r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3827
Expires: Tue, 31 Jan 2023 04:19:47 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5953
Expires: Tue, 31 Jan 2023 04:55:13 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 02:43:15 GMT
content-type: application/json
age: 1965
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20594
Expires: Tue, 31 Jan 2023 08:59:14 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aYEAgTvirVGF/puutn62QmifdHGS7diAIqVEK+KUCCAuiAcGbJbPqIM5XAQkwyVKKw30lQKD3C0=
x-amz-request-id: SYBJ4S5MHGSDGJVT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 02:51:00 GMT
age: 1500
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
games-lol.siteacceder.com/
172.67.213.228200 OK 108 kB URL HTTP/1.1 games-lol.siteacceder.com/
IP 172.67.213.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (38490)
Size 108 kB (107577 bytes)
Hash 4caeffb55702cf0c25c120e8f2f89c5a
a79dbe9b8da21474ffaaa14662081d7619059b34
7fb045691df040b9c4c8c3ee0b43e874becd4e410fad0b1edc117168d1943fd2
GET / HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:16:00 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: view=1; expires=Wed, 01-Feb-2023 03:16:00 GMT; Max-Age=86400
PHPSESSID=od8o163gq2eh925081flcc9iol; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aapuKvojBtLEK0%2BHu0Yy1PkuntySWtVtPbaezMH22OyidJTagXYjlP7ULkALyAXiFerExEp9VBtFwoALfXaxJSVKmYgmd5H2ALn9Y3QNT2a6XhaSEnKzJTvOIIj0%2BuuwbRccwj35b2uIKyyC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791f493dccc2b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:00 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
glimtors.net/ntfc.php?p=4717370
139.45.197.251200 OK 5.9 kB URL HTTP/1.1 glimtors.net/ntfc.php?p=4717370
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (14324), with no line terminators
Hash b5f1ce6ad306807085d94576e1bae02a
dbd684ea5d4bf1b6126f1b7139bf6308d1fe28f8
65423936450d3e2794f6ad502f4ba8bd8975032b2a653e5af35f6381cead90b1
GET /ntfc.php?p=4717370 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:00 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 Jan 2023 11:03:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63d3af98-37f4"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
benumelan.com/1?z=4724958
139.45.197.239200 OK 7.1 kB URL HTTP/1.1 benumelan.com/1?z=4724958
IP 139.45.197.239:0
File type ASCII text, with very long lines (17093)
Hash 125dfd7ff4598e667ddf5b3eaec6691d
4783f84985338c35a5cf27dbfe5b29763485f8a3
5c2efba616db3518ec9936dfa0330b1c966f19b5afad8adb563abcb0dcdbfb8c
Analyzer Verdict Alert quad9 Sinkholed
GET /1?z=4724958 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:00 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
X-Trace-Id: 0367d09e64bdc40733bf57badbf042fb
Access-Control-Expose-Headers: X-Sc
X-Sc: fpimHAT5eJPZdyZ_aiq0hFS7VWIY-rhbCfDfgCtGmA3yM-1p09cXPWpBgsyJWuQSgG216J3hDMCoNqNSQW7MCyHwQJM=
Set-Cookie: scm=1; expires=Wed, 31 Jan 2024 03:16:00 GMT; secure; SameSite=None
OAID=a8b3b0cbe1894d96a6a98c592c027b0c; expires=Wed, 31 Jan 2024 03:16:00 GMT; secure; SameSite=None
oaidts=1675134960; expires=Wed, 31 Jan 2024 03:16:00 GMT; secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash fbc6e141a7c7ec3aee1dfa4e309da411
7dbb86266e59273ddbbc5a7238f4d2329fd3d0a7
23a330037372c846907904fc7f920828f617237779c80b779c9000fb4e5594d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
benumelan.com/5/4724942
139.45.197.239200 OK 24 kB IP 139.45.197.239:0
File type ASCII text, with very long lines (64195), with no line terminators
Hash 58b7c2109c2a434e161469641ef8fe23
95f65e2ace440e1d1ac56fd1dfcb1218d8b36677
c8948dc943e7b8e409faacd86f85286ab199552d3957e5ae0541b4ddd0c5193b
Analyzer Verdict Alert quad9 Sinkholed
GET /5/4724942 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 7233bc72f688450a9433a1aca8d4f617
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:00 GMT; path=/
oaidts=1675134960; expires=Wed, 31 Jan 2024 03:16:00 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
cdn.ampproject.org/v0/amp-form-.js
216.58.207.193404 Not Found 1.6 kB URL HTTP/2 cdn.ampproject.org/v0/amp-form-.js
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 31e956ca6ee4f209ac843401f86cc37b
eada9a5426cee82864e21f0d75fb126762e76441
8131a7be80d6763a17539ee50d7d83b16329cbf9688f3089f77f7968aa94220b
GET /v0/amp-form-.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 03:16:00 GMT
server: sffe
content-length: 1576
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 225c27250b2bdc1b632d0e2c94849c43
0d4188cdbe3b296ab8d05fd75c39733966eb03b8
c9c955cfd810739e613cce79164840b50b6ec9bcb978ad65462aaacd25258ca9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C9C955CFD810739E613CCE79164840B50B6EC9BCB978AD65462AAACD25258CA9"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 09:16:00 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 32b253500b6b557602593ca7672ee72c
acbf0d2566503a2c12af9bff9505e2e037f1471c
8177dbddf510b21e98af0c460c23a4e803e13639cc10ad957f9d31e42c66b339
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8177DBDDF510B21E98AF0C460C23A4E803E13639CC10AD957F9D31E42C66B339"
Last-Modified: Mon, 30 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 09:16:00 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 225c27250b2bdc1b632d0e2c94849c43
0d4188cdbe3b296ab8d05fd75c39733966eb03b8
c9c955cfd810739e613cce79164840b50b6ec9bcb978ad65462aaacd25258ca9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C9C955CFD810739E613CCE79164840B50B6EC9BCB978AD65462AAACD25258CA9"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Tue, 31 Jan 2023 09:15:31 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 225c27250b2bdc1b632d0e2c94849c43
0d4188cdbe3b296ab8d05fd75c39733966eb03b8
c9c955cfd810739e613cce79164840b50b6ec9bcb978ad65462aaacd25258ca9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C9C955CFD810739E613CCE79164840B50B6EC9BCB978AD65462AAACD25258CA9"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21495
Expires: Tue, 31 Jan 2023 09:14:15 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
d1z0mfyqx7ypd2.cloudfront.net/ext/emu-newgameslol-einstaller.js
54.230.111.110200 OK 8.4 kB URL HTTP/1.1 d1z0mfyqx7ypd2.cloudfront.net/ext/emu-newgameslol-einstaller.js
IP 54.230.111.110:0
File type Unicode text, UTF-8 text, with very long lines (8416)
Hash 77b50fb678f3152ba9eb150527313d29
153cd0d597657fce965868bca1a60bb21c358bf0
aee264c1cf484b9e313b2579edaa4b3ba76cb55ed33728b7de8b5c72f104388f
GET /ext/emu-newgameslol-einstaller.js HTTP/1.1
Host: d1z0mfyqx7ypd2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 8421
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 07:58:01 GMT
x-amz-version-id: yE1hn4njdhegvJMx9lIl2Ww4VaZs.mqp
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 30 Jan 2023 21:23:01 GMT
ETag: "77b50fb678f3152ba9eb150527313d29"
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OmkY_aZBMmvfl97hJv16TbkA21gOmrS4CjqD3M-Iuk7shtMd_9qKCg==
Age: 21180
d1z0mfyqx7ypd2.cloudfront.net/fomo/load_overlaymin.js?type=gamesite&key=games-lol.siteacceder.com&ver=1
54.230.111.110200 OK 4.7 kB URL HTTP/1.1 d1z0mfyqx7ypd2.cloudfront.net/fomo/load_overlaymin.js?type=gamesite&key=games-lol.siteacceder.com&ver=1
IP 54.230.111.110:0
File type ASCII text, with very long lines (4690)
Hash 902ad4bd6cbc05eafdee663a59cf6e08
8c559dce3f6fa7b297e38f1b2b5f6973101298b9
27cab2dd36668cad702e0490942e00e602b9a066695a031d5007ec7fc71f412e
GET /fomo/load_overlaymin.js?type=gamesite&key=games-lol.siteacceder.com&ver=1 HTTP/1.1
Host: d1z0mfyqx7ypd2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 4691
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 07:44:25 GMT
x-amz-version-id: ZCLxDl7VugscBa96ixM1sJ8U3L6fsrDp
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 30 Jan 2023 06:39:54 GMT
ETag: "902ad4bd6cbc05eafdee663a59cf6e08"
X-Cache: Hit from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pHUVxCno8laGvJseCeCysFkAOdRpl4SrLxaXG6FGqLmuwUZo7F0fSA==
Age: 74167
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 225c27250b2bdc1b632d0e2c94849c43
0d4188cdbe3b296ab8d05fd75c39733966eb03b8
c9c955cfd810739e613cce79164840b50b6ec9bcb978ad65462aaacd25258ca9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C9C955CFD810739E613CCE79164840B50B6EC9BCB978AD65462AAACD25258CA9"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 09:16:01 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-115539486-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-115539486-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash a10ef09e82abba12cbab1d3d6955219b
60bacee180881d10c14a53d23693a34269329233
c4e14deebd7d4f118c9d3c3424bde0eca1633d38847fcdd38beacbe1073c5ae4
GET /gtag/js?id=UA-115539486-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 03:16:01 GMT
expires: Tue, 31 Jan 2023 03:16:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45047
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash fbc6e141a7c7ec3aee1dfa4e309da411
7dbb86266e59273ddbbc5a7238f4d2329fd3d0a7
23a330037372c846907904fc7f920828f617237779c80b779c9000fb4e5594d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 225c27250b2bdc1b632d0e2c94849c43
0d4188cdbe3b296ab8d05fd75c39733966eb03b8
c9c955cfd810739e613cce79164840b50b6ec9bcb978ad65462aaacd25258ca9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "C9C955CFD810739E613CCE79164840B50B6EC9BCB978AD65462AAACD25258CA9"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 09:16:01 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=G-LNKKWFKZWL
142.250.74.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LNKKWFKZWL
IP 142.250.74.168:0
File type ASCII text, with very long lines (19467)
Hash 35ee825f1284dd6ff4096490c3fce19f
a92bbcae051ac748766269fe3def3b20064db48e
b17d865d7c76371418b0178c7d05eb466ed9240a076c994bc25db6ec7e5e7d43
GET /gtag/js?id=G-LNKKWFKZWL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 03:16:01 GMT
expires: Tue, 31 Jan 2023 03:16:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77169
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 02:41:41 GMT
age: 2060
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
heartilyscales.com/87/6b/74/876b74812be8762e152c61679c29a3f5.js
173.233.137.52200 OK 13 kB URL HTTP/1.1 heartilyscales.com/87/6b/74/876b74812be8762e152c61679c29a3f5.js
IP 173.233.137.52:0
File type ASCII text, with very long lines (37144), with no line terminators
Hash 130ffd03fef4bbb0cd939a7bedcc20d3
7407d3520e8c4c27b90614ded356dfccba007880
9eefa7e32019f557fce350bbddc875689929341943917149797858824c3c74ff
Analyzer Verdict Alert quad9 Sinkholed
GET /87/6b/74/876b74812be8762e152c61679c29a3f5.js HTTP/1.1
Host: heartilyscales.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8fe62546166a84ddf740ad51eb3201e5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4558
Expires: Tue, 31 Jan 2023 04:31:59 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
thaudray.com/5/4724942/?oo=1&aab=1
139.45.197.237200 OK 1.3 kB URL HTTP/1.1 thaudray.com/5/4724942/?oo=1&aab=1
IP 139.45.197.237:0
File type JSON data\012- , ASCII text, with very long lines (2742), with no line terminators
Hash 9cccf0b2710ea3da595e9ac0f1d6f96b
ab5bc87ad6f6e20151edcc1f73ed31310cde81c5
3a2f784e8132524333d474f2110ef60b18084efa1682f015f5d0b010e7ecfd25
GET /5/4724942/?oo=1&aab=1 HTTP/1.1
Host: thaudray.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 38b1c16a74d7a8800900c6c65f1e34a5
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=7f6b0a25cee944b4a3250f6714caf647; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/
oaidts=1675134961; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
glizauvo.net/401/5108418
139.45.197.236200 OK 33 kB IP 139.45.197.236:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f63c966ebcdcffa27238dbd5f41ab9d4
be21255ef38d52836da9bb8c6f66aa7fe4911e39
287ae045830d253fa89a072f97eadbc565c4b1b5fe0ea2a3d310d60dc27a7b66
Analyzer Verdict Alert quad9 Sinkholed
GET /401/5108418 HTTP/1.1
Host: glizauvo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 3e101fc1d86b64bd296e6e880b5d0db3
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=9ffd5d938d9d472ea1171be419a127a6; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
games-lol.siteacceder.com/user.php
172.67.213.228200 OK 25 B URL HTTP/1.1 games-lol.siteacceder.com/user.php
IP 172.67.213.228:0
Hash 363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943
POST /user.php HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 39
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: view=1; PHPSESSID=rvqokmpjepd6c5nr7skp1h6v9t
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zSKaGQF17tvYKeqRrDfD4NBw0S%2BgpuIDCZme3Qxu2mo7SmJko6f1RW%2BWs4aXKEFotKaWnnln8Azx8ywRGzmJhI%2BfZZY%2B1WH3FJojkLPcRU1xp6LFm3CRywV0c1ZoSQM%2B%2FDaFLdEfU1Pv3VBP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791f49456f6ab50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
thaudray.com/tag.min.js
139.45.197.237200 OK 25 kB IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0ef679822840cd7cdefb4df6b753e87f
982cfe2d21480129dd1a3c0207ca238fa9e76fa3
b7535ea57e1dab3be62a261787bb532462e83e6bcda2a4832a9febc5cca3eae4
Analyzer Verdict Alert fortinet Malware
GET /tag.min.js HTTP/1.1
Host: thaudray.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 25191
Connection: keep-alive
Content-Encoding: gzip
X-Trace-Id: ee42aa15cefa605fb9b5dacf4ec8e4d6
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Accept-Ranges: bytes
Last-Modified: Fri, 27 Jan 2023 14:27:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
push.services.mozilla.com/
52.43.88.238101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.88.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U9MQp0ii3mPMcixzRrS+Gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4ai1FAmKs2y+aoIyNJ2KvMv7uAc=
rndskittytor.com/400/4724965
139.45.197.238200 OK 33 kB URL HTTP/1.1 rndskittytor.com/400/4724965
IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4cc20d8684f2a6fc3a6e3a643f30284c
e8916e68e1ed1cea121976975f87ece969ca3024
40e722aaa566f33bbfc4776640ba57e3f9c12bd36a695a77419c504ef2f75c71
Analyzer Verdict Alert quad9 Sinkholed
GET /400/4724965 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 6395ace724e6e6fb8b9546dbe8b34530
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=2211559bf24042689dfeb64ade6b7243; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
rndskittytor.com/400/4837723
139.45.197.238200 OK 33 kB URL HTTP/1.1 rndskittytor.com/400/4837723
IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9e7efd836391d5a3a6e7494b697e9b28
34cfe32564046fc195655c96922424875c79589a
864f0ac0f9b029c45e86e1f6980f1ece0b480d939fa7e8778c9eb8af3ad084e8
Analyzer Verdict Alert quad9 Sinkholed
GET /400/4837723 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 06d542463cf01cfc33bd4ff6ef39effa
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=9df7b6c0e20b456bb89180398fee8f45; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
games-lol.siteacceder.com/
172.67.213.228200 OK 0 B URL HTTP/1.1 games-lol.siteacceder.com/
IP 172.67.213.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: view=1; PHPSESSID=rvqokmpjepd6c5nr7skp1h6v9t
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: text/html;charset=UTF-8
Connection: keep-alive
Set-Cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NUtqmpOg7pE%2BpCqNEP9ohLF9pOT0wccxF1aepd%2BAgtcSRzkHgUqQb6xoDW5vdmTAt7fFpBOfP0pq1xE4d7KaC6qlkoWRntflxUX9zmJyaC1QG9EfPc0iAfLsw7oaXqqHKhr2WiMSlTsEcgLh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791f4945ace6b4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash faf1d8a7f1edd1251b55117f41d77161
7e6b55f7968cc7381b7aa4deeed12d2692f135a2
8c27b658d2267f2dd6d138e17751edaec11d04c9e0f6015212dd92fb583533bc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=126063
Date: Tue, 31 Jan 2023 03:16:01 GMT
Etag: "63d7c69b-1d7"
Expires: Wed, 01 Feb 2023 14:17:04 GMT
Last-Modified: Mon, 30 Jan 2023 13:31:07 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rb2pFroKU6FU0QsqGv-dkG0mQotUinelZ_RYmjYccPZHoXSX8bBZMQ==
Age: 2757
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 9a8cdf4bd6c59631ab5e61cbb2ab38aa
279f8b8d30bc008169db30d8861a2814bf30bead
99e2eeca05fc59910082d7f1071c87d5e57e8c8f85e333d56a1df672c5c94bb4
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
set-cookie: uid_id2=16ec820b-374f-44c1-97ce-122cf32f9bcd:1:1; expires=Fri, 28 Jan 2033 03:16:01 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
seal.digicert.com/seals/cascade/seal.min.js
63.33.186.64200 OK 3.3 kB URL HTTP/1.1 seal.digicert.com/seals/cascade/seal.min.js
IP 63.33.186.64:0
File type ASCII text, with very long lines (7741), with no line terminators
Hash 02dcd5ea231004305b668ecad0e0ee37
d8d16e16a55374e91cf8eb68374d60f315e3cc29
b330547e047a0b2529f3136dd520bc64d5a8ced171bdcff2065db886aae07219
GET /seals/cascade/seal.min.js HTTP/1.1
Host: seal.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
vary: Accept-Encoding
last-modified: Mon, 30 Jan 2023 22:42:54 GMT
etag: W/"1e3d-5f382ef8f5780"
content-encoding: gzip
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Strict-Transport-Security: max-age=31536000
overzubatan.com/5/4724942
139.45.197.239200 OK 24 kB URL HTTP/1.1 overzubatan.com/5/4724942
IP 139.45.197.239:0
File type ASCII text, with very long lines (64199), with no line terminators
Hash 942ff1c8a591abd60799112d6be12018
2a0410929c2e18b72cde33f0554756d25f6dbf72
e969aa43998340f6d75c92565f3af9cf52dc121364c358bbc6f11e69abee864e
GET /5/4724942 HTTP/1.1
Host: overzubatan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 41a1d16624eff8c4292aa429fc6276fb
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=d0c2c79e3fbc4b68988d7f43aa43a40c; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/
oaidts=1675134961; expires=Wed, 31 Jan 2024 03:16:01 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c5e1f603ee2b5cdd2db152e6a42ff1b1
cbdde1e6f8a2ba1de5b8858027984700757d9590
4b628cf606471150ab6e2250b83c13ac757271222f2dc30755954c769d4dd7cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B628CF606471150AB6E2250B83C13AC757271222F2DC30755954C769D4DD7CC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1957
Expires: Tue, 31 Jan 2023 03:48:39 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 488b9a4f34d7fe7f07604452871ddbf8
de4905cc6aa29eb0488c7fc62cf4e56365395130
b2aca4e848fee9defd9dfab0aa96233711a75a7f748b0aca4b38a9a3aa05b52b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2ACA4E848FEE9DEFD9DFAB0AA96233711A75A7F748B0ACA4B38A9A3AA05B52B"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3742
Expires: Tue, 31 Jan 2023 04:18:24 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/tiny-slider.min.js
172.67.213.228200 OK 14 kB URL HTTP/2 games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/tiny-slider.min.js
IP 172.67.213.228:0
File type ASCII text, with very long lines (31671), with no line terminators
Hash f5a96d3a27b77fc8b3923689d0ed64d4
de5a4bb98ed3111ff60c444ae40f7dd49b813fc4
e7b087ea0543ba0db0e375fd2d43ad7ffb1f63e322596644d70b2cf1f9d582dc
GET /wp-content/themes/gameslol_2021/js/tiny-slider.min.js HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=2cr8pq6i6rpf5cdb9frbt05280; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hF6MC%2B31IR4QtHEFr0ZCo6tIO%2FpNL6GovSO6apz6ljf%2Fza7A2LXOXjNPEGPAu7Bsi%2Fyxy%2FlaLTKgDlMcIPrtZeI3J6zNsUmdmj6XmAwkX0BajjtMa8h1l3nugPuxr7rm%2Bu1Pf56rHjpUB7lf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49426eb2b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e2d2b00ed4a3970f9b7c4561eec1f2ba
5d51d00a750a05bcad6aac56b5dcd410afff7591
20f4ee50766ee62c45e9a18f9646a856c1ae9b702a055c7d9131026dce630c42
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20F4EE50766EE62C45E9A18F9646A856C1AE9B702A055C7D9131026DCE630C42"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3478
Expires: Tue, 31 Jan 2023 04:14:00 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
friendshipmale.com/sfp.js
104.21.234.93200 OK 28 kB URL HTTP/1.1 friendshipmale.com/sfp.js
IP 104.21.234.93:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 03:16:02 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 5979dde58bacfd2ad2d96f270fe24fd5
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Tue, 31 Jan 2023 03:16:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30oXvrxxFeqPxwy942JPbtHuH4QP3ZIFh%2FDyjYR083VZ0a6HmDt5EehPslcJSeIQSUZczNzNQoWVj3X1uaAWpRi8fSvSaWPRe%2F5ny%2FPZX7bK82NpkPVWA6Mf8Om3OP4h1WvA6%2FU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791f494748d07187-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
glimtors.net/zone?pub=0&zone_id=4717370&is_mobile=false&domain=games-lol.siteacceder.com&var=&ymid=&var_3=
139.45.197.251200 OK 705 B URL HTTP/2 glimtors.net/zone?pub=0&zone_id=4717370&is_mobile=false&domain=games-lol.siteacceder.com&var=&ymid=&var_3=
IP 139.45.197.251:0
File type JSON data\012- , ASCII text, with very long lines (704)
Hash 4216932643a556ef68e938580b43a550
69edece28fb10f401d24d6ed9b6873b4369401d8
9c384475ba75e841c391d22d79c3bdb71b2f4eed5a153d73d7e8c49d8f7d117c
GET /zone?pub=0&zone_id=4717370&is_mobile=false&domain=games-lol.siteacceder.com&var=&ymid=&var_3= HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:02 GMT
content-type: application/json; charset=utf-8
content-length: 705
x-trace-id: 7d2c39dfc360109bd49662e5e8c20558
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=a8cec7324fe540c19a5e1253cb7de8f0
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=a8cec7324fe540c19a5e1253cb7de8f0
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d1bdf2d15d8071056c1a836990b8b938
e7e064b0c607bdc3cef314a90515a903cf16f48c
88e71498c7dbe80c6d42181502a9448167d41401ba1f60f5fa519a3636b0e28f
GET /gid.js?userId=a8cec7324fe540c19a5e1253cb7de8f0 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:02 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:02 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85591bf6fcdb97a141cd2591ca02ee0d
7a6707fd82bdff55b2507e2ed894814ab77a0003
9c91f1dbb7d02e091d8dbcabae9e35eb9a932e1ddae4bb69c9448a2bbf152401
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C91F1DBB7D02E091D8DBCABAE9E35EB9A932E1DDAE4BB69C9448A2BBF152401"
Last-Modified: Sun, 29 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15663
Expires: Tue, 31 Jan 2023 07:37:05 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
glizauvo.net/500/5108418?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.236200 OK 0 B URL HTTP/1.1 glizauvo.net/500/5108418?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/5108418?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: glizauvo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:02 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
rndskittytor.com/500/4724965?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/1.1 rndskittytor.com/500/4724965?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/4724965?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:02 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
benumelan.com/?rb=egzZY-dP6p1FwlnkT8qvHS6WlTChtHGRDzEG4ShazZftop78-BtSB4QENE6pQcaiPjf8Az2yHgQBVCI5cdurQ6EP2CxxmdAYPTJjWHDuQ4Ui6diC-iK4S5yzgV_0FNJIIpnPsv6L0CwfBib4V84tRGGoCAAtuJgmIKiMs7JZLJevzqtsqThZZgZ8Ayhvwquma5bqEq02HImRzh86kxvxvoPdMpOCNK1iuWb99HigKWIVXPR7Ga7Bhg%3D%3D&request_ab2=0&zoneid=4724942&js_build=iclick-v1.474.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.474.0&bs=499e3782-2913-4522-b257-dc620b1cc3bc&userId=a8cec7324fe540c19a5e1253cb7de8f0&m=link
139.45.197.239200 OK 6.7 kB URL HTTP/1.1 benumelan.com/?rb=egzZY-dP6p1FwlnkT8qvHS6WlTChtHGRDzEG4ShazZftop78-BtSB4QENE6pQcaiPjf8Az2yHgQBVCI5cdurQ6EP2CxxmdAYPTJjWHDuQ4Ui6diC-iK4S5yzgV_0FNJIIpnPsv6L0CwfBib4V84tRGGoCAAtuJgmIKiMs7JZLJevzqtsqThZZgZ8Ayhvwquma5bqEq02HImRzh86kxvxvoPdMpOCNK1iuWb99HigKWIVXPR7Ga7Bhg%3D%3D&request_ab2=0&zoneid=4724942&js_build=iclick-v1.474.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.474.0&bs=499e3782-2913-4522-b257-dc620b1cc3bc&userId=a8cec7324fe540c19a5e1253cb7de8f0&m=link
IP 139.45.197.239:0
File type JSON data\012- , ASCII text, with very long lines (8699), with no line terminators
Hash 2a2aa9e9be55ee2c5caf14b25957b157
7700cbb920b3bdfccea95099d6b686f229574356
5b096d96742177bd3b15e4bbb721901a8bd30c92bb4bdabc98fdffdf16fd5ad8
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=egzZY-dP6p1FwlnkT8qvHS6WlTChtHGRDzEG4ShazZftop78-BtSB4QENE6pQcaiPjf8Az2yHgQBVCI5cdurQ6EP2CxxmdAYPTJjWHDuQ4Ui6diC-iK4S5yzgV_0FNJIIpnPsv6L0CwfBib4V84tRGGoCAAtuJgmIKiMs7JZLJevzqtsqThZZgZ8Ayhvwquma5bqEq02HImRzh86kxvxvoPdMpOCNK1iuWb99HigKWIVXPR7Ga7Bhg%3D%3D&request_ab2=0&zoneid=4724942&js_build=iclick-v1.474.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.474.0&bs=499e3782-2913-4522-b257-dc620b1cc3bc&userId=a8cec7324fe540c19a5e1253cb7de8f0&m=link HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:02 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: a2070f9e24a982a2c77abe4619ded67e
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:02 GMT; path=/
oaidts=1675134962; expires=Wed, 31 Jan 2024 03:16:02 GMT; path=/
syncedCookie=true; expires=Tue, 07 Feb 2023 03:16:02 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10505
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10505
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10505
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZKuBcZgC6yolu1QcaXZKAIIDynG3Zywq1d7sWI8Jlq3ULwlr6XlhWQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 13:04:11 GMT
age: 51111
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v9Wphg34UGE5kkZ9RKBcphcpPuCn54oVyepzTW5rZ3J9nkL9J501PA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:03:23 GMT
age: 18759
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 4666
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lJril-pCQ3MCMoVEFu3kmDuv4T1ABYMFJTuC5dbwxGe1_ydrbUkt8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 03:40:12 GMT
age: 84950
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 4953
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cbc9f50b0a96fb69fa2e948aa3125413
e7f13a6e81263e73ac5777959d63b567f50848d5
2e3411687a31211dbf0aa732f8d93a3c5a4748afb264e695d36782700c8e8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12906
x-amzn-requestid: 4d09cdf1-2b4b-4f72-a313-caf6660774d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsLoHaHIAMF1uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d22717-7074bd5202e3aced21ac49e3;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:09:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZkPnGMNVHQUSKvsqXZajTFA6FiOiZvSXHU6QN8zbCrSXKKmSdCWVqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:47:13 GMT
age: 16129
etag: "e7f13a6e81263e73ac5777959d63b567f50848d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
benumelan.com/9?z=4724958&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=a8cec7324fe540c19a5e1253cb7de8f0
139.45.197.239204 No Content 0 B URL HTTP/2 benumelan.com/9?z=4724958&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=a8cec7324fe540c19a5e1253cb7de8f0
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=4724958&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=a8cec7324fe540c19a5e1253cb7de8f0 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 03:16:02 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
glimtors.net/custom
139.45.197.251200 OK 0 B IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=0f02b2a5aebc413cb9995a7506077e98&zoneId=4717370&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=0f02b2a5aebc413cb9995a7506077e98&zoneId=4717370&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d1bdf2d15d8071056c1a836990b8b938
e7e064b0c607bdc3cef314a90515a903cf16f48c
88e71498c7dbe80c6d42181502a9448167d41401ba1f60f5fa519a3636b0e28f
GET /gid.js?pub=0&userId=0f02b2a5aebc413cb9995a7506077e98&zoneId=4717370&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Cookie: ID=a8cec7324fe540c19a5e1253cb7de8f0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:03 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
rndskittytor.com/500/4724965?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 928 B URL HTTP/1.1 rndskittytor.com/500/4724965?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1152), with no line terminators
Hash 3e41b93b594b03b594da78f290257d21
df5220d361f1d5718cf2e71ef4fbe69abe07a502
4d20a460da9366d7c5e132b3b78cd73c2809c8ef0f02655e81a33e78e912db4f
Analyzer Verdict Alert quad9 Sinkholed
GET /500/4724965?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 890cff0751bc4d0815cb8cbf747bca07
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Vary: Origin
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:02 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
glizauvo.net/500/5108418?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.236200 OK 928 B URL HTTP/1.1 glizauvo.net/500/5108418?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.236:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1144), with no line terminators
Hash d39f9e18cf1ccd6e162b7654616b511a
029e0bc822e19da58702de45c22e0e848f6680a7
81d8d8869746b0eeb01debbb8ceefae750d7262d8437c1eec90f75bfbfda549b
Analyzer Verdict Alert quad9 Sinkholed
GET /500/5108418?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: glizauvo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: f35387f9bb329549dcc388d97db9f239
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:02 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
glimtors.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://games-lol.siteacceder.com/
Content-Type: application/json
Origin: http://games-lol.siteacceder.com
Content-Length: 386
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 57e130c84c57a8a503cbd059dee0e5cf
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/scripts_sliders.js
172.67.213.228200 OK 1.8 kB URL HTTP/2 games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/scripts_sliders.js
IP 172.67.213.228:0
Hash a9d98dd1841343809b10479a960af28e
124a5a652f4c3b7cd71d28a094136a38d9576477
d32215e9e3099bda164a258a589fb3ba62611f72a56ff5795be18688bc23c701
GET /wp-content/themes/gameslol_2021/js/scripts_sliders.js HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=t9akoalpeoa9dmcfv963cqjstl; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1xdpgsxegNd5XgDAmpED1FeqgGvdJsaFiJGFmucIxAK1ImbfxmTPtypL2vRJGp0udtvqwEXmVFiOfJ0Ddw8Q3UD9JEgOO4bnTzVHPLQe1ZAhjA50MF03sHAfsd4bzy34u5Iu%2BiUNIwYi61Ht"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49423ea9b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=308
139.45.197.239204 No Content 0 B URL HTTP/2 benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=308
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=308 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-sc
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1522
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 31 Jan 2023 03:16:04 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ocsp.digicert.com/
93.184.220.29200 OK 104 kB IP 93.184.220.29:0
Size 104 kB (104466 bytes)
Hash 918a25b405fcd233ddfcf562d6e675fc
84f0e028451ceff72a08ab2411ab5d3ca703a56b
f8994b87b175cc7f304fd53c265cb7388dfa353c09d68a5284cc94751784f47d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1540
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:03 GMT
Etag: "63d7182f-117"
Last-Modified: Tue, 31 Jan 2023 02:50:24 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
offerimage.com/www/images/7d763937692f59aea0578ffe58c10ee0.jpeg
172.67.22.216200 OK 14 kB URL HTTP/2 offerimage.com/www/images/7d763937692f59aea0578ffe58c10ee0.jpeg
IP 172.67.22.216:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 7d763937692f59aea0578ffe58c10ee0
b3a4cc4fd1a0d8319e59057e535b0b19f1a3b35b
2d7300c572db1683cbc8071be4bbaf31b00954193f6f82d453c99a7a58bd7620
GET /www/images/7d763937692f59aea0578ffe58c10ee0.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: image/jpeg
content-length: 13778
cache-control: max-age=86400
cf-bgj: h2pri
etag: "63888441-35d2"
expires: Tue, 31 Jan 2023 20:36:45 GMT
last-modified: Thu, 01 Dec 2022 10:38:57 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 23958
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f495038ebb521-OSL
X-Firefox-Spdy: h2
benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=308
139.45.197.239200 OK 0 B URL HTTP/2 benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=308
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=308 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Sc: hValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU=
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: scm=1; OAID=a8cec7324fe540c19a5e1253cb7de8f0; oaidts=1675134963
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
x-trace-id: 8876e054aed04506ce536e25acff77b9
access-control-expose-headers: X-Sc
x-sc:
set-cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:03 GMT; secure; SameSite=None
oaidts=1675134963; expires=Wed, 31 Jan 2024 03:16:03 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-LNKKWFKZWL>m=2oe1p0&_p=585911566&cid=235488943.1675134977&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675134977&sct=1&seg=0&dl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&dt=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-LNKKWFKZWL>m=2oe1p0&_p=585911566&cid=235488943.1675134977&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675134977&sct=1&seg=0&dl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&dt=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LNKKWFKZWL>m=2oe1p0&_p=585911566&cid=235488943.1675134977&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675134977&sct=1&seg=0&dl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&dt=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://games-lol.siteacceder.com
date: Tue, 31 Jan 2023 03:16:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9131c44a3f1dc3cbf222e94d077192c7
e90e45ec6e984cf3eed6827191af9af45e3f6d6c
22893294c0d8e8cfa19fc277c0e6086d70f6f13b35445beb2456295b598afaaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22893294C0D8E8CFA19FC277C0E6086D70F6F13B35445BEB2456295B598AFAAF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16577
Expires: Tue, 31 Jan 2023 07:52:20 GMT
Date: Tue, 31 Jan 2023 03:16:03 GMT
Connection: keep-alive
nudgeworry.com/sbar.json?key=876b74812be8762e152c61679c29a3f5
192.243.59.20200 OK 3.5 kB URL HTTP/1.1 nudgeworry.com/sbar.json?key=876b74812be8762e152c61679c29a3f5
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6203), with no line terminators
Hash 7875e3b9b4e64911cde0a4702e71a0d2
47c1292519405e9e6612064647a9e0b0fac4bdf6
2ba4345b169fb94c85ad3f57364998a6b76d93b5c0e807f78c1a2f897fe232fb
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=876b74812be8762e152c61679c29a3f5 HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 31 Jan 2023 03:16:03 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://games-lol.siteacceder.com
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16710802; expires=Wed, 01 Feb 2023 03:16:03 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 01 Feb 2023 03:16:03 GMT; secure; SameSite=None
uncs=1; expires=Wed, 01 Feb 2023 03:16:03 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 01 Feb 2023 03:16:03 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 01 Feb 2023 03:16:03 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: df4a1040c2f9591b4bc845cc706d7bd9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
glimtors.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://games-lol.siteacceder.com/
Content-Type: application/json
Origin: http://games-lol.siteacceder.com
Content-Length: 383
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 2a4a48153faf9ae506030637f068d8ac
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/92/b1/fa/3e6ac20bfd9b337a2bdcff8913/01020067798991.jpeg
139.45.197.153200 OK 19 kB URL HTTP/2 interstitial-07.com/contents/s/92/b1/fa/3e6ac20bfd9b337a2bdcff8913/01020067798991.jpeg
IP 139.45.197.153:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Hash 92b1fa3e6ac20bfd9b337a2bdcff8913
8ddd4369abfb4cae5adb19e7766b43a80fb9ebc9
b96dc4eca04e55234134cfe61c671ffa283e810bceeb21dc5af8894a2dc2593a
GET /contents/s/92/b1/fa/3e6ac20bfd9b337a2bdcff8913/01020067798991.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=zK3ge3qjcPqt2jk&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fbenumelan.com%2F12%3Frnd%3D2836780333%26z%3D4724958%26b%3D16336477%26c%3D6497346%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D1499%2526key%253D078e8e1696ef5f705a04995394169693%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DIFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D1027c0e5-42f2-4961-94ce-98419de551d8%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fgames-lol.siteacceder.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0%26X-Sc%3DhValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: image/jpeg
content-length: 18595
last-modified: Wed, 14 Dec 2022 16:39:14 GMT
vary: Accept-Encoding
etag: "6399fc32-48a3"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f536b668e57fbc75c741e46ec9520d5d
cd0fd188d2d52254cb9971f855f59aaf31b84244
54229b773e7ed7aad984653813df88623eeebf15fa67c07dbc6531d376b8ae00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54229B773E7ED7AAD984653813DF88623EEEBF15FA67C07DBC6531D376B8AE00"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3002
Expires: Tue, 31 Jan 2023 04:06:05 GMT
Date: Tue, 31 Jan 2023 03:16:03 GMT
Connection: keep-alive
interstitial-07.com/contents/s/23/3d/e7/e93460b01c5e023eb263207fc0/0793907651252.jpeg
139.45.197.153200 OK 43 kB URL HTTP/2 interstitial-07.com/contents/s/23/3d/e7/e93460b01c5e023eb263207fc0/0793907651252.jpeg
IP 139.45.197.153:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash 233de7e93460b01c5e023eb263207fc0
c6666b8bf4ef074150b69bff8c382e18c9a40843
b3297291029509cbc0ce08ebfd108961dbc17b7b1be14b3bf0ee21fcf74e1add
GET /contents/s/23/3d/e7/e93460b01c5e023eb263207fc0/0793907651252.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=zK3ge3qjcPqt2jk&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fbenumelan.com%2F12%3Frnd%3D2836780333%26z%3D4724958%26b%3D16336477%26c%3D6497346%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D1499%2526key%253D078e8e1696ef5f705a04995394169693%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DIFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D1027c0e5-42f2-4961-94ce-98419de551d8%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fgames-lol.siteacceder.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0%26X-Sc%3DhValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: image/jpeg
content-length: 43387
last-modified: Wed, 14 Dec 2022 16:39:07 GMT
vary: Accept-Encoding
etag: "6399fc2b-a97b"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
interstitial-07.com/?l=zK3ge3qjcPqt2jk&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fbenumelan.com%2F12%3Frnd%3D2836780333%26z%3D4724958%26b%3D16336477%26c%3D6497346%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D1499%2526key%253D078e8e1696ef5f705a04995394169693%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DIFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D1027c0e5-42f2-4961-94ce-98419de551d8%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fgames-lol.siteacceder.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0%26X-Sc%3DhValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU%3D
139.45.197.153200 OK 4.9 kB URL HTTP/2 interstitial-07.com/?l=zK3ge3qjcPqt2jk&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fbenumelan.com%2F12%3Frnd%3D2836780333%26z%3D4724958%26b%3D16336477%26c%3D6497346%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D1499%2526key%253D078e8e1696ef5f705a04995394169693%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DIFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D1027c0e5-42f2-4961-94ce-98419de551d8%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fgames-lol.siteacceder.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0%26X-Sc%3DhValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU%3D
IP 139.45.197.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1590)
Hash 10538fe938a7240cfc26b968227bb2da
378e512729d47141472cfef4a31003f38e93da6c
f51802471340f6be3828ee5437ff90c8702515c4f9887d4e896ec1e4364dab03
GET /?l=zK3ge3qjcPqt2jk&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fbenumelan.com%2F12%3Frnd%3D2836780333%26z%3D4724958%26b%3D16336477%26c%3D6497346%26var%3D%26d%3Dhttps%253A%252F%252Fsingelstodate.com%252Fbase.php%253Fc%253D1499%2526key%253D078e8e1696ef5f705a04995394169693%2526zoneid%253D%257Bzoneid%257D%2526cost%253D%257Bcost%257D%2526subid%253D%2524%257BSUBID%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DIFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D1027c0e5-42f2-4961-94ce-98419de551d8%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fgames-lol.siteacceder.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0%26X-Sc%3DhValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU%3D HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=gqg5NMPnlk9hJT7OSRoDWLth0OyWVJylyU3kDCnPXFI; expires=Tue, 31-Jan-2023 04:16:03 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 78ab2d5cc6d61c3c29944777767ccefe
a5380ce83cea0350b0ea550ac99d36b0093d220a
5901f2549eee80f63d44390d2c6de7ed62ce5e63b842dc366d58a367a6be9303
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5901F2549EEE80F63D44390D2C6DE7ED62CE5E63B842DC366D58A367A6BE9303"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15703
Expires: Tue, 31 Jan 2023 07:37:46 GMT
Date: Tue, 31 Jan 2023 03:16:03 GMT
Connection: keep-alive
nudgeworry.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujpuLAUERNAehvUXQSXfPbyMMxhgJxiQm0Vy8VFdVz5Zb09VWdU9PFoXFiMnJTNSD3nq%2FSbKoQYygNyH0iiBzSnswizqH%2FAtBLwaRmQwuPqh6r%2Bp7h%2B%2F73vtwM5sRDxndOfWaXpdK0YPNmuceOCdjrnPrnjjr%2Bl7NO%2BSek3GrccgdzS8zfN73mjXvGfcVwdb0wcDzPc%2F3fPeoNCLSo4MLFDK50fVrXa%2FWCGp%2Bs4GR%2Bf%2FbZg4sdcCHM%2FIYJK%2F2rv58E5KViAffHBF2LdXJsy8PMkVTbTDkW2%2FEa7HOYwx2y8g4iOKtZTe0rQj5bA90vLVUAD28OleAUFbE%2BdVHGG8taSIcXnvANFQQMUK%2BD%2FmwhFAlJC3B9AVIfpsAjOPEScSD6ye0yen5ByidoxVZ%2BeseZF6RlT8eRzz4%2BrCSI%2FeMVlkqdWwxigrIUQnZL5Fk20jXHch8Gyx9H5ITxIMCkhcL1VKWkFEJJcag1kE2P9JBFjnIEgcDvuPSZjfyvHYURvV6p8EYq9cZa3ZavMnrjU7kIWNzWmOkyRhMjcHMBhKzgTV55Ta5A5Pdgl0tYLkDm1bEeX0DQ14gFwS5JcgpQS4J8pQgHxbXuLKBLa5zZbPQX%2BZgmevFRKf9TXpNp30Rk81kRh5dWPLP%2FY%2BxJnbcTrsVthsdPwhFp90KhN8MWMtvtbss6NJ61ISVBaTds1C7Liuy%2F%2B59JLIi5PIdhHQbVm2DSQc0ewo0n7QDD3R10uh4WI%2B%2FtzIVlgsbKv1OJijXtsb0AFwXSNIVpOedTTUj%2BxeMXnjvIwg27c3w%2BcW%2F73IwUyAxBd6WPxL01aXJaZ2Tq6d1bsnNk0kqB3Kdzgd4JqWp2Pvlq%2BJ8rg0%2FdsSOv3iRzYF5eeOssOlxGnMZ9y356rDkXJij2jBBfjhmz4nwVGZXD2cmzpLjp146emyQGGGt1HEJOhc5%2Bw1MVmTfw08vltP9tIQ0JUxWYJBNyTIgdQmWbMAm0151%2Ba0Df5aXYTWBUbs9YeIgz4qJCcLdTyUrEtx7AkpMe7fe%2FeC733%2FqgYYFrJj2vn3ukTdXnvwEofjPlE17CX3jgKYXFms5NAWGqgBVY9jsoUmamGnvl%2FoiECpnEirjXA2VUVceGGzljiuakRcJLxBh1A2jNvV4N2p0Q9r1RTtsUh%2Bprdidi%2Ff%2BBQAA%2F%2F8BAAD%2F%2F5Ztovh4BAAA
192.243.59.20200 OK 7 B URL HTTP/1.1 nudgeworry.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujpuLAUERNAehvUXQSXfPbyMMxhgJxiQm0Vy8VFdVz5Zb09VWdU9PFoXFiMnJTNSD3nq%2FSbKoQYygNyH0iiBzSnswizqH%2FAtBLwaRmQwuPqh6r%2Bp7h%2B%2F73vtwM5sRDxndOfWaXpdK0YPNmuceOCdjrnPrnjjr%2Bl7NO%2BSek3GrccgdzS8zfN73mjXvGfcVwdb0wcDzPc%2F3fPeoNCLSo4MLFDK50fVrXa%2FWCGp%2Bs4GR%2Bf%2FbZg4sdcCHM%2FIYJK%2F2rv58E5KViAffHBF2LdXJsy8PMkVTbTDkW2%2FEa7HOYwx2y8g4iOKtZTe0rQj5bA90vLVUAD28OleAUFbE%2BdVHGG8taSIcXnvANFQQMUK%2BD%2FmwhFAlJC3B9AVIfpsAjOPEScSD6ye0yen5ByidoxVZ%2BeseZF6RlT8eRzz4%2BrCSI%2FeMVlkqdWwxigrIUQnZL5Fk20jXHch8Gyx9H5ITxIMCkhcL1VKWkFEJJcag1kE2P9JBFjnIEgcDvuPSZjfyvHYURvV6p8EYq9cZa3ZavMnrjU7kIWNzWmOkyRhMjcHMBhKzgTV55Ta5A5Pdgl0tYLkDm1bEeX0DQ14gFwS5JcgpQS4J8pQgHxbXuLKBLa5zZbPQX%2BZgmevFRKf9TXpNp30Rk81kRh5dWPLP%2FY%2BxJnbcTrsVthsdPwhFp90KhN8MWMtvtbss6NJ61ISVBaTds1C7Liuy%2F%2B59JLIi5PIdhHQbVm2DSQc0ewo0n7QDD3R10uh4WI%2B%2FtzIVlgsbKv1OJijXtsb0AFwXSNIVpOedTTUj%2BxeMXnjvIwg27c3w%2BcW%2F73IwUyAxBd6WPxL01aXJaZ2Tq6d1bsnNk0kqB3Kdzgd4JqWp2Pvlq%2BJ8rg0%2FdsSOv3iRzYF5eeOssOlxGnMZ9y356rDkXJij2jBBfjhmz4nwVGZXD2cmzpLjp146emyQGGGt1HEJOhc5%2Bw1MVmTfw08vltP9tIQ0JUxWYJBNyTIgdQmWbMAm0151%2Ba0Df5aXYTWBUbs9YeIgz4qJCcLdTyUrEtx7AkpMe7fe%2FeC733%2FqgYYFrJj2vn3ukTdXnvwEofjPlE17CX3jgKYXFms5NAWGqgBVY9jsoUmamGnvl%2FoiECpnEirjXA2VUVceGGzljiuakRcJLxBh1A2jNvV4N2p0Q9r1RTtsUh%2Bprdidi%2Ff%2BBQAA%2F%2F8BAAD%2F%2F5Ztovh4BAAA
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujpuLAUERNAehvUXQSXfPbyMMxhgJxiQm0Vy8VFdVz5Zb09VWdU9PFoXFiMnJTNSD3nq%2FSbKoQYygNyH0iiBzSnswizqH%2FAtBLwaRmQwuPqh6r%2Bp7h%2B%2F73vtwM5sRDxndOfWaXpdK0YPNmuceOCdjrnPrnjjr%2Bl7NO%2BSek3GrccgdzS8zfN73mjXvGfcVwdb0wcDzPc%2F3fPeoNCLSo4MLFDK50fVrXa%2FWCGp%2Bs4GR%2Bf%2FbZg4sdcCHM%2FIYJK%2F2rv58E5KViAffHBF2LdXJsy8PMkVTbTDkW2%2FEa7HOYwx2y8g4iOKtZTe0rQj5bA90vLVUAD28OleAUFbE%2BdVHGG8taSIcXnvANFQQMUK%2BD%2FmwhFAlJC3B9AVIfpsAjOPEScSD6ye0yen5ByidoxVZ%2BeseZF6RlT8eRzz4%2BrCSI%2FeMVlkqdWwxigrIUQnZL5Fk20jXHch8Gyx9H5ITxIMCkhcL1VKWkFEJJcag1kE2P9JBFjnIEgcDvuPSZjfyvHYURvV6p8EYq9cZa3ZavMnrjU7kIWNzWmOkyRhMjcHMBhKzgTV55Ta5A5Pdgl0tYLkDm1bEeX0DQ14gFwS5JcgpQS4J8pQgHxbXuLKBLa5zZbPQX%2BZgmevFRKf9TXpNp30Rk81kRh5dWPLP%2FY%2BxJnbcTrsVthsdPwhFp90KhN8MWMtvtbss6NJ61ISVBaTds1C7Liuy%2F%2B59JLIi5PIdhHQbVm2DSQc0ewo0n7QDD3R10uh4WI%2B%2FtzIVlgsbKv1OJijXtsb0AFwXSNIVpOedTTUj%2BxeMXnjvIwg27c3w%2BcW%2F73IwUyAxBd6WPxL01aXJaZ2Tq6d1bsnNk0kqB3Kdzgd4JqWp2Pvlq%2BJ8rg0%2FdsSOv3iRzYF5eeOssOlxGnMZ9y356rDkXJij2jBBfjhmz4nwVGZXD2cmzpLjp146emyQGGGt1HEJOhc5%2Bw1MVmTfw08vltP9tIQ0JUxWYJBNyTIgdQmWbMAm0151%2Ba0Df5aXYTWBUbs9YeIgz4qJCcLdTyUrEtx7AkpMe7fe%2FeC733%2FqgYYFrJj2vn3ukTdXnvwEofjPlE17CX3jgKYXFms5NAWGqgBVY9jsoUmamGnvl%2FoiECpnEirjXA2VUVceGGzljiuakRcJLxBh1A2jNvV4N2p0Q9r1RTtsUh%2Bprdidi%2Ff%2BBQAA%2F%2F8BAAD%2F%2F5Ztovh4BAAA HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: u_pl=16710802; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 31 Jan 2023 03:16:03 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 28183385c66e543abc99925d1487dacf
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
45.133.44.4200 OK 955 B URL HTTP/2 cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text
Hash 3311b451b6e90781dab5ae61a1e4f65d
940e4700d9c5fbf74f8c15dcf10c28661e34cf2c
3def788280ca0f9ba09e050e3f3bfba82e5268fe2104f1c02a8f265c12774023
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: text/html; charset=utf-8
content-length: 955
server: nginx/1.17.6
last-modified: Wed, 18 May 2022 11:09:59 GMT
etag: "6284d407-3bb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
expires: Tue, 31 Jan 2023 04:16:03 GMT
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1dbb77834c9d78f7ecaacbd87b3cb3cb
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 92150eb32d9db49422cf29f24536530f
ee14343bc6797e6e4004aa93002e20e82ede365f
a3d92b83c5e18e8b559d0830a26ef62410a5922a213a1508ebb9f177ebdb8f51
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A3D92B83C5E18E8B559D0830A26EF62410A5922A213A1508EBB9F177EBDB8F51"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1678
Expires: Tue, 31 Jan 2023 03:44:01 GMT
Date: Tue, 31 Jan 2023 03:16:03 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 92150eb32d9db49422cf29f24536530f
ee14343bc6797e6e4004aa93002e20e82ede365f
a3d92b83c5e18e8b559d0830a26ef62410a5922a213a1508ebb9f177ebdb8f51
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A3D92B83C5E18E8B559D0830A26EF62410A5922A213A1508EBB9F177EBDB8F51"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1678
Expires: Tue, 31 Jan 2023 03:44:01 GMT
Date: Tue, 31 Jan 2023 03:16:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 62452129bb8dec065bf82af1cd2325a0
9b32f067ac26364f2cd578bcdd40c50d18fd03d7
0d2f762553a22b9679301179d107a4a8f2e01efd82c6f432a806d4810481a08c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D2F762553A22B9679301179D107A4A8F2E01EFD82C6F432A806D4810481A08C"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15961
Expires: Tue, 31 Jan 2023 07:42:04 GMT
Date: Tue, 31 Jan 2023 03:16:03 GMT
Connection: keep-alive
cdn.cloudimagesb.com/si/0c/cb/18/0ccb18abb013933bb5b928dbf7793f9d/1674718319.png
45.133.44.10200 OK 75 kB URL HTTP/2 cdn.cloudimagesb.com/si/0c/cb/18/0ccb18abb013933bb5b928dbf7793f9d/1674718319.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ca08a47fb34de4369167546c3507a86
b0bcb3b6b04c701790442c1cd158b222576ce44c
2a0d15f8ea65f60953d010e4111cab3fe482f7cccaa7aa38e7ddf28c4ae3dedb
GET /si/0c/cb/18/0ccb18abb013933bb5b928dbf7793f9d/1674718319.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: image/png
content-length: 75166
server: nginx/1.17.6
last-modified: Thu, 26 Jan 2023 07:32:08 GMT
etag: "63d22c78-1259e"
expires: Thu, 02 Feb 2023 03:16:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c0d79787c5ee0933b2b39a9630793f94
47468efa1fa4c08f2d595fc8948d3bc462341bfe
91d589a2248c35896d7c6da948899edba959056aabcf8e41b4f3feebf3f0d9e2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "91D589A2248C35896D7C6DA948899EDBA959056AABCF8E41B4F3FEEBF3F0D9E2"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10511
Expires: Tue, 31 Jan 2023 06:11:15 GMT
Date: Tue, 31 Jan 2023 03:16:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 31 Jan 2023 01:45:20 GMT
expires: Tue, 31 Jan 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 5444
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 934
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Last-Modified: Tue, 31 Jan 2023 03:00:30 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
code.jquery.com/jquery-2.1.4.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-2.1.4.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32025)
Hash a7f7dc66f5ba563bdbd4077fa667016e
c98fd169e356a997daf790dac6ead0c49e8c1eda
5315acee8e8c38e3fe62cff3b7a50cfb46a1130b0abb61bf119340e6b73934ac
GET /jquery-2.1.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:04 GMT
content-encoding: gzip
content-length: 29519
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-14979"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675134964.dop009.sk1.t,1675134964.cds208.sk1.hn,1675134964.cds017.sk1.c
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=GTM-TNN3VW7
142.250.74.46200 OK 46 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-TNN3VW7
IP 142.250.74.46:0
File type ASCII text, with very long lines (1759)
Hash 0f1c6eff3e6e2474d054367a45651254
cd99b2163bd7d712ebabe06ee5c3bb008def5659
7014faa8634e97ca216e90cc677950513bf144000699de9d61c87c1df33019a7
GET /gtm/optimize.js?id=GTM-TNN3VW7 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 03:16:04 GMT
expires: Tue, 31 Jan 2023 03:16:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45538
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/774190886/?random=1675134977491&cv=11&fst=1675134977491&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&rfmt=3&fmt=4
142.250.74.162200 OK 907 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/774190886/?random=1675134977491&cv=11&fst=1675134977491&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (1929), with no line terminators
Hash 076e580da9ffcdf2f4db52fb9d5f3f2f
761705dfa1202274ea16d0cf98a9ea716c843d57
5e138b9b7867e6cd0b43961437d5d8854cd59fad59efebee86b5097b3836a2f9
GET /pagead/viewthroughconversion/774190886/?random=1675134977491&cv=11&fst=1675134977491&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 03:16:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 907
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 03:31:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: XdPZm14UZW90JEGjlqgQINYixMcCFdYoX+ESO+CAWTDHvtRKa21Vf87M+kqn12hohvM3N6mK4PiDxF2Blt1EXw==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 03:16:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
151.101.194.133200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.194.133:0
Hash 41c85002fc69072ada55af6ed97a9579
3e95c83154d4acdaf494499aeded67a78f6608dd
dce30254a276347b648ec16676812fcbe304bbb3daa7a33a234ec70e910e00fd
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 940
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 04 Feb 2023 01:37:56 GMT
ETag: "3e95c83154d4acdaf494499aeded67a78f6608dd"
Last-Modified: Tue, 31 Jan 2023 01:37:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 03:16:04 GMT
Age: 2853
X-Served-By: cache-qpg1244-QPG, cache-bma1652-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 7, 52
X-Timer: S1675134964.309154,VS0,VE0
nudgeworry.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujpuLAUERNAehvUXQSXfPbyMMxhgJxiQm0Vy8VFfVzJZb09VWdU9PFoXFiMnJTNSD3nq%2FyWZRgxhBb0LoFUHmlPbgLuoc8i8sejGIzOzg4oOq96q%2Bd%2Fi%2B770P19Mp8ZDSnXOv6VWpFD1ar3jukUsy4jqz7pmLru9VvGPuJRk1asfc4ewyg%2Bd9r17xnnFfEWxFHw083%2FN8z3dPSiO6enh0jkLGt9t%2Bpe1VakHFr9cwNP9%2F29SBpQ74YEoeg%2BTlweWf70CyAlH%2FmxPCriQ6fvblfqpoog0GfPONaCXSWYT%2Bftk1DrrR5qIb2paEfHYAOtpcKIAe3JwpQChL4vzqI4w2FzQRDjb2mIYKIkLIDyEbFBCqgKQFmL4Cye8RgHGcOYuof%2BuMNhm9vIfSGVqSpb92IbOSLP3xOKL%2B18eVHLoXtEoTqSOLYTeHHBaQvQJxuoVk1YHMtsCS9yE5QdTPIXk%2BVy1lAdktoMQI1DpIZ0c6SLsO0thBn%2B%2B4tN7uel6zG3ar1VaNMVatMlZvNXidV2utroeUzWiNkMQjMDUCM2uIzRpW5I17ZBsmvQu7nMNyBzYpifP6GgY8RyYIMkuQUYJMEmQJQTbIN7iygc1vcWXT0F%2FkYJGr%2BVgnvXW6oZOeiMh6PCWPzi3558HHWBE7bqvZCJu1lh%2BEotVsBMKvB6zhN5ptFrRptVuHlTmkPTBXuypLcvj%2BA8SyJOT6NkK6Bau2wKQDmj4Fmo2bgQe6PK61PKxG31uZCMuFDZV%2BJxWUa1thug%2Buc8TJEpLLzrqaksNzRi%2B89xEEm3Sm%2BPzq3%2Fc5mMkRmxxvyx8Jeura%2BLzOyM3zOrPkztk4kX25SmcDvJDQRBz88lVxOdOGnzphR1%2B8yGbArLx9UdjkNI24jHqWfHVcci7MSW2YID%2BcspdEeC61y8dTE6Xx6XMvnTzVj42wVuqoAJ2JnP4GJkty6OGn58vpflpAmgImzdFPJ2QRkLoAi9dg40mnvP7WkT%2BL67CawKj9njB2kKX52ATh%2FqeSJQl2n4ASk87ddz%2F47vefOqBhDismnW%2Bfe%2BTNpSc%2FQSj%2BM2XdXkPPOKDJlflaDkyOgcpB1Qg2fWicxGbS%2BaU6D4TKGYfKODdDZdSNPYOt3HHrfk20wlaTcR4Kxv1mUG1VPS%2FgvNZsC7%2BNxJZs%2B%2BruvwAAAP%2F%2FAQAA%2F%2F%2BCZSweeAQAAA%3D%3D
192.243.59.20200 OK 7 B URL HTTP/1.1 nudgeworry.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujpuLAUERNAehvUXQSXfPbyMMxhgJxiQm0Vy8VFfVzJZb09VWdU9PFoXFiMnJTNSD3nq%2FyWZRgxhBb0LoFUHmlPbgLuoc8i8sejGIzOzg4oOq96q%2Bd%2Fi%2B770P19Mp8ZDSnXOv6VWpFD1ar3jukUsy4jqz7pmLru9VvGPuJRk1asfc4ewyg%2Bd9r17xnnFfEWxFHw083%2FN8z3dPSiO6enh0jkLGt9t%2Bpe1VakHFr9cwNP9%2F29SBpQ74YEoeg%2BTlweWf70CyAlH%2FmxPCriQ6fvblfqpoog0GfPONaCXSWYT%2Bftk1DrrR5qIb2paEfHYAOtpcKIAe3JwpQChL4vzqI4w2FzQRDjb2mIYKIkLIDyEbFBCqgKQFmL4Cye8RgHGcOYuof%2BuMNhm9vIfSGVqSpb92IbOSLP3xOKL%2B18eVHLoXtEoTqSOLYTeHHBaQvQJxuoVk1YHMtsCS9yE5QdTPIXk%2BVy1lAdktoMQI1DpIZ0c6SLsO0thBn%2B%2B4tN7uel6zG3ar1VaNMVatMlZvNXidV2utroeUzWiNkMQjMDUCM2uIzRpW5I17ZBsmvQu7nMNyBzYpifP6GgY8RyYIMkuQUYJMEmQJQTbIN7iygc1vcWXT0F%2FkYJGr%2BVgnvXW6oZOeiMh6PCWPzi3558HHWBE7bqvZCJu1lh%2BEotVsBMKvB6zhN5ptFrRptVuHlTmkPTBXuypLcvj%2BA8SyJOT6NkK6Bau2wKQDmj4Fmo2bgQe6PK61PKxG31uZCMuFDZV%2BJxWUa1thug%2Buc8TJEpLLzrqaksNzRi%2B89xEEm3Sm%2BPzq3%2Fc5mMkRmxxvyx8Jeura%2BLzOyM3zOrPkztk4kX25SmcDvJDQRBz88lVxOdOGnzphR1%2B8yGbArLx9UdjkNI24jHqWfHVcci7MSW2YID%2BcspdEeC61y8dTE6Xx6XMvnTzVj42wVuqoAJ2JnP4GJkty6OGn58vpflpAmgImzdFPJ2QRkLoAi9dg40mnvP7WkT%2BL67CawKj9njB2kKX52ATh%2FqeSJQl2n4ASk87ddz%2F47vefOqBhDismnW%2Bfe%2BTNpSc%2FQSj%2BM2XdXkPPOKDJlflaDkyOgcpB1Qg2fWicxGbS%2BaU6D4TKGYfKODdDZdSNPYOt3HHrfk20wlaTcR4Kxv1mUG1VPS%2FgvNZsC7%2BNxJZs%2B%2BruvwAAAP%2F%2FAQAA%2F%2F%2BCZSweeAQAAA%3D%3D
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujpuLAUERNAehvUXQSXfPbyMMxhgJxiQm0Vy8VFfVzJZb09VWdU9PFoXFiMnJTNSD3nq%2FyWZRgxhBb0LoFUHmlPbgLuoc8i8sejGIzOzg4oOq96q%2Bd%2Fi%2B770P19Mp8ZDSnXOv6VWpFD1ar3jukUsy4jqz7pmLru9VvGPuJRk1asfc4ewyg%2Bd9r17xnnFfEWxFHw083%2FN8z3dPSiO6enh0jkLGt9t%2Bpe1VakHFr9cwNP9%2F29SBpQ74YEoeg%2BTlweWf70CyAlH%2FmxPCriQ6fvblfqpoog0GfPONaCXSWYT%2Bftk1DrrR5qIb2paEfHYAOtpcKIAe3JwpQChL4vzqI4w2FzQRDjb2mIYKIkLIDyEbFBCqgKQFmL4Cye8RgHGcOYuof%2BuMNhm9vIfSGVqSpb92IbOSLP3xOKL%2B18eVHLoXtEoTqSOLYTeHHBaQvQJxuoVk1YHMtsCS9yE5QdTPIXk%2BVy1lAdktoMQI1DpIZ0c6SLsO0thBn%2B%2B4tN7uel6zG3ar1VaNMVatMlZvNXidV2utroeUzWiNkMQjMDUCM2uIzRpW5I17ZBsmvQu7nMNyBzYpifP6GgY8RyYIMkuQUYJMEmQJQTbIN7iygc1vcWXT0F%2FkYJGr%2BVgnvXW6oZOeiMh6PCWPzi3558HHWBE7bqvZCJu1lh%2BEotVsBMKvB6zhN5ptFrRptVuHlTmkPTBXuypLcvj%2BA8SyJOT6NkK6Bau2wKQDmj4Fmo2bgQe6PK61PKxG31uZCMuFDZV%2BJxWUa1thug%2Buc8TJEpLLzrqaksNzRi%2B89xEEm3Sm%2BPzq3%2Fc5mMkRmxxvyx8Jeura%2BLzOyM3zOrPkztk4kX25SmcDvJDQRBz88lVxOdOGnzphR1%2B8yGbArLx9UdjkNI24jHqWfHVcci7MSW2YID%2BcspdEeC61y8dTE6Xx6XMvnTzVj42wVuqoAJ2JnP4GJkty6OGn58vpflpAmgImzdFPJ2QRkLoAi9dg40mnvP7WkT%2BL67CawKj9njB2kKX52ATh%2FqeSJQl2n4ASk87ddz%2F47vefOqBhDismnW%2Bfe%2BTNpSc%2FQSj%2BM2XdXkPPOKDJlflaDkyOgcpB1Qg2fWicxGbS%2BaU6D4TKGYfKODdDZdSNPYOt3HHrfk20wlaTcR4Kxv1mUG1VPS%2FgvNZsC7%2BNxJZs%2B%2BruvwAAAP%2F%2FAQAA%2F%2F%2BCZSweeAQAAA%3D%3D HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: u_pl=16710802; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 31 Jan 2023 03:16:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 03ac02908813e7a43ac7956d92532237
Strict-Transport-Security: max-age=0; includeSubdomains
static.hotjar.com/c/hotjar-2505016.js?sv=6
54.230.111.66200 OK 3.9 kB URL HTTP/2 static.hotjar.com/c/hotjar-2505016.js?sv=6
IP 54.230.111.66:0
File type ASCII text, with very long lines (7535)
Hash b1fec252e8c1aab81a8fc7b9c751d03f
d371849404771c995fe4649122d8710e445f0aa6
d08989bc71cb9f760bf388f1571199515e936a70998e5b19f8d2f3248f14bbe7
GET /c/hotjar-2505016.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 31 Jan 2023 03:16:04 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/530caa56ffa4d8c1d182e85007e033bd
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: D0XyuzbhUl4V41doDCn7h-wvchBQZOjA5hf7YBuLj9UnlrfqX8ogng==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Tue, 31 Jan 2023 03:16:04 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Tue, 31 Jan 2023 04:16:04 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
nudgeworry.com/pixel/sbs?c=1
192.243.59.20200 OK 0 B URL HTTP/1.1 nudgeworry.com/pixel/sbs?c=1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: u_pl=16710802; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 31 Jan 2023 03:16:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff
172.64.167.9200 OK 73 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff
IP 172.64.167.9:0
File type Web Open Font Format, TrueType, length 72696, version 11.0\012- data
Hash 53d97caea7ef8a12beab745fcc5744e1
b8c70e4f67957e4f2cb809a58d84c773a3bde6d0
542772868e28df6d786b6f00f9dec929cba214d928cb013b32588485b46f8715
GET /sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:04 GMT
content-type: application/font-woff
content-length: 72696
last-modified: Wed, 17 Feb 2021 11:42:38 GMT
etag: "602d012e-11bf8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iuI4vs1KuFKwwWbkrarj1qKMVf1m7oz2MjzFh%2BTB7WvNbT92WD9aVO%2BgnlfxNzWi6U6j6nvP87NjYq4roz22wMpk9HsutaPo6ZTfaQvFUpJWJ6lYu97Sun%2BWGsPktmebtZYpANoELTPx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f4956b92a35da-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/774190886/?random=1675134977491&cv=11&fst=1675134000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&fmt=3&is_vtc=1&random=2789289689&rmt_tld=0&ipr=y
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/774190886/?random=1675134977491&cv=11&fst=1675134000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&fmt=3&is_vtc=1&random=2789289689&rmt_tld=0&ipr=y
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/774190886/?random=1675134977491&cv=11&fst=1675134000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&fmt=3&is_vtc=1&random=2789289689&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 03:16:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/774190886/?random=1675134977491&cv=11&fst=1675134000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&fmt=3&is_vtc=1&random=2789289689&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/774190886/?random=1675134977491&cv=11&fst=1675134000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&fmt=3&is_vtc=1&random=2789289689&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/774190886/?random=1675134977491&cv=11&fst=1675134000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&tiba=The%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&fmt=3&is_vtc=1&random=2789289689&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 03:16:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/87458820/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
87.250.251.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/87458820/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash bdcac598aa94b94ad30b9a5d51fece79
6da4a105b80a52124912f33b37e6850f06bd29e6
f4ad972610a27540e69980c68c8e87f3313dc8549d407ea78726c4823f88cae8
GET /watch/87458820/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Referer: http://games-lol.siteacceder.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Tue, 31 Jan 2023 03:16:04 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 31-Jan-2023 03:16:04 GMT
last-modified: Tue, 31-Jan-2023 03:16:04 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/90922416/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
87.250.251.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/90922416/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 9758b1245cdb4c37ae0f54f65f24d416
5401409f290c1858860e7eaec8e94e2b7e8c6dee
86985e11dc35598b9e4552981d35295e1e9d48f0653e01925795094e22f283ce
GET /watch/90922416/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Referer: http://games-lol.siteacceder.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Tue, 31 Jan 2023 03:16:04 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 31-Jan-2023 03:16:04 GMT
last-modified: Tue, 31-Jan-2023 03:16:04 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
172.64.167.9200 OK 123 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
IP 172.64.167.9:0
Size 123 kB (122611 bytes)
Hash 4a8aa4599b39ac16b14f4e453a503c01
63823c3eee056b8a524e0bfe58bd1dc551493895
f91769d04ed5f45f9c4bfa61e4a8f65f2bbe3baa6455ceee6831bc2d22e71ed2
GET /sb/notifications/software/us/ios/desk-new-big/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:04 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 12:16:53 GMT
etag: W/"614c7035-145e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjYYR3uCwNiiOO1SzEcnLcuf8RID45clUmvbJgTMm8ZSmLzp%2B0uQPiiEm8nK0ushwHmN%2FT15xSDlziTgI6w21Qk%2F1h50XUBznPCrf0v9fiFCd%2FgSWNC%2F%2FG9D5rJELJCDrB2xjiZR1qx%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f4953df6235da-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 31 Jan 2023 03:16:04 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Tue, 31 Jan 2023 04:16:04 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=games-lol.siteacceder.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=games-lol.siteacceder.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=games-lol.siteacceder.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 31 Jan 2023 03:16:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=games-lol.siteacceder.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=games-lol.siteacceder.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=games-lol.siteacceder.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 31 Jan 2023 03:16:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1b05a0b3c19155ff38f58b7dd4606775
ef6a909125ff3c1e9ea077163a86df4028ff490e
b0708b95554274b9cf8bced7a8668069a39b99a5e216c11b6c277bb912dcecf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=681756095517204&ev=PageView&dl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&rl=&if=false&ts=1675134979966&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1675134979965.368555368&it=1675134979248&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=681756095517204&ev=PageView&dl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&rl=&if=false&ts=1675134979966&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1675134979965.368555368&it=1675134979248&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=681756095517204&ev=PageView&dl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&rl=&if=false&ts=1675134979966&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1675134979965.368555368&it=1675134979248&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 31 Jan 2023 03:16:05 GMT
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=games-lol.siteacceder.com&callback=_gfp_s_&client=ca-pub-9265821394690179
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=games-lol.siteacceder.com&callback=_gfp_s_&client=ca-pub-9265821394690179
IP 216.58.207.226:0
File type ASCII text, with very long lines (397), with no line terminators
Hash d537643763e93c624542f74dd75e8df1
97d0cd94072ffd68e0af2995cb2c8a0cf541b483
1da83e12a6274b8f079457c3c599f9938238acec8db1dc41add3688bff81e1e2
GET /gampad/cookie.js?domain=games-lol.siteacceder.com&callback=_gfp_s_&client=ca-pub-9265821394690179 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 31 Jan 2023 03:16:05 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1b05a0b3c19155ff38f58b7dd4606775
ef6a909125ff3c1e9ea077163a86df4028ff490e
b0708b95554274b9cf8bced7a8668069a39b99a5e216c11b6c277bb912dcecf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115539486-1&cid=235488943.1675134977&jid=44305366&gjid=1087413720&_gid=678202338.1675134979&_u=aCDAAUACQAAAACAAI~&z=1472651974
173.194.73.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115539486-1&cid=235488943.1675134977&jid=44305366&gjid=1087413720&_gid=678202338.1675134979&_u=aCDAAUACQAAAACAAI~&z=1472651974
IP 173.194.73.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115539486-1&cid=235488943.1675134977&jid=44305366&gjid=1087413720&_gid=678202338.1675134979&_u=aCDAAUACQAAAACAAI~&z=1472651974 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://games-lol.siteacceder.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 31 Jan 2023 03:16:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115539486-1&cid=235488943.1675134977&jid=1550268332&gjid=1492215428&_gid=678202338.1675134979&_u=aCDAAUADQAAAACAAI~&z=1470241635
173.194.73.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115539486-1&cid=235488943.1675134977&jid=1550268332&gjid=1492215428&_gid=678202338.1675134979&_u=aCDAAUADQAAAACAAI~&z=1470241635
IP 173.194.73.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115539486-1&cid=235488943.1675134977&jid=1550268332&gjid=1492215428&_gid=678202338.1675134979&_u=aCDAAUADQAAAACAAI~&z=1470241635 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://games-lol.siteacceder.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 31 Jan 2023 03:16:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 9a8cdf4bd6c59631ab5e61cbb2ab38aa
279f8b8d30bc008169db30d8861a2814bf30bead
99e2eeca05fc59910082d7f1071c87d5e57e8c8f85e333d56a1df672c5c94bb4
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: uid_id2=16ec820b-374f-44c1-97ce-122cf32f9bcd:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:05 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
unpkg.com/vue@2.6.12/dist/vue.js
104.16.122.175200 OK 92 kB URL HTTP/2 unpkg.com/vue@2.6.12/dist/vue.js
IP 104.16.122.175:0
Hash 2c03e4a63fe8d2fee10a2cf4cbe5aff4
fd3fc5aed2d42aeea305f08fd7a927cb6fa32d38
be43593cc445d80f48ee8ba5c50e261ceed8c64c98172318aea62e4460e8ab82
GET /vue@2.6.12/dist/vue.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"53883-XDnfw3/EJADktFV9uVbz8hipDKc"
via: 1.1 fly.io
fly-request-id: 01GQ46TQPEFZFB0P9QFVD8PZYC-fra
cf-cache-status: HIT
age: 1030076
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791f495d1acbb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 087182d3a6a359284853764004bfb9b4
0297b9b2cb72a979d6a1267f587bab0fb79b7b40
aa00ff2ec55972ad493cedf34c369da582f052df3a1f660610b8cbbcb78ce5ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 03:16:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
216.58.211.1200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 31 Jan 2023 03:16:05 GMT
expires: Tue, 31 Jan 2023 03:16:05 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0759b0d541fcc517d13a6ec4fd8aa8f4
efe3d38b9b4e9c0e432f52d5ec19b77c4727f1c7
244b250a141ab653020e0a5fa1f8326485c734a9bbe8c61abbfaf68af6821273
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 03:16:05 GMT
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -NdWSEnPVwt6657ntsbfdT-8vs6KnO899C52ocjj_zyOVvxmE6qKjA==
unseenreport.com/pxf.gif?uuid=16ec820b-374f-44c1-97ce-122cf32f9bcd&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=876b74812be8762e152c61679c29a3f5&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3
192.243.59.20200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=16ec820b-374f-44c1-97ce-122cf32f9bcd&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=876b74812be8762e152c61679c29a3f5&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=16ec820b-374f-44c1-97ce-122cf32f9bcd&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=876b74812be8762e152c61679c29a3f5&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 31 Jan 2023 03:16:05 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 786d62a59082decea6d0c789fb2c0996
Strict-Transport-Security: max-age=0; includeSubdomains
rndskittytor.com/500/4837723?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/1.1 rndskittytor.com/500/4837723?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/4837723?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:07 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
rndskittytor.com/500/4837723?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 929 B URL HTTP/1.1 rndskittytor.com/500/4837723?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1152), with no line terminators
Hash dcbf43722b09ff1c808dc31e15ea0118
78402d8009bb8c3829595a07271c47ed38b79d7f
d010dfeceb7aa5774232c6114baec0e507e9a4bdefdd4ac404486284429d239d
Analyzer Verdict Alert quad9 Sinkholed
GET /500/4837723?excludes=&oaid=a8cec7324fe540c19a5e1253cb7de8f0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=7&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Jan 2023 03:16:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 6d696d339521668b1f77b7cae77a7e8b
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Vary: Origin
Access-Control-Allow-Origin: http://games-lol.siteacceder.com
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:07 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.239204 No Content 0 B URL HTTP/2 benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-sc
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 03:16:08 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.239200 OK 0 B URL HTTP/2 benumelan.com/11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=3097502063&z=4724958&b=16336477&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=IFfdp5ypz8IsZ4dYRcMuPrILWAKvS6S1Dp2qNHAGB9OX0lR1AdmNnhspCplP5vh3usp5N_XFe1Bu4fjV2N9IZqtsNVtZQhBZ5ZDaPg56REkTlbtJ87p1qXjPzQPYgymZ6-z65Hulie-F3LJjwSwbXjHfqFLMs6zQy7RhzG--xiEb_X1Hcf-zcy6xkXi165Uf8B__M-fiNtDEgxZyE7gEz77BdxVDFw566EnA56pXZHFawEv4X3N9KfqO4ft8bRC3ij3tt89nejuX8_0PQw4JqRxeyqWt3Y2bjJCDxSVnrSjwKRAPCZlFKx4XUk-xvL0pjK0Kg1be1wDT-rSll2zPImDBReWZ19MGB8iOx2uZGaxNk06vx0JyvlJOq66izlVg62hyTyyGwK4RIvtqqUy8RqwGz-OXOWq4cCB8TYaETw-bMmd0LcSiJvAPJmNzPiZFw0ZI-UnenSUfKXF_e2ynfpwAsU08qakcauFSSXop2Q_6KzmQaEMDvPnRvh5NMQdHW7jwyp1Rb0Yl4ZOTVEpkcWo27uAu8cftdYALrOUmll-KL5zHKNt9C7AYWFOzcZ6gPih-b7c-YPaFrMF-kJSrMyPqoY9qDr465YTJy7zMNUnhh679idBPwMg5NcScPeoGpX8At_VPmqVgV2XyE-L15w==&ruid=1027c0e5-42f2-4961-94ce-98419de551d8&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Sc: hValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU=
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Cookie: scm=1; OAID=a8cec7324fe540c19a5e1253cb7de8f0; oaidts=1675134963
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:08 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
x-trace-id: d1be7866acb3d67188c358290cdc4304
access-control-expose-headers: X-Sc
x-sc:
set-cookie: OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:08 GMT; secure; SameSite=None
oaidts=1675134963; expires=Wed, 31 Jan 2024 03:16:08 GMT; secure; SameSite=None
oaidvc=1; expires=Wed, 31 Jan 2024 03:16:08 GMT; secure; SameSite=None
CNT=1_v1_XUb5AAEAAAC8S_9_; expires=Tue, 31 Jan 2023 04:16:08 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/jquery.min.js
172.67.213.228200 OK 0 B URL HTTP/2 games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/jquery.min.js
IP 172.67.213.228:0
GET /wp-content/themes/gameslol_2021/js/jquery.min.js HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=p2o2s9dnk4plku6e17taj3rpmg; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XOTaGsM%2FaVAaQ8q9IAlZLfBwcYWpiaHTiLYHsrIi6kdroSUOGRtovij2pZTXY9k1ARugWXfRVdstYYppjJW7PDLqTH17efM0RzPugjPijGSGQ6AtII5T6X%2BbEPckTfs3dCKG3%2FW3FNqxP5Jr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49422ea5b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.89.122200 OK 0 B IP 104.21.89.122:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:02 GMT
content-type: application/javascript
last-modified: Thu, 29 Dec 2022 16:01:28 GMT
etag: W/"63adb9d8-3341"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6141
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YsoyOWeCyESjr7nUsc5JJMg7LUt02iL4RdFTQTecigSHcgvIBv8k7MpTmWO0kiRU6I7lgTCk35327PRmPYZXdF2s4n8hBNqBEgG21zrhURBPOm2nxhVcrvSVkMfWRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f4949cc59b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
benumelan.com/9?z=4724958&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=a8cec7324fe540c19a5e1253cb7de8f0
139.45.197.239200 OK 0 B URL HTTP/2 benumelan.com/9?z=4724958&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=a8cec7324fe540c19a5e1253cb7de8f0
IP 139.45.197.239:0
Analyzer Verdict Alert quad9 Sinkholed
POST /9?z=4724958&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fgames-lol.siteacceder.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=a8cec7324fe540c19a5e1253cb7de8f0 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 283
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
x-trace-id: c3d8a0f9e5e11a52cf91f87bb2c9df46
access-control-expose-headers: X-Sc
x-sc: hValskTtPDveFj1AywtENdx37tgz2OWUfdQjWvES5ipRnGCderdsps2MAYlXH9h82k8xGCN9xRSkExgoKTRwaLhf4cU=
set-cookie: scm=1; expires=Wed, 31 Jan 2024 03:16:03 GMT; secure; SameSite=None
OAID=a8cec7324fe540c19a5e1253cb7de8f0; expires=Wed, 31 Jan 2024 03:16:03 GMT; secure; SameSite=None
oaidts=1675134963; expires=Wed, 31 Jan 2024 03:16:03 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
IP 172.64.167.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:04 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:44:02 GMT
etag: W/"602d0182-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0w0jA9nBrdxcyHOeQVgdDlOSWMb%2FqjeLnfsKIXs3AOC5mTm39KEgYq0PKLIBe6S%2Bk7phkwBncLUSD4LfvmbZutoyAj7amv%2Fan1SGYFBxWRsi6ojY1PBfskOiwAhZcLXiGsADiS9dhEs0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f4953df5f35da-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
benumelan.com/27/dae1eb9bef878cda2f3d5a0907ef4d01
139.45.197.239200 OK 0 B URL HTTP/2 benumelan.com/27/dae1eb9bef878cda2f3d5a0907ef4d01
IP 139.45.197.239:0
Analyzer Verdict Alert quad9 Sinkholed
GET /27/dae1eb9bef878cda2f3d5a0907ef4d01 HTTP/1.1
Host: benumelan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:02 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
cache-control: max-age:290304000, public
last-modified: Fri, 27 Jan 2023 06:22:51 GMT
expires: Fri, 26 Feb 2083 06:22:51 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
games-lol.siteacceder.com/wp-content/cache/wpo-minify/1673520842/assets/wpo-minify-header-bb784839.min.css
172.67.213.228200 OK 0 B URL HTTP/2 games-lol.siteacceder.com/wp-content/cache/wpo-minify/1673520842/assets/wpo-minify-header-bb784839.min.css
IP 172.67.213.228:0
GET /wp-content/cache/wpo-minify/1673520842/assets/wpo-minify-header-bb784839.min.css HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/css;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=rvqokmpjepd6c5nr7skp1h6v9t; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0VmVGu98yxZwK4Y1zXVc2ZBllyPZ9%2FeJHEkvf3BWDUTCpjbkMTFXK1qYv7P%2Fnym7DJuK4oRBpFn%2Ba9wfBGLiImoTs%2FNkz7dzxEbsehhWe%2FBoEKz7rWldPTGkxYF5VFkClECW1Sm2IpC%2BhWCF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49423ea8b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
glimtors.net/pfe/current/universal.min.js?v=3.1.415
139.45.197.251200 OK 0 B URL HTTP/2 glimtors.net/pfe/current/universal.min.js?v=3.1.415
IP 139.45.197.251:0
GET /pfe/current/universal.min.js?v=3.1.415 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:02 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 11:03:52 GMT
etag: W/"63d3af98-18c6c"
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
glimtors.net/pfe/current/defaultSkin.min.js
139.45.197.251200 OK 0 B URL HTTP/2 glimtors.net/pfe/current/defaultSkin.min.js
IP 139.45.197.251:0
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://games-lol.siteacceder.com/
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:03 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 11:03:52 GMT
etag: W/"63d3af98-df63"
access-control-allow-origin: http://games-lol.siteacceder.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/scripts.js
172.67.213.228200 OK 0 B URL HTTP/2 games-lol.siteacceder.com/wp-content/themes/gameslol_2021/js/scripts.js
IP 172.67.213.228:0
GET /wp-content/themes/gameslol_2021/js/scripts.js HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=agird4dukb9cjgpltssd1n2b8h; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LIRxM2ttdrqiIuoy5m7qxyzXOibk6PrPFq5VaQNTLecNl6rgqJ6pknaL4c0HuLBh%2FN7bj3GJ5mhw43yRd6xUA%2FancDFw4t6M6%2BPlZOFBq81bvO71EiBP3Qm7ITt%2FD2BudeqX4raqWeQQAEzh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49422ea3b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/87458820?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.251.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/87458820?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.251.119:0
GET /watch/87458820?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/87458820/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1197139993594%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134979%3Ac%3A1%3Arn%3A958800547%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Tue, 31 Jan 2023 03:16:04 GMT
access-control-allow-origin: http://games-lol.siteacceder.com
set-cookie: yabs-sid=403838171675134964; Path=/; SameSite=None; Secure
i=ZQ3cTD/8A38ArTATW+K52L33UM2UDKpDDt2QEi5t8HoDPkKT5nUJqP7zz37cGu6cp26wKj6vE/DDqMgRjjMxMbIUs38=; Expires=Fri, 28-Jan-2033 03:15:51 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8282678741675134964; Expires=Wed, 31-Jan-2024 03:16:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8282678741675134964; Expires=Wed, 31-Jan-2024 03:16:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706670964.yc.1675134964#1706670964.yrts.1675134964#1706670964.yrtsi.1675134964; Expires=Wed, 31-Jan-2024 03:16:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 31-Jan-2023 03:16:04 GMT
last-modified: Tue, 31-Jan-2023 03:16:04 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
games.lol/api/fomo?k=games-lol.siteacceder.com&t=gamesite
54.230.111.79200 OK 0 B URL HTTP/2 games.lol/api/fomo?k=games-lol.siteacceder.com&t=gamesite
IP 54.230.111.79:0
GET /api/fomo?k=games-lol.siteacceder.com&t=gamesite HTTP/1.1
Host: games.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Tue, 31 Jan 2023 03:16:05 GMT
server: nginx/1.12.2
access-control-allow-origin: *
cache-control: public,max-age=3600
content-encoding: br
vary: Accept-Encoding
p3p: CP="NID DSP ALL COR"
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9BPo2sFX6ZDRQOWe5veePBXIKUKIq0vaE2CX5snX8Y7AdeJyhLQDBA==
X-Firefox-Spdy: h2
games-lol.siteacceder.com/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js
172.67.213.228200 OK 0 B URL HTTP/2 games-lol.siteacceder.com/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js
IP 172.67.213.228:0
GET /wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=io31jeg277bmmjd78dkqfe79v6; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cYolcflTFDOKPosfjyWjsyGo2OufJoYgjKxp%2Br7WN1A862w5MPjUEUriQY8tYHYd7eFiYG5jS8ONVLLnhDrxJaC9d3Yc5GHJs5cCXUFfzF8QvObM0p%2BWY8eze7FQBYGlnXg1RXUcv6RDxEqb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49428ebcb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
games-lol.siteacceder.com/wp-content/s/2022/10/stumble-guys-1920x750-slider.jpg.webp
172.67.213.228200 OK 0 B URL HTTP/2 games-lol.siteacceder.com/wp-content/s/2022/10/stumble-guys-1920x750-slider.jpg.webp
IP 172.67.213.228:0
GET /wp-content/s/2022/10/stumble-guys-1920x750-slider.jpg.webp HTTP/1.1
Host: games-lol.siteacceder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:02 GMT
content-type: image/jpeg
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 01-Feb-2023 03:16:01 GMT; Max-Age=86400
PHPSESSID=hkv3ggsqaaabehrrrgitn8ics2; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b0V%2FheoADGCFfrbOpNVYZ7vPdJNNmGoOkQtvNoRacKWg2Lsh6XCFQVnj31%2Fe75%2FQSxfuzx%2BCLjsepNajQnIIvIeOR6ARZwwfSBzHQ2XenNc8KH4S147gaPbN5n49dnRm4KdIMZczyH%2FscrCR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f49422ea4b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
IP 172.64.167.9:0
GET /sb/notifications/software/us/ios/desk-new-big/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:04 GMT
content-type: application/javascript
last-modified: Wed, 17 Feb 2021 11:44:05 GMT
etag: W/"602d0185-183"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7iISGG1VvifNJ3ivzkrD2EOUzVVR0ApgyaBWuoDQzp4itSPXRsZMTz954h912iCeqGg7oHGpVr7wutei2y7ROpl9SSdx%2FqXnIy2jEy0IdHsUE%2BhTV3AlMn21dYwfLVxQuFHOI4u4%2BGDt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791f4953df6135da-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/90922416?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.251.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/90922416?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.251.119:0
GET /watch/90922416?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://games-lol.siteacceder.com
Connection: keep-alive
Referer: http://games-lol.siteacceder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/90922416/1?wmode=7&page-url=http%3A%2F%2Fgames-lol.siteacceder.com%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1740%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A696535167983%3Ahid%3A781307850%3Az%3A0%3Ai%3A20230131031619%3Aet%3A1675134980%3Ac%3A1%3Arn%3A28671535%3Arqn%3A1%3Au%3A1675134979901170849%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A42%2C0%2C220%2C0%2C-5%2C0%2C%2C1414%2C3%2C%2C%2C%2C1792%3Aco%3A0%3Ans%3A1675134975108%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675134980%3At%3AThe%20Best%20Free%20to%20PC%20Versions%20of%20Your%20Favorite%20Games%20%7C%20Games.lol&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Tue, 31 Jan 2023 03:16:04 GMT
access-control-allow-origin: http://games-lol.siteacceder.com
set-cookie: yabs-sid=816640401675134964; Path=/; SameSite=None; Secure
i=++rjhV+rRTtfiAAC7/ZEsLTSu7rtfHdvuKNJUwsEFt4uvw9J3zq0ZFGJrpNGidKX4C9OgzJAtNavSCa+UKKu0FChiR8=; Expires=Fri, 28-Jan-2033 03:16:04 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8477229601675134964; Expires=Wed, 31-Jan-2024 03:16:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8477229601675134964; Expires=Wed, 31-Jan-2024 03:16:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706670964.yc.1675134964#1706670964.yrts.1675134964#1706670964.yrtsi.1675134964; Expires=Wed, 31-Jan-2024 03:16:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 31-Jan-2023 03:16:04 GMT
last-modified: Tue, 31-Jan-2023 03:16:04 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2