774ca7a67327453da296df7735ad497411c5d8d16e8c3d9

HTTP Headers

GET /ludigames/adlite_220830/dist/index.css HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 2155
last-modified: Tue, 30 Aug 2022 07:07:15 GMT
etag: "1cd9-5e77007b1cec0-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=2984
expires: Tue, 04 Oct 2022 07:19:53 GMT
date: Tue, 04 Oct 2022 06:30:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

cdn.ludigames.com/ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js

104.110.8.184

200 OK

31 kB

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (34986), with LF, NEL line terminators
Size
31 kB (30838 bytes)
Hash
21fc15b9dbede3294d92752fea5175de
8385bd3e2b855b6f393622bebb2c5bb4cb5b0400
37cf2fd5f91e6ea73fac18450a3bf047947a0c7459e63ca39bf30b615ec647cf

HTTP Headers

GET /ludigames/adlite_220830/dist/vendors.03ef265e80b8d5ec1cad.js HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
content-length: 30838
last-modified: Tue, 30 Aug 2022 07:07:17 GMT
etag: "15748-5e77007d05340-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=5818
expires: Tue, 04 Oct 2022 08:07:07 GMT
date: Tue, 04 Oct 2022 06:30:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/js/main.js?v=210730-2

54.230.111.44

200 OK

19 kB

URL HTTP/2
media06-gl-ssl-gzip.gameloft.com/ludigames/root_220413/js/main.js?v=210730-2
IP
54.230.111.44:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
19 kB (18609 bytes)
Hash
b5a634cb27d5e5417a01dad5d6505f54
5351c91d128622c302c8a1a934c5eff1e86dacf1
c94b983ed8ca933c84da72f8adbd401fdd7be998f56d4fc2457b31a5b8ed1916

HTTP Headers

GET /ludigames/root_220413/js/main.js?v=210730-2 HTTP/1.1
Host: media06-gl-ssl-gzip.gameloft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 18609
server: nginx
last-modified: Wed, 13 Apr 2022 10:36:45 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
date: Tue, 04 Oct 2022 06:30:09 GMT
cache-control: max-age=86400, public
expires: Thu, 06 Oct 2022 04:59:14 GMT
etag: "17776-5dc86c0fba940-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9QhJBcc5zy1yTS67Notrn4ijeKoKHExMEgHVlVrYz4Ifb6p0yO5uGQ==
age: 5455
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto&display=swap

142.250.74.10

200 OK

995 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
995 B (995 bytes)
Hash
0a5ca8d23ce4452cc692be95c4da1406
5a4641e4fba891edee91124ca22bcb0460166d9e
a012952f4fc827697b70d54c3a2ffea56f374f8faa0c41c57237ea742e16722c

HTTP Headers

GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 06:30:09 GMT
date: Tue, 04 Oct 2022 06:30:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

play.ludigames.com/preload/animation.gif

208.71.186.40

200 OK

8.9 kB

URL HTTP/1.1
play.ludigames.com/preload/animation.gif
IP
208.71.186.40:0
ASN
#11807 GAMELOFT

File type
GIF image data, version 89a, 288 x 288\012- data
Size
8.9 kB (8918 bytes)
Hash
24dbd456dedc3db33c054973ff1aca56
843c88e4b3c3d60771e2340d6f33414fdf1ccece
e38f565a7a57091689ab3f521b4291df4f7b8021cca9dab95073f905c4fbd5b5

HTTP Headers

GET /preload/animation.gif HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 06:30:09 GMT
Content-Type: image/gif
Content-Length: 8918
Connection: keep-alive
Last-Modified: Tue, 09 Nov 2021 09:17:51 GMT
ETag: "22d6-5d05795696dc0"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400, public

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 471361
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap

142.250.74.10

200 OK

60 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
60 kB (60080 bytes)
Hash
f64519c9fc201a0369ded84cebd9fb1e
0dabf0a8d6021ca0233c2df4b0e48c03066d8eeb
1860ccde69abd78e220bf0fef5ef02610632379a3c088d7f073dfda77856eeba

HTTP Headers

GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.ludigames.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 06:30:09 GMT
date: Tue, 04 Oct 2022 06:30:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

play.ludigames.com/favicon.ico

208.71.186.40

200 OK

4.3 kB

URL HTTP/1.1
play.ludigames.com/favicon.ico
IP
208.71.186.40:0
ASN
#11807 GAMELOFT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
b3c56a8e551fa25d1b22dc644002537e
759c5e237985e3fb111faa257f042965f0ebbf0f
1955dbdc76f50d7f303732937ab1d9791958650fb5a53cf3889f57e26fee5265

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 06:30:09 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Mon, 22 Mar 2021 07:06:12 GMT
ETag: "10be-5be1ab3694100"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400, public

www.google-analytics.com/gtm/optimize.js?id=GTM-NTFFQWZ

142.250.74.174

200 OK

42 kB

URL HTTP/2
www.google-analytics.com/gtm/optimize.js?id=GTM-NTFFQWZ
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2039)
Size
42 kB (41701 bytes)
Hash
5097147cdcd7850254379320bcdf11f3
f94747f496714fccac892a51e9314a33dd44421c
f05a046360eafd2e3c49a19a16a6daf893462d4f92637bd114ac448ec7c0b5b0

HTTP Headers

GET /gtm/optimize.js?id=GTM-NTFFQWZ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 06:30:09 GMT
expires: Tue, 04 Oct 2022 06:30:09 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41701
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-49606359-38&cid=694397743.1664865010&jid=1190581996&gjid=1497692274&_gid=1811379081.1664865010&_u=YADAAEAAQAAAACAAo~&z=138513850

74.125.131.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-49606359-38&cid=694397743.1664865010&jid=1190581996&gjid=1497692274&_gid=1811379081.1664865010&_u=YADAAEAAQAAAACAAo~&z=138513850
IP
74.125.131.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-49606359-38&cid=694397743.1664865010&jid=1190581996&gjid=1497692274&_gid=1811379081.1664865010&_u=YADAAEAAQAAAACAAo~&z=138513850 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://play.ludigames.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 06:30:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-49606359-38&cid=694397743.1664865010&jid=1190581996&_u=YADAAEAAQAAAACAAo~&z=80295959

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-49606359-38&cid=694397743.1664865010&jid=1190581996&_u=YADAAEAAQAAAACAAo~&z=80295959
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-49606359-38&cid=694397743.1664865010&jid=1190581996&_u=YADAAEAAQAAAACAAo~&z=80295959 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 06:30:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap

142.250.74.10

200 OK

699 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
699 B (699 bytes)
Hash
f8c85ec966295b748f6757f44d4128b6
73e1d6cb78446d3358fd7b5315ad7d33b76d313c
1e29deba83ecd8d693e08db0aa3bb8328f0376cade418fe97e36217a5103cf26

HTTP Headers

GET /css2?family=Roboto:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://media06-gl-ssl-gzip.gameloft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 06:30:09 GMT
date: Tue, 04 Oct 2022 06:30:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 06:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7404
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 06:30:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7404
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 06:30:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7404
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 06:30:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7404
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 06:30:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11955 bytes)
Hash
54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tJwzKfs7HnQ7dVcINwnlzxTChXiEi4JPj8jrS8p5KhurRx_o3ZVOZQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
age: 29951
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 6437
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9455 bytes)
Hash
50556325e5a38a5dd7802b1391815bcb
cf021352d993967e78552b275424ff139e4ef66c
96fd2e848a45d071e334a8d08c8b89215f80f01f947af6da2efaee72dd16914c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9455
x-amzn-requestid: c7e1aa21-0afd-4329-a886-ca52e1a30c7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqJXHLUIAMFU1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5708-1905710834041431314b11be;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: D-2NszpZ31D2YAbZRcPdqN3zZ2ScANt6bokfSbANgnsXBoTF2d__AQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:09 GMT
age: 30121
etag: "cf021352d993967e78552b275424ff139e4ef66c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4996 bytes)
Hash
126f1f4538e5e4228a4f36d3b02e9d62
16f2fe758de4ebf7d654cb9669c73f030eb1fdef
594210beaabbc35a37d5d648836277f950e46b2d4c2eab2abde2d33beafdff37

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: 2f13b6ea-4426-4b3f-81be-5d8ca0278ce7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcrokFkroAMF0XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5969-421b4993676a68df2b43ad65;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:51:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0s9K75q7TzjbFBJ3vviHLcItPRb6CP2URJRYs2k9JmppyWHKvzv5hg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 29951
etag: "16f2fe758de4ebf7d654cb9669c73f030eb1fdef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9917 bytes)
Hash
d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 30856
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962fb2a2-ad40-48cf-87a7-de082c564a5e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8534 bytes)
Hash
f2287c489794dab0e9ba923a2057988f
2b9f6828a38da81b40dcad033572e48b4c5896db
e853fa2acf2425d14cb9746e8bbd45c8765598d2bb630859086b4668182dbf6c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962fb2a2-ad40-48cf-87a7-de082c564a5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8534
x-amzn-requestid: 8ae51cd3-697b-47ed-8493-8f83e2bc7469
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuHlXoAMFucg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-165d72034440cf810d42f3bd;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPt8LUVoKhXjfz-jZHLmnWD15tQgSLRaxl-Bsl0UU83G7wm3jj7_mg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:37:24 GMT
age: 28366
etag: "2b9f6828a38da81b40dcad033572e48b4c5896db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Quicksand:wght@400;500;700&display=swap

142.250.74.10

200 OK

457 B

URL HTTP/2
fonts.googleapis.com/css2?family=Quicksand:wght@400;500;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
457 B (457 bytes)
Hash
8885610809cc7e6309ad9838720fcd35
8141eb9c2c85630bc076d53956e4fb3a9fd35fdc
5ab0266cc19c4534fceb9780f4d177d56422fab54491f0baf5ec3ec06b2ad951

HTTP Headers

GET /css2?family=Quicksand:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://media06-gl-ssl-gzip.gameloft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 06:30:09 GMT
date: Tue, 04 Oct 2022 06:30:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang

208.71.186.40

200 OK

4.0 kB

URL HTTP/1.1
play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
IP
208.71.186.40:0
ASN
#11807 GAMELOFT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (411), with CRLF, LF line terminators
Size
4.0 kB (3997 bytes)
Hash
58abd39f2bb41dff5302cc401c82629e
9ca26a0b331ba6fdc020ca14877e3182f8b9c5a8
b376db506a1f022cef874e94416f9bd361845f96997d86ac25b93894e3438e07

HTTP Headers

GET /adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/preload/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865009.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 06:30:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3997
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
X-XSS-Protection: 1
X-Frame-Options: ALLOW-FROM black.co.za
Set-Cookie: GameloftShop=ut1eb6012k8orbtj052dbn08bvr5i4og; path=/; domain=.gameloft.com
gltrck_sess_nu13214=13214; expires=Wed, 04-Oct-2023 06:30:15 GMT; Max-Age=31536000; path=/
gltrck_sess_op127gik0dwtskh85nzbuc9wx55=13214; expires=Tue, 04-Oct-2022 07:30:15 GMT; Max-Age=3600; path=/
gltrck_uuid=trkccded267-5ca5-4373-4ab3-7b36a3b2ca24; expires=Wed, 04-Oct-2023 06:30:15 GMT; Max-Age=31536000; path=/
gltrck_sess=127gik0dwtskh85nzbuc9wx55%2C78cf35994ddaf73ee4a3cab79c6832ba; expires=Tue, 04-Oct-2022 07:30:15 GMT; Max-Age=3600; path=/
gltrck_sess_ex127gik0dwtskh85nzbuc9wx55=1664865015; expires=Tue, 04-Oct-2022 07:30:15 GMT; Max-Age=3600; path=/
wsid=6b278a1a9ac0046f0642a614be18c561f707d793; expires=Wed, 04-Oct-2023 06:30:15 GMT; Max-Age=31536000; path=/; domain=.gameloft.com
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

cdn.ludigames.com/ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js

104.110.8.184

200 OK

10 kB

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (35983), with no line terminators
Size
10 kB (10419 bytes)
Hash
b25f8816050787d7ffe4801de5573ff1
0cf35e6527b9433efca88939252eeff711d35047
2efaed0b979437e3d32a1f0bc2e2b3611ae33cbd97c0043f8f9980da308756b5

HTTP Headers

GET /ludigames/adlite_220830/dist/index.e184e756bbfb9f1d3c03.js HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
content-length: 10419
last-modified: Tue, 30 Aug 2022 07:07:16 GMT
etag: "8c8f-5e77007c11100-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=25634
expires: Tue, 04 Oct 2022 13:37:30 GMT
date: Tue, 04 Oct 2022 06:30:16 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

cdn.ludigames.com/ludigames/adlite_220830/prebid4.17.0.js

104.110.8.184

200 OK

82 kB

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/prebid4.17.0.js
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (65491)
Size
82 kB (81934 bytes)
Hash
287aba717515929dc298d04786ddea80
eb3b8ed95e161aa6885dbcf04bbc5f0f41e376ed
2d290ebfd84f999142bf77f85736245c3e0ec2146c1141d7c5c0d0ec463e4b51

HTTP Headers

GET /ludigames/adlite_220830/prebid4.17.0.js HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
content-length: 81934
last-modified: Tue, 30 Aug 2022 07:07:28 GMT
etag: "3f643-5e77008782c00-gzip"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=5804
expires: Tue, 04 Oct 2022 08:07:00 GMT
date: Tue, 04 Oct 2022 06:30:16 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

cdn.ludigames.com/ludigames/adlite_220830/dist/f802e72f452f70d2ba0d.svg

104.110.8.184

200 OK

21 kB

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/dist/f802e72f452f70d2ba0d.svg
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20989)
Size
21 kB (21366 bytes)
Hash
987aa1ceea349c38346c47a2a8d716e1
9867f4aa8535c30b8a618b2d0806c6e960ce72bf
59429b0aa36c92c63c063c445d29025054c31c842abba9b37ab482a695f88060

HTTP Headers

GET /ludigames/adlite_220830/dist/f802e72f452f70d2ba0d.svg HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
content-length: 21366
last-modified: Tue, 30 Aug 2022 07:07:15 GMT
etag: "5376-5e77007b1cec0"
accept-ranges: bytes
access-control-allow-origin: https://m.gameloft.com
access-control-allow-headers: range
cache-control: max-age=5556
expires: Tue, 04 Oct 2022 08:02:52 GMT
date: Tue, 04 Oct 2022 06:30:16 GMT
X-Firefox-Spdy: h2

cdn.ludigames.com/ludigames/adlite_220830/dist/0eec3fe8e27a81902cd4.svg

104.110.8.184

200 OK

796 B

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/dist/0eec3fe8e27a81902cd4.svg
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (692)
Size
796 B (796 bytes)
Hash
a6ae2916be840498163966d4300ef1e1
ebd28b3211ffba5077804a33462b8ae3266c2d32
ddda80c5a6223dd6177076f67f22505079e9cd7151c4cf251d359014f36c4fbd

HTTP Headers

GET /ludigames/adlite_220830/dist/0eec3fe8e27a81902cd4.svg HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.ludigames.com/ludigames/adlite_220830/dist/index.css
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
content-length: 796
last-modified: Tue, 30 Aug 2022 07:07:10 GMT
etag: "31c-5e77007658380"
accept-ranges: bytes
access-control-allow-origin: https://m.gameloft.com
access-control-allow-headers: range
cache-control: max-age=5549
expires: Tue, 04 Oct 2022 08:02:45 GMT
date: Tue, 04 Oct 2022 06:30:16 GMT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 471368
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.ludigames.com/ludigames/adlite_220830/images/dummy.png

104.110.8.184

200 OK

143 B

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/images/dummy.png
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Size
143 B (143 bytes)
Hash
c93f56aab6f03ab2bcc4fa6f68b1e68e
3b83960f87c8c6b0b68716f18991d906b0aca229
db3d0072f3bbb09533e155bcd3269ab85e393c61e7e9e82c40f12f623c778081

HTTP Headers

GET /ludigames/adlite_220830/images/dummy.png HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 143
last-modified: Tue, 30 Aug 2022 07:07:19 GMT
etag: "8f-5e77007eed7c0"
access-control-allow-origin: *
access-control-allow-headers: range
accept-ranges: bytes
cache-control: public, max-age=14673
expires: Tue, 04 Oct 2022 10:34:49 GMT
date: Tue, 04 Oct 2022 06:30:16 GMT
X-Firefox-Spdy: h2

play.ludigames.com/adlite/images/dummy.png

208.71.186.40

200 OK

143 B

URL HTTP/1.1
play.ludigames.com/adlite/images/dummy.png
IP
208.71.186.40:0
ASN
#11807 GAMELOFT

File type
PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Size
143 B (143 bytes)
Hash
c93f56aab6f03ab2bcc4fa6f68b1e68e
3b83960f87c8c6b0b68716f18991d906b0aca229
db3d0072f3bbb09533e155bcd3269ab85e393c61e7e9e82c40f12f623c778081

HTTP Headers

GET /adlite/images/dummy.png HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1; gltrck_sess_nu13214=13214; gltrck_sess_op127gik0dwtskh85nzbuc9wx55=13214; gltrck_uuid=trkccded267-5ca5-4373-4ab3-7b36a3b2ca24; gltrck_sess=127gik0dwtskh85nzbuc9wx55%2C78cf35994ddaf73ee4a3cab79c6832ba; gltrck_sess_ex127gik0dwtskh85nzbuc9wx55=1664865015
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 06:30:16 GMT
Content-Type: image/png
Content-Length: 143
Connection: keep-alive
Last-Modified: Thu, 07 Oct 2021 04:38:44 GMT
ETag: "8f-5cdbbd6731d00"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400, public

play.ludigames.com/adlite/api/products.php?cat=all

208.71.186.40

200 OK

7.8 kB

URL HTTP/1.1
play.ludigames.com/adlite/api/products.php?cat=all
IP
208.71.186.40:0
ASN
#11807 GAMELOFT

File type
JSON data\012- , ASCII text, with very long lines (65534), with CRLF line terminators
Size
7.8 kB (7771 bytes)
Hash
17a9ec807143a34db50ed940872c0f30
d6bb1a5cd14cb29b7a69b5baacba48b4a627aead
5d6d5e50e75152ebf936a6dfab1623812e3b6a780dc36f1430c43e6114dc173b

HTTP Headers

GET /adlite/api/products.php?cat=all HTTP/1.1
Host: play.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://play.ludigames.com/adlite/?utm_source=crt&utm_medium=web&utm_campaign=CRT01&pang=true&opref=xsparrow&click_id=22J04120008A0343620310083QLD0&pub_id=34362&sv=127gik0dwtskh85nzbuc9wx55&tm=1664865008&m=922b8e34ec0e51d92e3dff41e91ae50b&country=160&from=ADID-435699&fromcrt=1&crt_param=pang
Connection: keep-alive
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1; gltrck_sess_nu13214=13214; gltrck_sess_op127gik0dwtskh85nzbuc9wx55=13214; gltrck_uuid=trkccded267-5ca5-4373-4ab3-7b36a3b2ca24; gltrck_sess=127gik0dwtskh85nzbuc9wx55%2C78cf35994ddaf73ee4a3cab79c6832ba; gltrck_sess_ex127gik0dwtskh85nzbuc9wx55=1664865015
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 06:30:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7771
Connection: keep-alive
Cache-Control: s-maxage=1800
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

cdn.ludigames.com/ludigames/adlite_220830/favicon.ico

104.110.8.184

200 OK

4.3 kB

URL HTTP/2
cdn.ludigames.com/ludigames/adlite_220830/favicon.ico
IP
104.110.8.184:0
ASN
#16625 AKAMAI-AS

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
b3c56a8e551fa25d1b22dc644002537e
759c5e237985e3fb111faa257f042965f0ebbf0f
1955dbdc76f50d7f303732937ab1d9791958650fb5a53cf3889f57e26fee5265

HTTP Headers

GET /ludigames/adlite_220830/favicon.ico HTTP/1.1
Host: cdn.ludigames.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Cookie: _ga_8PQSSCTXQ2=GS1.1.1664865009.1.0.1664865015.0.0.0; _ga=GA1.2.694397743.1664865010; _gid=GA1.2.1811379081.1664865010; _gat_UA-49606359-38=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/vnd.microsoft.icon
content-length: 4286
last-modified: Tue, 30 Aug 2022 07:07:28 GMT
etag: "10be-5e77008782c00"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: range
cache-control: public, max-age=6013
expires: Tue, 04 Oct 2022 08:10:29 GMT
date: Tue, 04 Oct 2022 06:30:16 GMT
X-Firefox-Spdy: h2

securepubads.g.doubleclick.net/tag/js/gpt.js

216.58.207.194

200 OK

28 kB

URL HTTP/2
securepubads.g.doubleclick.net/tag/js/gpt.js
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (45165)
Size
28 kB (27704 bytes)
Hash
9a2367cdf561bb9a02506157ced99991
41ecf46cbb8a590c01b658e4e33aa4c1d15072d9
05df23d1c83bb82f8d71adcd1099b43e2339b2d2ffc6e181878a3641282369bd

HTTP Headers

GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27704
date: Tue, 04 Oct 2022 06:30:16 GMT
expires: Tue, 04 Oct 2022 06:30:16 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1353 / 813 of 1000 / last-modified: 1664834791"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fplay.ludigames.com&pubid=301e06e9-d3c2-474e-9878-ea8f67bdc38b

143.204.46.73

200 OK

248 B

URL HTTP/2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fplay.ludigames.com&pubid=301e06e9-d3c2-474e-9878-ea8f67bdc38b
IP
143.204.46.73:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
248 B (248 bytes)
Hash
3004e1ee3b8e3b0d18ebd19b4a54cd3a
613d1261a6e0e26f88b3f8d7c8c9dcfeb1377964
7beb96ef759b267b4159270a64ca009646a2e9a725882896b3dd431198b92058

HTTP Headers

GET /cdn/prod/config?src=600&u=https%3A%2F%2Fplay.ludigames.com&pubid=301e06e9-d3c2-474e-9878-ea8f67bdc38b HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 248
access-control-allow-origin: https://play.ludigames.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 04 Oct 2022 04:30:27 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v91byFZ3Udd8t0B-JeRTjJsuAx1K4IJ-DRAND13r-Jy61Vgd1F23pQ==
age: 7188
X-Firefox-Spdy: h2

c.amazon-adsystem.com/aax2/apstag.js

143.204.46.73

200 OK

174 kB

URL HTTP/2
c.amazon-adsystem.com/aax2/apstag.js
IP
143.204.46.73:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65458)
Size
174 kB (174368 bytes)
Hash
1d5aae335e8c1a26b11942fca5c1e00b
4f06c0c2bf3e9eebf1be5d8ee100fd69c5c71385
fd17bb05d3cd56e71d48d2e8d4781fd4734a84fc36ef1f846914f0ae1300a4ac

HTTP Headers

GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 04 Oct 2022 06:24:20 GMT
last-modified: Fri, 30 Sep 2022 18:36:21 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
etag: W/"0b4d277527066dd35dd7c0288cb596b4"
via: 1.1 c80fd33b8f8c4dff5488cc52ba797aa6.cloudfront.net (CloudFront), 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-C1
x-amz-cf-id: 882Tgzim9G72SpsIVN3EQiBmtgQDEIbaz9e-8ktp7p306eItlHLdKQ==
age: 356
X-Firefox-Spdy: h2

c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js

143.204.46.73

200 OK

0 B

URL HTTP/2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP
143.204.46.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.ludigames.com
Connection: keep-alive
Referer: https://play.ludigames.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 04 Oct 2022 02:53:49 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 09:37:07 GMT
etag: W/"a4d296427fc806b21335359e398c025c"
cache-control: public, max-age=86400
x-amz-version-id: I95TjGhhrR3O7F99m0mjPLrSrnJRj9o4
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OF-2FfOARr3TyCTZ5sFYyFkuIKvfOxrGXtDuyfP160NklqEzwUNdIg==
age: 12988
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations