| fonts.googleapis.com/css2?family=Alumni+Sans:wght@400;500;600&display=block |  142.250.74.106 | 200 OK | 574 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Alumni+Sans:wght@400;500;600&display=block IP142.250.74.106:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Size574 kB (574387 bytes) Hash076c90888d6e0d503f8fa2cf838bdb8e ce967c79b515377bdeae31214b88a3ad42596e11 39f960c22c009239a703b60e12e30d44bd399d6c4e4303245b3a62e4aac67cd8
GET /css2?family=Alumni+Sans:wght@400;500;600&display=block HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 06:34:06 GMT
date: Fri, 10 May 2024 06:34:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Fira+Sans+Condensed:wght@400;500&family=PT+Serif&family=Playfair+Display&display=swap | 142.250.74.106 | 200 OK | 23 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Fira+Sans+Condensed:wght@400;500&family=PT+Serif&family=Playfair+Display&display=swap IP142.250.74.106:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash2fc086fe9646a81faaa5f82cca8faae7 a3a1f91644a352256f9dc539baa7076d4639b1ab 4766a5a700097da47f6c832196865ab06b0a21a98175ca279abcb81dc4d086b9
GET /css2?family=Fira+Sans+Condensed:wght@400;500&family=PT+Serif&family=Playfair+Display&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 06:34:06 GMT
date: Fri, 10 May 2024 06:34:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Fira+Sans:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 1.9 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Fira+Sans:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashb00e4107ad6222be27194755026d246f a095c4fdd759707188a9075baa1bcf41b4971592 be4d00ca3e6b727b3553e82f19470ff3a18c159db04b3a442aa2298ece670818
GET /css2?family=Fira+Sans:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 06:34:06 GMT
date: Fri, 10 May 2024 06:34:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/images/e6a791244e5cce4ec7099eb90b7b577b.png |  185.244.209.62 | 200 OK | 1.9 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/images/e6a791244e5cce4ec7099eb90b7b577b.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typePNG image data, 129 x 129, 8-bit/color RGBA, non-interlaced Hash3fe9d68d51df3d662503cd076ee7b3cd d3b4b82d02ac927e5b52bdb8eb2d5902efaa1975 c9016c14d24fc518d7592807f498cb03481d9363d59ac6bdb128536422a354ec
GET /modern-3/ru/images/e6a791244e5cce4ec7099eb90b7b577b.png HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/png
content-length: 1932
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: "658453bd-78c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-0250fa8873b0d8ad8f1fb427936e829b-aa2369c592d2a7cb-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T20:48:25+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/alumnisans/v18/nwpQtKqkOwdO2aOIwhWudG-l7w0.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/alumnisans/v18/nwpQtKqkOwdO2aOIwhWudG-l7w0.woff2 IP216.58.207.227:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21988, version 1.0 Hash84029cf72fb8978513f77102711c6e35 4eb345e7ae347bb78751aa72433e77a56379cf65 f5440f6c54152ad6ca21e47a34aa7dbfc1a8d57b9df5c1a348779b0959b41ac2
GET /s/alumnisans/v18/nwpQtKqkOwdO2aOIwhWudG-l7w0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 19:17:09 GMT
expires: Fri, 09 May 2025 19:17:09 GMT
cache-control: public, max-age=31536000
age: 40617
last-modified: Thu, 24 Aug 2023 17:46:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasanscondensed/v10/wEOsEADFm8hSaQTFG18FErVhsC9x-tarWQXOuMR0cg.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/firasanscondensed/v10/wEOsEADFm8hSaQTFG18FErVhsC9x-tarWQXOuMR0cg.woff2 IP216.58.207.227:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22760, version 1.0 Hashf74a85e271c48b935b5caad45ecfecb8 e548a8fd4003f1dd4e20df7bf4dda3f1ff8d066f bf558b850010169a48f78bd32dc7162613de65038e767c6a2928de1b5c60fb98
GET /s/firasanscondensed/v10/wEOsEADFm8hSaQTFG18FErVhsC9x-tarWQXOuMR0cg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 18:03:02 GMT
expires: Fri, 09 May 2025 18:03:02 GMT
cache-control: public, max-age=31536000
age: 45064
last-modified: Thu, 21 Apr 2022 16:46:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/landings/play4free.js?v=342d026 | 185.244.209.62 | 200 OK | 52 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/landings/play4free.js?v=342d026 IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typegzip compressed data, max speed, from Unix Hashcd705a83cb55e15c178cf61276f54f01 2320f5b0428bcd5200ebcc7b8d223747dc797280 15536171150cc2909284856e320b1b73c42a441590d71de2c082897f34ebac09
GET /modern-3/ru/landings/play4free.js?v=342d026 HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: application/javascript; charset=utf8
last-modified: Sat, 27 Apr 2024 12:07:42 GMT
vary: Accept-Encoding
etag: W/"662cea8e-24d77"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-9d07424b114fe540f505eee2b8861f04-9c9b0019ec481eb2-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2024-05-08T01:03:41+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/fonts/footer-incubator-logo.svg | 185.244.209.62 | 200 OK | 23 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/footer-incubator-logo.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typegzip compressed data, max speed, from Unix Hash82bf0bc5656a3f0d5f96fb4b02a912ad c9e000ac19da7864ccc686826c3bdea3dde5ac7c 2b0ffdf0e549e0b20403cc44f349139b4ef44c86a6b51c142eebba61fae5cadc
GET /modern-3/ru/fonts/footer-incubator-logo.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: W/"658453bd-727"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-1ceeb462cfe14e15239c1cf92f9ba6b8-9bedcf681b5e23e9-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/alumnisans/v18/nwpQtKqkOwdO2aOIwhWudG-h7w0CYQ.woff2 | 216.58.207.227 | 200 OK | 12 kB |
URL GET HTTP/2fonts.gstatic.com/s/alumnisans/v18/nwpQtKqkOwdO2aOIwhWudG-h7w0CYQ.woff2 IP216.58.207.227:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11580, version 1.0 Hash370c4271016c82197bddbe7b61d4bfaf 8d2fba6cc8877001882730d2b74e5c860b07cfe9 cb9b0cee42305470391e0dd8848285e47ebfba4c4014ce6c6d37e5ddb58e08b3
GET /s/alumnisans/v18/nwpQtKqkOwdO2aOIwhWudG-h7w0CYQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 03:04:33 GMT
expires: Fri, 09 May 2025 03:04:33 GMT
cache-control: public, max-age=31536000
age: 98973
last-modified: Thu, 24 Aug 2023 18:01:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/fonts/sysreqs.svg | 185.244.209.62 | 200 OK | 23 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/sysreqs.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typegzip compressed data, max speed, from Unix Hash896c03947290160b404a41824c6a0ec0 a83ec8b97061f892b6497de1be6e3e9d5ee97312 cc38ca976aad5866cc6c881c93d941d1465459a77535e90a857ed1ebfba8e701
GET /modern-3/ru/fonts/sysreqs.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: W/"658453bd-a39"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-763a6772b348fd35bb5d8a01a6964c04-e8d726d443aad1b9-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/vendor.js?v=342d026 | 185.244.209.62 | 200 OK | 308 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/vendor.js?v=342d026 IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typegzip compressed data, max speed, from Unix Size308 kB (307609 bytes) Hash80cdc304f905fcb23927a7c530663b62 fef7da1a544f3063adcd2a73f2dbf3078d1cd0ec 8bb235bd2962fffa8109531a2507c1d98fa308cc4445116044b2f623937bd258
GET /modern-3/ru/vendor.js?v=342d026 HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: application/javascript; charset=utf8
last-modified: Sat, 27 Apr 2024 12:07:42 GMT
vary: Accept-Encoding
etag: W/"662cea8e-cfa88"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-98f8ab5a8fb4f7b5231af55ad78448b7-0ccbf0e72ba68258-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2024-05-05T10:14:59+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasanscondensed/v10/wEOhEADFm8hSaQTFG18FErVhsC9x-tarUfbtrQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/firasanscondensed/v10/wEOhEADFm8hSaQTFG18FErVhsC9x-tarUfbtrQ.woff2 IP216.58.207.227:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22768, version 1.0 Hash57f3ab8371bc1d52ab587aab7f9f6ec3 00144246ebbb7685d1d9e998fedfa289c8bd69eb 5a9980abca3b078a7c67a296f602f48bb043c2167e0e8257addfe2d603643a07
GET /s/firasanscondensed/v10/wEOhEADFm8hSaQTFG18FErVhsC9x-tarUfbtrQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 15:32:28 GMT
expires: Fri, 09 May 2025 15:32:28 GMT
cache-control: public, max-age=31536000
age: 54098
last-modified: Thu, 21 Apr 2022 16:50:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| status.geotrust.com/ | 192.229.221.95 | | 471 B |
IP192.229.221.95:0
Hashbf72bc0b5caec94e90a5aea4d512ef1e fcb0e604b0e1c70049d65bb4ff83c4eca42f71b5 89b78e0419018fd3ac1a3d9fe4e0c4bba271e18557d1d82ff179a7eb4267c01a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1821
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Fri, 10 May 2024 06:34:07 GMT
Last-Modified: Fri, 10 May 2024 06:03:47 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
|
|
| static.enlisted.net/modern-3/ru/fonts/footer-darkflow-logo.svg | 185.244.209.62 | 200 OK | 5.9 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/footer-darkflow-logo.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typegzip compressed data, max speed, from Unix Hash38a9f1364fd9b06509d83a4d9906bbcb 0495493316e92b7402ccee486b8cc744e5e91000 550a0eb52ad3dca1f18c5b88359427414de952efef97ea46ff226b0a82333fcf
GET /modern-3/ru/fonts/footer-darkflow-logo.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: W/"658453bd-2d6c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-082b5f2e993f4ee89ffcf73e467d5693-ece5e46ededbb702-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TFJVH5F | 142.250.74.168 | 200 OK | 103 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TFJVH5F IP142.250.74.168:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (10060) Size103 kB (103271 bytes) Hash9e17b750bb8db90fa0288fb84f7bfe1b 0bc147c5114492f4f3d1c155b1cf0291f293ab5c 3e44179fd81261cdc4c7fd45b376d249aa40d77b3ad5852f63527f4896300f90
GET /gtm.js?id=GTM-TFJVH5F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 06:34:07 GMT
expires: Fri, 10 May 2024 06:34:07 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103271
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/images/aa49df6140e6686b245b0aadd5abc695.jpg | 185.244.209.62 | 200 OK | 358 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/images/aa49df6140e6686b245b0aadd5abc695.jpg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1080, components 3 Size358 kB (358276 bytes) Hash9d3dc574a4eb5340b6c55161ad05449c ab136310da6abc3d4e612b1a9dde22d51567db06 9bff4210e822b4e4fa0259ee7604a04cf4a8bb4816875a7db52479609760eda0
GET /modern-3/ru/images/aa49df6140e6686b245b0aadd5abc695.jpg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:07 GMT
content-type: image/jpeg
content-length: 358276
last-modified: Wed, 23 Aug 2023 11:52:56 GMT
etag: "64e5f318-57784"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-0861390094118c666c3be5c516e33933-5f8cf0495211afd8-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-08-26T11:47:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/images/46691d86af35e0251bd1ffa4e173f40e.png | 185.244.209.62 | 200 OK | 4.9 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/images/46691d86af35e0251bd1ffa4e173f40e.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typePNG image data, 40 x 406, 8-bit colormap, non-interlaced Hash73ae03c9d7d6aebc3e873b088aa4a102 d8caf6bcc4ecd82c967241049a2e362387311aa9 c2a232d172e09829a81d4b04027a226ab5c666fde6cb204b3e868fc9651f389c
GET /modern-3/ru/images/46691d86af35e0251bd1ffa4e173f40e.png HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:07 GMT
content-type: image/png
content-length: 4924
last-modified: Thu, 13 Jul 2023 08:17:09 GMT
etag: "64afb305-133c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-bba6d51c12bb79ff7f5f8b3646f2e004-a6953b9182fac2bf-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-07-18T18:30:32+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/i/lp/back.mp4 | 185.244.209.62 | 206 Partial Content | 29 kB |
URL GET HTTP/2static.enlisted.net/i/lp/back.mp4 IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
Hash5864be247f2c36888ed57f8e46eb8e9a 0d8f0c24df469000667685ea7ed5ab91a9b03b28 f20b2a70534ef328270bb3f2214490ccd90de43bd877adb0ac6b2cb4055a431a
GET /i/lp/back.mp4 HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
Range: bytes=9994240-
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==; _gcl_au=1.1.434342313.1715322847
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 10 May 2024 06:34:07 GMT
content-type: video/mp4
content-length: 28885
last-modified: Thu, 13 Jul 2023 08:17:08 GMT
etag: "64afb304-98f0d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-de0b2852f38612820942e7c1cf2d6b0a-18a4d656c756b755-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-07-18T06:55:36+00:00
content-range: bytes 9994240-10023124/10023125
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-B6DR73915T&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 108 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-B6DR73915T&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7711) Size108 kB (107786 bytes) Hash76344b03e5032308c4ec6e975720f4aa 85d9e58384fa87bf73bb9acb7462cce8e74827d5 c610641d0e42b2c1b95106464e9faf54fdd5684364e70ccb84c281695ae991d8
GET /gtag/js?id=G-B6DR73915T&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 06:34:07 GMT
expires: Fri, 10 May 2024 06:34:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107786
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.enlisted.net/i/lp/back.ogv | 185.244.209.62 | 206 Partial Content | 33 kB |
URL GET HTTP/2static.enlisted.net/i/lp/back.ogv IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
Hash7301d66df13d21662419a5d2fe29c72e 8f3252a68b26d1146c30dac7b7ce1bd0ed9a76fc d3f6263bef3b0c39a1ef0f11b06caddc3f3babc5a48527ddaef7474a4d190d4c
GET /i/lp/back.ogv HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
Range: bytes=9797632-
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==; _gcl_au=1.1.434342313.1715322847
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 10 May 2024 06:34:07 GMT
content-type: application/octet-stream
content-length: 32556
last-modified: Mon, 04 Dec 2023 15:21:40 GMT
etag: "656dee84-95ff2c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-9b0f5bb0d1baf7834d56036a6185335c-fc0642e1daba961e-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-10T13:58:43+00:00
content-range: bytes 9797632-9830187/9830188
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/favicon.ico | 185.244.209.62 | 200 OK | 4.3 kB |
URL GET HTTP/2static.enlisted.net/favicon.ico IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hash0e18e8419c0dc9882ddf01065c8aabde 53b8a29e63f588d36e4e14134b6f562c08ed6fd9 a9ea77a88fa39213767a2f627c208c488690a9419d5edcdd2eacc4beb838c5e0
GET /favicon.ico HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==; _gcl_au=1.1.434342313.1715322847
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:07 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Thu, 13 Jul 2023 08:17:09 GMT
etag: "64afb305-10be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-7f922080264a111a92a2955fc392d438-bae79789880af7ed-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-07-18T06:55:37+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| consent.cookiefirst.com/banner.js?cookiefirst-key=8cb9e23d-5278-44b4-bcc2-a27e465e218e&stealth-mode=true&language=inherit&silent-mode=true | 194.242.11.186 | 200 OK | 39 kB |
URL GET HTTP/2consent.cookiefirst.com/banner.js?cookiefirst-key=8cb9e23d-5278-44b4-bcc2-a27e465e218e&stealth-mode=true&language=inherit&silent-mode=true IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash826ce190bf3f9928b19ed84f05e7d999 6946b9054c70c8986297002ac8d8b8b86fb7df0b 8f3ccbf0d85617f1d239bd17b78d5e64b46de0384a394bc145b096e2e1535374
GET /banner.js?cookiefirst-key=8cb9e23d-5278-44b4-bcc2-a27e465e218e&stealth-mode=true&language=inherit&silent-mode=true HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:07 GMT
content-type: application/javascript
server: Cookie First CDN-NO1-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, traceparent
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=300
etag: W/"65fb05ac-10913"
last-modified: Wed, 20 Mar 2024 15:50:04 GMT
cdn-storageserver: SE-344
cdn-fileserver: 584
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/24/2024 18:47:39
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: 75d811878f7cf1da088b6748586ae65d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| consent.cookiefirst.com/sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/version.json?v=1715322847804 | 194.242.11.186 | 200 OK | 44 B |
URL GET HTTP/2consent.cookiefirst.com/sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/version.json?v=1715322847804 IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
Hashc100b15a9164a56273e4f53558f075aa b6c0e3004528cb04f917104881454dd10bc36c8c baac4cfc46ff9d0e176477392bfd6ed4cfbce62af42cf0b8dee16b4d5caaa032
GET /sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/version.json?v=1715322847804 HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:07 GMT
content-type: application/json
content-length: 44
server: Cookie First CDN-NO1-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, traceparent
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=15
etag: "663246ba-2c"
last-modified: Wed, 01 May 2024 13:42:18 GMT
cdn-storageserver: SE-582
cdn-fileserver: 584
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/10/2024 06:34:07
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: 2c78975c9bff5c406ec37ab8c763c61a
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js |  87.248.119.251 | 200 OK | 6.3 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintD4:10:7A:90:FB:74:7B:7D:B9:1A:E2:80:67:5C:1F:63:B2:C1:93:52 ValidityThu, 09 May 2024 00:00:00 GMT - Wed, 26 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: u4HYDFjXOtcnM73Q04FX6ueiv9+ZXvWNcLll4A3ih3t8HTw2gGj4RvsSVH3VeXXzd/rVciMsx3E=
x-amz-request-id: PZX12A6X26GKFNF7
date: Fri, 10 May 2024 06:10:26 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1422
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/i/lp/back.ogv | 185.244.209.62 | 206 Partial Content | 9.2 MB |
URL GET HTTP/2static.enlisted.net/i/lp/back.ogv IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
Size9.2 MB (9207596 bytes) Hash49c7ddb627354b25cb38cc0f2adb25fe 97505fb442178fba45f6a76820329a9080320f79 7429c54e58a016ea0265353d4e686e61a9ee38a6796cb2bafdfa2c9028dac3d9
GET /i/lp/back.ogv HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
Range: bytes=622592-
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==; _gcl_au=1.1.434342313.1715322847
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 10 May 2024 06:34:07 GMT
content-type: application/octet-stream
content-length: 9207596
last-modified: Mon, 04 Dec 2023 15:21:40 GMT
etag: "656dee84-95ff2c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-d77617502c35721b6e40dfbb8b988b04-778a1eb5fd0c0007-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-10T13:58:43+00:00
content-range: bytes 622592-9830187/9830188
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10020777.json | 87.248.119.251 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10020777.json IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintD4:10:7A:90:FB:74:7B:7D:B9:1A:E2:80:67:5C:1F:63:B2:C1:93:52 ValidityThu, 09 May 2024 00:00:00 GMT - Wed, 26 Jun 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10020777.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 8NHX4BBM1FRKV5BV
x-amz-id-2: 7ZiJmapZ9YyMU9uNYrGUB05x6riUVfRoMsG+8iRu1xuS+XbdH/NGhQYRKTutHVN6roAvZWEBe2Lxdfp7LCRWBg==
content-type: application/json
date: Fri, 10 May 2024 05:49:15 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 2693
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/landing?gcs=G111&gcd=13t3t3l2l5&rnd=614592660.1715322847&url=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F&dma_cps=sypham&dma=1&npa=1>m=45He4580n81TFJVH5Fv79387493za200&auid=434342313.1715322847 | 142.250.74.132 | 302 Found | 42 B |
URL POST HTTP/2www.google.com/pagead/landing?gcs=G111&gcd=13t3t3l2l5&rnd=614592660.1715322847&url=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F&dma_cps=sypham&dma=1&npa=1>m=45He4580n81TFJVH5Fv79387493za200&auid=434342313.1715322847 IP142.250.74.132:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gcs=G111&gcd=13t3t3l2l5&rnd=614592660.1715322847&url=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F&dma_cps=sypham&dma=1&npa=1>m=45He4580n81TFJVH5Fv79387493za200&auid=434342313.1715322847 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 10 May 2024 06:34:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
location: https://googleads.g.doubleclick.net/pagead/landing?gcs=G111&gcd=13t3t3l2l5&rnd=614592660.1715322847&url=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F&dma_cps=sypham&dma=1&npa=1>m=45He4580n81TFJVH5Fv79387493za200&auid=434342313.1715322847
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| edge.cookiefirst.com/prod/location?origin=enlisted.net | 194.242.11.186 | 200 OK | 66 B |
URL GET HTTP/2edge.cookiefirst.com/prod/location?origin=enlisted.net IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
Hash3d6d1675bc7020997c537178fe516c15 d71a3934122b0a38385c450f5fc51b119e7b3262 805b7e90165f29b83a83e995525324345ba832afc25bd5a79e08ee35e14e5a2d
GET /prod/location?origin=enlisted.net HTTP/1.1
Host: edge.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:08 GMT
content-type: application/json; charset=utf-8
content-length: 66
server: BunnyCDN-NO1-830
cdn-pullzone: 717911
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
access-control-allow-origin: https://enlisted.net
cache-control: public, max-age=1200
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/10/2024 06:34:08
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 55bcc397c3a24414ce70168bbbb8611c
cdn-cache: BYPASS
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-B6DR73915T>m=45je4580v9106709941z879387493za200&_p=1715322846625&_gaz=1&gcs=G111&gcd=13t3tPl2l5&npa=1&dma_cps=sypham&dma=1&cid=1385256743.1715322848&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715322847&sct=1&seg=0&dl=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F%3Fr%3DpwnCPA_3723_5095396%26transaction_id%3D3cd55d169c3546ff9a4725906f8c1634&dt=Enlisted%20%E2%80%94%20%D1%8D%D1%82%D0%BE%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%BE%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D0%BA%D0%B8%D0%B9%20%D1%88%D1%83%D1%82%D0%B5%D1%80%20%D0%BE%20%D0%92%D1%82%D0%BE%D1%80%D0%BE%D0%B9%20%D0%BC%D0%B8%D1%80%D0%BE%D0%B2%D0%BE%D0%B9%20%D0%B2%D0%BE%D0%B9%D0%BD%D0%B5.%20%D0%98%D0%B3%D1%80%D0%B0%D0%B9%20%D1%81%D0%B5%D0%B9%D1%87%D0%B0%D1%81!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2193 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-B6DR73915T>m=45je4580v9106709941z879387493za200&_p=1715322846625&_gaz=1&gcs=G111&gcd=13t3tPl2l5&npa=1&dma_cps=sypham&dma=1&cid=1385256743.1715322848&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715322847&sct=1&seg=0&dl=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F%3Fr%3DpwnCPA_3723_5095396%26transaction_id%3D3cd55d169c3546ff9a4725906f8c1634&dt=Enlisted%20%E2%80%94%20%D1%8D%D1%82%D0%BE%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%BE%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D0%BA%D0%B8%D0%B9%20%D1%88%D1%83%D1%82%D0%B5%D1%80%20%D0%BE%20%D0%92%D1%82%D0%BE%D1%80%D0%BE%D0%B9%20%D0%BC%D0%B8%D1%80%D0%BE%D0%B2%D0%BE%D0%B9%20%D0%B2%D0%BE%D0%B9%D0%BD%D0%B5.%20%D0%98%D0%B3%D1%80%D0%B0%D0%B9%20%D1%81%D0%B5%D0%B9%D1%87%D0%B0%D1%81!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2193 IP216.239.32.36:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B6DR73915T>m=45je4580v9106709941z879387493za200&_p=1715322846625&_gaz=1&gcs=G111&gcd=13t3tPl2l5&npa=1&dma_cps=sypham&dma=1&cid=1385256743.1715322848&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715322847&sct=1&seg=0&dl=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F%3Fr%3DpwnCPA_3723_5095396%26transaction_id%3D3cd55d169c3546ff9a4725906f8c1634&dt=Enlisted%20%E2%80%94%20%D1%8D%D1%82%D0%BE%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%BE%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D0%BA%D0%B8%D0%B9%20%D1%88%D1%83%D1%82%D0%B5%D1%80%20%D0%BE%20%D0%92%D1%82%D0%BE%D1%80%D0%BE%D0%B9%20%D0%BC%D0%B8%D1%80%D0%BE%D0%B2%D0%BE%D0%B9%20%D0%B2%D0%BE%D0%B9%D0%BD%D0%B5.%20%D0%98%D0%B3%D1%80%D0%B0%D0%B9%20%D1%81%D0%B5%D0%B9%D1%87%D0%B0%D1%81!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2193 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://enlisted.net
date: Fri, 10 May 2024 06:34:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| consent.cookiefirst.com/sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/lang-widget-en.json?v=526c4bdc-f48c-4ef8-8c9c-00c60d5306ed | 194.242.11.186 | 200 OK | 5.0 kB |
URL GET HTTP/2consent.cookiefirst.com/sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/lang-widget-en.json?v=526c4bdc-f48c-4ef8-8c9c-00c60d5306ed IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
Hashc86fa0050e2ca7413c8130c1d9d096e4 7157d7968ca3e7e1bd4b58952b4fd2f5f842ff9e 1b2eeb18f3a03a2c509cf8cc28f6984eb59ab9565262fbe8141ee10184c007c9
GET /sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/lang-widget-en.json?v=526c4bdc-f48c-4ef8-8c9c-00c60d5306ed HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:08 GMT
content-type: application/json
vary: Accept-Encoding
server: Cookie First CDN-NO1-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, traceparent
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=31919000
etag: W/"6631f208-3293"
last-modified: Wed, 01 May 2024 07:40:56 GMT
cdn-storageserver: SE-583
cdn-fileserver: 585
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/01/2024 13:50:10
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: b0ed987a904e42d40ab38a08c81dbb06
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| consent.cookiefirst.com/banner/v2.14.11/static-main/233.8420.c.js | 194.242.11.186 | 200 OK | 96 B |
URL GET HTTP/2consent.cookiefirst.com/banner/v2.14.11/static-main/233.8420.c.js IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashcba801e05e2f6008846a8e5793d14fbd abbba71a707e841765d3d59e198d9070afced1c2 b364babb52cb930beb7e5e61f549d739c155b2f8a24415bb8b401b0d6cb3eddb
GET /banner/v2.14.11/static-main/233.8420.c.js HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:08 GMT
content-type: application/javascript
content-length: 96
server: Cookie First CDN-NO1-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, traceparent
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=31919000
etag: "65fb05ab-60"
last-modified: Wed, 20 Mar 2024 15:50:03 GMT
cdn-storageserver: SE-344
cdn-fileserver: 585
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/20/2024 15:50:05
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: 953d86080ed835d6b2e664061e77b013
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bat.bing.com/p/action/5665554.js | 204.79.197.237 | 204 No Content | 0 B |
URL GET HTTP/2bat.bing.com/p/action/5665554.js IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint02:83:27:F9:50:D8:BE:B9:5E:DF:1A:4A:45:3B:6D:3C:BC:30:F2:58 ValidityWed, 01 May 2024 01:58:25 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5665554.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 27947C07E3494F58BB8483FF7F969870 Ref B: OSL30EDGE0414 Ref C: 2024-05-10T06:34:09Z
date: Fri, 10 May 2024 06:34:08 GMT
X-Firefox-Spdy: h2
|
|
| bat.bing.com/action/0?ti=5665554&Ver=2&mid=6cd12dc4-2432-4a30-8ca6-10229dd95bd2&sid=4de70e800e9711ef8108793634bf98b6&vid=4de744400e9711efa8559391aaeced80&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Enlisted%20%E2%80%94%20%D1%8D%D1%82%D0%BE%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%BE%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D0%BA%D0%B8%D0%B9%20%D1%88%D1%83%D1%82%D0%B5%D1%80%20%D0%BE%20%D0%92%D1%82%D0%BE%D1%80%D0%BE%D0%B9%20%D0%BC%D0%B8%D1%80%D0%BE%D0%B2%D0%BE%D0%B9%20%D0%B2%D0%BE%D0%B9%D0%BD%D0%B5.%20%D0%98%D0%B3%D1%80%D0%B0%D0%B9%20%D1%81%D0%B5%D0%B9%D1%87%D0%B0%D1%81!&p=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F%3Fr%3DpwnCPA_3723_5095396%26transaction_id%3D3cd55d169c3546ff9a4725906f8c1634&r=<=1295&evt=pageLoad&sv=1&rn=965070 | 204.79.197.237 | 204 No Content | 0 B |
URL GET HTTP/2bat.bing.com/action/0?ti=5665554&Ver=2&mid=6cd12dc4-2432-4a30-8ca6-10229dd95bd2&sid=4de70e800e9711ef8108793634bf98b6&vid=4de744400e9711efa8559391aaeced80&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Enlisted%20%E2%80%94%20%D1%8D%D1%82%D0%BE%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%BE%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D0%BA%D0%B8%D0%B9%20%D1%88%D1%83%D1%82%D0%B5%D1%80%20%D0%BE%20%D0%92%D1%82%D0%BE%D1%80%D0%BE%D0%B9%20%D0%BC%D0%B8%D1%80%D0%BE%D0%B2%D0%BE%D0%B9%20%D0%B2%D0%BE%D0%B9%D0%BD%D0%B5.%20%D0%98%D0%B3%D1%80%D0%B0%D0%B9%20%D1%81%D0%B5%D0%B9%D1%87%D0%B0%D1%81!&p=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F%3Fr%3DpwnCPA_3723_5095396%26transaction_id%3D3cd55d169c3546ff9a4725906f8c1634&r=<=1295&evt=pageLoad&sv=1&rn=965070 IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint02:83:27:F9:50:D8:BE:B9:5E:DF:1A:4A:45:3B:6D:3C:BC:30:F2:58 ValidityWed, 01 May 2024 01:58:25 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5665554&Ver=2&mid=6cd12dc4-2432-4a30-8ca6-10229dd95bd2&sid=4de70e800e9711ef8108793634bf98b6&vid=4de744400e9711efa8559391aaeced80&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Enlisted%20%E2%80%94%20%D1%8D%D1%82%D0%BE%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%BE%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D1%8C%D1%81%D0%BA%D0%B8%D0%B9%20%D1%88%D1%83%D1%82%D0%B5%D1%80%20%D0%BE%20%D0%92%D1%82%D0%BE%D1%80%D0%BE%D0%B9%20%D0%BC%D0%B8%D1%80%D0%BE%D0%B2%D0%BE%D0%B9%20%D0%B2%D0%BE%D0%B9%D0%BD%D0%B5.%20%D0%98%D0%B3%D1%80%D0%B0%D0%B9%20%D1%81%D0%B5%D0%B9%D1%87%D0%B0%D1%81!&p=https%3A%2F%2Fenlisted.net%2Fru%2Fplay4free%2F%3Fr%3DpwnCPA_3723_5095396%26transaction_id%3D3cd55d169c3546ff9a4725906f8c1634&r=<=1295&evt=pageLoad&sv=1&rn=965070 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2FEE37E5E8476302079D239EE9106252; domain=.bing.com; expires=Wed, 04-Jun-2025 06:34:09 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0417CCAA723E4A019FC42BA32F5AE26E Ref B: OSL30EDGE0414 Ref C: 2024-05-10T06:34:09Z
date: Fri, 10 May 2024 06:34:08 GMT
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B6DR73915T&cid=1385256743.1715322848>m=45je4580v9106709941z879387493za200&aip=1&dma=1&dma_cps=sypham&gcs=G111&gcd=13t3tPl2l5&npa=1&frm=0&z=1454694146 | 172.217.21.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B6DR73915T&cid=1385256743.1715322848>m=45je4580v9106709941z879387493za200&aip=1&dma=1&dma_cps=sypham&gcs=G111&gcd=13t3tPl2l5&npa=1&frm=0&z=1454694146 IP172.217.21.163:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97 ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B6DR73915T&cid=1385256743.1715322848>m=45je4580v9106709941z879387493za200&aip=1&dma=1&dma_cps=sypham&gcs=G111&gcd=13t3tPl2l5&npa=1&frm=0&z=1454694146 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 10 May 2024 06:34:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 54.230.218.11 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP54.230.218.11:0
Hash88d3ba85d90ab7325da7df2a2188118e 6cbf24c2462037661568d3e6a3a1cf831758093b 562df2db459c08f33326f3e467f28b4d3b369c3b13b7aea7305bbb45f1346658
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 06:34:09 GMT
Last-Modified: Fri, 10 May 2024 05:51:28 GMT
Server: ECAcc (ska/F6CC)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: a_HRSJh6V8f7F1MAvPuM68wQiEZ-bemoX6QkVutPhjWcOJhSFdxghw==
Age: 2562
|
|
| enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 | 172.67.14.1 | 200 OK | 8.9 kB |
URL User Request GET HTTP/2enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 IP172.67.14.1:443
CertificateIssuerDigiCert Inc Subject*.enlisted.net Fingerprint8E:32:75:2A:17:33:15:E8:24:1A:4F:60:B5:C1:3C:67:FA:CB:79:B1 ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8372), with no line terminators Hashcfd6bb0e8245490ceb43f418312a277a ba49a10a9598218c055ea9c1bab187f3db63f288 c214f36ce3b7d8e61e285ed6798e94b331602813903397e158943f0aa6fb6361
GET /ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 HTTP/1.1
Host: enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.0.3
set-cookie: identity_sid=0qnbp8m62deksb5jbntgom1e7h; expires=Fri, 24-May-2024 06:34:05 GMT; Max-Age=1209600; path=/
language=ru; expires=Sat, 10-May-2025 06:34:05 GMT; Max-Age=31536000; path=/; domain=enlisted.net; HttpOnly
afsId=0C0F13ACDDBF3D66D76D581B02623503; expires=Sat, 10-May-2025 06:34:05 GMT; Max-Age=31536000; path=/; domain=enlisted.net
partner_info=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=enlisted.net
partner_info=aHR0cHM6Ly9lbmxpc3RlZC5uZXQvcnUvcGxheTRmcmVlLz9yPXB3bkNQQV8zNzIzXzUwOTUzOTYmdHJhbnNhY3Rpb25faWQ9M2NkNTVkMTY5YzM1NDZmZjlhNDcyNTkwNmY4YzE2MzQ%253D; expires=Sun, 09-Jun-2024 06:34:05 GMT; Max-Age=2592000; path=/; HttpOnly
utm_origin=utm_source%3Dsteam-landing; expires=Tue, 09-Jul-2024 06:34:05 GMT; Max-Age=5184000; path=/; domain=enlisted.net; HttpOnly
ref_name=pwncpa; path=/; domain=enlisted.net; HttpOnly
conntrack=rBMPDGY9v90bWG3XAzViAg==; expires=Sat, 10-May-25 06:34:05 GMT; domain=enlisted.net; path=/
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: Fri, 10 May 2024 05:34:05 +0000
last-modified: Fri, 10 May 2024 06:34:05 GMT
pragma: no-cache
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8817e6ca08e20b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/fonts/rate-esrb.svg | 185.244.209.62 | 200 OK | 6.7 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/rate-esrb.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeSVG Scalable Vector Graphics image Hash82154c52b46cc6b930f468dcfe6fa0e0 645171115a46b8f7d1115d3a35b757c6ed6f65ea 264c952a03ee8318d01d4d7c437ee3fc9e765c05224bc15b92e1811dd71a9eef
GET /modern-3/ru/fonts/rate-esrb.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: W/"658453bd-1a4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-262edfc3064fe7597eaf57d844cd5138-a0290c51e725b1bf-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/fonts/rate-usk.svg | 185.244.209.62 | 200 OK | 7.6 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/rate-usk.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeSVG Scalable Vector Graphics image Hash3880d47ec3fd2e184dd9f6f259c23cf1 703fde330960b97fdbaf4858baaa51dc404dc69f 755e3b596135912e2c496b7aa461e76ce365d02c999f09a667e8629cc0aa516f
GET /modern-3/ru/fonts/rate-usk.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: W/"658453bd-1dd0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-46e50027ccec0679c49503788c1ce809-d9c4e668b4539be1-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| uep.gaijin.net:8383/track_pixel?event=track_pixel&data=eyJ1cmwiOiJodHRwczpcL1wvZW5saXN0ZWQubmV0XC9ydVwvcGxheTRmcmVlXC8%2Fcj1wd25DUEFfMzcyM181MDk1Mzk2JnRyYW5zYWN0aW9uX2lkPTNjZDU1ZDE2OWMzNTQ2ZmY5YTQ3MjU5MDZmOGMxNjM0IiwiaXAiOiI5MS45MC40Mi4xNTQiLCJsYW5nX3VybCI6InJ1IiwibGFuZ19nZW8iOiJlbiIsInNhbHQiOiJjY2I1Y2U4Y2Y4MTNiYTlmOGZjMTMyMmRmMmFjZTVkNiJ9&public_key=ts9573zKtE7DgVf2TZxt&crc=2f446f1ba01c740e22f0fc9b57d1535d |  52.208.162.169 | 200 OK | 99 B |
URL GET HTTP/1.1uep.gaijin.net:8383/track_pixel?event=track_pixel&data=eyJ1cmwiOiJodHRwczpcL1wvZW5saXN0ZWQubmV0XC9ydVwvcGxheTRmcmVlXC8%2Fcj1wd25DUEFfMzcyM181MDk1Mzk2JnRyYW5zYWN0aW9uX2lkPTNjZDU1ZDE2OWMzNTQ2ZmY5YTQ3MjU5MDZmOGMxNjM0IiwiaXAiOiI5MS45MC40Mi4xNTQiLCJsYW5nX3VybCI6InJ1IiwibGFuZ19nZW8iOiJlbiIsInNhbHQiOiJjY2I1Y2U4Y2Y4MTNiYTlmOGZjMTMyMmRmMmFjZTVkNiJ9&public_key=ts9573zKtE7DgVf2TZxt&crc=2f446f1ba01c740e22f0fc9b57d1535d IP52.208.162.169:8383
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerDigiCert Inc Subject*.gaijin.net Fingerprint25:80:E8:41:44:B4:D4:46:DC:A8:B0:F9:A1:1D:58:27:48:5E:99:66 ValidityWed, 13 Mar 2024 00:00:00 GMT - Sat, 12 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash22afebbe2f149c864bc03ac0e127e01e 822c542cd89ac046ece04ae76246ea1f2f26f970 6ff64321b66b5400b96c61ad9a0ee80d19e68bd44a9eae58b0b2a3b4bc76a817
GET /track_pixel?event=track_pixel&data=eyJ1cmwiOiJodHRwczpcL1wvZW5saXN0ZWQubmV0XC9ydVwvcGxheTRmcmVlXC8%2Fcj1wd25DUEFfMzcyM181MDk1Mzk2JnRyYW5zYWN0aW9uX2lkPTNjZDU1ZDE2OWMzNTQ2ZmY5YTQ3MjU5MDZmOGMxNjM0IiwiaXAiOiI5MS45MC40Mi4xNTQiLCJsYW5nX3VybCI6InJ1IiwibGFuZ19nZW8iOiJlbiIsInNhbHQiOiJjY2I1Y2U4Y2Y4MTNiYTlmOGZjMTMyMmRmMmFjZTVkNiJ9&public_key=ts9573zKtE7DgVf2TZxt&crc=2f446f1ba01c740e22f0fc9b57d1535d HTTP/1.1
Host: uep.gaijin.net:8383
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
X-Powered-By: Express
Date: Fri, 10 May 2024 06:34:07 GMT
Connection: keep-alive
Content-Length: 99
|
|
| static.enlisted.net/modern-3/ru/images/f5fa49519b7862bed6197f6ecf054110.png | 185.244.209.62 | 200 OK | 22 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/images/f5fa49519b7862bed6197f6ecf054110.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typePNG image data, 136 x 137, 8-bit/color RGBA, non-interlaced Hash72c3dc48d96dfaa947b767fb4ad60e95 a692add0ebe61d2ad1300e5cff78c3881c523eed b6250b7dc77bbf63e0e8130116a88e1e5a2192f6024814e1e37b7c06c31f52a1
GET /modern-3/ru/images/f5fa49519b7862bed6197f6ecf054110.png HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/png
content-length: 22458
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: "658453bd-57ba"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-d79abb4661205b2487cd7b2742dd987e-eab99b104bdb2f68-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasanscondensed/v10/wEOhEADFm8hSaQTFG18FErVhsC9x-tarUfLtrftV.woff2 | 216.58.207.227 | 200 OK | 10 kB |
URL GET HTTP/2fonts.gstatic.com/s/firasanscondensed/v10/wEOhEADFm8hSaQTFG18FErVhsC9x-tarUfLtrftV.woff2 IP216.58.207.227:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 10312, version 1.0 Hash021102f54a66ae6e0ed54ee55f499c65 810f506cb54b68133cd0d8c2e35e11e91dc91d11 428fc11a6adab7e89d3a97a824d85fd2e639a68c2fb8760b3916b6fed0bc9bcc
GET /s/firasanscondensed/v10/wEOhEADFm8hSaQTFG18FErVhsC9x-tarUfLtrftV.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10312
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:44:05 GMT
expires: Fri, 09 May 2025 02:44:05 GMT
cache-control: public, max-age=31536000
age: 100201
last-modified: Thu, 21 Apr 2022 16:46:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/fonts/rate-age.svg | 185.244.209.62 | 200 OK | 3.0 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/rate-age.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeSVG Scalable Vector Graphics image Hash4af1211a8ccfd83734a96ecbcc4b6a87 39f5e9fd53ccb15a989477d0fb8ff7734f6f2e7b b065392b42217efbb5be4fb17502d2446366711df9987914c7392f7bf0154118
GET /modern-3/ru/fonts/rate-age.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 13 Jul 2023 08:17:09 GMT
etag: W/"64afb305-bcd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-d4444da493a430986a5b9c2977603e9d-7660093e01572dbd-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-07-18T07:51:55+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026 | 185.244.209.62 | 200 OK | 115 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026 IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size115 kB (114962 bytes) Hash0aa175c5782dde87a15df6149cc345e5 ea29ff3295ef9e4ecb17bb40465ab71ff46922d1 c335af8f9df9e247cd51260364853bd5d77b1feeaf46b898556229444cf7f522
GET /modern-3/ru/landings/play4free.styles.css?v=342d026 HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634
DNT: 1
Connection: keep-alive
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 12:07:43 GMT
vary: Accept-Encoding
etag: W/"662cea8f-1c112"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-d61ee7ab20a636ecf739561d52dd0db6-abd8cc6c9b23eab4-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2024-05-08T01:03:41+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| script.anura.io/request.js?instance=3952744944&exid=0C0F13ACDDBF3D66D76D581B02623503&source=pwncpa&campaign=3723_5095396&239420637195 | 18.135.89.82 | 200 OK | 59 kB |
URL GET HTTP/2script.anura.io/request.js?instance=3952744944&exid=0C0F13ACDDBF3D66D76D581B02623503&source=pwncpa&campaign=3723_5095396&239420637195 IP18.135.89.82:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerAmazon Subjectscript.anura.io Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20 ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2034) Hash0c4e1897b0dea80b9d461f26e49019aa c441da8efe883008491468e0f7308f5b877f7873 5cc0e7bf669f9d445e32b713c4324b4c07287d053de5423fe7ea7021b6bec9f0
GET /request.js?instance=3952744944&exid=0C0F13ACDDBF3D66D76D581B02623503&source=pwncpa&campaign=3723_5095396&239420637195 HTTP/1.1
Host: script.anura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:09 GMT
content-type: application/javascript; charset=utf-8
server: nginx
vary: Accept-Encoding
expires: Sun, 28 Dec 1980 18:57:00 EST
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/images/b946878de9a2efe9459be6e75febaca2.png | 185.244.209.62 | 200 OK | 1.2 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/images/b946878de9a2efe9459be6e75febaca2.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typePNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced Hashe2b5358547fb0fb0e42a6cdf15928db9 7ab2d4ee7035b63be71b64cd04838b3603c43d0f d89a71f857fc0d97e5c96a528eebd8130e42a10b9cc649852a5706c4ebf28ded
GET /modern-3/ru/images/b946878de9a2efe9459be6e75febaca2.png HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/png
content-length: 1208
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: "658453bd-4b8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-152702983a5723dcb233588282df6601-ec0aabb4142dca5b-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/fonts/rate-pegi.svg | 185.244.209.62 | 200 OK | 32 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/fonts/rate-pegi.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typeSVG Scalable Vector Graphics image Hash4bab8e36eb3e38bfb9d73d9c31845361 4d98e3742c804fd3ededa94cbc52fab265edf67f ac8701bea460052886ce8e9daa2f19597ec100f22b7b98e92d47b6f124253485
GET /modern-3/ru/fonts/rate-pegi.svg HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: W/"658453bd-7da2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-15abd81baad767d3edb7ca65309e1fcd-c32bf1a34dfa4fe1-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
content-encoding: gzip
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| static.enlisted.net/modern-3/ru/images/5d1177153fa575e9b2ee4ead86215beb.png | 185.244.209.62 | 200 OK | 574 kB |
URL GET HTTP/2static.enlisted.net/modern-3/ru/images/5d1177153fa575e9b2ee4ead86215beb.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerLet's Encrypt Subjectstatic.enlisted.net Fingerprint4B:1C:7C:18:5B:43:D5:C3:ED:4E:2A:F5:44:9C:A7:CB:46:D5:B5:FE ValiditySat, 06 Apr 2024 07:53:58 GMT - Fri, 05 Jul 2024 07:53:57 GMT
File typePNG image data, 792 x 588, 8-bit/color RGBA, non-interlaced Size574 kB (573787 bytes) Hash9bb9d327b38b433beb76de84e87e978e 58bb9ebe6af2cd887da9e7820260a1a9121f4914 1b16ac5c0f9c10188043e6d200c5118888178cb200c3338a9ae9359f0191fce2
GET /modern-3/ru/images/5d1177153fa575e9b2ee4ead86215beb.png HTTP/1.1
Host: static.enlisted.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.enlisted.net/modern-3/ru/landings/play4free.styles.css?v=342d026
Cookie: language=ru; afsId=0C0F13ACDDBF3D66D76D581B02623503; utm_origin=utm_source%3Dsteam-landing; ref_name=pwncpa; conntrack=rBMPDGY9v90bWG3XAzViAg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 06:34:06 GMT
content-type: image/png
content-length: 573787
last-modified: Thu, 21 Dec 2023 15:03:25 GMT
etag: "658453bd-8c15b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
traceparent: 00-0bea68a29b70a71f7e6795e5e26e00c8-6c92e4121aaaea67-01
x-id: osix-hw-edge-gc4
access-control-allow-origin: *
cache: HIT
x-cached-since: 2023-12-21T17:07:40+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| consent.cookiefirst.com/sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/config.json?v=526c4bdc-f48c-4ef8-8c9c-00c60d5306ed | 194.242.11.186 | 200 OK | 2.6 kB |
URL GET HTTP/2consent.cookiefirst.com/sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/config.json?v=526c4bdc-f48c-4ef8-8c9c-00c60d5306ed IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (3000), with no line terminators Hashf40bd249f499e968c7ce49f0dc3483b7 92e9cbd568a1af8936fbf70a292e516fe8cf2bef 14cf8c9557cad00791143978ea223bd3cbbf42a6f58b90376f4da276068ce1b5
GET /sites/enlisted.net-8cb9e23d-5278-44b4-bcc2-a27e465e218e/config.json?v=526c4bdc-f48c-4ef8-8c9c-00c60d5306ed HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:08 GMT
content-type: application/json
vary: Accept-Encoding
server: Cookie First CDN-NO1-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, traceparent
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=30
etag: W/"6631f206-a28"
last-modified: Wed, 01 May 2024 07:40:54 GMT
cdn-storageserver: SE-583
cdn-fileserver: 585
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/01/2024 13:50:10
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: eda36194cf73089a65239d1cf0e1969a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| script.anura.io/response.json | 18.135.89.82 | 200 OK | 43 B |
URL POST HTTP/2script.anura.io/response.json IP18.135.89.82:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerAmazon Subjectscript.anura.io Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20 ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash373d32b199103ce7e758a9d361919bc3 8001358c4639b23718f66ea0e792ca207d7a94ed 6a552af1e4aa2e3c1548a10c8451e1564b8109c7e38b50a2bb4220688f301f65
POST /response.json HTTP/1.1
Host: script.anura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5238
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:10 GMT
content-type: application/json; charset=utf-8
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST
expires: Sun, 28 Dec 1980 18:57:00 EST
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bat.bing.com/bat.js | 204.79.197.237 | 200 OK | 46 kB |
IP204.79.197.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint02:83:27:F9:50:D8:BE:B9:5E:DF:1A:4A:45:3B:6D:3C:BC:30:F2:58 ValidityWed, 01 May 2024 01:58:25 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7368481E896D4362A44A0CF2225BABCE Ref B: OSL30EDGE0414 Ref C: 2024-05-10T06:34:07Z
date: Fri, 10 May 2024 06:34:07 GMT
X-Firefox-Spdy: h2
|
|
| consent.cookiefirst.com/banner/v2.14.11/static-main/233.362b.c.css | 194.242.11.186 | 200 OK | 127 B |
URL GET HTTP/2consent.cookiefirst.com/banner/v2.14.11/static-main/233.362b.c.css IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerSectigo Limited Subject*.cookiefirst.com Fingerprint75:22:79:6F:76:D4:CF:AF:D0:13:47:69:F9:3C:80:A6:0A:6A:E4:2F ValidityTue, 05 Dec 2023 00:00:00 GMT - Mon, 16 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash526f8c46ab131ab5d52e4848cb9a78c0 341f9f54fe9759f375e824c08c57cf026ef2eb67 e7902b56545718b3f9dcc015b4acab60270239d559b0adaae9e5c81dd95a89a1
GET /banner/v2.14.11/static-main/233.362b.c.css HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 06:34:08 GMT
content-type: text/css
content-length: 127
server: Cookie First CDN-NO1-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, traceparent
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=31919000
etag: "65fb05ab-7f"
last-modified: Wed, 20 Mar 2024 15:50:03 GMT
cdn-storageserver: SE-318
cdn-fileserver: 585
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/24/2024 18:47:41
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: eccd870c6d8d3e04764bd077b3c30600
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ads.anura.io/showads.js?292564371736 | 54.230.111.27 | 200 OK | 0 B |
URL GET HTTP/2ads.anura.io/showads.js?292564371736 IP54.230.111.27:443
Requested byhttps://enlisted.net/ru/play4free/?r=pwnCPA_3723_5095396&transaction_id=3cd55d169c3546ff9a4725906f8c1634 CertificateIssuerAmazon Subjectads.anura.io Fingerprint1D:30:09:B1:D0:2A:A6:E2:1D:B8:C7:0A:60:EB:65:48:AF:05:5E:19 ValidityMon, 29 Apr 2024 00:00:00 GMT - Tue, 27 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /showads.js?292564371736 HTTP/1.1
Host: ads.anura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enlisted.net
DNT: 1
Connection: keep-alive
Referer: https://enlisted.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 09 May 2024 13:36:28 GMT
server: nginx
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: USLlTSfp_NrjQHAzSoGxBib1jvRibOqKindO7RJrxT-dUtlheX1Neg==
age: 61061
X-Firefox-Spdy: h2
|
|
18.159.105.57
0.0.0.0