ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939
23.36.77.10200 OK 9.2 kB URL HTTP/1.1 ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939
IP 23.36.77.10:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12966)
Hash a6d6f1b0300ae00f48463cf18b04674e
5174e7f0ee9ffeac8fe741329651f26049669ad7
45d4c9b549c1c733fc58c1103fb7b672a4e6da9e7dcb43a5c5d480829e48ed64
GET /afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939 HTTP/1.1
Host: ak.hetapus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf8
X-Trace-Id: 0c9106867402b823e729e0b68d509963
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
Expires: Sun, 19 Mar 2023 08:05:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 19 Mar 2023 08:05:51 GMT
Content-Length: 9241
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: OAID=d71b31c8cd2448ecab31128c3476d71a; expires=Mon, 18 Mar 2024 08:05:51 GMT; path=/
oaidts=1679213151; expires=Mon, 18 Mar 2024 08:05:51 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3513
Expires: Sun, 19 Mar 2023 09:04:24 GMT
Date: Sun, 19 Mar 2023 08:05:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9948
Expires: Sun, 19 Mar 2023 10:51:40 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Mar 2023 07:14:45 GMT
content-type: application/json
age: 3067
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3970
Expires: Sun, 19 Mar 2023 09:12:02 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vQP5pSXbDyqu3IZXWo+4EMN3Sej9lqvbPUzobcyhAEvPJJ0u0tTesPld1DJiC2gKhwhoYm+Cng3GyD+bGhipuQ==
x-amz-request-id: KV0S13S9TSWS0HZT
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 19 Mar 2023 07:58:11 GMT
age: 461
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 08:05:52 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8fb23ef9a3326831ec0a54e1e4ff78d7
0bb5ec05a08bf7654261a0a61c52c943cb66e5f0
dd4e4d7adb7d3f4dcf503423e7884f2e7b2c051cd59c86aeb24a19e1d73651c9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD4E4D7ADB7D3F4DCF503423E7884F2E7B2C051CD59C86AEB24A19E1D73651C9"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3775
Expires: Sun, 19 Mar 2023 09:08:47 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
my.rtmark.net/img.gif?f=merge&userId=d71b31c8cd2448ecab31128c3476d71a
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=d71b31c8cd2448ecab31128c3476d71a
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=d71b31c8cd2448ecab31128c3476d71a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ak.hetapus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 08:05:52 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=d71b31c8cd2448ecab31128c3476d71a; expires=Mon, 18 Mar 2024 08:05:52 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ak.hetapus.com/?z=5543285&syncedCookie=true&rhd=false
23.36.77.10302 Moved Temporarily 0 B URL HTTP/1.1 ak.hetapus.com/?z=5543285&syncedCookie=true&rhd=false
IP 23.36.77.10:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET ADWARE_PUP Win32/Adware.Agent.NSU CnC Activity M2
POST /?z=5543285&syncedCookie=true&rhd=false HTTP/1.1
Host: ak.hetapus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 530
Origin: http://ak.hetapus.com
Connection: keep-alive
Referer: http://ak.hetapus.com/afu.php?zoneid=5543285&var=5543285&rid=BPTR34PbLD67mf1dYD5JaA%3D%3D&rhd=false
Cookie: OAID=d71b31c8cd2448ecab31128c3476d71a; oaidts=1679213151
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Content-Length: 0
X-Trace-Id: 86b3874db7e7143f0a95130575169d78
Link: <https://nexters.g2afse.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Referrer-Policy: no-referrer
Location: https://nexters.g2afse.com/click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3
Access-Control-Allow-Origin: http://ak.hetapus.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Expires: Sun, 19 Mar 2023 08:05:52 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Set-Cookie: OAID=d71b31c8cd2448ecab31128c3476d71a; expires=Mon, 18 Mar 2024 08:05:52 GMT; path=/
oaidts=1679213151; expires=Mon, 18 Mar 2024 08:05:52 GMT; path=/
syncedCookie=true; expires=Sun, 26 Mar 2023 08:05:52 GMT; path=/
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c00a46f98275c99684990ce9869cc72b
97b16a393c1a123690e5ea4e9b5c964692732d8d
3a1c7dcecb9707dfe5e1cb5f46be7d3c436b49f352959e717f02bb94d045de4d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 08:05:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 14:09:40 GMT
Expires: Thu, 23 Mar 2023 14:09:39 GMT
Etag: "97b16a393c1a123690e5ea4e9b5c964692732d8d"
Cache-Control: max-age=366826,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aa43679fb2db518-OSL
ocsp.digicert.com/
192.229.221.95200 OK 314 B IP 192.229.221.95:0
Hash 6176d06cf2f12f66d2db06e231312422
bc0d16878b9b77575cca82f97419c46313871fff
a7dcb41ce76db93facd438d4a24937c3394cad35712768299ccb51c5345d6f3a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3746
Cache-Control: max-age=143167
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:52 GMT
Etag: "64163ffd-13a"
Expires: Mon, 20 Mar 2023 23:51:59 GMT
Last-Modified: Sat, 18 Mar 2023 22:49:33 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 314
nexters.g2afse.com/click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3
34.91.91.144302 Found 0 B URL HTTP/2 nexters.g2afse.com/click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3
IP 34.91.91.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3 HTTP/1.1
Host: nexters.g2afse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: afclick=6416c25148e70a00019c14ad; afoffers={"10":1679213137}
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 19 Mar 2023 08:05:52 GMT
content-length: 0
location: https://www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=6416c260e79eb00001a338ec; expires=Mon, 18 Mar 2024 08:05:52 GMT; secure; SameSite=None
afoffers={"10":1679213152}; expires=Mon, 18 Mar 2024 08:05:52 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Mar 2023 07:17:21 GMT
age: 2911
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
23.73.2.84200 OK 4.2 kB URL HTTP/2 www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
IP 23.73.2.84:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4281)
Hash 16e748f9fd7308c142645f7ecbb9a411
3e2ef3238cb8de364c115b9ce97f7f8712dfcae8
a48ba915bbf0c2d59b0986787bff07cd9bd9dec31695486f8ed367b7d837a56d
GET /?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 HTTP/1.1
Host: www.hero-wars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InFKM01JZ1p4Y3ZCR0J2ZFlKVWZ6M0E9PSIsInZhbHVlIjoiT3BKZitPKy9YY1pWRTBWK0NZdjNsaVBkdkp3TjN0VUVMQ2IwbHg2RUo4TGVTMkdqOFlxNkQ5bnc0R1VFRzlsbyIsIm1hYyI6Ijc5MzVhMjQ4OTc3N2Y4MDYyNWU2YjlmNGFhNGZhMjEwODQ5YmNjM2EwMzUyMTRjMTMzNWExYmNlZTcwYzNiMmEiLCJ0YWciOiIifQ%3D%3D; hero_wars_session=eyJpdiI6IlJUUXN0UU9lQy9WUm13a1p0dWg4RVE9PSIsInZhbHVlIjoiT3RwcVl1N2tEQVNGaDJFamNxWVVlTVRnclN0NGZIcGV1a1F1MFpGS1R5ZTFkd3NidTJHZFhJUkM3Q3AraTlFaiIsIm1hYyI6IjBlY2E0MDJmNTAwNThmMDZlNDVlMmFlYjk1OTY5ZjE1ZmQyMGZlNmI0ZmYzNjY2MGI2YzJmMjRiOTU3NjU1MjkiLCJ0YWciOiIifQ%3D%3D; AKA_A2=A; ak_bmsc=BEAEF172F652C7677CA5F56308EADDB3~000000000000000000000000000000~YAAQSQFJF59M7ryGAQAACxLn+BNjKU8cB1kc5dq7lB4lE+N4jxFAkhSqRROvTjQUA+p3slELWzaZp2PO8VlJuRBJCGT1ewZK3D4s5EfMib1yKZorQVCYowxC8n/EcjKBSweRBuXOB3BY12JIWH3p0ZhbFlDwGYITbuyWC8MsogarXt7hWoaoOCNOpetMMAdn2XSW3NNE/AL30vtB+tasG6/Vm08g9o81F1370t5cME5Sa+w2HiNJKFAYtnl7WF+0rIapBcFjQ6Ga4ynHBH0PrsRC1g9gq7H0YZbVtGkrIjOLiv2rbsvBUrnfvWoOighVye60qK7cHcbdh1sy+8/4MAZ21brserOXLAjSk7fASCE0az6WQYNQtFohz70MKr1YSA2yVs3tB6yru2Nj; _gcl_au=1.1.319014930.1679213142; RT="z=1&dm=www.hero-wars.com&si=32c426ad-c467-4b54-bd5a-9b1e29cddaf6&ss=lff45bz8&sl=1&tt=23u&rl=1&ld=23w&ul=6lz&hd=6q8"; _fbp=fb.1.1679213142831.590618137; bm_sv=C1F80406F2092DD9673239801868A316~YAAQSQFJF6BM7ryGAQAAdRrn+BOMzT/cpfe41ejtq0ejesUwEIvNmzQKlJrJq9wB1D3vLgHcZns7v9tyV5mZ72ivrUxjFyi4YHpdOJubu6rSeXo1BMwT+awyaaDnDL5xfzFqi2oEk8euHyo1beUPKfDcM0GFvCvJkv4SHRcx9bLuWCLFZ0XOJXra+KrCC9mL+9nDDZw3MNz83fN1MbmPO/00NYANFiL5IAc6dnbRrF9an40PCEa7SajzuYyJCoaKTHYo~1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS,DELETE,PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range,x-auth-application-id,x-auth-network-ident,x-auth-player-id,x-auth-session-id,x-auth-session-init,x-auth-session-key,x-auth-signature,x-auth-token,x-auth-user-id,x-env-referrer,x-request-id,x-requested-with,x-server-time,x-env-library-version,x-auth-network-sign,authorization
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
expires: Sun, 19 Mar 2023 08:05:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:05:52 GMT
content-length: 4216
set-cookie: XSRF-TOKEN=eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:52 GMT; Max-Age=5184000; path=/; secure; samesite=lax
hero_wars_session=eyJpdiI6IkVQSFZRc3VjeWI3TlpuOGNHUmpEZnc9PSIsInZhbHVlIjoiT1lNL2M0VDI2NG5ISnlmOThNL3ZISXhVTmpseGVrYWZ5a0twb3VkeTV5RWdTMW51SHBLK2RQQWpsSFhMVDFNNiIsIm1hYyI6IjJkN2UxNTJiNGU0NjY2YWY5YzQ2N2I1ZjM1NzQ0ZDNjMjBjYTVlMjRhOTE4YWQ5ZTc3NzAxYmU0NTViZGI3YWQiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:52 GMT; Max-Age=5184000; path=/; secure; httponly; samesite=lax
bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzPMCNqGAQAAQkrn+BMOxLyHe7GtsZfRiAuraSLTAl0EUkpSlI6vrTQ1UuAsCjc5YzRtFt8lRzkUNQBmGivAaFqU24VaCf4DeU0DxYAEcbDsppIYdU9LnpJqT6d8gvUrM8qyMB3GRSd7O3FGDCguTuwnaOuQRrdZNtaGSJ+n/LA9kjLG+dMgIjoTQIgMxY5n8mIGFTxenoGMZHoX3xBE80UPMEEWTe00K7nqDD7tGgqH9TZo1cdehRP06wwC~1; Domain=.hero-wars.com; Path=/; Expires=Sun, 19 Mar 2023 10:05:40 GMT; Max-Age=7188; Secure
server-timing: edge; dur=1, origin; dur=173, cdn-cache; desc=MISS, ak_p; desc="466448_390660436_43196279_17393_8333_10_0";dur=1
link: <https://heroesweb-a.akamaihd.net>;rel="preconnect",<https://heroesru-a.akamaihd.net>;rel="preconnect",<https://fonts.gstatic.com>;rel="preconnect",<https://connect.facebook.net>;rel="preconnect",<https://www.googletagmanager.com>;rel="preconnect",<https://cdn.onesignal.com>;rel="preconnect",<https://cdn.gsght.com>;rel="preconnect",<https://cdn.taboola.com>;rel="preconnect"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3566
Expires: Sun, 19 Mar 2023 09:05:18 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/libs/get_browser.lib.js
23.36.76.200200 OK 1.3 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/libs/get_browser.lib.js
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (5580)
Hash 241b34c9666fd7ec55e55633a7517b7d
70fe7d9dee0f2a730d560df126d7b27b459f9ee7
08f803ff75e113c9d112b4c7d65da6d5d9c094ac5f59dcca3c37a3a17190317a
GET /i/hw-web/v2/366294/js/libs/get_browser.lib.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: W/"64130384-15cd"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 1338
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js
23.36.76.200200 OK 8.8 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21928), with no line terminators
Hash 6ac6038e3230cf43ee650cb48cb3a5aa
679f889b20b7ddd067356f5e2d189560d7654b87
ed4b34a84b40bd9cbaa9581d1fcae0fefd9a7462d3155ea5c3a4fffc8c56d639
GET /i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: W/"64130384-55a8"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 8803
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
23.36.76.200200 OK 16 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (63928), with no line terminators
Hash 6815a70e1bb0b6023981102caf3eaec4
29202444fd35f4d33f84e09864e3a535ccd39547
36298523ad1a1d3e086b40d1ebd31bd6cc07016190860847136f572a04e83f2d
GET /i/hw-web/v2/366294/external_landings/infolong4/style.css HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: W/"6413037f-f9b8"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 16112
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/css/landings.css
23.36.76.200200 OK 34 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/css/landings.css
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (30394)
Hash c28ae5ff656ecfc5b4093c66823a6be8
315d35d08bfee82b26f14d24943cbe64c39090d6
6829044d1be4d0475d33f650264dd1fb2abc48efebec2b74e98675659bc43444
GET /i/hw-web/v2/366294/css/landings.css HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 16 Mar 2023 11:54:35 GMT
ETag: W/"6413037b-47980"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 33733
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/landingSocials.js
23.36.76.200200 OK 112 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/landingSocials.js
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (112307 bytes)
Hash f6754ed0a71187564dbcc57045e7eeac
5ef4b8a2faf795098793f68595995c995b26262e
c2f4da84bcad4fd0a00a2fba8cee1509c78a41a86648bddd145af6c1ab205a96
GET /i/hw-web/v2/366294/js/landingSocials.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: W/"64130384-4c4e1"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 112307
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/main.js
23.36.76.200200 OK 93 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/main.js
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 75e6cebec5a657a4cddb470b483a7188
14cb470c8e876f5850e850103dd14d64626b7de6
3e505eeac9a691047262e58e905a7c1dae21f896caeb90159f5da0e9b2ab4dc7
GET /i/hw-web/v2/366294/external_landings/infolong4/main.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: W/"6413037f-3a1b0"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 92932
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash db7a51fe853d91ea7990bb3c41ba3cb4
f416e7ea87e2ac443e81afac853a3d05071d88e4
a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 37cad346bf9c7582600ca9e3cd8f9252
9021fcfa670921097bb9e71b10e07e8ae42443ae
fd83195c6e32d99ad1c76db3d4431ee060bd077ac738f090851138c5a8986340
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash db7a51fe853d91ea7990bb3c41ba3cb4
f416e7ea87e2ac443e81afac853a3d05071d88e4
a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.228.230.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.230.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2npyGH3+Uogsyq21IWBpKw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LTzhhXea+q9PPF0ujQO+/a1LErQ=
cdn.gsght.com/sdk.js
54.230.111.57200 OK 55 kB IP 54.230.111.57:0
Hash 3045aca01d1884df60e1a9ef53118381
efde8a6fd71a640f20e83a0ef34528d90cca86ba
35a0f04baca57bfc5c23a2bf7b0648d683211d23cc1af7ba2b6315fafd67be06
GET /sdk.js HTTP/1.1
Host: cdn.gsght.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 06 Mar 2023 11:09:30 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 19 Mar 2023 07:39:52 GMT
cache-control: max-age=3600
etag: W/"39e6a2d911f5664205a5da4244c313f5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BRtF9HRosg7AI8yp483ZBiP6fK43MrgVPQqbHsEnZHc11EvdaD5LgQ==
age: 1561
X-Firefox-Spdy: h2
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-bold-66ab29.ttf
23.36.76.200200 OK 228 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-bold-66ab29.ttf
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2012 Google Inc. All Rights Reserved.Noto SansBoldMonotype Imaging - Noto Sans BoldNot\012- data
Size 228 kB (227723 bytes)
Hash 4f92731a93b3c62c3d38035d97c8bb8e
ee8ba0c35ac5e610fb4fcd046929068947cb6b28
fa36342639b455643c1c37b53d89dd40a90804d96755decf62ed2522d221007a
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-bold-66ab29.ttf HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/x-custom
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: W/"64130380-6153c"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 227723
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-regular-fa1162.ttf
23.36.76.200200 OK 228 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-regular-fa1162.ttf
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2012 Google Inc. All Rights Reserved.Noto SansRegularMonotype Imaging - Noto SansVersi\012- data
Size 228 kB (228486 bytes)
Hash a14ea0a3f23442cebc5f2f8eb5bc0455
afcc7e8b21ffa85d6ac164387978ca9cfaa43dd6
6e2e869479585e21fada872fbd1bd6ca3bd79c79ab1b166e6420176ba1aa21a0
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-regular-fa1162.ttf HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/x-custom
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: W/"64130380-61678"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 228486
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/apple-touch-icon-180x180.png
23.36.76.200200 OK 56 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/apple-touch-icon-180x180.png
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 3fe4985b592380ae38f1c893b38e2313
8360179cf29132c4e7546efb2f73f395d7229add
d07470888d14cfcd84ae639fb9edbb0573a7f5558f963ec381a10acd4e7a838f
GET /i/hw-web/v2/366294/images/pwa/apple-touch-icon-180x180.png HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 55646
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: "64130384-d95e"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/favicon-16x16.png
23.36.76.200200 OK 246 B URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/favicon-16x16.png
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 092dd0cc004db08ff98265037350b81a
bbbdf08c3f279ea318fe308202ca65a74bc1c001
c0723f5312022bead9fff56a976c8be0915470be2ea0f441d785de1632ceec73
GET /i/hw-web/v2/366294/images/pwa/favicon-16x16.png HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 246
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: "64130384-f6"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 14632d58f00907c27bb986ee95790c8f
b16eeaee45cf727e5e17588887c4030645e05c49
682c43f278df56045a30928216563e4686d1dbc7523f5312b5c2bbf26394f698
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5270
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Etag: "64167f0e-1d7"
Last-Modified: Sun, 19 Mar 2023 06:38:03 GMT
Server: ECAcc (ska/F757)
X-Cache: HIT
Content-Length: 471
cdn.taboola.com/libtrc/unip/1171685/tfa.js
151.101.193.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1171685/tfa.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (59030)
Hash b323933ba6ed85ba7f2b9fe23f58915e
ae013dd9dddbc2f44b47adcaf02a07ae0929e0f4
2c4a0991e5d11b11cbafe8d744eda0545e799f7e257d26919f3edb582e7c0142
GET /libtrc/unip/1171685/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VWGKAHs0ZXG4WMH/dyz6IR0tomgvjGbhYTH+/wtnI7BVw9JBC+zYX3F3WEldou/0B9pzEagEh4w=
x-amz-request-id: AZ48ES2T695J89ZX
x-amz-replication-status: PENDING
last-modified: Sun, 12 Mar 2023 11:17:58 GMT
etag: "b0e67cb5713d0490e0ebad8ee2c01383"
x-amz-server-side-encryption: AES256
x-amz-version-id: qHYaCrFWamK51_WSTXEuUVmLlvZpoad.
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
age: 37
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1679213154.554129,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 47
access-control-allow-origin: *
content-length: 18170
X-Firefox-Spdy: h2
trc.taboola.com/1171685/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7260&ssd=2&scd=0
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1171685/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7260&ssd=2&scd=0
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1171685/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7260&ssd=2&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.817526,VS0,VE88
x-vcl-time-ms: 88
X-Firefox-Spdy: h2
trc.taboola.com/1123625/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7377&ssd=2&scd=0
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1123625/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7377&ssd=2&scd=0
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1123625/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7377&ssd=2&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:54 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.932591,VS0,VE93
x-vcl-time-ms: 93
X-Firefox-Spdy: h2
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/bg-3d32c1.svg
23.36.76.200200 OK 3.5 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/bg-3d32c1.svg
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (786)
Hash 4212f0df70ce4cda261cbe08658421e5
b1c4d9f327a36cbc4d5864455365f55c99442ba6
6072eb1586a8d300060b02e127ac8c8421e5ccbc3cb3c070e58b43174f746ccd
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/bg-3d32c1.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1fa3"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 3470
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/towers-d5ffb6.svg
23.36.76.200200 OK 10 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/towers-d5ffb6.svg
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2326)
Hash 3e7937e41a27bc82e75a7eeaa6a3d397
a7701cec7f28b58dbbda2f1418ce064d9967a25d
f6cdc47617cf2578a6e1ae2277d33bb11903de00ebb3516a209427c09be8e259
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/towers-d5ffb6.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-7e1b"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 10357
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ginger-b03d52b.webp
23.36.76.200200 OK 14 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ginger-b03d52b.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2e8663dd4215f2d3d4bb4271c73ddc37
bffd24e9e881f90e277efad99fdede10a40cd7f5
283856d09211de08297a75cc12f45aea9b694a0993b15e278bcd1b903b72de1d
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/ginger-b03d52b.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 13862
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-3626"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
trc.taboola.com/1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.193.44200 OK 11 kB URL HTTP/2 trc.taboola.com/1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.193.44:0
Hash 6ce19b5aada667b4a9939aa633fa7efd
43627a7976a5d63d1006e30c10aa19ff73cf7eef
0d7447ab88d6eee251e71d37f6cacb3d65bf99a0343059be7bac308c53c89efb
GET /1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.699849,VS0,VE100
vary: Accept-Encoding
x-vcl-time-ms: 100
X-Firefox-Spdy: h2
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/black_knight-5a362d5.webp
23.36.76.200200 OK 9.3 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/black_knight-5a362d5.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 287288105402330b2d10a358c43a042a
a82dd1e5c53764405fb91ed7ab6cd491d5151be5
7cde0f58459eb081f94bef63b674ca3a931ea0629e0877452add1a160685c0db
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/black_knight-5a362d5.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 9346
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2482"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/logo-c94394.svg
23.36.76.200200 OK 6.2 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/logo-c94394.svg
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5881)
Hash a48f23affde0dc75283fdf148f9a2184
033b3aeb55019260ad5df68dcc4a5cd9bc743695
11f597479ffa36d611fd2b0ba9debdc56f44ea25265f995c028f333c8bc5e1b7
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/logo-c94394.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-48bd"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 6238
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal-38d8eab.webp
23.36.76.200200 OK 187 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal-38d8eab.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 187 kB (186656 bytes)
Hash 563078b70c1de7e080903d04c6fd60be
478a7c7f4b658d9f38cedfa8cbc566c40e6f340b
21e44734099b642f5ba52eb01be88947322565151c9322c2554051c8caa55e4d
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/gal-38d8eab.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 186656
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2d920"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/text-frame-667c04.svg
23.36.76.200200 OK 1.8 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/text-frame-667c04.svg
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2749)
Hash 191694fd8e857c3f89fec0904d354c1e
222d20c0dc395850770ff1c2aad05d55734acca7
de0d81f3b1b4f8bf753091329222a8190be10b4d27d4e7bc2b9bdc3541deb28d
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/text-frame-667c04.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1156"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 1761
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/check_mark-05cddc.png
23.36.76.200200 OK 6.9 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/check_mark-05cddc.png
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type PNG image data, 90 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash f276701de6eaa741bf6ba261c4581c02
0bad0bbea2b6790a62d8a5047803f1ac994edeee
8b96d4c630c5ad729dbecb69bcd75912b8544e2e3f631c077e0b1bdae80d095b
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/check_mark-05cddc.png HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 6932
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1b14"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/thea_large-3af0725.webp
23.36.76.200200 OK 175 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/thea_large-3af0725.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 175 kB (174986 bytes)
Hash cec52ee5871de39dd311756bad2cdb80
662edec35dfd483efd731a50dab7451c212ed3c6
c5433373aa4cb0efaeaba382a06922e11f6365e379a0ddde7e7ebd80576f8981
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/thea_large-3af0725.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 174986
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2ab8a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/1_large-5b92196.webp
23.36.76.200200 OK 234 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/1_large-5b92196.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 234 kB (233546 bytes)
Hash 1aedb0df39b3eedd38393450a0747865
da2910bf1cd762ddde5649527b82099af64b97bb
03deb04764a65535f3130e57e9a0d437d190a9c8c2a7facf72951bac4da7b674
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/1_large-5b92196.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 233546
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: "6413037f-3904a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cinmao_large-4704e4b.webp
23.36.76.200200 OK 178 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cinmao_large-4704e4b.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 178 kB (178278 bytes)
Hash 2c7060a60e5e4ed916137f9390ef4d65
5e662c26d008c2a645e37999aeeda9000db46ffe
9b27eaa99a093bfb301fae6727f1f6bf67f93e125fe8b1709d17419aacab7bf1
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/cinmao_large-4704e4b.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 178278
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2b866"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/helios_large-bb24fba.webp
23.36.76.200200 OK 219 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/helios_large-bb24fba.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 219 kB (219148 bytes)
Hash 1e812fbd393d088f06237f6500b3314b
dac10a414ec13f0621dcc7372369a59701a85455
f9b59774f8f8b69305342b14184fd68d2ee1e651599f9e024e1874e740f058d2
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/helios_large-bb24fba.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 219148
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-3580c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal_large-51115d2.webp
23.36.76.200200 OK 275 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal_large-51115d2.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 275 kB (274596 bytes)
Hash fcaf8f062344de37ea56e369a10a7374
8e81c0fe008e7748899caa04922db54b78123faa
138c0b2399a27d22b0af506183a793f8f80ceebdc9d52a7936d8fcc7e8bb9e3b
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/gal_large-51115d2.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 274596
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-430a4"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cleaver_large-35d8649.webp
23.36.76.200200 OK 213 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cleaver_large-35d8649.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 213 kB (212616 bytes)
Hash 3cdccf9b885eb762b5d60bf123154eeb
d0302b37bb193e4479c2840b06a5f6ce965274e7
798d325f0f2d7409062d16019aac020a27ffb54d4502d88e91cbd80eb4dc4dcd
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/cleaver_large-35d8649.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 212616
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-33e88"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ismail_large-022d9a8.webp
23.36.76.200200 OK 116 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ismail_large-022d9a8.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 116 kB (116420 bytes)
Hash 1fba3de362e4336525ce2daf21e64ece
537f26d980f369c8d6a088b7215f72f64d0b4e79
21df1a425625fb5419a5d5ecaa95935364ff6ae35c4cc92fb68112b97e76be9f
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/ismail_large-022d9a8.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 116420
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1c6c4"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/tobi-17b4e6.woff
23.36.76.200200 OK 32 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/tobi-17b4e6.woff
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, TrueType, length 32076, version 0.0\012- data
Hash 0121ac0434dc61d1a39ab964b45d8a0c
5f33adbf1b1f7b8616c2371a8c404c32ea8492ce
b58bf22626ee2712530564846babe7ca1be5d2520d623c0e59e7dc6d68d3b4ff
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/tobi-17b4e6.woff HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff
Content-Length: 32076
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-7d4c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/artemis_large-20e6564.webp
23.36.76.200200 OK 155 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/artemis_large-20e6564.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 155 kB (154874 bytes)
Hash 4e74542ff46ff148dd899bc13512cb6e
fcc811344e008d4a68d954404ebe42828a7e0463
992c7fbffc6e4b69081c39c65740d08ce861ceeca8dbd61a629945814c2fbf0e
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/artemis_large-20e6564.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 154874
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-25cfa"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/daredevil_large-6b50e11.webp
23.36.76.200200 OK 76 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/daredevil_large-6b50e11.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash b0c912b784918fdbc128cb4db8ac580a
07060b09950a5a67be5dbb953c08f66c8090035e
72dd4a68d0615e155ef06cac6c7a906156026b0dc8e32b8ecd5921a71c0750ae
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/daredevil_large-6b50e11.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 76282
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-129fa"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/portal-20a24ff.webp
23.36.76.200200 OK 410 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/portal-20a24ff.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 410 kB (410290 bytes)
Hash 582a0be1aaf126ebf9439dc199a2685d
7990a4ac6d5f04886731c277f6b0e529734c6bb4
ada522ce953e7f6d0d0321e5ec24869fe7a3a809d28d959047a943d9537c5c96
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/portal-20a24ff.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 410290
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-642b2"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/game-adaptive/icons-sprite.svg
23.36.76.200200 OK 20 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/game-adaptive/icons-sprite.svg
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3738)
Hash 2d94601cf1490657585236db1c1c7176
dc485bfffab1f240c578b9a87b99a938add3db27
0c83f0e1906a34461bf8211c5c8a5ba0b408312ca7e910a05dbdffa781389b20
GET /i/hw-web/v2/366294/images/game-adaptive/icons-sprite.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:43 GMT
ETag: "64130383-ff49"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 19547
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/2_large-3aa29a3.webp
23.36.76.200200 OK 136 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/2_large-3aa29a3.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 136 kB (135554 bytes)
Hash 1baa259f7705502868c022e297195be7
2c7c8eb203c139f3f33cb10c377bd8e1d1833320
ae7fba6a152c3b81bcc1b2f95edb38800d74f412450c5ed347e9c82825e31574
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/2_large-3aa29a3.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 135554
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: "6413037f-21182"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/11_large-fec0567.webp
23.36.76.200200 OK 379 kB URL HTTP/1.1 heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/11_large-fec0567.webp
IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 379 kB (379146 bytes)
Hash da4103aebf8350bc0aa1a268c73aec43
f85ac206811a5cca56abb629604a900fc0552d84
aff6afe4fad0b53fd3d483a0344297d590780da7a10e1568321f0dda19673a60
GET /i/hw-web/v2/366294/external_landings/infolong4/assets/11_large-fec0567.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 379146
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: "6413037f-5c90a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
www.hero-wars.com/log/cookie_acceptance
23.73.2.84204 No Content 0 B URL HTTP/2 www.hero-wars.com/log/cookie_acceptance
IP 23.73.2.84:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log/cookie_acceptance HTTP/1.1
Host: www.hero-wars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ==
Content-Length: 86
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
Cookie: XSRF-TOKEN=eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ%3D%3D; hero_wars_session=eyJpdiI6IkVQSFZRc3VjeWI3TlpuOGNHUmpEZnc9PSIsInZhbHVlIjoiT1lNL2M0VDI2NG5ISnlmOThNL3ZISXhVTmpseGVrYWZ5a0twb3VkeTV5RWdTMW51SHBLK2RQQWpsSFhMVDFNNiIsIm1hYyI6IjJkN2UxNTJiNGU0NjY2YWY5YzQ2N2I1ZjM1NzQ0ZDNjMjBjYTVlMjRhOTE4YWQ5ZTc3NzAxYmU0NTViZGI3YWQiLCJ0YWciOiIifQ%3D%3D; AKA_A2=A; ak_bmsc=BEAEF172F652C7677CA5F56308EADDB3~000000000000000000000000000000~YAAQSQFJF59M7ryGAQAACxLn+BNjKU8cB1kc5dq7lB4lE+N4jxFAkhSqRROvTjQUA+p3slELWzaZp2PO8VlJuRBJCGT1ewZK3D4s5EfMib1yKZorQVCYowxC8n/EcjKBSweRBuXOB3BY12JIWH3p0ZhbFlDwGYITbuyWC8MsogarXt7hWoaoOCNOpetMMAdn2XSW3NNE/AL30vtB+tasG6/Vm08g9o81F1370t5cME5Sa+w2HiNJKFAYtnl7WF+0rIapBcFjQ6Ga4ynHBH0PrsRC1g9gq7H0YZbVtGkrIjOLiv2rbsvBUrnfvWoOighVye60qK7cHcbdh1sy+8/4MAZ21brserOXLAjSk7fASCE0az6WQYNQtFohz70MKr1YSA2yVs3tB6yru2Nj; _gcl_au=1.1.319014930.1679213142; RT="z=1&dm=www.hero-wars.com&si=32c426ad-c467-4b54-bd5a-9b1e29cddaf6&ss=lff45bz8&sl=1&tt=23u&rl=1"; _fbp=fb.1.1679213142831.590618137; bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzPMCNqGAQAAQkrn+BMOxLyHe7GtsZfRiAuraSLTAl0EUkpSlI6vrTQ1UuAsCjc5YzRtFt8lRzkUNQBmGivAaFqU24VaCf4DeU0DxYAEcbDsppIYdU9LnpJqT6d8gvUrM8qyMB3GRSd7O3FGDCguTuwnaOuQRrdZNtaGSJ+n/LA9kjLG+dMgIjoTQIgMxY5n8mIGFTxenoGMZHoX3xBE80UPMEEWTe00K7nqDD7tGgqH9TZo1cdehRP06wwC~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS,DELETE,PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range,x-auth-application-id,x-auth-network-ident,x-auth-player-id,x-auth-session-id,x-auth-session-init,x-auth-session-key,x-auth-signature,x-auth-token,x-auth-user-id,x-env-referrer,x-request-id,x-requested-with,x-server-time,x-env-library-version,x-auth-network-sign,authorization
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sun, 19 Mar 2023 08:05:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:05:54 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6InNOVUo5L1c0ZHludFRkdTNpTm11cVE9PSIsInZhbHVlIjoiNHFLY3BsRjNITnFXc2JhTDMxVGxpUGhUYmtVNXRmQml5UXVuNjdsa0R4U1V2M3Z5UUhkNmtTSUk1cURLT2dFayIsIm1hYyI6IjJiMzhlOTJkMzI4M2ViNDE5YjRiOGY4NGYzNmM0MGY3ZWU4YTI3M2I0OTc3NzM4MWMwNGQ2N2M4YWE1M2FjMjgiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; samesite=lax
hero_wars_session=eyJpdiI6ImwrUCtFbWsrNTU0UzE4SmFTMnk4YWc9PSIsInZhbHVlIjoiNUtpS2hWTDA3M3gzajd5eE1QZi9YSFg4U3lpRmk5cGROV25QK2p1QlZ4Qkk4SUdUVGI1cUZIWmNoWWpEVTA5SiIsIm1hYyI6IjFiNmYyZTAxODMzN2JmNWY4NjFlNjAyMjM0OWNjMzA5NTE5OWVjNWVlM2NiMDk3NDNjNDA4ZWQ0NjU5Y2JlZGUiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; httponly; samesite=lax
server-timing: edge; dur=4, origin; dur=57, cdn-cache; desc=MISS, ak_p; desc="466448_390660436_43196458_6104_3851_10_0";dur=1
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 657e225fbd809f16e51b4997847e5710
28b88c58a006257deb72f43ea236d0a513081847
f37f7d971e2f36b0d260965c8ab09863cffc87cfc3d561c40c3d72c9c207eae5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hero-wars.com/landing_loaded
23.73.2.84200 OK 44 B URL HTTP/2 www.hero-wars.com/landing_loaded
IP 23.73.2.84:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0abe67293af335f2189a2ba8fd737da5
08d0e71b7625d4364e9f01eb583343ca1c6d0f8f
fd2f79eac6a346cf9255f3c8ac7157ef0d70686332a0d07881f4a58c79a8dfa6
POST /landing_loaded HTTP/1.1
Host: www.hero-wars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
Content-Type: application/json
X-CSRF-Token: Gxv1jiPcfm0azeZIJVrHMokmUxhnF2fEcMhQoBTa
Origin: https://www.hero-wars.com
Content-Length: 317
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ%3D%3D; hero_wars_session=eyJpdiI6IkVQSFZRc3VjeWI3TlpuOGNHUmpEZnc9PSIsInZhbHVlIjoiT1lNL2M0VDI2NG5ISnlmOThNL3ZISXhVTmpseGVrYWZ5a0twb3VkeTV5RWdTMW51SHBLK2RQQWpsSFhMVDFNNiIsIm1hYyI6IjJkN2UxNTJiNGU0NjY2YWY5YzQ2N2I1ZjM1NzQ0ZDNjMjBjYTVlMjRhOTE4YWQ5ZTc3NzAxYmU0NTViZGI3YWQiLCJ0YWciOiIifQ%3D%3D; AKA_A2=A; ak_bmsc=BEAEF172F652C7677CA5F56308EADDB3~000000000000000000000000000000~YAAQSQFJF59M7ryGAQAACxLn+BNjKU8cB1kc5dq7lB4lE+N4jxFAkhSqRROvTjQUA+p3slELWzaZp2PO8VlJuRBJCGT1ewZK3D4s5EfMib1yKZorQVCYowxC8n/EcjKBSweRBuXOB3BY12JIWH3p0ZhbFlDwGYITbuyWC8MsogarXt7hWoaoOCNOpetMMAdn2XSW3NNE/AL30vtB+tasG6/Vm08g9o81F1370t5cME5Sa+w2HiNJKFAYtnl7WF+0rIapBcFjQ6Ga4ynHBH0PrsRC1g9gq7H0YZbVtGkrIjOLiv2rbsvBUrnfvWoOighVye60qK7cHcbdh1sy+8/4MAZ21brserOXLAjSk7fASCE0az6WQYNQtFohz70MKr1YSA2yVs3tB6yru2Nj; _gcl_au=1.1.319014930.1679213142; RT="z=1&dm=www.hero-wars.com&si=32c426ad-c467-4b54-bd5a-9b1e29cddaf6&ss=lff45bz8&sl=1&tt=23u&rl=1"; _fbp=fb.1.1679213142831.590618137; bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzPMCNqGAQAAQkrn+BMOxLyHe7GtsZfRiAuraSLTAl0EUkpSlI6vrTQ1UuAsCjc5YzRtFt8lRzkUNQBmGivAaFqU24VaCf4DeU0DxYAEcbDsppIYdU9LnpJqT6d8gvUrM8qyMB3GRSd7O3FGDCguTuwnaOuQRrdZNtaGSJ+n/LA9kjLG+dMgIjoTQIgMxY5n8mIGFTxenoGMZHoX3xBE80UPMEEWTe00K7nqDD7tGgqH9TZo1cdehRP06wwC~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS,DELETE,PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range,x-auth-application-id,x-auth-network-ident,x-auth-player-id,x-auth-session-id,x-auth-session-init,x-auth-session-key,x-auth-signature,x-auth-token,x-auth-user-id,x-env-referrer,x-request-id,x-requested-with,x-server-time,x-env-library-version,x-auth-network-sign,authorization
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sun, 19 Mar 2023 08:05:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:05:54 GMT
content-length: 44
set-cookie: XSRF-TOKEN=eyJpdiI6ImVNeE1zSldOWjVLdTZEQld5czR2cmc9PSIsInZhbHVlIjoiRmlaUjBUN2dlbGM5aHlxajJ0NU1YOFdadEkzU0pjaVpKZlN5aHJWa0FtaTVYL3ErcmphazlPV3UrU1lLbWR3bCIsIm1hYyI6ImU3MjY5MDI5MTU4YjRhNmM5YTE0NzA5MWY0ZjUyMDJlOTI5NjFiZGYzMjA3ZWUxYzBkMTMzZTFlNGVkZDg2MWQiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; samesite=lax
hero_wars_session=eyJpdiI6Imk4YTkrcm5CaXp5bEkvNFZXUEQzL3c9PSIsInZhbHVlIjoiZHV3MGpObWpOQktnU0IwMjR3bExGT0tITUdGNHptc09vOUVlV0UwQmZxWFVqZmZTa2VIWWhla3QwSS9SUDRxYyIsIm1hYyI6IjQwZjEzZmYwMGVjNjg3NjRkN2UzODdlZTM3YzYwZTg0NTIzOTMxNzJiYjA3YzlkNDNlOTczNzVmZGI0Mzc4NjciLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; httponly; samesite=lax
bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzTMCNqGAQAAG1Dn+BMEES1p62Hvo2BPWCGO4RQ1rExxEXYxX/j7yaSX0G4H12OyK3Ma8NIYmx8K7h3xZHcTShb1rMo9sq1uUHLaUCuNDszB8EV2JNXnJJTV4x1nQXmf+w3tY3OKrtqJ659j8wgqdXHl3srsXxs56h8WW6UebKKxOKcES5bRLxMnBAY8xSx7BLjkovc3zNPL7PA2555oXUjTfLRlqLgCimFsP0TNDwNcPef6DnHKxCsrMMiv~1; Domain=.hero-wars.com; Path=/; Expires=Sun, 19 Mar 2023 10:05:40 GMT; Max-Age=7186; Secure
server-timing: edge; dur=4, origin; dur=143, cdn-cache; desc=MISS, ak_p; desc="466448_390660436_43196457_14715_3906_16_0";dur=1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 088ecc88f297af7324cf5c27f019daea
dd2634cc71555b254ffcb21621b1b4426bae619a
f0f7467e6d6a3d89157fbea1e554ba0cb04ec97411012c048ce7374a2cd980d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6530
x-amzn-requestid: feaef7fd-1486-4717-b373-06546368aa4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wZCGnJoAMFWqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dd3-71249f9a6287e81730459c65;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _DYEnVROIUK5IYSWguE6xBBoIfvoNJMfB0gxidrjCkL65QeISMW6ow==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:44:27 GMT
age: 37287
etag: "dd2634cc71555b254ffcb21621b1b4426bae619a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07289211ce045b31693c7bb59c06f338
210abec1182bb94b9d0e48827ecb8023611c4489
808b7bfa4b75cfb91e003d6375802da7d2719de29d4f64776dea57992b7632c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5311
x-amzn-requestid: 3e000f36-3e2a-4008-950b-2e9f83306e51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_w3eFmtIAMF7EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e95-1b9e4cc8033920ea365de22f;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: mB-sWMCTChGtVbvW4TkpKqqpSACyRLw9x32bDY3kvV3f0IrEsti9cg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:48:16 GMT
etag: "210abec1182bb94b9d0e48827ecb8023611c4489"
content-type: image/jpeg
age: 37058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: K19FG80YIBs-7NnPFJQEodETe4DpifB_BA2FpyYtB0W-sXXjNlLKxw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 07:04:47 GMT
age: 3667
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e58e6553fe8e5d936a911080cec36dc
75dd9bdbaf7f19102036d27e69a011f4c37942a9
0c565b97125e28b8183baab26baf7c703e70f82fad13117c5780259e6d91a89d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6219
x-amzn-requestid: 61b80920-2ba3-4688-80ee-848d68031908
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BwlmnG0KoAMFd0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64101c90-17c159767df548c4672b7365;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 07:04:48 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ACswRkub0RlODaxJHJGsGkACkMQKk85qY3VxYPscNccAMYdpkQ9evA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 23:47:26 GMT
age: 29908
etag: "75dd9bdbaf7f19102036d27e69a011f4c37942a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 916a27eee94b9be1c268cd17c11c4824
4530492308074d7f4f7f888593149377e70ee561
a7aeaf49047efb11e4cd8b72bd2e00b4afdfe461b5be50d88c343ffbf3d3ca45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7842
x-amzn-requestid: 6e6fff9e-c942-498d-b649-9f7f6d82fba6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B6lDbHn4oAMF5BA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64141baf-268367ad5333899e40d8353d;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 07:50:07 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: k1cHkKf_bxsiXniP1nGXKi6fUo9WFRCOkvu7hewwOQZdtkWnBtoktQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:13:50 GMT
age: 35524
etag: "4530492308074d7f4f7f888593149377e70ee561"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ca6f680-5e4b-497f-aef4-6cca71cb98d5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ca6f680-5e4b-497f-aef4-6cca71cb98d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49b71c6b1d8a81d5c9e5281eec609c25
59d56060ea97e27de572e48eb907882f5767f427
d8d1aa817b12b61d85115c0020fafd2c2e02a0277417e96fb995329ea3c7f01a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ca6f680-5e4b-497f-aef4-6cca71cb98d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11784
x-amzn-requestid: 29c7373c-4eb0-4374-8c4c-205285e23667
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_whwHM7oAMF_kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e0a-0c30752b04757beb7ea417a7;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: pPIURVGevjYlykVadfXACVKOnHw9BNb9udBL65Kl-z7I9AUWFDoOeQ==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:14:05 GMT
age: 35509
etag: "59d56060ea97e27de572e48eb907882f5767f427"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trc-events.taboola.com/1123625/log/3/unip?en=pre_d_eng_tb&tos=13197&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163024&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1123625/log/3/unip?en=pre_d_eng_tb&tos=13197&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163024&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1123625/log/3/unip?en=pre_d_eng_tb&tos=13197&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163024&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 19 Mar 2023 08:05:59 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1171685/log/3/unip?en=pre_d_eng_tb&tos=13199&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163025&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1171685/log/3/unip?en=pre_d_eng_tb&tos=13199&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163025&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1171685/log/3/unip?en=pre_d_eng_tb&tos=13199&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163025&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 19 Mar 2023 08:05:59 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc.taboola.com/1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.193.44200 OK 0 B URL HTTP/2 trc.taboola.com/1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.193.44:0
GET /1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.821524,VS0,VE96
vary: Accept-Encoding
x-vcl-time-ms: 96
X-Firefox-Spdy: h2