firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 16 Oct 2022 02:50:22 GMT
Expires: Sun, 16 Oct 2022 02:57:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _ryI4QTz51kD0UxlH_RQ7SauiZC713GkMkMJajCJUSuc8r4ZBHy-Mg==
Age: 80
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 07b3389fc24c0f8eb82a9d05b546d17e
02716741b8952e548b9a223adbb3f16204eef2b2
25e13458988115ae1f8176cb2328dbfebd612eabebf256b4af64594d5e23d6ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25E13458988115AE1F8176CB2328DBFEBD612EABEBF256B4AF64594D5E23D6CA"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7652
Expires: Sun, 16 Oct 2022 04:59:14 GMT
Date: Sun, 16 Oct 2022 02:51:42 GMT
Connection: keep-alive
www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
142.250.74.179301 Moved Permanently 210 B URL HTTP/1.1 www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash a6e8458c71147e1e203957dddf93d050
ed06d35d48cc6153272b4edb9e9dc19e2fc81ec6
ae83aacdcbec71f1866f3c063c58ccdbf3fab3827b946f104eddd7d58fe862b3
GET /2020/05/gta-liberty-city-stories-pc-game-free.html HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 16 Oct 2022 02:51:42 GMT
Expires: Sun, 16 Oct 2022 02:51:42 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 210
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13879
Expires: Sun, 16 Oct 2022 06:43:01 GMT
Date: Sun, 16 Oct 2022 02:51:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mt7F12BG9njWPt6p9WqweeQU9xZKMNzbcHcYZqNwedvaFpwhAL94hb3dF4qhyZNCtO636HPcqP4=
x-amz-request-id: 81X2E8MF1MCKTX4Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 16 Oct 2022 02:34:52 GMT
age: 1011
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/ElizU2PctXQ
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ElizU2PctXQ
IP 142.250.74.3:0
Hash 860937a03b4e6a9f16678312c0b5ef5e
fcc4bbce4470f58d0bea14808b29843ed6914186
39e68cd7dfea011e2e134ae1a2b5906ad48c7fa1158dd62484e9695fb77e5491
POST /s/gts1d4/ElizU2PctXQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 16 Oct 2022 02:07:43 GMT
Cache-Control: max-age=3600
Expires: Sun, 16 Oct 2022 03:07:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 59UDttRjKesJNTQx3c6wx_ldACWzb3ttBaXr7WzIIbS2EdFTD4M1mQ==
Age: 2640
www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
142.250.74.179200 OK 74 kB URL HTTP/2 www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6969)
Hash e499d8f3d892f3214f8d29da0817f83c
ae835b279561bd1b3b9ed30e46368045882a33e0
42b37e7bc466f47a38a9e6a3fd6afdecd728b965f69cd7e0ad99971972807116
GET /2020/05/gta-liberty-city-stories-pc-game-free.html HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 16 Oct 2022 02:51:43 GMT
date: Sun, 16 Oct 2022 02:51:43 GMT
cache-control: private, max-age=0
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
etag: W/"cec7e78e52569a88966902c2a77240e27c5ea693af542322425c59cf5b157788"
x-robots-tag: all,noodp
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 74304
server: GSE
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 301aafc13bc66315321d9476df002258
e6bfd29899543fcd4d1b332623757bbad355306f
c64315afdfcf146b16942d981588ed912650472c5e2bba7b6f8dee396d820860
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5617
Cache-Control: max-age=110929
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Etag: "634a6a1f-1d7"
Expires: Mon, 17 Oct 2022 09:40:32 GMT
Last-Modified: Sat, 15 Oct 2022 08:06:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6d2abc1cad422cde0ca979cb4ec2a6f3
ac94a144d5e7042a63205cac83d8708a074934a4
74fc961bfa1c4f2be02481536d37167414552867779f300beedbfbf284b275fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gamesloft.in/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/2 www.gamesloft.in/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 16 Oct 2022 02:51:43 GMT
expires: Sun, 23 Oct 2022 02:51:43 GMT
cache-control: public, max-age=604800
last-modified: Sat, 15 Oct 2022 19:50:48 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.201200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.201:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 10:32:20 GMT
expires: Fri, 13 Oct 2023 10:32:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 12 Oct 2022 14:51:02 GMT
content-type: text/css
age: 231563
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d3a7a0d85121715a9a3590df07145cd8
7da0f8eba172ed91b10f292054a913b1b33da66d
e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 06:42:19 GMT
expires: Thu, 12 Oct 2023 06:42:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 11 Oct 2022 22:04:59 GMT
content-type: text/javascript
age: 331764
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3039b3640f516724d3ec7e845c2f20d1
efa6a85767ab44afd629d1d82413770412abce0e
d454aa6e955985b5b78d1a190b7abc035a1e6dea0c3c5f06220bad3031717249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45e5cf6803523ef992969b03520c5059
d1fcbe9a0e22306d72b7c94420d852505fd96379
4fc6184cc43a4ced2adc30b7d1c0af3890a42fdacf49a9c962a01579117ed20c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d3a7a0d85121715a9a3590df07145cd8
7da0f8eba172ed91b10f292054a913b1b33da66d
e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1583485740-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1583485740-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 51e9765a21d04965e256c5c0391baa23
64a603f8621455aca30ce9ffbcf57ec255a1c606
d3ffeaf05e015d956c69cc71a2f40f0a2336989bf0f09df1fef010cfa75b64bd
GET /static/v1/widgets/1583485740-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56805
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 02:07:46 GMT
expires: Tue, 10 Oct 2023 02:07:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Oct 2022 00:52:13 GMT
content-type: text/javascript
age: 521037
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.106200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32180)
Hash f16500423cc2867eff8b773df637c48f
1cd32d75b59a89c3a70274e383151a61ce0594f4
6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 14:39:25 GMT
expires: Fri, 13 Oct 2023 14:39:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 216738
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 64c11cf8ca538a300977b04782ccde8d
652d73dcf72bec850b54a0bc22f628162967fba6
0987dee4b1ee96dfbd42ee972d344ce09a50b2e5ab09aebaea82190b5f9b2875
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0987DEE4B1EE96DFBD42EE972D344CE09A50B2E5AB09AEBAEA82190B5F9B2875"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6655
Expires: Sun, 16 Oct 2022 04:42:38 GMT
Date: Sun, 16 Oct 2022 02:51:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0429462dea78eb6363a803ede8ffd759
f0fb5204fa4de14ecc362d3bb53bdb5926d99924
f2a6fd4bcc4778210fe16fd9776dc3fe0a909b25c2aaa8cb5d644d31d93b8707
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F2A6FD4BCC4778210FE16FD9776DC3FE0A909B25C2AAA8CB5D644D31D93B8707"
Last-Modified: Fri, 14 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7260
Expires: Sun, 16 Oct 2022 04:52:43 GMT
Date: Sun, 16 Oct 2022 02:51:43 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 95913e9bb50374960100d46cdbf7a2ab
c29f982dab135c165daec1ab9254bc49a66d0f04
4d94ebce229db4d6916429642dc42d6f238bfc7ceb6d2c29c49ad34e850bd1f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8f8f518eeeed61c4aeac196ae2c8c391
8f2b69789bf18c8f100793677ccd22ac9793deb2
d5a162774ee7a736ebc79734ac7e20a64e3f7675f43d1e25f761221d9962534d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5A162774EE7A736EBC79734AC7E20A64E3F7675F43D1E25F761221D9962534D"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9277
Expires: Sun, 16 Oct 2022 05:26:20 GMT
Date: Sun, 16 Oct 2022 02:51:43 GMT
Connection: keep-alive
1.bp.blogspot.com/-LeOd3ALR2xA/UbmVttsOBZI/AAAAAAAABZg/Qp8oxTLN_x4/s1600/bg.png
142.250.74.161200 OK 2.9 kB URL HTTP/2 1.bp.blogspot.com/-LeOd3ALR2xA/UbmVttsOBZI/AAAAAAAABZg/Qp8oxTLN_x4/s1600/bg.png
IP 142.250.74.161:0
File type PNG image data, 99 x 99, 8-bit colormap, non-interlaced\012- data
Hash ab25e409f981e3379a25153a5f473b60
92011e07f37a15fd9302c23c081645c10bc16283
32df16fb278d8f2f3340202fda7810da07736103323da7ab658378c64f64af03
GET /-LeOd3ALR2xA/UbmVttsOBZI/AAAAAAAABZg/Qp8oxTLN_x4/s1600/bg.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="bg.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2891
x-xss-protection: 0
date: Sun, 16 Oct 2022 02:00:52 GMT
expires: Sat, 08 Oct 2022 02:23:43 GMT
cache-control: public, max-age=86400, no-transform
age: 3051
etag: "v599"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d3a7a0d85121715a9a3590df07145cd8
7da0f8eba172ed91b10f292054a913b1b33da66d
e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d3a7a0d85121715a9a3590df07145cd8
7da0f8eba172ed91b10f292054a913b1b33da66d
e77042397dd2555f12bfd9ed17a663845ce9c657c852af3807c90581f91fbb90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3039b3640f516724d3ec7e845c2f20d1
efa6a85767ab44afd629d1d82413770412abce0e
d454aa6e955985b5b78d1a190b7abc035a1e6dea0c3c5f06220bad3031717249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76156e5470783d344161151870500f5d
98a2754553f5d050bfdfbb0790b533d20797c77e
8f97a30621af86bfc5a8a1897a0a8cf125e956c0a4fcd100734410eb981de525
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F97A30621AF86BFC5A8A1897A0A8CF125E956C0A4FCD100734410EB981DE525"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19661
Expires: Sun, 16 Oct 2022 08:19:24 GMT
Date: Sun, 16 Oct 2022 02:51:43 GMT
Connection: keep-alive
1.bp.blogspot.com/-siy6EKYCLtM/U6X4AdKrr0I/AAAAAAAANDs/HCjRvuedDro/s1600/openquote1.gif
142.250.74.161200 OK 177 B URL HTTP/2 1.bp.blogspot.com/-siy6EKYCLtM/U6X4AdKrr0I/AAAAAAAANDs/HCjRvuedDro/s1600/openquote1.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 25 x 25\012- data
Hash 24ecdf95359d23819aa96a81a54585d1
46033a40e6a1d74145de80cfac378c3b7ea81c8d
528f0c1d7c4dec68e3fbab46ca32f293a3f49c752324e684b82860ecc1c8c5ab
GET /-siy6EKYCLtM/U6X4AdKrr0I/AAAAAAAANDs/HCjRvuedDro/s1600/openquote1.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="openquote1.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 177
x-xss-protection: 0
date: Sun, 16 Oct 2022 02:06:03 GMT
expires: Fri, 15 Jul 2022 17:23:58 GMT
cache-control: public, max-age=86400, no-transform
age: 2740
etag: "v343c"
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45e5cf6803523ef992969b03520c5059
d1fcbe9a0e22306d72b7c94420d852505fd96379
4fc6184cc43a4ced2adc30b7d1c0af3890a42fdacf49a9c962a01579117ed20c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.43.61.95101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.61.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W4Pc1uEMinQb3tEiPAbCiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Y8yLxMZ3GuEu1xoZ6KkbZdfzdNs=
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.195200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 21:14:39 GMT
expires: Tue, 10 Oct 2023 21:14:39 GMT
cache-control: public, max-age=31536000
age: 452224
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 18:59:14 GMT
expires: Tue, 10 Oct 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 460349
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 05:42:51 GMT
expires: Fri, 13 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 248933
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-Ya561b7Rjrs/X32aCfvX5FI/AAAAAAAAAg8/Xn-JZBhdRkkAcy9ksw0ewVFOXBj7fGjGgCK4BGAYYCw/s1600/Final%2BFooter%2B2-min.png
142.250.74.161200 OK 8.6 kB URL HTTP/2 4.bp.blogspot.com/-Ya561b7Rjrs/X32aCfvX5FI/AAAAAAAAAg8/Xn-JZBhdRkkAcy9ksw0ewVFOXBj7fGjGgCK4BGAYYCw/s1600/Final%2BFooter%2B2-min.png
IP 142.250.74.161:0
File type PNG image data, 354 x 73, 8-bit colormap, non-interlaced\012- data
Hash 2e4d0b5bed42f1b10374af77169a23e1
cc65222d6d56ec3ea938f056f38379056bff0e84
57832f1d8817c7546da5e0f4212c049c25154d03dfabc12bc0610642646ed8ac
GET /-Ya561b7Rjrs/X32aCfvX5FI/AAAAAAAAAg8/Xn-JZBhdRkkAcy9ksw0ewVFOXBj7fGjGgCK4BGAYYCw/s1600/Final%2BFooter%2B2-min.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Final Footer 2-min.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 8618
x-xss-protection: 0
date: Sun, 16 Oct 2022 02:51:44 GMT
expires: Sun, 16 Oct 2022 07:42:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v210"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-TSpHFnjtNuU/X3xOVa2njII/AAAAAAAAAe4/_-xAMMJbf04obbjQR_GmMPeNuZ9NbvSfQCK4BGAYYCw/s354/Final%2BFooter%2B2.png
142.250.74.161200 OK 25 kB URL HTTP/2 3.bp.blogspot.com/-TSpHFnjtNuU/X3xOVa2njII/AAAAAAAAAe4/_-xAMMJbf04obbjQR_GmMPeNuZ9NbvSfQCK4BGAYYCw/s354/Final%2BFooter%2B2.png
IP 142.250.74.161:0
File type PNG image data, 354 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d70455884e21f0707dc4af71285c70b
0a8fd9b63f8aed8d6b3b31d07db87fb655e0061d
32914b5a6fb1cb35d09922d28729da54981a53d3fd0d1cc3a82087ab9fd8f4bc
GET /-TSpHFnjtNuU/X3xOVa2njII/AAAAAAAAAe4/_-xAMMJbf04obbjQR_GmMPeNuZ9NbvSfQCK4BGAYYCw/s354/Final%2BFooter%2B2.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Final Footer 2.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 25086
x-xss-protection: 0
date: Sun, 16 Oct 2022 02:51:44 GMT
expires: Sun, 16 Oct 2022 07:42:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1f2"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,700italic%7COswald:300,400,700%7CShadows+Into+Light
142.250.74.10200 OK 78 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,700italic%7COswald:300,400,700%7CShadows+Into+Light
IP 142.250.74.10:0
Hash d898aebbecd76a25c78c6490a30a420e
8166a487ee9810110f4f35390c8521a2358f8493
2d126efd3e3678f23b73c2819a8be54baf6fe41ff8b13c8d966bb3ee111451c2
GET /css?family=Open+Sans:400,400italic,700,700italic%7COswald:300,400,700%7CShadows+Into+Light HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 02:51:43 GMT
date: Sun, 16 Oct 2022 02:51:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-VBhBxA6ea8c/X9NlIz5oSzI/AAAAAAAAArQ/PUwMiiwVZiwMmS8B_9vYEWwELKDYqFyegCLcBGAsYHQ/s681/discord.png
142.250.74.161200 OK 6.7 kB URL HTTP/2 1.bp.blogspot.com/-VBhBxA6ea8c/X9NlIz5oSzI/AAAAAAAAArQ/PUwMiiwVZiwMmS8B_9vYEWwELKDYqFyegCLcBGAsYHQ/s681/discord.png
IP 142.250.74.161:0
File type PNG image data, 681 x 219, 8-bit colormap, non-interlaced\012- data
Hash b5cdcbec813146ddfa5a2985241fe3c1
5a28d18866a09321273d9f48dbb7c39e5171d46d
6cc060586e7ab9b50a536fa72221b1008bda71d4f5d04c8d035471122ace86ff
GET /-VBhBxA6ea8c/X9NlIz5oSzI/AAAAAAAAArQ/PUwMiiwVZiwMmS8B_9vYEWwELKDYqFyegCLcBGAsYHQ/s681/discord.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="discord.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6748
x-xss-protection: 0
date: Sun, 16 Oct 2022 02:51:44 GMT
expires: Fri, 07 Oct 2022 13:12:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2b5"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 48c8ca7abddebd077f8d5655ab885b11
1daa9bb3c1434275bbd57b9237000b72e59e1fcc
95e3c6bd5eb86b7805c5899ebd2157f214a5aec3c180830c1db3e0256097ee6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 666 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 1ee4fcc6bc5d4a74841bde5e2be52621
c04bd68b2e519e021037dd1e4d624189b46a374d
00913f63ee8bc6cbc6499378b6039e4e82b017b956000524296a2f842f2a3122
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 16 Oct 2022 02:51:44 GMT
date: Sun, 16 Oct 2022 02:51:44 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 666
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b71c1dfe563720287179a76edf29c680
6096cc371998151d37a2f7698b0fe0371bb43269
7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
142.250.74.163200 OK 160 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (608)
Size 160 kB (159789 bytes)
Hash 1230a090d5cedcb9e764406ab9497c1b
3d175bcf4ad9957c3e32611713c01347299b173e
585cafe3d6a3b932804aaa5aeb19a650688a2c15767f513d0d60c1941475c428
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Origin: https://draft.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Oct 2022 14:11:40 GMT
expires: Sun, 15 Oct 2023 14:11:40 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 45604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b71c1dfe563720287179a76edf29c680
6096cc371998151d37a2f7698b0fe0371bb43269
7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b71c1dfe563720287179a76edf29c680
6096cc371998151d37a2f7698b0fe0371bb43269
7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://draft.blogger.com/
Origin: https://draft.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://draft.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sun, 16 Oct 2022 02:51:44 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+903; expires=Tue, 15-Oct-2024 02:51:44 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 16 Oct 2022 02:51:44 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1557
Origin: https://draft.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://draft.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 16 Oct 2022 02:51:44 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+399; expires=Tue, 15-Oct-2024 02:51:44 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 16 Oct 2022 02:51:44 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Oct 2022 12:31:58 GMT
expires: Sun, 15 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 51586
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Oct 2022 00:48:31 GMT
expires: Sat, 14 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 180193
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sun, 16 Oct 2022 03:58:41 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sun, 16 Oct 2022 03:58:41 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sun, 16 Oct 2022 03:58:41 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sun, 16 Oct 2022 03:58:41 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sun, 16 Oct 2022 03:58:41 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb25d7cce-c352-4b25-a8c5-aa8493d99e4c.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb25d7cce-c352-4b25-a8c5-aa8493d99e4c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e20daa74ab04b1b9859672acfc070f7e
d291947f161c928e6c6682a05835478b5f0cffc5
ebbe051930f46dd25de2a4c5795f3bdddf1513c0657cdc986c48f3dfdc90f575
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb25d7cce-c352-4b25-a8c5-aa8493d99e4c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9260
x-amzn-requestid: dfd8deb0-fc73-4321-b024-330b2a3d1759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aENyFH9RoAMF24w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b29a6-0aaf75c43b51d5775bc48a95;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:44:06 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YVZ4EN-w7lmXTXKTy_A-9P0TW0zAqSa7j5_G2M1XnS-j3EfJSEFplw==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:58:49 GMT
age: 17576
etag: "d291947f161c928e6c6682a05835478b5f0cffc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 440811a19987ddee099df289d9b61e79
ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1
1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9623
x-amzn-requestid: b3d5bd8d-111b-4d50-9720-71f72c62f860
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7Q8oFLRIAMFrEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347951d-613e5e810f420e4c0ba3e6f6;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 04:33:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OA9iHADyiam26eo88jYDECifkqeBaTjsuoeHD2YOy0aZJZEGhG-xow==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:36:56 GMT
age: 18889
etag: "ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd94762992136ed2f4d24dd34a745154
2050cee63f8005c5d9ac1a817730ada51b323f34
4548836d8846da958f477e1df952f6da9b9640e204804a7c76194d3e061b90a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7082
x-amzn-requestid: 5e98988f-faad-4e52-a49f-28d5a77b15d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL46HFloAMFSag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b269f-6759e36c79241479181c1d05;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p2Ytir5IhFSnRKz3OJ3J6_SieMyoFAAysH8-jBf_Bh_xfKEDRGy18g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:36:56 GMT
age: 18889
etag: "2050cee63f8005c5d9ac1a817730ada51b323f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94dbefe5b048c0bebab2485de87367a1
a0df1068e09270f0b5ab7529dc31cc533a244cdd
e6e10ade9f819cccc5a36790016d41bc5ccb02512075f750afc136486d0fbc2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: b1678079-b51b-4b98-a44c-4024ad28451d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5XFbAIAMF08A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a2-1178963d495ce7232844459d;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oI7wIwMgMGO_PayAvPQqY9FWOxZa90tzWtQR9WEroTA6DpKn7lQO1Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:36:56 GMT
age: 18889
etag: "a0df1068e09270f0b5ab7529dc31cc533a244cdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e86d948bf8ed2f5918f8323b043ad5f
41548e231e2358d3453e7630f0d07a645cc25ddc
6602f2a020618234d34a9b6cd107398f0405de6dd14227e265aca84b38eaa5cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7075
x-amzn-requestid: 254a8860-b3bf-4e8d-a08d-31effa209a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5iGQqIAMFmkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a3-1a2820f550f35bf830444c22;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: psWLknan4sVucDaNcLURe-XRPs5FKeJ0Il7ZGWvBxV2rgpTrQvbyVw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:41:19 GMT
etag: "41548e231e2358d3453e7630f0d07a645cc25ddc"
content-type: image/jpeg
age: 18626
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69fc0752-6b07-48bd-b8a9-72181c2eda68.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69fc0752-6b07-48bd-b8a9-72181c2eda68.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1fadc98d6bc21bda450cb9e1636983db
8cfa603d1b6d476695c06e31a906e9eeea638528
9f50f8c29af0752dfa8b1bfe6e80c462bec7308c94d770e99a1f5eb1a76bbc04
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69fc0752-6b07-48bd-b8a9-72181c2eda68.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6938
x-amzn-requestid: 0b81a240-35b7-4570-97d2-1efb1037c78a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEM7eHDkIAMF0lQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b2849-6ca6b04355a2f6e61cf6da1a;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nVuf6wvP_7Majrgd3jtvOSWwUItWg_DDyjT2Zkg_E5DWACFV9RLY5Q==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:58:49 GMT
age: 17576
etag: "8cfa603d1b6d476695c06e31a906e9eeea638528"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-2.jpg
94.75.211.145200 OK 27 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-2.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, orientation=[*0*], software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 7b25b1ae62cb55e4c6866c6eca48dd73
b1e9238c81d9d407cee0ee9c53df2403cbb76218
00a29f2003bbe39643625a797fa15db35b86fd1b1ed49a72574de049fa44b6ca
GET /wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-2.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:45 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:46 GMT
Accept-Ranges: bytes
Content-Length: 27385
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-3.jpg
94.75.211.145200 OK 28 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-3.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, orientation=[*0*], software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 11712037096cbcf40e1437e6d79b8e56
1d07a9c7eddb07b43d76fc3b36434cfffcc0974b
876c590673d1a4ca3d7bacdb78a8f7625d7dccc44213cc71098f77b9ddfe6345
GET /wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-3.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:45 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:46 GMT
Accept-Ranges: bytes
Content-Length: 27616
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Content-Type: image/jpeg
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-1.gif
94.75.211.145200 OK 73 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-1.gif
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 400 x 300\012- data
Hash b62c54a775f6a5a6d65e56a7e106b840
686b19db41e1fc975fc6f604fb9f0fdf12ab907a
881c5441c8244ce20e02a85b329723dd469de1a512e8c401064f522cf81802d4
GET /wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Screenshot-1.gif HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:45 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:46 GMT
Accept-Ranges: bytes
Content-Length: 73051
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Content-Type: image/gif
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 39456f16fe36381a72c70823d8a1b1dd
4c38ab8413d2f511a087f54892ffd82487471d2d
22998047404a42d09cb84c32c956354b628a80b79f8f38a530314a56391f79e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22998047404A42D09CB84C32C956354B628A80B79F8F38A530314A56391F79E6"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=427
Expires: Sun, 16 Oct 2022 02:58:52 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Cover.jpg
94.75.211.145200 OK 27 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Cover.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 235x320, components 3\012- data
Hash 3ca9050c30f3412495a50c6a509f7ee2
df64ba75f424b5404a8d762697e4fd9ec9495f13
c12044fe36c1ca13ae1c4cb97166630a10373d652aecd883f820826b90ed3073
GET /wp-content/uploads/2044/07/GTA-Liberty-City-Stories-Cover.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:45 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:46 GMT
Accept-Ranges: bytes
Content-Length: 27372
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
whazugho.com/zone?pub=0&zone_id=3611747&is_mobile=false&domain=www.gamesloft.in&var=&ymid=&var_3=
139.45.197.250200 OK 664 B URL HTTP/2 whazugho.com/zone?pub=0&zone_id=3611747&is_mobile=false&domain=www.gamesloft.in&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text, with very long lines (663)
Hash 6b1500667993fccf2336e69900d6f5ab
7cb4f04435ad0dfb15d9584d4ea536c77efb6d78
f720c01d8dc5647fb2a5f632d32fa5926e0d1bf315de792e41be4a9e04191a50
GET /zone?pub=0&zone_id=3611747&is_mobile=false&domain=www.gamesloft.in&var=&ymid=&var_3= HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:45 GMT
content-type: application/json; charset=utf-8
content-length: 664
x-trace-id: e920e63319de704f14b8aa415c8befe7
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
upgulpinon.com/42/38?z=3738815
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/42/38?z=3738815
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /42/38?z=3738815 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Cookie: scm=1; OAID=edccd47f97c84679b7488b9439d83355; oaidts=1665888703
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:45 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: cd0ade8466afa18fd8a47cea14c79e4a
access-control-expose-headers: X-Sc
set-cookie: OAID=edccd47f97c84679b7488b9439d83355; expires=Mon, 16 Oct 2023 02:51:45 GMT; secure; SameSite=None
oaidts=1665888703; expires=Mon, 16 Oct 2023 02:51:45 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 39456f16fe36381a72c70823d8a1b1dd
4c38ab8413d2f511a087f54892ffd82487471d2d
22998047404a42d09cb84c32c956354b628a80b79f8f38a530314a56391f79e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22998047404A42D09CB84C32C956354B628A80B79F8F38A530314A56391F79E6"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=467
Expires: Sun, 16 Oct 2022 02:59:32 GMT
Date: Sun, 16 Oct 2022 02:51:45 GMT
Connection: keep-alive
zuphaims.com/tag.min.js
139.45.197.247200 OK 23 kB IP 139.45.197.247:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2ecc279974355238c6b14d2d685dcd21
b85c288352ac6b1a6c8a1a2eaccc76cf0742aa77
955526ffe068eb4794da9302cbbe2dbb5508f380074a478b35239f48119f97e7
Analyzer Verdict Alert fortinet Malware
GET /tag.min.js HTTP/1.1
Host: zuphaims.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:45 GMT
content-type: text/javascript; charset=utf-8
content-length: 22986
content-encoding: br
x-trace-id: d659ac2797a46f904eaa64286eabf71e
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Mon, 10 Oct 2022 14:13:57 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1499
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8ceb6907e82e85fb8def6059388c6a5b
35baf6e386c6760b175fe9e2f1ccf94aa23252b7
29409c4b3a8e023a8c96dd6b87348a1523b2bcee1cd01db6cfd11fd9050d5af5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 13 Oct 2022 18:25:21 GMT
Expires: Thu, 20 Oct 2022 18:25:20 GMT
Etag: "35baf6e386c6760b175fe9e2f1ccf94aa23252b7"
Cache-Control: max-age=401014,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ad7e9b7b7bfabc-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dabc9909474f0f9c08eb8655c1bc19d6
21d8e9c482a94be79a802ec171820d90a4c4cddf
22c7da5a25fbbb3a98d52990c7717acbd270afdf977790993a775a1cd21d4b33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3677
Cache-Control: max-age=127325
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634ab1c2-1d7"
Expires: Mon, 17 Oct 2022 14:13:51 GMT
Last-Modified: Sat, 15 Oct 2022 13:12:34 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
216.239.38.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 16 Oct 2022 02:46:56 GMT
expires: Sun, 16 Oct 2022 04:46:56 GMT
cache-control: public, max-age=7200
age: 290
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 10049c5ee3eca90cca6a6a9646a12edf
718a8362bfba0460245496c0c8f8ccf7c1c95118
e238ebe69202e982ef714dc64b3e38dea38fe20ec01c95e26b6f7a9be9a9fae7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash f2783f1e6814397669fd5f7bae9ccc1c
7b6311f5a65633fb8a10672450cec3003573d427
0ac444061f16b321546280911ad0e34fdca016e8998c722d46fcabc88fbd58d6
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 42e896898e688fec789f14b776d89d58
etag: "c4e6b7bb96f5320afd74ad3cd14c06c8"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 16 Oct 2022 02:53:47 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 8ng/HmgUOXZp/V97rpzMHA==
x-fb-debug: A5UWr+rrlLEeulxJrsQTnSmR2Sh7CgtlDg5VvJar43uynDVa9VUICv9IzLl61Bmi+UGjXKKmiNh+oqqJfOn2Ew==
content-length: 1685
x-fb-trip-id: 1904183273
date: Sun, 16 Oct 2022 02:51:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d3a5bc95370e9c154d78358a5b7e7759
bce6f2a795832dd316c177fd358b312a94f6dcbc
775963553287a080c54f15419ce2662de530cede701233186c9dfbb1ca6bbf28
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:46 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash 202067c443611dc148225b75c0e3d556
9e6be316508f5c2a2e4b8cecc561b0e7415bd38c
5d9db864eb7c211f62d61436846b80db003b0102c903dda9bc15af29e5eefa39
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20362
date: Sun, 16 Oct 2022 02:51:46 GMT
expires: Sun, 16 Oct 2022 02:51:46 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "5f35d22782378ad2"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.gamesloft.in
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.gamesloft.in
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.gamesloft.in HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 217820
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dabc9909474f0f9c08eb8655c1bc19d6
21d8e9c482a94be79a802ec171820d90a4c4cddf
22c7da5a25fbbb3a98d52990c7717acbd270afdf977790993a775a1cd21d4b33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3677
Cache-Control: max-age=127325
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634ab1c2-1d7"
Expires: Mon, 17 Oct 2022 14:13:51 GMT
Last-Modified: Sat, 15 Oct 2022 13:12:34 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.gamesloft.in/favicon.ico
142.250.74.179200 OK 588 B URL HTTP/2 www.gamesloft.in/favicon.ico
IP 142.250.74.179:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 4b8c6c9afdde678f2da290bc6e091260
4dafa5f0c2133359510db912b0be659f9f73668e
2cf796c85914625c385fce09f7ef424c32868a0aa1c5a4f459ead27d3e2b64b0
GET /favicon.ico HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sun, 16 Oct 2022 02:51:46 GMT
date: Sun, 16 Oct 2022 02:51:46 GMT
cache-control: private, max-age=86400
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
etag: W/"cec7e78e52569a88966902c2a77240e27c5ea693af542322425c59cf5b157788"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 588
server: GSE
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=e92060acbd9badb7bd485f4dcf1c8290
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=e92060acbd9badb7bd485f4dcf1c8290
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash 7f621bd22238e737b8cd70df666dc258
2ae5c6dde4fbde8b34799e6147623e404106bbb2
08e024b2578308ccbe1a9bc1c8203e562b3bb5a06f918fca83a222768fa6188f
GET /en_US/sdk.js?hash=e92060acbd9badb7bd485f4dcf1c8290 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: cc902c00316a1f89e9eb2527aeded03e
etag: "ab6de70b02b89de09badeff099dd28ea"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 16 Oct 2023 01:51:05 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: f2Ib0iI45ze4zXDfZm3CWA==
x-fb-debug: mwtm0YGKVHsg5SDF0BoKLanf042Nq50tGu53c9mQD/2iDNz8utksscJwGkVZQxnfHEBW1jgk4H58U5c4a0fBQw==
priority: u=3,i
content-length: 86956
x-fb-trip-id: 1904183273
date: Sun, 16 Oct 2022 02:51:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whazugho.com/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
upgulpinon.com/9?z=3738815&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&oaid=41ab79784d2c4e518c4889f048be8ffb
139.45.197.242204 No Content 0 B URL HTTP/2 upgulpinon.com/9?z=3738815&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&oaid=41ab79784d2c4e518c4889f048be8ffb
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=3738815&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&oaid=41ab79784d2c4e518c4889f048be8ffb HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8df6fd7fbecf717f012b45ea652787f4
4b3b7d273393b2810fe44dac81e72f20f1074cfc
9668ebb6bebfccfb755a12eab6f1fc6a1b9748a08b4812a4eadfb74d225ecc22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5419
Cache-Control: max-age=96297
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634a31c0-138"
Expires: Mon, 17 Oct 2022 05:36:43 GMT
Last-Modified: Sat, 15 Oct 2022 04:06:24 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
in-page-push.com/400/3738812?oo=1&oaid=41ab79784d2c4e518c4889f048be8ffb
139.45.197.15200 OK 4.0 kB URL HTTP/2 in-page-push.com/400/3738812?oo=1&oaid=41ab79784d2c4e518c4889f048be8ffb
IP 139.45.197.15:0
Hash a02ad92d21c411f805c119a8c7b94228
d27a68161ae936e5abc61163979038078795e41e
9f457e0503a276e8e9044a3b457cafe3e1d3933f05bf4c8da2996fa53e2e138c
Analyzer Verdict Alert quad9 Sinkholed
GET /400/3738812?oo=1&oaid=41ab79784d2c4e518c4889f048be8ffb HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Cookie: OAID=90754ad8c48144c1ace25cc56cb1c2ed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: application/json
x-trace-id: 680d538965543dcb0aa365b45d0facbe
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://www.gamesloft.in
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:46 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.gamesloft.in/feeds/posts/default?alt=json-in-script&max-results=10&callback=jQuery2130848881185359731_1665888706274&_=1665888706275
142.250.74.179200 OK 17 kB URL HTTP/2 www.gamesloft.in/feeds/posts/default?alt=json-in-script&max-results=10&callback=jQuery2130848881185359731_1665888706274&_=1665888706275
IP 142.250.74.179:0
File type Unicode text, UTF-8 text, with very long lines (65412)
Hash 42db599f48963cfec924b28127c58aaf
03492298292124a8fd920108eec3a0ecd84eda35
1530a7ea80dd1b887a551fa737529315bc2fdf161eabfd2448fb9f4d0cba3eda
GET /feeds/posts/default?alt=json-in-script&max-results=10&callback=jQuery2130848881185359731_1665888706274&_=1665888706275 HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"022e1fe32ce3e97d492484f08f38af3f4c99d5d2143505e1036f141ea2c7d433"
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 16 Oct 2022 02:51:47 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
content-encoding: gzip
content-length: 17353
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=049c06e7e6601a69a59f3017f3546f57d7569bf1
104.244.42.72200 OK 355 B URL HTTP/2 syndication.twitter.com/settings?session_id=049c06e7e6601a69a59f3017f3546f57d7569bf1
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (851), with no line terminators
Hash 7cac009f8121486bc6c44991cf606190
ddae6074c908031f09b586d38a022e0e4add23b5
7825444c58d1293285c059256fb6e04dcd4bf7dff5a6a65972f65d55286b1e89
GET /settings?session_id=049c06e7e6601a69a59f3017f3546f57d7569bf1 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:45 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sun, 16 Oct 2022 02:51:46 GMT
content-length: 355
content-encoding: gzip
x-transaction-id: 8ead728e47d13697
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: fe26f4a0b676976a838f658b281ca68a52e5c615c9d3c8700955ac003fae96f0
X-Firefox-Spdy: h2
www.gamesloft.in/feeds/posts/default/-/GTA%20Games?alt=json-in-script&max-results=4&callback=jQuery2130848881185359731_1665888706276&_=1665888706277
142.250.74.179200 OK 8.2 kB URL HTTP/2 www.gamesloft.in/feeds/posts/default/-/GTA%20Games?alt=json-in-script&max-results=4&callback=jQuery2130848881185359731_1665888706276&_=1665888706277
IP 142.250.74.179:0
File type Unicode text, UTF-8 text, with very long lines (47246)
Hash 3bcf878213d48dee4cf5c5102cd99722
4ae895d1501b692419cc3a2620104500ed12ad7e
2dfccb680fee52600dbc2f8e704de8284036ef61e12efff366168a16f7fe8d56
GET /feeds/posts/default/-/GTA%20Games?alt=json-in-script&max-results=4&callback=jQuery2130848881185359731_1665888706276&_=1665888706277 HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"950ce7484f170926fea2f333da94246a8df587aa80a528856c19d3e04b28a990"
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 16 Oct 2022 02:51:47 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
content-encoding: gzip
content-length: 8192
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
whazugho.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Content-Type: application/json
Origin: https://www.gamesloft.in
Content-Length: 419
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 44f1328d9fa6fa7ba9330f1b46fd9d49
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.gamesloft.in/2020/05/gta-vice-city-fast-and-furious-mod-pc.html
142.250.74.179200 OK 74 kB URL HTTP/2 www.gamesloft.in/2020/05/gta-vice-city-fast-and-furious-mod-pc.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6969)
Hash a0755425c1ed0abb73493826441fa322
f889a87163d4cb1f01de93306bc3e8c6bf4cbe55
8d2c1bf9b98693a9379c1f2c612739a0077bfa91e056fc3ccc2883c44a3e3316
GET /2020/05/gta-vice-city-fast-and-furious-mod-pc.html HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 16 Oct 2022 02:51:46 GMT
date: Sun, 16 Oct 2022 02:51:46 GMT
cache-control: private, max-age=0
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
etag: W/"cec7e78e52569a88966902c2a77240e27c5ea693af542322425c59cf5b157788"
x-robots-tag: all,noodp
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 74273
server: GSE
X-Firefox-Spdy: h2
www.gamesloft.in/2020/05/gta-san-andreas-superman-mod-pc-game.html
142.250.74.179200 OK 74 kB URL HTTP/2 www.gamesloft.in/2020/05/gta-san-andreas-superman-mod-pc-game.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6969)
Hash ab9dd3bcb38fb8fc129a1192db0d1316
957f2c1f4a5f959087221192d8c6c0f521ce39a2
e797acae305fee7d353161f6c53cf228e62c9c4a347ff34ab328a15ebb5b1c60
GET /2020/05/gta-san-andreas-superman-mod-pc-game.html HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 16 Oct 2022 02:51:46 GMT
date: Sun, 16 Oct 2022 02:51:46 GMT
cache-control: private, max-age=0
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
etag: W/"cec7e78e52569a88966902c2a77240e27c5ea693af542322425c59cf5b157788"
x-robots-tag: all,noodp
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 74297
server: GSE
X-Firefox-Spdy: h2
upgulpinon.com/11?rnd=135963252&z=3738815&b=15242990&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=gDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW&ruid=1f492f69-612a-412b-b3c7-2d29e958886b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&ot=272
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/11?rnd=135963252&z=3738815&b=15242990&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=gDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW&ruid=1f492f69-612a-412b-b3c7-2d29e958886b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&ot=272
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=135963252&z=3738815&b=15242990&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=gDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW&ruid=1f492f69-612a-412b-b3c7-2d29e958886b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&ot=272 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Cookie: scm=1; OAID=41ab79784d2c4e518c4889f048be8ffb; oaidts=1665888703
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 127e77b3eeb0401db588684d105368d8
access-control-expose-headers: X-Sc
set-cookie: OAID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:46 GMT; secure; SameSite=None
oaidts=1665888703; expires=Mon, 16 Oct 2023 02:51:46 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
www.gamesloft.in/sw.js
142.250.74.179404 Not Found 70 kB IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6969)
Hash 69a9bdbfa3302d67e7df78bc27b15b68
2588159602e00694b53fc1b6457563330f583fcd
33a7d377194c5fa1932d4628a03dac2c5a5f70c1fe7d606ea008a48433cbb162
GET /sw.js HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Connection: keep-alive
Cookie: _ga=GA1.2.2125339529.1665888709; _gid=GA1.2.1401743358.1665888709; _gat_blogger=1; _gat_gtag_UA_172358690_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 16 Oct 2022 02:51:46 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 70122
server: GSE
X-Firefox-Spdy: h2
in-page-push.com/500/3738812?excludes=&oaid=41ab79784d2c4e518c4889f048be8ffb&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=5&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 0 B URL HTTP/2 in-page-push.com/500/3738812?excludes=&oaid=41ab79784d2c4e518c4889f048be8ffb&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=5&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/3738812?excludes=&oaid=41ab79784d2c4e518c4889f048be8ffb&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=5&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c64ced45088660f4e780756e5ca0968
7d1d4b389b65a679b01acd0e3a070da7f6760bf1
d266d13f4491fc184a1f031ed87a5af76d46c58bd8751cb92cbedba574139462
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33f004165d9f0e70ada899f271df19d2
ca54fc54eb8bd5e8ef32f015b0464f23284be2f5
4795ddba83821b9ee71a0670d344d84305578f650129e7e395dc9e1c509f31d7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4795DDBA83821B9EE71A0670D344D84305578F650129E7E395DC9E1C509F31D7"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5079
Expires: Sun, 16 Oct 2022 04:16:25 GMT
Date: Sun, 16 Oct 2022 02:51:46 GMT
Connection: keep-alive
www.gamesloft.in/feeds/posts/default?alt=json-in-script&callback=jQuery2130848881185359731_1665888706278&_=1665888706279
142.250.74.179200 OK 46 kB URL HTTP/2 www.gamesloft.in/feeds/posts/default?alt=json-in-script&callback=jQuery2130848881185359731_1665888706278&_=1665888706279
IP 142.250.74.179:0
File type Unicode text, UTF-8 text, with very long lines (65412)
Hash f3eee4a09155e170db1fa18e4299dfcb
6b20a05bfd9065d282d764218d05e0ee2e2683ba
2f273d1d4c85148766b617605e33919c1299ade924b7270dce28d4e8afa26cbb
GET /feeds/posts/default?alt=json-in-script&callback=jQuery2130848881185359731_1665888706278&_=1665888706279 HTTP/1.1
Host: www.gamesloft.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.gamesloft.in/2020/05/gta-liberty-city-stories-pc-game-free.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"27fe1f88d5abf801e755c032beba5c5439d4fbb53f8ad10070145e82413b666d"
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 16 Oct 2022 02:51:47 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Wed, 12 Oct 2022 22:07:30 GMT
content-encoding: gzip
content-length: 46105
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e6df62ce16324739d30d765e3054e5d
7d5472e0df65ec05ab07fc4d2494fd71c7f78537
305d2836d8177ef90064bb17ca53ad1291ac945f2baf779c36d4d7b42b6e5ec3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6258
Cache-Control: max-age=169537
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634b4c91-118"
Expires: Tue, 18 Oct 2022 01:57:23 GMT
Last-Modified: Sun, 16 Oct 2022 00:13:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=1092537409&gjid=777065258&_gid=1401743358.1665888709&_u=IEBAAEAAAAAAACAAI~&z=209650765
173.194.73.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=1092537409&gjid=777065258&_gid=1401743358.1665888709&_u=IEBAAEAAAAAAACAAI~&z=209650765
IP 173.194.73.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=1092537409&gjid=777065258&_gid=1401743358.1665888709&_u=IEBAAEAAAAAAACAAI~&z=209650765 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.gamesloft.in
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 16 Oct 2022 02:51:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=463009100&gjid=1529945708&_gid=1401743358.1665888709&_u=YEDAAUABAAAAACAAI~&z=705216981
173.194.73.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=463009100&gjid=1529945708&_gid=1401743358.1665888709&_u=YEDAAUABAAAAACAAI~&z=705216981
IP 173.194.73.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=463009100&gjid=1529945708&_gid=1401743358.1665888709&_u=YEDAAUABAAAAACAAI~&z=705216981 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.gamesloft.in
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 16 Oct 2022 02:51:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e6df62ce16324739d30d765e3054e5d
7d5472e0df65ec05ab07fc4d2494fd71c7f78537
305d2836d8177ef90064bb17ca53ad1291ac945f2baf779c36d4d7b42b6e5ec3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6258
Cache-Control: max-age=169537
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634b4c91-118"
Expires: Tue, 18 Oct 2022 01:57:23 GMT
Last-Modified: Sun, 16 Oct 2022 00:13:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
s01.riotpixels.net/data/63/e0/63e0b444-92a6-4ed7-8b17-db6b0329cc1a.jpg.240p.jpg
104.21.46.231200 OK 18 kB URL HTTP/2 s01.riotpixels.net/data/63/e0/63e0b444-92a6-4ed7-8b17-db6b0329cc1a.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 40111943b322ab33ee42bf6f5f72aeff
131e45ee322732818c13c6fac3881a71ef960b8c
4e57774c9517aa464dc16e9f3500b4acb69169c53faf980b41b069d10f087d9e
GET /data/63/e0/63e0b444-92a6-4ed7-8b17-db6b0329cc1a.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 18273
last-modified: Wed, 08 Dec 2021 10:51:13 GMT
etag: "61b08e21-4761"
expires: Sat, 30 Sep 2023 04:46:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1375536
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DQe3fB3p8Tb2bjQqfkikxbpNOhfpuwOXNY1EaXxM1q9e%2FfQybRk85fIL%2FfymiCJJ8cQ4RrfBMAgbhenCtXp1rm9OcKIC0OWaEP0Cr%2F8RiujCgIPMBlbmAiO%2F4qB18uwMCuwGE3Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f15b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/0a/58/0a581ad9-dc67-49d0-abfe-36ab3cf359b7.jpg.240p.jpg
104.21.46.231200 OK 20 kB URL HTTP/2 s01.riotpixels.net/data/0a/58/0a581ad9-dc67-49d0-abfe-36ab3cf359b7.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 5bfeb880bbddb4b53d10c57f1bc96b50
b9c88238a4dd28e25152d4e402583d142334f2fa
0ea21f2ae349064b8d277725942706b567645da0f40bbc5b27beff8dc1cbdab9
GET /data/0a/58/0a581ad9-dc67-49d0-abfe-36ab3cf359b7.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 20296
last-modified: Wed, 08 Dec 2021 10:51:09 GMT
etag: "61b08e1d-4f48"
expires: Sat, 30 Sep 2023 04:46:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1375536
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YC9gHpPjmFH3U9Y0UsDN9%2BzpoCKttYBI0IlmhN6fuuhk7hDXi1AwLsD8QNp1HBHzrFFD0uR7mbwqIzyKkbPi%2BmgKWkTd0RRg8YHxqGAGGyhn%2F51DKIqbXN%2BfFk6AZmpQGGRwfpc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f16b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/ad/09/ad09d0af-0980-4c9c-9fad-d5b05ed398e4.jpg.240p.jpg
104.21.46.231200 OK 10 kB URL HTTP/2 s01.riotpixels.net/data/ad/09/ad09d0af-0980-4c9c-9fad-d5b05ed398e4.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 2e96d58166827e76c20c6de8b2c6f3a7
3cf38d33d94ac6cf0a50bd2b6013fc89dd971dec
7b7099a4a63a7c018957267dc2309a47e9be8549d348fdf7bb1557c9635d54c2
GET /data/ad/09/ad09d0af-0980-4c9c-9fad-d5b05ed398e4.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 10073
last-modified: Sun, 31 Oct 2021 10:10:35 GMT
etag: "617e6b9b-2759"
expires: Sat, 16 Sep 2023 16:21:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2543409
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nz2wqu%2Fvk1ENIpUw1HK7zY6ViR0TbixqeJfWizNFpOeMfnOzgoBvUyD9VIIHBP7Ano8%2BYr9HzgucGPTciuZOatL1dOplszdjDPCmXeJ6I9JWwP5vEaBPlpX56FY5c%2B15UR2RBAk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f18b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/32/7f/327fbc73-cf5d-47e8-9fce-6e7014853ab8.jpg.240p.jpg
104.21.46.231200 OK 16 kB URL HTTP/2 s01.riotpixels.net/data/32/7f/327fbc73-cf5d-47e8-9fce-6e7014853ab8.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash dc811f7f3e4ab110be84bd6aecec994b
7f5f6d4f86e6d517bc8d25195e4f14ee8a338775
864bc973d4574717822129c9b1d85662d301c717d3b06c544383b3b16c7af69e
GET /data/32/7f/327fbc73-cf5d-47e8-9fce-6e7014853ab8.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 16058
last-modified: Wed, 08 Dec 2021 10:51:06 GMT
etag: "61b08e1a-3eba"
expires: Sat, 30 Sep 2023 04:46:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1375536
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VvHM0cnYesJh4lQ%2F%2BAEqyzoOLWXMCYGBloO5iRz3y3%2B4YngcQxbKiyoFTdxGXIFZpeXT7PqsPc2zFF6sayPUe3pclj3ul7oNcsmahlsT0Tj4tIBbCx%2BXUE1sf9Xq%2B28EjmGiZso%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f17b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/48/a2/48a26630-b32a-4132-b171-e6d2eddab31b.jpg.240p.jpg
104.21.46.231200 OK 16 kB URL HTTP/2 s01.riotpixels.net/data/48/a2/48a26630-b32a-4132-b171-e6d2eddab31b.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 8ebe128558e6f868b45ccc2d97634715
c5b59774a61ad85861846796841344f990fa10fc
6ff2be67261215c4ba196f6b74c7071019734992d060ff6139a9974ed95f6a6d
GET /data/48/a2/48a26630-b32a-4132-b171-e6d2eddab31b.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 15882
last-modified: Mon, 14 Jun 2021 19:51:01 GMT
etag: "60c7b325-3e0a"
expires: Sat, 16 Sep 2023 16:21:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2543409
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y3k7YogC2UDMfag%2FKwLaqalJD5leFB50aeWJB4DuWkvJjVh8liFfOyW%2BR16YvnStXPpFTqV932xrVulVayTgnqh2FaCTFcp7%2BIVnzPkor8ddmOtvVfo12mXuFG%2FqZmWFbsFQ3VM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f1ab4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/5c/f8/5cf89b50-d345-45e6-9525-a00891780956.jpg.240p.jpg
104.21.46.231200 OK 15 kB URL HTTP/2 s01.riotpixels.net/data/5c/f8/5cf89b50-d345-45e6-9525-a00891780956.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash aa65ed76547c5534d9004ef97767cf63
946e6929e43503cf084e01e7a51e0efa82918030
0d139c196d762e8775471dcfc1b8850348ee0d6b9f9b7a92a4f3589453cefb0f
GET /data/5c/f8/5cf89b50-d345-45e6-9525-a00891780956.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 14865
last-modified: Mon, 14 Jun 2021 19:51:25 GMT
etag: "60c7b33d-3a11"
expires: Thu, 12 Oct 2023 14:18:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 304412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RwLazzwBB3DfLMAS%2BUw70ygdS1H%2FRC7v7W5mUD8ari5DcS%2Fh7QiGcLOLsTWTbZWQ7uQS%2BwTdqlm5PPyzVxOs6FWb15dmbhd2DZJDADgquBz5VPJwsiRzBLREG8n%2F0Bv8lyoJ1WU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f19b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/6d/59/6d5921a6-86e5-4ab8-bf18-64be79c3ef8a.jpg.240p.jpg
104.21.46.231200 OK 12 kB URL HTTP/2 s01.riotpixels.net/data/6d/59/6d5921a6-86e5-4ab8-bf18-64be79c3ef8a.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash b1f9ee269948c17b11a85255ac3f0a0b
2ebcb226cd9548be1666ca719e5ebd066a6f8763
1251ac63729aec26af4ee4dc0fbb648f8aad1ab00c540bc80ded9624e0428fb1
GET /data/6d/59/6d5921a6-86e5-4ab8-bf18-64be79c3ef8a.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 11806
last-modified: Wed, 30 Sep 2020 18:20:23 GMT
etag: "5f74cc67-2e1e"
expires: Sat, 12 Aug 2023 17:36:57 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5562889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcJ6lNV16Ai8kJQnd9c5AXuONvm8CSXWhPSiAaIXiEA4QjOLQwmXy5HfSxZUssjldxJSskxffyCyS4Yvsu1Y0SLceEUSI2Uvce8pWnUeNv%2B%2BrVG3u9HmTCgMZOLRDbTT%2FlUqNoc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea14f14b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e6df62ce16324739d30d765e3054e5d
7d5472e0df65ec05ab07fc4d2494fd71c7f78537
305d2836d8177ef90064bb17ca53ad1291ac945f2baf779c36d4d7b42b6e5ec3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6258
Cache-Control: max-age=169537
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634b4c91-118"
Expires: Tue, 18 Oct 2022 01:57:23 GMT
Last-Modified: Sun, 16 Oct 2022 00:13:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e6df62ce16324739d30d765e3054e5d
7d5472e0df65ec05ab07fc4d2494fd71c7f78537
305d2836d8177ef90064bb17ca53ad1291ac945f2baf779c36d4d7b42b6e5ec3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6249
Cache-Control: max-age=169528
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634b4c91-118"
Expires: Tue, 18 Oct 2022 01:57:14 GMT
Last-Modified: Sun, 16 Oct 2022 00:13:05 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
s01.riotpixels.net/data/ac/7d/ac7d0a3b-a670-4659-9ce6-e1e9ab9249e3.jpg.240p.jpg
104.21.46.231200 OK 17 kB URL HTTP/2 s01.riotpixels.net/data/ac/7d/ac7d0a3b-a670-4659-9ce6-e1e9ab9249e3.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 0abb416925ee5ce5861f776e2752e0fc
422477d2fc6bb9f9a0302878e8ee4ab6f8de9121
d8348809198a912b53230cbdd8b6aa007af6657e1890973be2ef5b83ed860a66
GET /data/ac/7d/ac7d0a3b-a670-4659-9ce6-e1e9ab9249e3.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 17386
last-modified: Wed, 30 Sep 2020 18:20:27 GMT
etag: "5f74cc6b-43ea"
expires: Sat, 12 Aug 2023 17:36:57 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5562889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TnT5ENlGoJYZi3KFi50i%2BJYjyTIXd3YjlkzA01JiCui6U02H3W4Gnd0faqovD4UKub7jMaBEbIW%2B7qbUfogMbYqvl%2F%2BhEXCr0sL41zIp%2FdlHzUyr%2F%2FJV2xe2glM3S6A4x4NgbvU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea17f3ab4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/7e/fc/7efc061f-6299-4b58-9f6d-84f90882ee84.jpg.240p.jpg
104.21.46.231200 OK 17 kB URL HTTP/2 s01.riotpixels.net/data/7e/fc/7efc061f-6299-4b58-9f6d-84f90882ee84.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 3471585c08aea58c971d1593accf07df
4d6ad8e47d66f61d78d1235a5409cfb06c9605ef
054566372d632c24996f8c9416ac65a5cccc520dede40df9b96b53d13f9f0459
GET /data/7e/fc/7efc061f-6299-4b58-9f6d-84f90882ee84.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 17385
last-modified: Fri, 03 Jun 2022 08:30:46 GMT
etag: "6299c6b6-43e9"
expires: Thu, 05 Oct 2023 23:31:01 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 876045
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QKek1Z8BGT0O%2BHXSgx8%2Fdt14qXK9onFEqlPRbtYAOUooCo7smmRPO6x%2F2373I1cTE1geukYBZI2oA0ihXi5Ji5WkkUOUkjBnqSPxpvmj00iEpqOUdOzuiA7BuxljGNdCAajNbH4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea17f3bb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51vCmpE1gjS.jpg
54.230.219.191200 OK 39 kB URL HTTP/2 m.media-amazon.com/images/I/51vCmpE1gjS.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x500, components 3\012- data
Hash 314b19660626e55e8f175dc47a6cb08e
456647c7879f6409ed2b0c931b18246bc9858a84
ff65928ce977029540ef3439fd487cc3181124ea93215b00092258c29e151edd
GET /images/I/51vCmpE1gjS.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 38607
server: Server
date: Tue, 23 Aug 2022 18:05:22 GMT
x-amz-ir-id: b5d76913-c2b5-412c-80cf-bded5a55e682
expires: Sun, 17 Aug 2042 13:19:57 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-815 /images/I/51vCmpE1gjS
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-815,/images/I/51vCmpE1gjS
access-control-allow-origin: *
last-modified: Sat, 17 Jul 2021 13:50:22 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jrwnopnochxj0krujDpremQr-Yt5WnQ8PKElOAUbr36ADh66MygmJA==
age: 4610784
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e6df62ce16324739d30d765e3054e5d
7d5472e0df65ec05ab07fc4d2494fd71c7f78537
305d2836d8177ef90064bb17ca53ad1291ac945f2baf779c36d4d7b42b6e5ec3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6258
Cache-Control: max-age=169537
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634b4c91-118"
Expires: Tue, 18 Oct 2022 01:57:23 GMT
Last-Modified: Sun, 16 Oct 2022 00:13:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
m.media-amazon.com/images/I/81ie5JaXRML._SX569_.jpg
54.230.219.191200 OK 73 kB URL HTTP/2 m.media-amazon.com/images/I/81ie5JaXRML._SX569_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 569x709, components 3\012- data
Hash 8d70f0a581641beff4a6f5c5351de453
69ddc929a0b9597ec477c4590c3dbe904878b847
b0a37bae9f1c17d8fc7c2371b0c0d8637c80defd162f714608379098188f4777
GET /images/I/81ie5JaXRML._SX569_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 72759
server: Server
date: Wed, 31 Aug 2022 21:37:26 GMT
x-amz-ir-id: e1281cbb-c010-4d12-82aa-3f5c3042ba86
expires: Tue, 26 Aug 2042 07:17:03 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-762 /images/I/81ie5JaXRML
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-762,/images/I/81ie5JaXRML
access-control-allow-origin: *
last-modified: Wed, 14 Oct 2020 13:30:28 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BYWTy8GKqdCRziU2JHliwFj-Of9bo8hVpcEl36UsqoYeXurTwAvN0Q==
age: 3906860
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/81nAQPnKEBL._SX425_.jpg
54.230.219.191200 OK 41 kB URL HTTP/2 m.media-amazon.com/images/I/81nAQPnKEBL._SX425_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 425x505, components 3\012- data
Hash a753a3a82e6a3c18a296ab19c6150189
5e190fa912840b47ec005943d7b3ca0c9153d23b
89d9c6b2e726b3dc3e8af3fa1a9973b9d1d8c16bd2273a9cf8f6e57689808761
GET /images/I/81nAQPnKEBL._SX425_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 40569
server: Server
date: Sat, 10 Sep 2022 06:26:13 GMT
x-amz-ir-id: 13c3ab8d-4f1f-43e4-a721-951eab3a7231
expires: Fri, 05 Sep 2042 06:26:13 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-911 /images/I/81nAQPnKEBL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-911,/images/I/81nAQPnKEBL
access-control-allow-origin: *
last-modified: Thu, 27 Jan 2022 09:52:26 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1ekrvsfMcoIfwnx-kEwCGeyLjIdFsXbeC_xc8-2UHW3NEFOT6h_D6A==
age: 3097533
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/91jxySQgvpL._SX679_.jpg
54.230.219.191200 OK 88 kB URL HTTP/2 m.media-amazon.com/images/I/91jxySQgvpL._SX679_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 679x785, components 3\012- data
Hash f32530950e7f1b4dcfaa2dbf047a1fc7
23fc1c96a96b0bb1db66af0cc9f50efa4392f2b1
7c24d9682bd12a22d359656fd59a6e5dd76e8e78c3ef6aa30b7ebc56448ff5fe
GET /images/I/91jxySQgvpL._SX679_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 88241
server: Server
date: Fri, 26 Aug 2022 04:04:17 GMT
x-amz-ir-id: f3ef90e5-6ab1-4b2c-b2f3-0c5e263aad60
expires: Wed, 20 Aug 2042 11:53:20 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-888 /images/I/91jxySQgvpL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-888,/images/I/91jxySQgvpL
access-control-allow-origin: *
last-modified: Thu, 02 Sep 2021 16:37:41 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lzyqZf-L7m5cPXyOn8xTPMf_B_nQWkDWnOgJhZDGVyAxZujV--VO2A==
age: 4402049
X-Firefox-Spdy: h2
s01.riotpixels.net/data/1c/56/1c569538-729b-4bec-bf44-53665726058c.jpg.240p.jpg
104.21.46.231200 OK 22 kB URL HTTP/2 s01.riotpixels.net/data/1c/56/1c569538-729b-4bec-bf44-53665726058c.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 94b384afe1077f5a2ae24e1e8a594697
90e6d001000701176eaa27a95ddb50cbf7f423af
a43ea809a2474d48aa17b7b1715a62219b5ea683ba5723dd901ee8c526cf1874
GET /data/1c/56/1c569538-729b-4bec-bf44-53665726058c.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 21716
last-modified: Fri, 03 Jun 2022 08:30:49 GMT
etag: "6299c6b9-54d4"
expires: Sat, 12 Aug 2023 17:36:57 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5562889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SnchJNvGiyBg%2BOHuFPsWvmefRy9djcTCY77h9j7MMIEKlWOdRKi2TBJpDUgFY%2FJCW0LasZVbESuDtNCoaGP%2BJCU64mkRv29zoUKGjFbFKZR8YhLPSBOXojolCX9PjFXw94oDDTM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea1cf5fb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/cf/4d/cf4d3dc4-b59c-4873-82aa-fda389949d9c.jpg.240p.jpg
104.21.46.231200 OK 18 kB URL HTTP/2 s01.riotpixels.net/data/cf/4d/cf4d3dc4-b59c-4873-82aa-fda389949d9c.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 178cf56639ae6ec0d22b0b3a20caff29
07b5422be414832cb783ef644cb9b85ddc135592
fdf7280878bcf2bbe0c57682e204cd0537d0fafbabce8eaded8a2de09ca7fd41
GET /data/cf/4d/cf4d3dc4-b59c-4873-82aa-fda389949d9c.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 17785
last-modified: Fri, 03 Jun 2022 08:30:51 GMT
etag: "6299c6bb-4579"
expires: Thu, 12 Oct 2023 23:40:17 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 270689
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0V0r3LJ4rHw77u%2BdF8P2cN3w3NpJri%2B0oedhH9NOHobN89tGfj%2BneX1HPuzrrJk%2BsKlDShb1l4ZNFSDDjiEvYnY57Ydlca56ijSUiQcAOHyWSpCxcSexcUvEwT0SK3DOfUQiy%2BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea1cf65b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/e0/07/e00740b0-f020-4ce2-b0a9-99e1c0ee6af8.jpg.240p.jpg
104.21.46.231200 OK 19 kB URL HTTP/2 s01.riotpixels.net/data/e0/07/e00740b0-f020-4ce2-b0a9-99e1c0ee6af8.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash b6b7adf532cc33f81ec56e92bbaa65f3
7de2cc850588afdf9243d0e8438cddb82492cd37
301adb7e9d86395100ded8f8dca1057c54545b25c5d7e25b0e9a3151b034d703
GET /data/e0/07/e00740b0-f020-4ce2-b0a9-99e1c0ee6af8.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 19091
last-modified: Tue, 19 Jul 2016 20:00:27 GMT
etag: "578e86db-4a93"
expires: Sat, 09 Sep 2023 10:50:36 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3168070
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ZUTfmoYZs6JcOhTyixZClUpMBNjEAdjyRcz%2FRnMPAhg%2BmywdcidYh4fNReVV2GK%2F%2FNrCygVcTR%2B2lRWpjVjt2cCYkvvweHEUFioLa8xRhCVLn6QnG4%2BNnNNOYRwTQrtcL%2BpN60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea1cf68b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 092141bb49151a5ff6191f6f8ad74440
fbf48af9e2404fd49e7bc890060327848fb9c343
9f478c7eda390f8106d2137910993faa008ce472802612b99bb550385a760e18
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 20 Oct 2022 01:03:49 GMT
ETag: "fbf48af9e2404fd49e7bc890060327848fb9c343"
Last-Modified: Sun, 16 Oct 2022 01:03:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2879
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ad7ea1cf230b55-OSL
s01.riotpixels.net/data/a1/fc/a1fcc21d-d99a-47f1-8a10-b4cfeaf34918.jpg.240p.jpg
104.21.46.231200 OK 21 kB URL HTTP/2 s01.riotpixels.net/data/a1/fc/a1fcc21d-d99a-47f1-8a10-b4cfeaf34918.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 38343ba50fc5968e23542d8c144399df
1be78476604fb5d9ed29eb31ad9fc5c7c473bc39
039987ad112f3f23267a0b82e9a639d730f5bb1028cf554aec7a66f3aa561642
GET /data/a1/fc/a1fcc21d-d99a-47f1-8a10-b4cfeaf34918.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 21051
last-modified: Mon, 15 Feb 2016 22:20:19 GMT
etag: "56c24f23-523b"
expires: Wed, 07 Jun 2023 06:00:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 11307063
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s0kVQbexMxCCyvRGQ6VyEHU%2BUGHLMMUpqVWPp8wgjsnNb0TidF6eInc5B5OSgr7AZYY5q9HheEJ92r0iAOdC8BrLJK6hNNwtHp%2F%2BC0HJnz4LchPmf0mzFXUNo9QitQmcQ4AmF30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea1df71b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e6df62ce16324739d30d765e3054e5d
7d5472e0df65ec05ab07fc4d2494fd71c7f78537
305d2836d8177ef90064bb17ca53ad1291ac945f2baf779c36d4d7b42b6e5ec3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6258
Cache-Control: max-age=169537
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Etag: "634b4c91-118"
Expires: Tue, 18 Oct 2022 01:57:23 GMT
Last-Modified: Sun, 16 Oct 2022 00:13:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
onmarshtompor.com/?rb=6TNciVzx_rq0cRSjP51TuEXhGD7RePDeqay68ziQbpCuP6b6HILOFhzwusfzy4W4mvZg_-FKkcKjPuMebtEOgUexcvoP3ruB9WIszAgZgFlKQK1hChs6mG4CA3cpgO3QkvcKaGBTbfv32_0ysWQRr8-Mk0w9BNKCbiEZxTOuZOd0R-xBw4N-gpkLXnS4GRYjCRjakkMPbAgIADEeR7p0hu7FelU%3D&request_ab2=0&zoneid=3594261&js_build=iclick-v1.436.1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.436.1&bs=85c6030d-88c9-40e9-b78a-ff333cd0f4eb&userId=41ab79784d2c4e518c4889f048be8ffb&m=link
139.45.197.243200 OK 21 kB URL HTTP/2 onmarshtompor.com/?rb=6TNciVzx_rq0cRSjP51TuEXhGD7RePDeqay68ziQbpCuP6b6HILOFhzwusfzy4W4mvZg_-FKkcKjPuMebtEOgUexcvoP3ruB9WIszAgZgFlKQK1hChs6mG4CA3cpgO3QkvcKaGBTbfv32_0ysWQRr8-Mk0w9BNKCbiEZxTOuZOd0R-xBw4N-gpkLXnS4GRYjCRjakkMPbAgIADEeR7p0hu7FelU%3D&request_ab2=0&zoneid=3594261&js_build=iclick-v1.436.1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.436.1&bs=85c6030d-88c9-40e9-b78a-ff333cd0f4eb&userId=41ab79784d2c4e518c4889f048be8ffb&m=link
IP 139.45.197.243:0
Hash 435533288d4d70ce67ec4fd01367c577
3e2f3dfd186043c0c9b6a3af4394d515a371ae2d
960051bd26bbdc9d097aac324abb3785c8c733784620e5111e8bd63a42164acb
GET /?rb=6TNciVzx_rq0cRSjP51TuEXhGD7RePDeqay68ziQbpCuP6b6HILOFhzwusfzy4W4mvZg_-FKkcKjPuMebtEOgUexcvoP3ruB9WIszAgZgFlKQK1hChs6mG4CA3cpgO3QkvcKaGBTbfv32_0ysWQRr8-Mk0w9BNKCbiEZxTOuZOd0R-xBw4N-gpkLXnS4GRYjCRjakkMPbAgIADEeR7p0hu7FelU%3D&request_ab2=0&zoneid=3594261&js_build=iclick-v1.436.1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.436.1&bs=85c6030d-88c9-40e9-b78a-ff333cd0f4eb&userId=41ab79784d2c4e518c4889f048be8ffb&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: application/json
x-trace-id: b39179b5d96783ba06f15816c829ce38
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:46 GMT; path=/; secure; SameSite=None
oaidts=1665888706; expires=Mon, 16 Oct 2023 02:51:46 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sun, 23 Oct 2022 02:51:46 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
s01.riotpixels.net/data/44/ae/44aeeb76-a884-48ca-a1a0-c201831d0870.jpg.240p.jpg
104.21.46.231200 OK 17 kB URL HTTP/2 s01.riotpixels.net/data/44/ae/44aeeb76-a884-48ca-a1a0-c201831d0870.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash f25de4d907280c1b5b78c3c3dea95377
b605ec646ff200752d6164e7b471d51d8716b0d0
06cebcb40c7af2c9b07b2c4a9a9e85d2de1a5977f833474983737fbc138e7352
GET /data/44/ae/44aeeb76-a884-48ca-a1a0-c201831d0870.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 17424
last-modified: Sat, 17 Oct 2015 06:21:02 GMT
etag: "5621e8ce-4410"
expires: Wed, 07 Jun 2023 06:00:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 11307063
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lB6mFqL7PyYEpaQcrLCTDyxm0gxSzAZcxW6kCO%2Fv9M0WR%2BT5NX8ZkOEi%2BE2qWM5h3FZltnQUPJcdlaH4%2BYp%2FRz5XAx7bnp3wCH%2Be6oGXnORNvxpn2aj6zWsXSMF2CpK2F%2BOXanE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea1ff7db4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/1f/b1/1fb11ab8-ac47-44ad-af43-483484a05eb1.jpg.240p.jpg
104.21.46.231200 OK 19 kB URL HTTP/2 s01.riotpixels.net/data/1f/b1/1fb11ab8-ac47-44ad-af43-483484a05eb1.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 38028e85a1cb8ea4ebc7a367a3563a6b
c845f6b0f46b2597daa9bfadb036749b93220ea4
96c5ad330b581c69fa4b7b6455a3274c5015b35f4f983b469c53d8e60903d4fb
GET /data/1f/b1/1fb11ab8-ac47-44ad-af43-483484a05eb1.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 19184
last-modified: Thu, 17 Sep 2015 03:30:16 GMT
etag: "55fa33c8-4af0"
expires: Wed, 07 Jun 2023 06:00:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 11307063
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gAAEJ3nxcBUOo0ekqpBA0iLJe91USzQGzeTZyI9qcDQKmt6VlJ0Ji2MdH55QcWB7btFz8buLX6nnaYdqAfwQMs%2F87DBllIDTJUTjSl26VbGQzBkq%2FPGCkxljw4eNJCMDiy%2F0cvg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea20f87b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s01.riotpixels.net/data/78/07/7807dccf-4d54-43f2-bce3-a8e709374a37.jpg.240p.jpg
104.21.46.231200 OK 15 kB URL HTTP/2 s01.riotpixels.net/data/78/07/7807dccf-4d54-43f2-bce3-a8e709374a37.jpg.240p.jpg
IP 104.21.46.231:0
File type JPEG image data, progressive, precision 8, 427x240, components 3\012- data
Hash 67c58a28307b832e83070076575625d3
96b880e53018f953279e2d448a7a5c632b8ce7a1
a8d83db104ed1959de53c993197b1c11ddfd616bb5070a75aadf1d8b81102e3e
GET /data/78/07/7807dccf-4d54-43f2-bce3-a8e709374a37.jpg.240p.jpg HTTP/1.1
Host: s01.riotpixels.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 14981
last-modified: Tue, 30 Jun 2015 18:00:28 GMT
etag: "5592d93c-3a85"
expires: Wed, 07 Jun 2023 06:00:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 11307063
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgK4IXz4DmKNgKBPfIWVbn5xaatk2RfaZp7A%2BYkg%2BKN0mRSXMN9B9qk480aNyfe3ytLNx65KKmfvmjTvpVx6kWcnVw148Ln2Yvmi06n%2BL7yKHA9oYG2z3Gzx%2FH4CMgEmIBPHN5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea20f8cb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 092141bb49151a5ff6191f6f8ad74440
fbf48af9e2404fd49e7bc890060327848fb9c343
9f478c7eda390f8106d2137910993faa008ce472802612b99bb550385a760e18
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 20 Oct 2022 01:03:49 GMT
ETag: "fbf48af9e2404fd49e7bc890060327848fb9c343"
Last-Modified: Sun, 16 Oct 2022 01:03:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2879
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ad7ea22f420b55-OSL
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-2.jpg
94.75.211.145200 OK 16 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-2.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 2885b7c90b98ca00029218fbf9dc487e
b87655e22cbbbafe52784cf8e2a8d7d6257342e8
beee2a6030101e25cda87f6ca24f94147721291cebd95847c29edc17b407733a
GET /wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-2.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:46 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:04:46 GMT
Accept-Ranges: bytes
Content-Length: 15994
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Content-Type: image/jpeg
i59.fastpic.ru/big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg
95.217.39.24301 Moved Permanently 162 B URL HTTP/2 i59.fastpic.ru/big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg
IP 95.217.39.24:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg HTTP/1.1
Host: i59.fastpic.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: text/html
content-length: 162
location: https://i59.fastpic.org/big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 092141bb49151a5ff6191f6f8ad74440
fbf48af9e2404fd49e7bc890060327848fb9c343
9f478c7eda390f8106d2137910993faa008ce472802612b99bb550385a760e18
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 20 Oct 2022 01:03:49 GMT
ETag: "fbf48af9e2404fd49e7bc890060327848fb9c343"
Last-Modified: Sun, 16 Oct 2022 01:03:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2879
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ad7ea26f560b55-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b1a68f6f0f9db4de676a295bdc501d55
32e7bc57e9dd24b9999a13bdf3a721bc9173c03c
5916a85e9d267060d89a664561bf981e535b7b4e5ebed5a64c87969f50137d78
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:46 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 13 Oct 2022 12:52:20 GMT
Expires: Thu, 20 Oct 2022 12:52:19 GMT
Etag: "32e7bc57e9dd24b9999a13bdf3a721bc9173c03c"
Cache-Control: max-age=381032,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ad7ea23cd2fabc-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c64ced45088660f4e780756e5ca0968
7d1d4b389b65a679b01acd0e3a070da7f6760bf1
d266d13f4491fc184a1f031ed87a5af76d46c58bd8751cb92cbedba574139462
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
interstitial-07.com/contents/s/d6/8b/74/1399c81d3d40323a9283c84de7/01611244700873.jpeg
139.45.197.151200 OK 32 kB URL HTTP/2 interstitial-07.com/contents/s/d6/8b/74/1399c81d3d40323a9283c84de7/01611244700873.jpeg
IP 139.45.197.151:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Hash d68b741399c81d3d40323a9283c84de7
5a9fed7a055d2cea7b377d097d8a1a4467b84b6c
eafbd070e242221ff6a9f212d233c299858f92a8b9f2718bad4c99986c5f8b64
GET /contents/s/d6/8b/74/1399c81d3d40323a9283c84de7/01611244700873.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=cl3tvCFV5t9QRqB&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D1412751947%26z%3D3738815%26b%3D15242990%26c%3D6199011%26var%3D%26d%3Dhttps%253A%252F%252Finvestiremercato.it%252F%253Fos%253D%257Bos%257D%2526banner%253D%257Bbannerid%257D%2526country%253D%257Bcountry%257D%2526zoneid%253D%257Bzoneid%257D%2526zone_type%253D%257Bzone_type%257D%2526cost%253D%257Bcost%257D%2526clickid%253D%2524%257BSUBID%257D%26cln%3D1%26btp%3D7%26rb%3DgDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW%26bag%3D1bpbFOPH5KdXoDZw5MO95ZeOnBqOdVdd%26ruid%3D1f492f69-612a-412b-b3c7-2d29e958886b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.gamesloft.in%252F2020%252F05%252Fgta-liberty-city-stories-pc-game-free.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D3%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 31939
last-modified: Wed, 28 Sep 2022 19:39:16 GMT
etag: "6334a2e4-7cc3"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Cover.jpg
94.75.211.145200 OK 27 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Cover.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 260x320, components 3\012- data
Hash fed837a33b2a0b121ddcaed86d0c0fc5
4a958ae4cee3cc24417d87f76f3e360983b18b20
e0249bc4fba7b214038cf8f16bab5dae3baffda0b056cc8a71c02bfd43b4e247
GET /wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Cover.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:04:46 GMT
Accept-Ranges: bytes
Content-Length: 26608
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Content-Type: image/jpeg
i6.imageban.ru/out/2022/08/13/d8a6e759722f3c703990dcf3765d400b.jpg
80.87.200.35200 OK 74 kB URL HTTP/2 i6.imageban.ru/out/2022/08/13/d8a6e759722f3c703990dcf3765d400b.jpg
IP 80.87.200.35:0
File type JPEG image data, progressive, precision 8, 375x500, components 3\012- data
Hash 744019dd2da87558a87dd63da115465c
40cf78b40a16d8fd78a3a3c7040aa81dcc5dfda9
0cb47c3b6fd7b953e5b38c49e8f03576aa1de53a56ca4d4ad27e2787c0073fe8
GET /out/2022/08/13/d8a6e759722f3c703990dcf3765d400b.jpg HTTP/1.1
Host: i6.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 74088
last-modified: Sat, 13 Aug 2022 16:27:49 GMT
etag: "62f7d105-12168"
accept-ranges: bytes
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.gamesloft.in
Content-Length: 1563
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 16 Oct 2022 02:52:13 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.gamesloft.in
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 24ad1e108f6d40ec39ea13bd4d37c82c
ab033084db363e293fb25b521f6fd4174dc15cee
e3cc36289f629da6ebe914db46133f94e122e07bc4d16379035132156e7f3a00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-3.jpg
94.75.211.145200 OK 16 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-3.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 915a5a0c8016a70bb7b3bd43fe140a40
72b8457e2e8dca3ebae0f260e76bef0fdf72470a
a7ae8ab69740094f9001a46a5f5fde2cef78d45afa5c1ca586b9458307c78e1f
GET /wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-3.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:04:46 GMT
Accept-Ranges: bytes
Content-Length: 16128
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: image/jpeg
interstitial-07.com/contents/s/2d/40/af/8e20ab58355a466d1640c54da4/01291161879152.jpeg
139.45.197.151200 OK 68 kB URL HTTP/2 interstitial-07.com/contents/s/2d/40/af/8e20ab58355a466d1640c54da4/01291161879152.jpeg
IP 139.45.197.151:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Hash 2d40af8e20ab58355a466d1640c54da4
9994d1306d1c1cb46019627443b71f3fc103af36
6881f7ede3f2844b47113ea9ec10bac093b0d1d58773a494600a15414e504f45
GET /contents/s/2d/40/af/8e20ab58355a466d1640c54da4/01291161879152.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=cl3tvCFV5t9QRqB&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D1412751947%26z%3D3738815%26b%3D15242990%26c%3D6199011%26var%3D%26d%3Dhttps%253A%252F%252Finvestiremercato.it%252F%253Fos%253D%257Bos%257D%2526banner%253D%257Bbannerid%257D%2526country%253D%257Bcountry%257D%2526zoneid%253D%257Bzoneid%257D%2526zone_type%253D%257Bzone_type%257D%2526cost%253D%257Bcost%257D%2526clickid%253D%2524%257BSUBID%257D%26cln%3D1%26btp%3D7%26rb%3DgDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW%26bag%3D1bpbFOPH5KdXoDZw5MO95ZeOnBqOdVdd%26ruid%3D1f492f69-612a-412b-b3c7-2d29e958886b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.gamesloft.in%252F2020%252F05%252Fgta-liberty-city-stories-pc-game-free.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D3%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 67696
last-modified: Wed, 28 Sep 2022 19:39:12 GMT
etag: "6334a2e0-10870"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
i4.imageban.ru/out/2021/12/10/bb852f9e01723324babe612b40f33176.jpg
37.230.117.113200 OK 73 kB URL HTTP/2 i4.imageban.ru/out/2021/12/10/bb852f9e01723324babe612b40f33176.jpg
IP 37.230.117.113:0
File type JPEG image data, progressive, precision 8, 375x500, components 3\012- data
Hash e912dc127115e7d378c40ff825bfbb67
e75cb0780b64918e7eb4dcd9237a2d41d3cdeadf
05bbe5789cd9d682acca6e016ab24e4bbe2453d49bdea040b36499a03ad1f2ef
GET /out/2021/12/10/bb852f9e01723324babe612b40f33176.jpg HTTP/1.1
Host: i4.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 72577
last-modified: Thu, 09 Dec 2021 22:37:36 GMT
etag: "61b28530-11b81"
accept-ranges: bytes
X-Firefox-Spdy: h2
i5.imageban.ru/out/2021/11/11/75ff44f90b697c5a36bc0e7bd4d20685.jpg
62.109.5.15200 OK 164 kB URL HTTP/2 i5.imageban.ru/out/2021/11/11/75ff44f90b697c5a36bc0e7bd4d20685.jpg
IP 62.109.5.15:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.3.2], baseline, precision 8, 354x500, components 3\012- data
Size 164 kB (164149 bytes)
Hash f27589347fcc561c7ec4aa234d51c804
cbcd282d23617134e755080797668853749507df
c544ed22a587c1897b2c94b8610b9e6530ee3a10f90cb257c03212506c39bca9
GET /out/2021/11/11/75ff44f90b697c5a36bc0e7bd4d20685.jpg HTTP/1.1
Host: i5.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: image/jpeg
content-length: 164149
last-modified: Thu, 11 Nov 2021 14:35:46 GMT
etag: "618d2a42-28135"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-1.jpg
94.75.211.145200 OK 12 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-1.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 828946d8607df9512c9e359c53478c64
0eb77a6448e7ddde76b5bff6dae083dc2c49cfe2
0e416a0a19a16128fcdd9d39158eb99bf414bbc3d0848ea2bd25ec54a740ed4b
GET /wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-1.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:54 GMT
Accept-Ranges: bytes
Content-Length: 12445
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: image/jpeg
i.ytimg.com/vi/xbP1Z67OsIs/hqdefault.jpg
142.250.74.86200 OK 11 kB URL HTTP/2 i.ytimg.com/vi/xbP1Z67OsIs/hqdefault.jpg
IP 142.250.74.86:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 3d710a2c42e416ebda32667e7ef096cf
4c52bb3e9be50c9674d8a4ca14d76f855de4c32e
4b29a5d22f088d50eeb7dbe011a0d08ab8a339a36f533015caedd13eba372914
GET /vi/xbP1Z67OsIs/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 11024
date: Sun, 16 Oct 2022 02:51:47 GMT
expires: Sun, 16 Oct 2022 04:51:47 GMT
cache-control: public, max-age=7200
etag: "1617232679"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Cover.jpg
94.75.211.145200 OK 19 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Cover.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 260x320, components 3\012- data
Hash 26bd2a04e47806f425a95bbaec4cba7f
8b636a788bf8578d63d7b8a6a4814934cfcb94ad
b2bc44010f46cbe2f5f96962f92e076a9ddf12e1108493f75cbed272111f5a9c
GET /wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Cover.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:54 GMT
Accept-Ranges: bytes
Content-Length: 18585
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Content-Type: image/jpeg
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-2.jpg
94.75.211.145200 OK 16 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-2.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash f12e00f03ae23049ac5aa54a05279301
49e29baaa70a05a919d30ed02213ee134ffe746f
d289d38ab1ffac38990f5460b97851d7ba4160f3d009c1fe091f80d64b7fd0ef
GET /wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-2.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:54 GMT
Accept-Ranges: bytes
Content-Length: 15611
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Content-Type: image/jpeg
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-3.jpg
94.75.211.145200 OK 11 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-3.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 711cc78967e026861e9e9ecba64d4ac3
71c1f6ec5c6c806643da0e9c3f89978435a79e43
8d7f2c41aa8b245dfa1643752dccab4ac77e0a5eb8aeb8d8bc8461002ba7a3b2
GET /wp-content/uploads/2044/07/GTA-Vice-City-Fast-Furious-Screenshot-3.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:03:54 GMT
Accept-Ranges: bytes
Content-Length: 10820
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bce837e0b75ac3f7bf6bb2d0f587dd16
ca38cddc20edbfab7d1bd4a808d7a9aa1b386dc8
1ad0fabbcf6d56c8ecb6cb87f46881b59c3b92b2d0391cc45cc531033e4b17bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AD0FABBCF6D56C8ECB6CB87F46881B59C3B92B2D0391CC45CC531033E4B17BC"
Last-Modified: Sat, 15 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=895
Expires: Sun, 16 Oct 2022 03:06:42 GMT
Date: Sun, 16 Oct 2022 02:51:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 24ad1e108f6d40ec39ea13bd4d37c82c
ab033084db363e293fb25b521f6fd4174dc15cee
e3cc36289f629da6ebe914db46133f94e122e07bc4d16379035132156e7f3a00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i59.fastpic.org/big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg
95.217.39.24200 OK 86 kB URL HTTP/2 i59.fastpic.org/big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg
IP 95.217.39.24:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 409x500, components 3\012- data
Hash bf6674bae1d3b656be90db4eebf59871
c9cb60b9f67a9263059e3d634b358c7c23a7edd3
56d35fdb0dbf1bbd7a06a214781c5a2f9858913cde1b6412f4d3475038732b44
GET /big/2015/0414/c6/b57bf7d0bf2425637e27245d67e729c6.jpg HTTP/1.1
Host: i59.fastpic.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:47 GMT
content-type: image/jpeg
content-length: 86254
last-modified: Tue, 14 Apr 2015 00:01:01 GMT
etag: "552c58bd-150ee"
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1b836e670e47fa12551b8c8d8d157a86
8d525e1e584f084c654a05d7982ddda69940e21f
d0a1a40858714102f8fc18de45f4b1e49f9c612da7889cb44ddad96bec01c715
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=153898
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Etag: "634b27ed-117"
Expires: Mon, 17 Oct 2022 21:36:45 GMT
Last-Modified: Sat, 15 Oct 2022 21:36:45 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 24ad1e108f6d40ec39ea13bd4d37c82c
ab033084db363e293fb25b521f6fd4174dc15cee
e3cc36289f629da6ebe914db46133f94e122e07bc4d16379035132156e7f3a00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/4GmiQ_mqpTA/hqdefault.jpg
142.250.74.86200 OK 16 kB URL HTTP/2 i.ytimg.com/vi/4GmiQ_mqpTA/hqdefault.jpg
IP 142.250.74.86:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 858651df9c1b98c32b46281aefec74d2
4b3371f6346b3bb980074987db172347f4a46910
14845054977f3c6ff5dad2d2e6e2e2e022ed3eb8591b83ad541fa1baaddd7cfd
GET /vi/4GmiQ_mqpTA/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 15554
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 16 Oct 2022 02:51:47 GMT
expires: Sun, 16 Oct 2022 04:51:47 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3c5d93406187812c759789771c37582b
403fa471695604f22c627a9d8b8c21ed0219ca06
13a51f1e35d06c18bc95bd018989edabe817af33f58b3ebdfeee1a09c13279a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2968
Cache-Control: max-age=165872
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Etag: "634b4b1b-116"
Expires: Tue, 18 Oct 2022 00:56:19 GMT
Last-Modified: Sun, 16 Oct 2022 00:06:51 GMT
Server: ECS (amb/6B8B)
X-Cache: HIT
Content-Length: 278
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 16 Oct 2022 02:51:47 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 2708173dd5e59bb7451c026a88295436
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
104.22.32.172200 OK 93 kB URL HTTP/2 offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
IP 104.22.32.172:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b89a854cfb66584b3f5fef24e571e8b5
9bb5f94bcc641c8cfbc2e24f0a2af5bd07a3a1ea
7228a1274993f4e608b4f0952b2197db136917df3d8ae95ea16a9a34769945e7
GET /www/images/b89a854cfb66584b3f5fef24e571e8b5.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:47 GMT
content-type: image/png
content-length: 92662
last-modified: Thu, 10 Dec 2020 16:03:56 GMT
etag: "5fd246ec-169f6"
expires: Mon, 17 Oct 2022 02:15:45 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 2162
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea3fb0198f4-ARN
X-Firefox-Spdy: h2
upgulpinon.com/11?rnd=135963252&z=3738815&b=15242990&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=gDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW&ruid=1f492f69-612a-412b-b3c7-2d29e958886b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/11?rnd=135963252&z=3738815&b=15242990&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=gDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW&ruid=1f492f69-612a-412b-b3c7-2d29e958886b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=135963252&z=3738815&b=15242990&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=gDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW&ruid=1f492f69-612a-412b-b3c7-2d29e958886b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=3&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Cookie: scm=1; OAID=41ab79784d2c4e518c4889f048be8ffb; oaidts=1665888703
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:47 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3e1e5cb88a1f82e74424a78fb5f6ebde
access-control-expose-headers: X-Sc
set-cookie: OAID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:47 GMT; secure; SameSite=None
oaidts=1665888703; expires=Mon, 16 Oct 2023 02:51:47 GMT; secure; SameSite=None
oaidvc=1; expires=Mon, 16 Oct 2023 02:51:47 GMT; secure; SameSite=None
CNT=1_v1_7pboAAEAAABRSzUx; expires=Sun, 16 Oct 2022 03:51:47 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 16 Oct 2022 02:51:47 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 3333e9bab02becceee2859c94fe501e7
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.gtainside.com/downloads/picr/2015-04/1429272133_Batman.JPG
172.67.69.42200 OK 44 kB URL HTTP/2 www.gtainside.com/downloads/picr/2015-04/1429272133_Batman.JPG
IP 172.67.69.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash f7ddbc15ae2a44df0fe90165baf2808d
9defc82550ee467124075c919217f5f62cfe7749
550867efe8061434fa6877d753b3b4a7e527cecec03b8a5908cb18b0baa23588
GET /downloads/picr/2015-04/1429272133_Batman.JPG HTTP/1.1
Host: www.gtainside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:47 GMT
content-type: image/jpeg
content-length: 43724
last-modified: Fri, 17 Apr 2015 12:02:14 GMT
etag: "aacc-513ea59d59d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40lo5TPqLg5Llk9FB7AGZJvg9RiImJ1lHT54aEpOBzzXsaDNFK2jYxxnH%2BoIoM9x94LF1Fni3ZUJNsAlqiyh8nqCrYyRBAtONRRJCRxmbFvmueM64QQFzG5t56nc%2Bs%2BmXWNf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7ea39ce6b4f3-OSL
X-Firefox-Spdy: h2
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
93.184.220.66200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 5d0940862723a20bb4f2dab2b7af9bb4
c1aab96ed293f46fb5a53aa6b1109dd280c430b3
dbe59da44cbbbc83c10daf0c0a53d1c4c53105f82b77fecd0beb84a67c13525a
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 217821
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 16 Oct 2022 02:51:47 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaec157896b4103f8d4d6d7322b18b9d
45f4cc9bf0c5cc04ae4388682a8e058f58e30666
1b51a26aecfb438b88ca21570614048ec6232aafc94ee1049846dda6e868c400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e2795bbe61af34c174a2c35d6ecdabf3
51cd45b2e579a493139cbb9f92b0af5052f00b86
c41cd8d984449c5a74e5c85350bb2fa1ae00767b5cec0451367a93076eded3a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e2795bbe61af34c174a2c35d6ecdabf3
51cd45b2e579a493139cbb9f92b0af5052f00b86
c41cd8d984449c5a74e5c85350bb2fa1ae00767b5cec0451367a93076eded3a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/-3ZbRUhAzXCs/YwTipaFkxII/AAAAAAAAKSQ/PYPr8G_9_9c20m9IXAc-S0t1SmmcpU_LQCNcBGAsYHQ/s0/4.jpg
142.250.74.1200 OK 32 kB URL HTTP/2 lh3.googleusercontent.com/-3ZbRUhAzXCs/YwTipaFkxII/AAAAAAAAKSQ/PYPr8G_9_9c20m9IXAc-S0t1SmmcpU_LQCNcBGAsYHQ/s0/4.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 300x369, components 3\012- data
Hash b240e0f9dbbdc6c1210a019d190f239d
99cf3f7a9312ab6f5eb5b8e1956973ebcee66bdb
1f4628a4401401a64fb913a0b11c468f0a82b50a2d94a7d0186e1d726d36d18d
GET /-3ZbRUhAzXCs/YwTipaFkxII/AAAAAAAAKSQ/PYPr8G_9_9c20m9IXAc-S0t1SmmcpU_LQCNcBGAsYHQ/s0/4.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2927"
expires: Mon, 17 Oct 2022 02:51:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:47 GMT
server: fife
content-length: 32182
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e2795bbe61af34c174a2c35d6ecdabf3
51cd45b2e579a493139cbb9f92b0af5052f00b86
c41cd8d984449c5a74e5c85350bb2fa1ae00767b5cec0451367a93076eded3a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/-NoP8pAtMmTU/Y0bt3QSjzzI/AAAAAAAAKxw/5gj-1dgSHSYQe5i8Zgc8i8Yu6oFL9BTkgCNcBGAsYHQ/s0/1.jpg
142.250.74.1200 OK 30 kB URL HTTP/2 lh3.googleusercontent.com/-NoP8pAtMmTU/Y0bt3QSjzzI/AAAAAAAAKxw/5gj-1dgSHSYQe5i8Zgc8i8Yu6oFL9BTkgCNcBGAsYHQ/s0/1.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 300x374, components 3\012- data
Hash f46c57d301973ee0373f70508c5abc78
51df09859f41823c2ab24eabb6219ce9b149d378
3e4cef0795553ca2dd4b7f9499b5a731d3d2aadf1f25f9871c7cb6caca0ebbe1
GET /-NoP8pAtMmTU/Y0bt3QSjzzI/AAAAAAAAKxw/5gj-1dgSHSYQe5i8Zgc8i8Yu6oFL9BTkgCNcBGAsYHQ/s0/1.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="1.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 29894
x-xss-protection: 0
date: Sun, 16 Oct 2022 01:50:21 GMT
expires: Thu, 13 Oct 2022 16:57:29 GMT
cache-control: public, max-age=86400, no-transform
age: 3686
etag: "v2b1f"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e2795bbe61af34c174a2c35d6ecdabf3
51cd45b2e579a493139cbb9f92b0af5052f00b86
c41cd8d984449c5a74e5c85350bb2fa1ae00767b5cec0451367a93076eded3a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html
93.184.220.66200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26401)
Hash b50f912e0a65c3b77c131fcb005702e1
e5f14c4424cfc884f127b83a19c035bb2a14d91e
ee1c07313336a3d9f216f01365553e0094c36a4997ceef98f5ce5e60eda30a15
GET /widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 217818
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sun, 16 Oct 2022 02:51:47 GMT
Etag: "d054dcf1d4f9930ca9bb4901678a35a7+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15129
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc745cc6cabb7bcda110c74aa6bbdc4b
ee85567f8a368e63dc4ffad272f514df5b600b76
fd3befeac747605b265309554c748c5de2a5e4ca07f69889090e87639937846d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaec157896b4103f8d4d6d7322b18b9d
45f4cc9bf0c5cc04ae4388682a8e058f58e30666
1b51a26aecfb438b88ca21570614048ec6232aafc94ee1049846dda6e868c400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
in-page-push.com/500/3738812?excludes=&oaid=41ab79784d2c4e518c4889f048be8ffb&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=5&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 1.2 kB URL HTTP/2 in-page-push.com/500/3738812?excludes=&oaid=41ab79784d2c4e518c4889f048be8ffb&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=5&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash e3695640e916114fc4a2ec8202f52679
023c914ea51e13c04b59d244b65ab6a08466e7fc
1286afcefe9081418b72a75a8ad3f646fbd5364cddcb43dbb53693caf13520d9
Analyzer Verdict Alert quad9 Sinkholed
GET /500/3738812?excludes=&oaid=41ab79784d2c4e518c4889f048be8ffb&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=5&pl=https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Cookie: OAID=41ab79784d2c4e518c4889f048be8ffb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: application/javascript
x-trace-id: 03dfa438385b44e2b82267d17c8b7061
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://www.gamesloft.in
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:46 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22gamesloftdotin%22%2C%22widget_creator_screen_name%22%3A%22gamesloftdotin%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665888709986%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=049c06e7e6601a69a59f3017f3546f57d7569bf1
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22gamesloftdotin%22%2C%22widget_creator_screen_name%22%3A%22gamesloftdotin%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665888709986%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=049c06e7e6601a69a59f3017f3546f57d7569bf1
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fwww.gamesloft.in%2F2020%2F05%2Fgta-liberty-city-stories-pc-game-free.html%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22gamesloftdotin%22%2C%22widget_creator_screen_name%22%3A%22gamesloftdotin%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665888709986%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=049c06e7e6601a69a59f3017f3546f57d7569bf1 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:47 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 16 Oct 2022 02:51:47 GMT
content-length: 43
x-transaction-id: 2e62cf2c8d96ad7a
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: fe26f4a0b676976a838f658b281ca68a52e5c615c9d3c8700955ac003fae96f0
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=463009100&_u=YEDAAUABAAAAACAAI~&z=612020166
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=463009100&_u=YEDAAUABAAAAACAAI~&z=612020166
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-172358690-1&cid=2125339529.1665888709&jid=463009100&_u=YEDAAUABAAAAACAAI~&z=612020166 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 16 Oct 2022 02:51:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc745cc6cabb7bcda110c74aa6bbdc4b
ee85567f8a368e63dc4ffad272f514df5b600b76
fd3befeac747605b265309554c748c5de2a5e4ca07f69889090e87639937846d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 02:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
interstitial-07.com/?l=cl3tvCFV5t9QRqB&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D1412751947%26z%3D3738815%26b%3D15242990%26c%3D6199011%26var%3D%26d%3Dhttps%253A%252F%252Finvestiremercato.it%252F%253Fos%253D%257Bos%257D%2526banner%253D%257Bbannerid%257D%2526country%253D%257Bcountry%257D%2526zoneid%253D%257Bzoneid%257D%2526zone_type%253D%257Bzone_type%257D%2526cost%253D%257Bcost%257D%2526clickid%253D%2524%257BSUBID%257D%26cln%3D1%26btp%3D7%26rb%3DgDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW%26bag%3D1bpbFOPH5KdXoDZw5MO95ZeOnBqOdVdd%26ruid%3D1f492f69-612a-412b-b3c7-2d29e958886b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.gamesloft.in%252F2020%252F05%252Fgta-liberty-city-stories-pc-game-free.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D3%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.151200 OK 7.7 kB URL HTTP/2 interstitial-07.com/?l=cl3tvCFV5t9QRqB&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D1412751947%26z%3D3738815%26b%3D15242990%26c%3D6199011%26var%3D%26d%3Dhttps%253A%252F%252Finvestiremercato.it%252F%253Fos%253D%257Bos%257D%2526banner%253D%257Bbannerid%257D%2526country%253D%257Bcountry%257D%2526zoneid%253D%257Bzoneid%257D%2526zone_type%253D%257Bzone_type%257D%2526cost%253D%257Bcost%257D%2526clickid%253D%2524%257BSUBID%257D%26cln%3D1%26btp%3D7%26rb%3DgDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW%26bag%3D1bpbFOPH5KdXoDZw5MO95ZeOnBqOdVdd%26ruid%3D1f492f69-612a-412b-b3c7-2d29e958886b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.gamesloft.in%252F2020%252F05%252Fgta-liberty-city-stories-pc-game-free.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D3%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16477)
Hash b353fa17fb393d7fa0c1eaf61c28c2dc
0a59b9c2a9abeb02f4a32fb6f5d3874008793ae9
a9e7d017a9e448271b6a206b6f930638aadda1d40476e8a482a9ca67842b311e
GET /?l=cl3tvCFV5t9QRqB&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D1412751947%26z%3D3738815%26b%3D15242990%26c%3D6199011%26var%3D%26d%3Dhttps%253A%252F%252Finvestiremercato.it%252F%253Fos%253D%257Bos%257D%2526banner%253D%257Bbannerid%257D%2526country%253D%257Bcountry%257D%2526zoneid%253D%257Bzoneid%257D%2526zone_type%253D%257Bzone_type%257D%2526cost%253D%257Bcost%257D%2526clickid%253D%2524%257BSUBID%257D%26cln%3D1%26btp%3D7%26rb%3DgDJbv7VKwuUIDlSlXzct6YOiFNooIicnavfMvh4ac6fs5cyfRMxnpQEYOfz5sasE75q9fFzZOwvkKqIdCU6yJt5bfRAWcTW8vayZECZP8L_yKk-EE1qkx2VxOjJGq2Y_gzp8PaWH7JJDmO7Yaal3OXjNr7fvbSfTuLoj1ipnneERZV-Sf-GhmAfs4usWfAYq3U-qBsUOH45IxEBu6D_p6jlmGztWNtTAC2difg2GqKV3vnGcQngYaZ7xg8KIQ5NorCiDf4zbmmCTi5YbxMv9rG4kD6O9Q5qZcFBa1F1v4FwQBmGECeH0yDElUFLQUOnpBhkV1RLCKWfxMzSmAukxLsqyoHaGd19OgaIhYoiebDClCdSQ582UxP3mUkO2IN55otIBs6stdR-8VxcC9Vqc1WM1uxhUCH2Qh2FKUYHShLSai95z2PgUuUtz0RWEaHFOg2oy8q86ta-uy3yd6HC2hjgviJPRGNePpDvopGMwyzzbtb68Y6jsey_567Fi26o87o4qY8PBm6A4SKef9APKfhTsid0H7hCHrUKlYXfXM-SFYSqYO1cqiZUyBZJH-5mAejMrtWnUXqDjOgEh7kS2mZpjv0FbF_QtV1V6xZkLrKFAyicmOarYB5fhhmpYaeTaQFDOAli4aIdhyViu_O6rRktRd4M6OjXZA8t5vJVI971Jytj8fkVkkwfCKDszgT5PMxsuNtsmnq7AH4tA807yPb7dmgkTG2zccarslQN7nMa96cHUn_MRRoXqEQmg_gPUzKfUxlZwBib7M6kW%26bag%3D1bpbFOPH5KdXoDZw5MO95ZeOnBqOdVdd%26ruid%3D1f492f69-612a-412b-b3c7-2d29e958886b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.gamesloft.in%252F2020%252F05%252Fgta-liberty-city-stories-pc-game-free.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D3%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=5jQkPUw9u3rrVBNoBLMENDZD687d9AM4ZbZOY8gJ5OM; expires=Sun, 16-Oct-2022 03:51:46 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgSe8PIwz5zqUS63FJPsj50he3Fqw8deyZzgGHo3osQdkb6HVOsmd7OjBUDTHyXlbWNa6p1TldODmHElWsKWZjzx3nvxyQOY8HQd1y0hPeHnKWbzA6zngthz4mIMUpdGInl7DHGZ-6qn8t6ejQMW2v9BJ5yW1GkjoDqGJucHIrPw5MjBG5qz8RiGOwc/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.10.jpg
142.250.74.1200 OK 40 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgSe8PIwz5zqUS63FJPsj50he3Fqw8deyZzgGHo3osQdkb6HVOsmd7OjBUDTHyXlbWNa6p1TldODmHElWsKWZjzx3nvxyQOY8HQd1y0hPeHnKWbzA6zngthz4mIMUpdGInl7DHGZ-6qn8t6ejQMW2v9BJ5yW1GkjoDqGJucHIrPw5MjBG5qz8RiGOwc/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.10.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 3f349f90e5726514dcab2696bc816759
bffa35ac4ea0f77046265c6e562ce0c580dd2546
c54c69c1599efb3ec5b967002270a49b16c0b0046688ca8d5edda767c029d8fe
GET /img/b/R29vZ2xl/AVvXsEgSe8PIwz5zqUS63FJPsj50he3Fqw8deyZzgGHo3osQdkb6HVOsmd7OjBUDTHyXlbWNa6p1TldODmHElWsKWZjzx3nvxyQOY8HQd1y0hPeHnKWbzA6zngthz4mIMUpdGInl7DHGZ-6qn8t6ejQMW2v9BJ5yW1GkjoDqGJucHIrPw5MjBG5qz8RiGOwc/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.10.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v201"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.house-of-the-dead-remake.853x480.2021-04-14.10.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 39847
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuY7fDpkVlpPGktMYFA0AHHmkpsRcubxEHorkp7gZVFNAbEIkBzMoJ-NhSWC3zgI0z_GqL56-WbxqKw3NkEZ-gXtm6TyCevuCqSW993gQsbtBWhZzEKKkYbKP-gMoEX-lmG4kTzY53rDtpVFcSdUNU6_JhML62d0gZlNNVEJIpDVZsynQZhmBqNzeE/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.3.jpg
142.250.74.1200 OK 26 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuY7fDpkVlpPGktMYFA0AHHmkpsRcubxEHorkp7gZVFNAbEIkBzMoJ-NhSWC3zgI0z_GqL56-WbxqKw3NkEZ-gXtm6TyCevuCqSW993gQsbtBWhZzEKKkYbKP-gMoEX-lmG4kTzY53rDtpVFcSdUNU6_JhML62d0gZlNNVEJIpDVZsynQZhmBqNzeE/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.3.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 616257a14a0e0bf203d3a80d096be78a
e594a676520ba5369fd7e2d7b16805a3f0301132
46cd5d87a7ccbef51b3594addacb96a76abc5492d97592e5ca381e7d09ad54dd
GET /img/b/R29vZ2xl/AVvXsEhuY7fDpkVlpPGktMYFA0AHHmkpsRcubxEHorkp7gZVFNAbEIkBzMoJ-NhSWC3zgI0z_GqL56-WbxqKw3NkEZ-gXtm6TyCevuCqSW993gQsbtBWhZzEKKkYbKP-gMoEX-lmG4kTzY53rDtpVFcSdUNU6_JhML62d0gZlNNVEJIpDVZsynQZhmBqNzeE/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.3.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v200"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.house-of-the-dead-remake.853x480.2021-04-14.3.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 26541
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhe_IHyMEHtH4912qBp8HZx4ldP7aStjrKOBC98e2hiGrmNZmdrIkPCigD-mqM01Afln_sshhH5rpexP2gf3VydZ5O_tYDFiCZ6xtwWNAl88xs9BBNndH-DAlPqINcYhRHHtkU0uIr18oxX0Azn94qBpSj9HO1O7_bVnRzqc2nZhdSr0RLTIPEvp9L9/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.8.jpg
142.250.74.1200 OK 22 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhe_IHyMEHtH4912qBp8HZx4ldP7aStjrKOBC98e2hiGrmNZmdrIkPCigD-mqM01Afln_sshhH5rpexP2gf3VydZ5O_tYDFiCZ6xtwWNAl88xs9BBNndH-DAlPqINcYhRHHtkU0uIr18oxX0Azn94qBpSj9HO1O7_bVnRzqc2nZhdSr0RLTIPEvp9L9/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.8.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 22d1bcb314d1c152e6ac940b20f1fe22
11c79c80252046097f48373c6e2204fcd8aac804
0f5220e5186c897333319a57e68188061c4984bfeae9c992fb77f0be8bead356
GET /img/b/R29vZ2xl/AVvXsEhe_IHyMEHtH4912qBp8HZx4ldP7aStjrKOBC98e2hiGrmNZmdrIkPCigD-mqM01Afln_sshhH5rpexP2gf3VydZ5O_tYDFiCZ6xtwWNAl88xs9BBNndH-DAlPqINcYhRHHtkU0uIr18oxX0Azn94qBpSj9HO1O7_bVnRzqc2nZhdSr0RLTIPEvp9L9/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.8.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1ff"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.house-of-the-dead-remake.853x480.2021-04-14.8.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 22065
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhW1z8-4dRJxoQiooWsdfbIH0cOhtEVFyCf8ES3ICMx_Xg0X1S1WW_h-TsZELzqWENeHcODe4VN6KY9R7FGyINWrJhnu-UeegrQ1mQ1WmbqUfOV_oHjQbO7FRuwe-r9Ub9yS8pX3AKUKmAsYTdLMqPfxI36rsJCkV4r5vvMIyJBB1lbe2zLFLmCHQge/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.9.jpg
142.250.74.1200 OK 29 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhW1z8-4dRJxoQiooWsdfbIH0cOhtEVFyCf8ES3ICMx_Xg0X1S1WW_h-TsZELzqWENeHcODe4VN6KY9R7FGyINWrJhnu-UeegrQ1mQ1WmbqUfOV_oHjQbO7FRuwe-r9Ub9yS8pX3AKUKmAsYTdLMqPfxI36rsJCkV4r5vvMIyJBB1lbe2zLFLmCHQge/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.9.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 9bdb1ddee26fd31a29e3519e290c8072
0e53e0a3b91bac90d937110974fc792ee22a5a10
f2244746047635be5278f9a46d4cb7780c85a932baf1a7d064d47d4925d8944d
GET /img/b/R29vZ2xl/AVvXsEhW1z8-4dRJxoQiooWsdfbIH0cOhtEVFyCf8ES3ICMx_Xg0X1S1WW_h-TsZELzqWENeHcODe4VN6KY9R7FGyINWrJhnu-UeegrQ1mQ1WmbqUfOV_oHjQbO7FRuwe-r9Ub9yS8pX3AKUKmAsYTdLMqPfxI36rsJCkV4r5vvMIyJBB1lbe2zLFLmCHQge/s320/screenshot.house-of-the-dead-remake.853x480.2021-04-14.9.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v201"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.house-of-the-dead-remake.853x480.2021-04-14.9.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 28584
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiHgDsaMi8OT8Xu0-Ggr6xrITyR25BYh1kFaUhN1I78dHd1D6oKHwd-ceXPipM7TNx0GSbQLwWfm9HhlOXi1pXBoqCjxlLdoHgg0qz3p8hlhk-yPdNrTWUq-xHsTwe6pwZwhdbXwh92qLd82NncCF66Hk33g_zhN980dLTCum_lpG-cJXV3FPCmvC5Z/w400-h225/screenshot.stray.3840x2160.2022-06-03.16.jpg
142.250.74.1200 OK 28 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiHgDsaMi8OT8Xu0-Ggr6xrITyR25BYh1kFaUhN1I78dHd1D6oKHwd-ceXPipM7TNx0GSbQLwWfm9HhlOXi1pXBoqCjxlLdoHgg0qz3p8hlhk-yPdNrTWUq-xHsTwe6pwZwhdbXwh92qLd82NncCF66Hk33g_zhN980dLTCum_lpG-cJXV3FPCmvC5Z/w400-h225/screenshot.stray.3840x2160.2022-06-03.16.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash 7ae49adafc42d4f745aeb97d9257dc53
a46be2852c010f1b90f03124d8bcb772d2d9f13c
184dcfe754d713dd7904741cd63968bc5797b96d97c1e772e5d419d9d3f21ed9
GET /img/b/R29vZ2xl/AVvXsEiHgDsaMi8OT8Xu0-Ggr6xrITyR25BYh1kFaUhN1I78dHd1D6oKHwd-ceXPipM7TNx0GSbQLwWfm9HhlOXi1pXBoqCjxlLdoHgg0qz3p8hlhk-yPdNrTWUq-xHsTwe6pwZwhdbXwh92qLd82NncCF66Hk33g_zhN980dLTCum_lpG-cJXV3FPCmvC5Z/w400-h225/screenshot.stray.3840x2160.2022-06-03.16.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1ea"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.stray.3840x2160.2022-06-03.16.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 27630
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj5MwClVFbS5Mt_Wdv_w-qbF8X7j_Qjacl-6fj3uZDqIPN7cd8aJfBJAgfKk0bH1_OR6iGdr8BBxrBXlySTOHZugk3nanNWAko9nOnKLc_BVeRoNrNE0goxYgI42fLSF1omAGez6yJSzyNZxsB5ZnHIdg-BdyUUQyoQv1F555-gJVhf0T9Yq4x9Dax2/s1024/cover.stray.1024x1024.2021-07-30.8.jpg
142.250.74.1200 OK 207 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj5MwClVFbS5Mt_Wdv_w-qbF8X7j_Qjacl-6fj3uZDqIPN7cd8aJfBJAgfKk0bH1_OR6iGdr8BBxrBXlySTOHZugk3nanNWAko9nOnKLc_BVeRoNrNE0goxYgI42fLSF1omAGez6yJSzyNZxsB5ZnHIdg-BdyUUQyoQv1F555-gJVhf0T9Yq4x9Dax2/s1024/cover.stray.1024x1024.2021-07-30.8.jpg
IP 142.250.74.1:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 1024x1024, components 3\012- data
Size 207 kB (207350 bytes)
Hash 915e8f3d499ef2e86bf676fc396cce00
f695550860fd686ae55e178120d80a3e47c2ec59
e90f51445495b30c76a04bb8c0d39bc9cff3119316d039e25d2dd9b114f868f5
GET /img/b/R29vZ2xl/AVvXsEj5MwClVFbS5Mt_Wdv_w-qbF8X7j_Qjacl-6fj3uZDqIPN7cd8aJfBJAgfKk0bH1_OR6iGdr8BBxrBXlySTOHZugk3nanNWAko9nOnKLc_BVeRoNrNE0goxYgI42fLSF1omAGez6yJSzyNZxsB5ZnHIdg-BdyUUQyoQv1F555-gJVhf0T9Yq4x9Dax2/s1024/cover.stray.1024x1024.2021-07-30.8.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1e3"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cover.stray.1024x1024.2021-07-30.8.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 207350
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgp65iMc7lKduC0MU-rtX6odG9_6O_Nw4FhSkfpS6k2GkotdXwUHvqwdEi0M63TyqMtwaoVCuqsgG-vyTHWuHZQxTvNqfPC-MbqjKfDoxvCOk8t_3BxGUXkqWR2w6PPs9pImRgyD8eHvj4Zi4JEOBfOXlfAbuxyt1bH0J_FB9XgfEfpGIVXOL46fAJT/s320/3.jpg
142.250.74.1200 OK 30 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgp65iMc7lKduC0MU-rtX6odG9_6O_Nw4FhSkfpS6k2GkotdXwUHvqwdEi0M63TyqMtwaoVCuqsgG-vyTHWuHZQxTvNqfPC-MbqjKfDoxvCOk8t_3BxGUXkqWR2w6PPs9pImRgyD8eHvj4Zi4JEOBfOXlfAbuxyt1bH0J_FB9XgfEfpGIVXOL46fAJT/s320/3.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 133cc5f85d67126d1374fc451c558fc1
29f0544f01eb9b2038cdcf736260de1288c4fa5a
fa8721c53cc41236481ec8d83747cb61a1bf9f472af2848c5a7ee9d4a3cd3adb
GET /img/b/R29vZ2xl/AVvXsEgp65iMc7lKduC0MU-rtX6odG9_6O_Nw4FhSkfpS6k2GkotdXwUHvqwdEi0M63TyqMtwaoVCuqsgG-vyTHWuHZQxTvNqfPC-MbqjKfDoxvCOk8t_3BxGUXkqWR2w6PPs9pImRgyD8eHvj4Zi4JEOBfOXlfAbuxyt1bH0J_FB9XgfEfpGIVXOL46fAJT/s320/3.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f4"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="3.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 30446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjovZqU6iYWHDRxzsmhWCF5UHBJWueeCMM-DCMoDit7T4TYOBSRsw6ijXiHaIzhPy8KYfudJbPqJ2klmtn1S1UXYlq-vPiKqTgXWxvt5Nry3r33iaxgQ-g9IbTCaqlI_MX1DVNEeeH3oDAnwO1omIldbVob7CC206FU7YU7yRBqTrnYXao0KetHXscj/w400-h225/screenshot.stray.1920x1080.2022-06-03.12.jpg
142.250.74.1200 OK 36 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjovZqU6iYWHDRxzsmhWCF5UHBJWueeCMM-DCMoDit7T4TYOBSRsw6ijXiHaIzhPy8KYfudJbPqJ2klmtn1S1UXYlq-vPiKqTgXWxvt5Nry3r33iaxgQ-g9IbTCaqlI_MX1DVNEeeH3oDAnwO1omIldbVob7CC206FU7YU7yRBqTrnYXao0KetHXscj/w400-h225/screenshot.stray.1920x1080.2022-06-03.12.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash 17ebd757c2223c3733a62d4a55b41b66
fae80f20dcd685443889ab0ba943f141d013a8cc
6c7e8bfda1cfe6c8ba3fffb37da5f08d032fc8ef08301e943676be18104ab3ae
GET /img/b/R29vZ2xl/AVvXsEjovZqU6iYWHDRxzsmhWCF5UHBJWueeCMM-DCMoDit7T4TYOBSRsw6ijXiHaIzhPy8KYfudJbPqJ2klmtn1S1UXYlq-vPiKqTgXWxvt5Nry3r33iaxgQ-g9IbTCaqlI_MX1DVNEeeH3oDAnwO1omIldbVob7CC206FU7YU7yRBqTrnYXao0KetHXscj/w400-h225/screenshot.stray.1920x1080.2022-06-03.12.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1e8"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.stray.1920x1080.2022-06-03.12.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 36535
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjjxxkzrbUBXTkM92A-hBO0N7DZACI0UUioggbrmhHNnOaQeOCuFzmVH0I4aTjX-aapyRXmYoV6HCFJOxO-uSlIaEmOJAEYPH7TF2N13fzqh7ibHnYWQV5S6HGPB06wuInFzQNqp18vhvD70YQcphuU8ytE34j74Pa5g-eVv1AD5RglhVQzcGPRFkPP/s320/4.jpg
142.250.74.1200 OK 24 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjjxxkzrbUBXTkM92A-hBO0N7DZACI0UUioggbrmhHNnOaQeOCuFzmVH0I4aTjX-aapyRXmYoV6HCFJOxO-uSlIaEmOJAEYPH7TF2N13fzqh7ibHnYWQV5S6HGPB06wuInFzQNqp18vhvD70YQcphuU8ytE34j74Pa5g-eVv1AD5RglhVQzcGPRFkPP/s320/4.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 324dc22cbafc3f48ea9e17c877258f04
4ae0d3ec8b7ec564d7cb59e9b8985f4c144ba809
fddef35b24b79a57ec19b58994249b97ed801aec17fbf62253fa125661b0db4e
GET /img/b/R29vZ2xl/AVvXsEjjxxkzrbUBXTkM92A-hBO0N7DZACI0UUioggbrmhHNnOaQeOCuFzmVH0I4aTjX-aapyRXmYoV6HCFJOxO-uSlIaEmOJAEYPH7TF2N13fzqh7ibHnYWQV5S6HGPB06wuInFzQNqp18vhvD70YQcphuU8ytE34j74Pa5g-eVv1AD5RglhVQzcGPRFkPP/s320/4.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f4"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 24292
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-1.jpg
94.75.211.145200 OK 23 kB URL HTTP/1.1 www.apunkagames.biz/wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-1.jpg
IP 94.75.211.145:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 823f01658bb6b193b556c4762310f15f
f5046cce5fee62a968f7a1e9c14c6d495a21d814
7ac88da821000d57304e694352b10962d5515b50248dff316df6e0909881ac88
GET /wp-content/uploads/2044/07/GTA-San-Andreas-Superman-Mod-Screenshot-1.jpg HTTP/1.1
Host: www.apunkagames.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 02:51:47 GMT
Server: Apache
Last-Modified: Mon, 22 Jul 2019 22:04:46 GMT
Accept-Ranges: bytes
Content-Length: 14291
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Content-Type: image/jpeg
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLbRshaH7uGtJ5heFPYQhg8-0jTIl_vzhsulhOGH88JlM1c_zVDf6nQRSkjqKn9yx8ZonVI3a-4dLfgIA4Go76vEn_jNeoogj8QS33s-Uony07agih4TcVFDjUtK0Vqtm0n0GEoG9i8OjUtkA4fDZygPshDhjRHhD5h9EE7RLO2SBis31zLHA0N2w3/w400-h225/screenshot.stray.3840x2160.2022-06-03.15.jpg
142.250.74.1200 OK 39 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLbRshaH7uGtJ5heFPYQhg8-0jTIl_vzhsulhOGH88JlM1c_zVDf6nQRSkjqKn9yx8ZonVI3a-4dLfgIA4Go76vEn_jNeoogj8QS33s-Uony07agih4TcVFDjUtK0Vqtm0n0GEoG9i8OjUtkA4fDZygPshDhjRHhD5h9EE7RLO2SBis31zLHA0N2w3/w400-h225/screenshot.stray.3840x2160.2022-06-03.15.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash a297be3f4e1890541a535761765864d9
5fe7c9b9d7bc75c9c6c0387eb6bde6bb7a7caa74
b2ec31fab6070814a129b44e751c944ecac4092de191f0417cfbdc2cd419c7b9
GET /img/b/R29vZ2xl/AVvXsEjLbRshaH7uGtJ5heFPYQhg8-0jTIl_vzhsulhOGH88JlM1c_zVDf6nQRSkjqKn9yx8ZonVI3a-4dLfgIA4Go76vEn_jNeoogj8QS33s-Uony07agih4TcVFDjUtK0Vqtm0n0GEoG9i8OjUtkA4fDZygPshDhjRHhD5h9EE7RLO2SBis31zLHA0N2w3/w400-h225/screenshot.stray.3840x2160.2022-06-03.15.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1e9"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.stray.3840x2160.2022-06-03.15.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 39224
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1s8H1g5lhQvPaPVrAdHfyRdFctml3_xWdpUzhGnpTDEXO5Q20ccEjZPPy1ZHEh4Ikslb6HpBAgE3hb2iZYh0R8jgvG6x494bPX1kKBnIAmN7W_lVFccLDpp_vdzCke0ivsR5AWQlxVd48tGyO29rTXR45AEiJlD0qXoOWq09OaY5SPwyB6keIP2nZ/s320/screenshot.saints-row-ii-2022.1920x1080.2021-08-26.10.jpg
142.250.74.1200 OK 32 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1s8H1g5lhQvPaPVrAdHfyRdFctml3_xWdpUzhGnpTDEXO5Q20ccEjZPPy1ZHEh4Ikslb6HpBAgE3hb2iZYh0R8jgvG6x494bPX1kKBnIAmN7W_lVFccLDpp_vdzCke0ivsR5AWQlxVd48tGyO29rTXR45AEiJlD0qXoOWq09OaY5SPwyB6keIP2nZ/s320/screenshot.saints-row-ii-2022.1920x1080.2021-08-26.10.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 11da70ca124680afa84f844807479561
d07b7fe2761fadcbfcab0d387c98a3e48ed4f28e
0fa5c61d77d9d3c67c681cd16154864c8e3592562af6167fc97fcf28c2391ea6
GET /img/b/R29vZ2xl/AVvXsEi1s8H1g5lhQvPaPVrAdHfyRdFctml3_xWdpUzhGnpTDEXO5Q20ccEjZPPy1ZHEh4Ikslb6HpBAgE3hb2iZYh0R8jgvG6x494bPX1kKBnIAmN7W_lVFccLDpp_vdzCke0ivsR5AWQlxVd48tGyO29rTXR45AEiJlD0qXoOWq09OaY5SPwyB6keIP2nZ/s320/screenshot.saints-row-ii-2022.1920x1080.2021-08-26.10.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f5"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.saints-row-ii-2022.1920x1080.2021-08-26.10.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 32475
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjJxEWrY7iE3w7d91v8ZZcQmokGsKJIXHJJmP33Tceu-F3IaYTepkhmzlM9b8SP1RU8XGjgAhOzHMPVEo1FVnHHga5tnLRxzB6qNqwEYw08iSG7q-bCr-WP-ylJkgXNNxGuw0Ybr4lqWnS0Btn73UTuAvkZbJt65KrgITnw7tvxL8L8CwU7LCrJAWlp/w400-h225/screenshot.stray.1920x1080.2022-06-03.14.jpg
142.250.74.1200 OK 43 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjJxEWrY7iE3w7d91v8ZZcQmokGsKJIXHJJmP33Tceu-F3IaYTepkhmzlM9b8SP1RU8XGjgAhOzHMPVEo1FVnHHga5tnLRxzB6qNqwEYw08iSG7q-bCr-WP-ylJkgXNNxGuw0Ybr4lqWnS0Btn73UTuAvkZbJt65KrgITnw7tvxL8L8CwU7LCrJAWlp/w400-h225/screenshot.stray.1920x1080.2022-06-03.14.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash a1ec2212fba475fb3ef54438fcabaeb5
ad6366a62e01688510766623ec72fbb50193bbf7
c3dae0f3a768a647629dc6b2cb5f89b820e895b3bab4fbc75bd1bb11bbcae3e6
GET /img/b/R29vZ2xl/AVvXsEjJxEWrY7iE3w7d91v8ZZcQmokGsKJIXHJJmP33Tceu-F3IaYTepkhmzlM9b8SP1RU8XGjgAhOzHMPVEo1FVnHHga5tnLRxzB6qNqwEYw08iSG7q-bCr-WP-ylJkgXNNxGuw0Ybr4lqWnS0Btn73UTuAvkZbJt65KrgITnw7tvxL8L8CwU7LCrJAWlp/w400-h225/screenshot.stray.1920x1080.2022-06-03.14.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1e9"
expires: Mon, 17 Oct 2022 02:51:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="screenshot.stray.1920x1080.2022-06-03.14.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 02:51:48 GMT
server: fife
content-length: 42676
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
whazugho.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Content-Type: application/json
Origin: https://www.gamesloft.in
Content-Length: 784
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:48 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 97042f22475d90aaa0d2776a5222232e
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.facebook.com/v2.5/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a8518110aea48%26domain%3Dwww.gamesloft.in%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.gamesloft.in%252Ff23c195f4eddba%26relation%3Dparent.parent&container_width=330&hide_cover=true&href=https%3A%2F%2Fwww.facebook.com%2Fgamesloftdotin%2F&locale=en_US&sdk=joey&show_facepile=false&small_header=true&tabs=&width=
31.13.72.36302 Found 0 B URL HTTP/2 www.facebook.com/v2.5/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a8518110aea48%26domain%3Dwww.gamesloft.in%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.gamesloft.in%252Ff23c195f4eddba%26relation%3Dparent.parent&container_width=330&hide_cover=true&href=https%3A%2F%2Fwww.facebook.com%2Fgamesloftdotin%2F&locale=en_US&sdk=joey&show_facepile=false&small_header=true&tabs=&width=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.5/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a8518110aea48%26domain%3Dwww.gamesloft.in%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.gamesloft.in%252Ff23c195f4eddba%26relation%3Dparent.parent&container_width=330&hide_cover=true&href=https%3A%2F%2Fwww.facebook.com%2Fgamesloftdotin%2F&locale=en_US&sdk=joey&show_facepile=false&small_header=true&tabs=&width= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fadapt_container_width%3Dfalse%26app_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df1a8518110aea48%2526domain%253Dwww.gamesloft.in%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.gamesloft.in%25252Ff23c195f4eddba%2526relation%253Dparent.parent%26container_width%3D330%26hide_cover%3Dtrue%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fgamesloftdotin%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26small_header%3Dtrue%26tabs%26width
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: Ow0DGEuC7BdocU1ssm7ESKwPb31pzHOLTyqviNFM6nbPsDbDIqEpFoTx7rxGSj37t5BmoXRkRjWMCfp9Pj8DYg==
content-length: 0
date: Sun, 16 Oct 2022 02:51:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df5f38c3dc43ccc382d0274bffb6b350
9a305072cce8bb61ca3753bb98b999695fb4706e
20ff21892e65787fecbadca0f59c05e54dee3a1359271839dab0ee5c9e796ab0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6367
x-amzn-requestid: 485c3cf9-d305-4540-8eef-8304d1103ccc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5EHbOoAMFWsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a0-2ac206d826bf23193740e74c;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j4GFPRLOwyEGJVrC4uk01vi858DLWzDtUNZkfmbJ1ybrMV4xEdOIVg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:50:24 GMT
age: 18087
etag: "9a305072cce8bb61ca3753bb98b999695fb4706e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
whazugho.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Content-Type: application/json
Origin: https://www.gamesloft.in
Content-Length: 427
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:52 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: a8606f8e178f9f3b2ac46205efd3f7ee
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=4e76c9d2cab24896a538eb9cdd17b0cf&zoneId=3611747&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=4e76c9d2cab24896a538eb9cdd17b0cf&zoneId=3611747&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d3a5bc95370e9c154d78358a5b7e7759
bce6f2a795832dd316c177fd358b312a94f6dcbc
775963553287a080c54f15419ce2662de530cede701233186c9dfbb1ca6bbf28
GET /gid.js?pub=0&userId=4e76c9d2cab24896a538eb9cdd17b0cf&zoneId=3611747&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Cookie: ID=41ab79784d2c4e518c4889f048be8ffb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:52 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=41ab79784d2c4e518c4889f048be8ffb; expires=Mon, 16 Oct 2023 02:51:52 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
upgulpinon.com/1?z=3738815
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/1?z=3738815
IP 139.45.197.242:0
Analyzer Verdict Alert fortinet Malware
GET /1?z=3738815 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:43 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 568f20935657608b3deb1680481c86de
access-control-expose-headers: X-Sc
x-sc: WDG3w8730sAtdqCyx6HA_x9NRKQrCFPYskcwNsaq1jiwXUkgrHa8vQ2ZStfO651T5hEnz_eo2MlASps5oMmoJhzLcFQ=
set-cookie: scm=1; expires=Mon, 16 Oct 2023 02:51:43 GMT; secure; SameSite=None
OAID=edccd47f97c84679b7488b9439d83355; expires=Mon, 16 Oct 2023 02:51:43 GMT; secure; SameSite=None
oaidts=1665888703; expires=Mon, 16 Oct 2023 02:51:43 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
upgulpinon.com/27/3a63a2a43bbf0a0bb029696534151382
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/27/3a63a2a43bbf0a0bb029696534151382
IP 139.45.197.242:0
Analyzer Verdict Alert fortinet Malware
GET /27/3a63a2a43bbf0a0bb029696534151382 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Cookie: scm=1; OAID=edccd47f97c84679b7488b9439d83355; oaidts=1665888703
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:45 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 13 Oct 2022 05:14:04 GMT
expires: Thu, 12 Nov 2082 05:14:04 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
in-page-push.com/400/3738812
139.45.197.15200 OK 0 B URL HTTP/2 in-page-push.com/400/3738812
IP 139.45.197.15:0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /400/3738812 HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:43 GMT
content-type: application/javascript
x-trace-id: e2b10c0a2c8caa21fc1beb479cbc56cb
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=90754ad8c48144c1ace25cc56cb1c2ed; expires=Mon, 16 Oct 2023 02:51:43 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
unphionetor.com/fv.js?t=72747&cb=1614734864
139.45.197.236200 OK 0 B URL HTTP/2 unphionetor.com/fv.js?t=72747&cb=1614734864
IP 139.45.197.236:0
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=72747&cb=1614734864 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:47 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: bd5bc2244815c47e53dd04bab8dcd120
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
whazugho.com/ntfc.php?p=3611747
139.45.197.250200 OK 0 B URL HTTP/2 whazugho.com/ntfc.php?p=3611747
IP 139.45.197.250:0
GET /ntfc.php?p=3611747 HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:43 GMT
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 15:34:37 GMT
etag: W/"6348300d-38a8"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
zuphaims.com/5/3594261/?oo=1
139.45.197.247200 OK 0 B URL HTTP/2 zuphaims.com/5/3594261/?oo=1
IP 139.45.197.247:0
GET /5/3594261/?oo=1 HTTP/1.1
Host: zuphaims.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gamesloft.in
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:45 GMT
content-type: application/json
x-trace-id: 817d2539b3e19d7faeabcf2b21a8a774
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=c4f1be98a9b14f899171689d831f1af2; expires=Mon, 16 Oct 2023 02:51:45 GMT; path=/; secure; SameSite=None
oaidts=1665888705; expires=Mon, 16 Oct 2023 02:51:45 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fadapt_container_width%3Dfalse%26app_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df1a8518110aea48%2526domain%253Dwww.gamesloft.in%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.gamesloft.in%25252Ff23c195f4eddba%2526relation%253Dparent.parent%26container_width%3D330%26hide_cover%3Dtrue%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fgamesloftdotin%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26small_header%3Dtrue%26tabs%26width
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fadapt_container_width%3Dfalse%26app_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df1a8518110aea48%2526domain%253Dwww.gamesloft.in%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.gamesloft.in%25252Ff23c195f4eddba%2526relation%253Dparent.parent%26container_width%3D330%26hide_cover%3Dtrue%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fgamesloftdotin%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26small_header%3Dtrue%26tabs%26width
IP 31.13.72.36:0
GET /login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fadapt_container_width%3Dfalse%26app_id%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df1a8518110aea48%2526domain%253Dwww.gamesloft.in%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.gamesloft.in%25252Ff23c195f4eddba%2526relation%253Dparent.parent%26container_width%3D330%26hide_cover%3Dtrue%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fgamesloftdotin%252F%26locale%3Den_US%26sdk%3Djoey%26show_facepile%3Dfalse%26small_header%3Dtrue%26tabs%26width HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: E2kkAp4TOyZhswyrPNHcuGZeSTijf8ut+PusMMxTywKa+aEF5n3UPcgdltl86wvtmxfF/EIFUvbVxa18BRSbmQ==
date: Sun, 16 Oct 2022 02:51:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:43 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 15199510
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75ad7e8e0c1bb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rss.bloople.net/?url=https%3A%2F%2Fpredb.me%2F%3Fcats%3Dgames-pc%26rss%3D1&detail=-1&showtitle=false&showempty=true&striphtml=true&forceutf8=true&fixbugs=true&type=js
213.188.217.146200 OK 0 B URL HTTP/2 rss.bloople.net/?url=https%3A%2F%2Fpredb.me%2F%3Fcats%3Dgames-pc%26rss%3D1&detail=-1&showtitle=false&showempty=true&striphtml=true&forceutf8=true&fixbugs=true&type=js
IP 213.188.217.146:0
GET /?url=https%3A%2F%2Fpredb.me%2F%3Fcats%3Dgames-pc%26rss%3D1&detail=-1&showtitle=false&showempty=true&striphtml=true&forceutf8=true&fixbugs=true&type=js HTTP/1.1
Host: rss.bloople.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Fly/54d1d920f (2022-09-30)
date: Sun, 16 Oct 2022 02:51:45 GMT
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-runtime: 1.203549
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, public
etag: W/"50415a2ac478507c689852f331d71897"
x-request-id: 5ccd8a1c-9761-4087-875e-b4072c42a8fa
via: 2 fly.io
fly-request-id: 01GFFB8NEK037WV08GBXX92JSV-fra
X-Firefox-Spdy: h2
whazugho.com/pfe/current/universal.min.js?v=3.1.398
139.45.197.250200 OK 0 B URL HTTP/2 whazugho.com/pfe/current/universal.min.js?v=3.1.398
IP 139.45.197.250:0
GET /pfe/current/universal.min.js?v=3.1.398 HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gamesloft.in/
Origin: https://www.gamesloft.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 02:51:45 GMT
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 15:34:37 GMT
etag: W/"6348300d-17dc6"
access-control-allow-origin: https://www.gamesloft.in
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
172.67.194.45200 OK 0 B IP 172.67.194.45:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gamesloft.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 02:51:46 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2488
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2FDa%2Fj2nPBrEomNqn8v49tyQx7Qg61mfnfRKTO9zFdPoz6MLCci5VGny31mfrRsJjg3dcqRxb1RnBHxjJZWd4CRi5nmAy2XWteGgVDWVCrL5Gt7VaPHnSODvZsn3pw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ad7e9f0c470b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2