Report - ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939

Report Overview

Submitted URL
ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939
IP
23.36.76.217
ASN
#20940 Akamai International B.V.
Submitted
2023-03-19 08:06:03
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ak.hetapus.com	237658	2021-09-25T15:03:38Z	2023-03-26T06:26:23Z	1.1 kB	11 kB	23.36.77.10
heroesweb-a.akamaihd.net	126474	2020-12-21T13:31:20Z	2023-03-24T14:53:13Z	16 kB	3.6 MB	23.36.76.200
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	1.4 kB	2.8 kB	142.250.74.131
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-26T05:16:36Z	379 B	19 kB	151.101.193.44
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	54 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
nexters.g2afse.com	unknown	2023-02-05T06:54:09Z	2023-03-22T13:47:42Z	572 B	682 B	34.91.91.144
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-26T05:18:47Z	682 B	1.4 kB	192.229.221.95
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	44.228.230.125
cdn.gsght.com	316544	2018-12-15T23:02:51Z	2023-03-25T14:50:24Z	357 B	55 kB	54.230.111.57
trc-events.taboola.com	1779	2020-06-09T15:52:57Z	2023-03-26T05:16:39Z	2.0 kB	732 B	141.226.228.48
trc.taboola.com	602	2012-12-27T12:54:42Z	2023-03-26T05:16:38Z	5.6 kB	14 kB	151.101.193.44
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.4 kB	8.9 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
my.rtmark.net	9054	2015-02-04T10:54:57Z	2023-03-25T18:50:35Z	423 B	678 B	139.45.195.8
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-26T05:32:55Z	340 B	963 B	172.64.155.188
www.hero-wars.com	unknown	2017-04-20T19:53:37Z	2023-03-24T20:03:30Z	7.1 kB	12 kB	23.73.2.84

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-19 08:05:55	medium	Client IP	23.36.77.10	ET ADWARE_PUP Win32/Adware.Agent.NSU CnC Activity M2

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	366 B	2023-03-26	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 060100a9ad5b8b14649c70503656cec4 fc8d00ba7d3cf76aa87d6d1493da5cb3165832af 8f83bd15b69b9818195ac17729581619a1429a2a2125d120c7af8122684196f5 Loading...

	connect.facebook.net/en_US/sdk.js?hash=857716a0f6fc5a34dcf21021a0818cbb	308 kB	2023-03-26	2023-03-26
Pretty URL connect.facebook.net/en_US/sdk.js?hash=857716a0f6fc5a34dcf21021a0818cbb IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:31:13 Times Seen10 Hash af0bfc0240af5d5f381d625f25903c12 16350e7abd41e0ff2280f1ba7871dc9cb71ca2f1 fc0bf876142e9c050c905978686bb5957f1c3b3cb74ec5f6a0082ad157eaef6b Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	482 B	2023-03-13	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:20:56 Last Seen2023-03-26 14:07:35 Times Seen109 Hash d639f1f5af1f3d0d94ac781e4ac2bd86 da3b68fe7810dd64604653dcd0259de73677768c 20f396d7fa08744acc00960d1a79e931b695e499f8757e9458b926fa80a8956d Loading...

	www.googleoptimize.com/optimize.js?id=GTM-NHMFT83	115 kB	2023-03-26	2023-03-26
Pretty URL www.googleoptimize.com/optimize.js?id=GTM-NHMFT83 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 10a71886d74051f225fcf816b4f65572 cf82839f692d79a804fb2b2237d26158766f04e2 e005e72923425ae79b5ba52336142620efc507b68fa4f797e5988ea3e3c8f4fd Loading...

	ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939	13 kB	2023-03-26	2023-03-26
Pretty URL ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939 IP 23.36.77.10 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 6df4b8d39856ae2a137199e5cef34c1c 65717fd185dfedb52348d5e2c0dc43cf00ad90b0 130cc71c08200f5952ce2904f46c6cfe784c2aba112901768251f699eb5c45d6 Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	1.3 kB	2023-03-26	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 34e1b60d435202ea1f6b8c2539d86d76 b2b73b84736dc0d748901b63373039ee777aa796 a7afe18666bd2b17332630fc7e8b14e3c66abbc8d6229c568e5191810e55b21a Loading...

	heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/main.js	238 kB	2023-03-26	2023-03-26
Pretty URL heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/main.js IP 23.36.76.200 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:23:18 Last Seen2023-03-26 14:07:35 Times Seen13 Hash a682cc781245f2cddc8a5c3a3666e0a7 f1a96e0448486049bd0a17cd459deb5e0cea498a e3201266f005ddd42e74bfb52dde9b9bb48a04e0bf4d4f82054f2c768685c3bc Loading...

	ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939	7.3 kB	2023-03-26	2023-03-26
Pretty URL ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939 IP 23.36.77.10 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash e44b15c0a1769a3401685d696d364e3c 068d85a716c22254ac6093d7614b3eb1e0c4910d 9f3dfa8eb2029bb67c7d3a3e288178cd67fbeac6e8872262dc91f6695b5852ad Loading...

	trc.taboola.com/1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.5 kB	2023-03-26	2023-03-26
Pretty URL trc.taboola.com/1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 151.101.193.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 4791d417e7ec0c9d977facab83d1b26a 124d64528712bfc4fdf318f763e1e1484e6f2d71 3ef7422a6c3d3dea4fe3ec4e6624f72792cbb039f94cbb5b6c4a69402a124ff8 Loading...

	heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js	22 kB	2023-03-14	2023-03-26
Pretty URL heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js IP 23.36.76.200 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:49:17 Last Seen2023-03-26 14:07:35 Times Seen104 Hash 0c3d4065f56b0db8a2af2ca887d25ad3 c047c0425229e125d93041647e72a6af022d4d64 4852c84c6d85583bc6ab92a6b63771a71d3e9320b73f6c53a582ad4f53d472a5 Loading...

	connect.facebook.net/signals/config/1867293949991560?v=2.9.99&r=stable	386 kB	2023-03-26	2023-03-26
Pretty URL connect.facebook.net/signals/config/1867293949991560?v=2.9.99&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 03:29:35 Last Seen2023-03-26 10:42:36 Times Seen50 Hash d4f4e21106d3503b676b68eacd85eb71 54461ef938405ea8dc90f29ed04d3332570d2cc5 e6fe6b43803ee6dcafa2b69aafff0cc344e777d41270eb5e9ef8c3dfe2b983a8 Loading...

	cdn.gsght.com/sdk.js	13 kB	2023-03-26	2023-03-26
Pretty URL cdn.gsght.com/sdk.js IP 54.230.111.57 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:42:23 Last Seen2023-03-26 14:07:35 Times Seen21 Hash 39e6a2d911f5664205a5da4244c313f5 928ed44126a8c51a8dc2de1146292753cd906352 e0f04dc6d48887bd109dde7ed30070597c58124890bc0dadb33bc7a7af54d45f Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	115 B	2023-03-26	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:23:18 Last Seen2023-03-26 14:07:35 Times Seen16 Hash f6bba9e803f17a1ee455a6ae15e562a3 c4a108c63cef681d2d799a10a4f158e5f4f4057f dc8aa628c6155dfc3ce88896a4cc58eef551a76e9188b9a210a3ec70099dc4ea Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NZL7Z2L	333 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NZL7Z2L IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 49b8089135f8d83f77b9483ea743033d 0c8ed939ebeba8ab11670d0a75592add7411c1bb 7194c5f9d050e415fb379c0e67dcb51b8456e41435ba2d1a6c0abe7e79247e12 Loading...

	heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/libs/get_browser.lib.js	5.6 kB	2023-03-13	2023-03-26
Pretty URL heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/libs/get_browser.lib.js IP 23.36.76.200 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:20:56 Last Seen2023-03-26 14:01:49 Times Seen93 Hash fdbe117991718927de32e27109838365 63e5237edd9a970920b75a6824614784841096ee 76f9a3c1a569ec9ac6d96056465b0b8d502bf53a270dcadc6b4ac13829b62910 Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	341 B	2023-03-13	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:20:56 Last Seen2023-03-26 14:07:35 Times Seen113 Hash 3eaaa3670a02db27198f73015a6ea8eb 8d8510ae1527fa502827beff4c1c1cfadd9f17e2 9d70cdaa4b35ee3110a6466c6c1fbb06a88cfabd50be14ae052fe6ba2556ad21 Loading...

	cdn.taboola.com/libtrc/unip/1171685/tfa.js	59 kB	2023-03-26	2023-03-26
Pretty URL cdn.taboola.com/libtrc/unip/1171685/tfa.js IP 151.101.193.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:08:20 Last Seen2023-03-26 10:31:51 Times Seen27 Hash b0e67cb5713d0490e0ebad8ee2c01383 8be14d8c95035f8a4295dec16e17690448fd88d5 befa05ba9a58a966b8d7c3382741f483399b82f133fbedf145c3b69fc97be33f Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	4.2 kB	2023-03-26	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash f65afe0fae07f1294ec902eb9ae045a8 ed572d8331c5ac2b132a7fe71e1c41670fa7b743 1437d6dacd0690474c0e6e716bf22c909b701797bd626728c723acc85940d66b Loading...

	www.googletagmanager.com/gtag/js?id=G-LFE4ZMGDNX&l=dataLayer&cx=c	234 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-LFE4ZMGDNX&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 6bd0a43319be8a2aaf41398cc2d2648b 6300e950841e1169ad325b2d2258c12d3715f949 bf676424057469b6e62afb13fb25558b8ef14dd3f16c17c22d761ff6cf153160 Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	565 B	2023-03-13	2023-03-26
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:20:56 Last Seen2023-03-26 14:07:35 Times Seen113 Hash b3261f71d3719fd8360597ec0d8de1d9 85295841f3580e2e8ae8237d880936f4b83e3f02 6e80f6013724f3daa1ba1302add5f36ffe8be5004d63dea30612a49aca797404 Loading...

	connect.facebook.net/en_US/sdk.js	3.1 kB	2023-03-26	2023-03-26
Pretty URL connect.facebook.net/en_US/sdk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 1b8973e049dccc3eea1c80c260336a7f 6422cdba0cd44cb323d4a6ed6eb4d90a390b5cc0 365df8a84da741a753f7b33dcb89da4ef80275efd76ace9b86af6af9f5f7bb6c Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-03-26	2023-03-29
Pretty URL connect.facebook.net/en_US/fbevents.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:49:43 Last Seen2023-03-29 21:45:24 Times Seen2372 Hash b3d7d1fd0029796048820b8f515d1d4f 242f2ec5485fb5048e53a87fd37b2e6eafb664b6 0a19fce040b8127f3e2e3ed609f7800153be329d6420b53295fb79a4f40012ec Loading...

	trc.taboola.com/1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i	2.5 kB	2023-03-26	2023-03-26
Pretty URL trc.taboola.com/1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i IP 151.101.193.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:27:19 Last Seen2023-03-26 10:27:19 Times Seen1 Hash 19767ef20fbe1e66ea0ebf4ec9e9ba76 501174974cbe4200bb8de614b33a98d1fbfdb393 1a38e4c530e7f4a9a589f1210d08da080a50868da4c61aebd6b5d81e8c18f3d6 Loading...

	www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285	48 B	2023-03-07	2024-04-25
Pretty URL www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 IP 23.73.2.84 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:27 Last Seen2024-04-25 20:30:22 Times Seen559 Hash 761148c4c7fb1c965c92da27d54eb6c3 5db2b031a0febd027b505b769d0785cccb78a5b7 c4d3736fcdfc3b507e9c19258df9eb0a3d9c7210d532f29f402d2c02a22767e0 Loading...

	s.go-mpulse.net/boomerang/9FGZW-YWK8B-M3WQS-BV3DJ-4WMX2	210 kB	2023-03-07	2024-04-16
Pretty URL s.go-mpulse.net/boomerang/9FGZW-YWK8B-M3WQS-BV3DJ-4WMX2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-04-16 19:18:01 Times Seen1340 Hash fa4c76a7fde62b18054cf7eb8e946012 b20150066a879d2b78dd3d4908f4acd148ee66f8 09ebd7f407439990aac227e70da23e1a819e8e30282928e324370805f480bec4 Loading...

HTTP Transactions (75)

URL IP Response Size

ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939

23.36.77.10

200 OK

9.2 kB

URL HTTP/1.1
ak.hetapus.com/afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939
IP
23.36.77.10:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12966)
Size
9.2 kB (9241 bytes)
Hash
a6d6f1b0300ae00f48463cf18b04674e
5174e7f0ee9ffeac8fe741329651f26049669ad7
45d4c9b549c1c733fc58c1103fb7b672a4e6da9e7dcb43a5c5d480829e48ed64

HTTP Headers

GET /afu.php?zoneid=5543285&ymid=36a17ik1na98pbla82&var=76939 HTTP/1.1
Host: ak.hetapus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf8
X-Trace-Id: 0c9106867402b823e729e0b68d509963
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
Expires: Sun, 19 Mar 2023 08:05:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 19 Mar 2023 08:05:51 GMT
Content-Length: 9241
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: OAID=d71b31c8cd2448ecab31128c3476d71a; expires=Mon, 18 Mar 2024 08:05:51 GMT; path=/
oaidts=1679213151; expires=Mon, 18 Mar 2024 08:05:51 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3513
Expires: Sun, 19 Mar 2023 09:04:24 GMT
Date: Sun, 19 Mar 2023 08:05:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9948
Expires: Sun, 19 Mar 2023 10:51:40 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Mar 2023 07:14:45 GMT
content-type: application/json
age: 3067
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3970
Expires: Sun, 19 Mar 2023 09:12:02 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: vQP5pSXbDyqu3IZXWo+4EMN3Sej9lqvbPUzobcyhAEvPJJ0u0tTesPld1DJiC2gKhwhoYm+Cng3GyD+bGhipuQ==
x-amz-request-id: KV0S13S9TSWS0HZT
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 19 Mar 2023 07:58:11 GMT
age: 461
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 08:05:52 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8fb23ef9a3326831ec0a54e1e4ff78d7
0bb5ec05a08bf7654261a0a61c52c943cb66e5f0
dd4e4d7adb7d3f4dcf503423e7884f2e7b2c051cd59c86aeb24a19e1d73651c9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD4E4D7ADB7D3F4DCF503423E7884F2E7B2C051CD59C86AEB24A19E1D73651C9"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3775
Expires: Sun, 19 Mar 2023 09:08:47 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive

my.rtmark.net/img.gif?f=merge&userId=d71b31c8cd2448ecab31128c3476d71a

139.45.195.8

200 OK

43 B

URL HTTP/2
my.rtmark.net/img.gif?f=merge&userId=d71b31c8cd2448ecab31128c3476d71a
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /img.gif?f=merge&userId=d71b31c8cd2448ecab31128c3476d71a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ak.hetapus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 08:05:52 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=d71b31c8cd2448ecab31128c3476d71a; expires=Mon, 18 Mar 2024 08:05:52 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ak.hetapus.com/?z=5543285&syncedCookie=true&rhd=false

23.36.77.10

302 Moved Temporarily

0 B

URL HTTP/1.1
ak.hetapus.com/?z=5543285&syncedCookie=true&rhd=false
IP
23.36.77.10:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	medium	ET ADWARE_PUP Win32/Adware.Agent.NSU CnC Activity M2

HTTP Headers

POST /?z=5543285&syncedCookie=true&rhd=false HTTP/1.1
Host: ak.hetapus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 530
Origin: http://ak.hetapus.com
Connection: keep-alive
Referer: http://ak.hetapus.com/afu.php?zoneid=5543285&var=5543285&rid=BPTR34PbLD67mf1dYD5JaA%3D%3D&rhd=false
Cookie: OAID=d71b31c8cd2448ecab31128c3476d71a; oaidts=1679213151
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
X-Trace-Id: 86b3874db7e7143f0a95130575169d78
Link: <https://nexters.g2afse.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Referrer-Policy: no-referrer
Location: https://nexters.g2afse.com/click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3
Access-Control-Allow-Origin: http://ak.hetapus.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Expires: Sun, 19 Mar 2023 08:05:52 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Set-Cookie: OAID=d71b31c8cd2448ecab31128c3476d71a; expires=Mon, 18 Mar 2024 08:05:52 GMT; path=/
oaidts=1679213151; expires=Mon, 18 Mar 2024 08:05:52 GMT; path=/
syncedCookie=true; expires=Sun, 26 Mar 2023 08:05:52 GMT; path=/

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
c00a46f98275c99684990ce9869cc72b
97b16a393c1a123690e5ea4e9b5c964692732d8d
3a1c7dcecb9707dfe5e1cb5f46be7d3c436b49f352959e717f02bb94d045de4d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 08:05:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 14:09:40 GMT
Expires: Thu, 23 Mar 2023 14:09:39 GMT
Etag: "97b16a393c1a123690e5ea4e9b5c964692732d8d"
Cache-Control: max-age=366826,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aa43679fb2db518-OSL

ocsp.digicert.com/

192.229.221.95

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
6176d06cf2f12f66d2db06e231312422
bc0d16878b9b77575cca82f97419c46313871fff
a7dcb41ce76db93facd438d4a24937c3394cad35712768299ccb51c5345d6f3a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3746
Cache-Control: max-age=143167
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:52 GMT
Etag: "64163ffd-13a"
Expires: Mon, 20 Mar 2023 23:51:59 GMT
Last-Modified: Sat, 18 Mar 2023 22:49:33 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 314

nexters.g2afse.com/click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3

34.91.91.144

302 Found

0 B

URL HTTP/2
nexters.g2afse.com/click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3
IP
34.91.91.144:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?pid=5&offer_id=10&sub1=5543285&sub8=661230485049189007&rdk=rk3 HTTP/1.1
Host: nexters.g2afse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: afclick=6416c25148e70a00019c14ad; afoffers={"10":1679213137}
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sun, 19 Mar 2023 08:05:52 GMT
content-length: 0
location: https://www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=6416c260e79eb00001a338ec; expires=Mon, 18 Mar 2024 08:05:52 GMT; secure; SameSite=None
afoffers={"10":1679213152}; expires=Mon, 18 Mar 2024 08:05:52 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Mar 2023 07:17:21 GMT
age: 2911
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285

23.73.2.84

200 OK

4.2 kB

URL HTTP/2
www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
IP
23.73.2.84:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4281)
Size
4.2 kB (4216 bytes)
Hash
16e748f9fd7308c142645f7ecbb9a411
3e2ef3238cb8de364c115b9ce97f7f8712dfcae8
a48ba915bbf0c2d59b0986787bff07cd9bd9dec31695486f8ed367b7d837a56d

HTTP Headers

GET /?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285 HTTP/1.1
Host: www.hero-wars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InFKM01JZ1p4Y3ZCR0J2ZFlKVWZ6M0E9PSIsInZhbHVlIjoiT3BKZitPKy9YY1pWRTBWK0NZdjNsaVBkdkp3TjN0VUVMQ2IwbHg2RUo4TGVTMkdqOFlxNkQ5bnc0R1VFRzlsbyIsIm1hYyI6Ijc5MzVhMjQ4OTc3N2Y4MDYyNWU2YjlmNGFhNGZhMjEwODQ5YmNjM2EwMzUyMTRjMTMzNWExYmNlZTcwYzNiMmEiLCJ0YWciOiIifQ%3D%3D; hero_wars_session=eyJpdiI6IlJUUXN0UU9lQy9WUm13a1p0dWg4RVE9PSIsInZhbHVlIjoiT3RwcVl1N2tEQVNGaDJFamNxWVVlTVRnclN0NGZIcGV1a1F1MFpGS1R5ZTFkd3NidTJHZFhJUkM3Q3AraTlFaiIsIm1hYyI6IjBlY2E0MDJmNTAwNThmMDZlNDVlMmFlYjk1OTY5ZjE1ZmQyMGZlNmI0ZmYzNjY2MGI2YzJmMjRiOTU3NjU1MjkiLCJ0YWciOiIifQ%3D%3D; AKA_A2=A; ak_bmsc=BEAEF172F652C7677CA5F56308EADDB3~000000000000000000000000000000~YAAQSQFJF59M7ryGAQAACxLn+BNjKU8cB1kc5dq7lB4lE+N4jxFAkhSqRROvTjQUA+p3slELWzaZp2PO8VlJuRBJCGT1ewZK3D4s5EfMib1yKZorQVCYowxC8n/EcjKBSweRBuXOB3BY12JIWH3p0ZhbFlDwGYITbuyWC8MsogarXt7hWoaoOCNOpetMMAdn2XSW3NNE/AL30vtB+tasG6/Vm08g9o81F1370t5cME5Sa+w2HiNJKFAYtnl7WF+0rIapBcFjQ6Ga4ynHBH0PrsRC1g9gq7H0YZbVtGkrIjOLiv2rbsvBUrnfvWoOighVye60qK7cHcbdh1sy+8/4MAZ21brserOXLAjSk7fASCE0az6WQYNQtFohz70MKr1YSA2yVs3tB6yru2Nj; _gcl_au=1.1.319014930.1679213142; RT="z=1&dm=www.hero-wars.com&si=32c426ad-c467-4b54-bd5a-9b1e29cddaf6&ss=lff45bz8&sl=1&tt=23u&rl=1&ld=23w&ul=6lz&hd=6q8"; _fbp=fb.1.1679213142831.590618137; bm_sv=C1F80406F2092DD9673239801868A316~YAAQSQFJF6BM7ryGAQAAdRrn+BOMzT/cpfe41ejtq0ejesUwEIvNmzQKlJrJq9wB1D3vLgHcZns7v9tyV5mZ72ivrUxjFyi4YHpdOJubu6rSeXo1BMwT+awyaaDnDL5xfzFqi2oEk8euHyo1beUPKfDcM0GFvCvJkv4SHRcx9bLuWCLFZ0XOJXra+KrCC9mL+9nDDZw3MNz83fN1MbmPO/00NYANFiL5IAc6dnbRrF9an40PCEa7SajzuYyJCoaKTHYo~1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS,DELETE,PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range,x-auth-application-id,x-auth-network-ident,x-auth-player-id,x-auth-session-id,x-auth-session-init,x-auth-session-key,x-auth-signature,x-auth-token,x-auth-user-id,x-env-referrer,x-request-id,x-requested-with,x-server-time,x-env-library-version,x-auth-network-sign,authorization
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
expires: Sun, 19 Mar 2023 08:05:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:05:52 GMT
content-length: 4216
set-cookie: XSRF-TOKEN=eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:52 GMT; Max-Age=5184000; path=/; secure; samesite=lax
hero_wars_session=eyJpdiI6IkVQSFZRc3VjeWI3TlpuOGNHUmpEZnc9PSIsInZhbHVlIjoiT1lNL2M0VDI2NG5ISnlmOThNL3ZISXhVTmpseGVrYWZ5a0twb3VkeTV5RWdTMW51SHBLK2RQQWpsSFhMVDFNNiIsIm1hYyI6IjJkN2UxNTJiNGU0NjY2YWY5YzQ2N2I1ZjM1NzQ0ZDNjMjBjYTVlMjRhOTE4YWQ5ZTc3NzAxYmU0NTViZGI3YWQiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:52 GMT; Max-Age=5184000; path=/; secure; httponly; samesite=lax
bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzPMCNqGAQAAQkrn+BMOxLyHe7GtsZfRiAuraSLTAl0EUkpSlI6vrTQ1UuAsCjc5YzRtFt8lRzkUNQBmGivAaFqU24VaCf4DeU0DxYAEcbDsppIYdU9LnpJqT6d8gvUrM8qyMB3GRSd7O3FGDCguTuwnaOuQRrdZNtaGSJ+n/LA9kjLG+dMgIjoTQIgMxY5n8mIGFTxenoGMZHoX3xBE80UPMEEWTe00K7nqDD7tGgqH9TZo1cdehRP06wwC~1; Domain=.hero-wars.com; Path=/; Expires=Sun, 19 Mar 2023 10:05:40 GMT; Max-Age=7188; Secure
server-timing: edge; dur=1, origin; dur=173, cdn-cache; desc=MISS, ak_p; desc="466448_390660436_43196279_17393_8333_10_0";dur=1
link: <https://heroesweb-a.akamaihd.net>;rel="preconnect",<https://heroesru-a.akamaihd.net>;rel="preconnect",<https://fonts.gstatic.com>;rel="preconnect",<https://connect.facebook.net>;rel="preconnect",<https://www.googletagmanager.com>;rel="preconnect",<https://cdn.onesignal.com>;rel="preconnect",<https://cdn.gsght.com>;rel="preconnect",<https://cdn.taboola.com>;rel="preconnect"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3566
Expires: Sun, 19 Mar 2023 09:05:18 GMT
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/libs/get_browser.lib.js

23.36.76.200

200 OK

1.3 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/libs/get_browser.lib.js
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (5580)
Size
1.3 kB (1338 bytes)
Hash
241b34c9666fd7ec55e55633a7517b7d
70fe7d9dee0f2a730d560df126d7b27b459f9ee7
08f803ff75e113c9d112b4c7d65da6d5d9c094ac5f59dcca3c37a3a17190317a

HTTP Headers

GET /i/hw-web/v2/366294/js/libs/get_browser.lib.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: W/"64130384-15cd"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 1338
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js

23.36.76.200

200 OK

8.8 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (21928), with no line terminators
Size
8.8 kB (8803 bytes)
Hash
6ac6038e3230cf43ee650cb48cb3a5aa
679f889b20b7ddd067356f5e2d189560d7654b87
ed4b34a84b40bd9cbaa9581d1fcae0fefd9a7462d3155ea5c3a4fffc8c56d639

HTTP Headers

GET /i/hw-web/v2/366294/js/locale/en/autoGenerateTranslate.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: W/"64130384-55a8"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 8803
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css

23.36.76.200

200 OK

16 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (63928), with no line terminators
Size
16 kB (16112 bytes)
Hash
6815a70e1bb0b6023981102caf3eaec4
29202444fd35f4d33f84e09864e3a535ccd39547
36298523ad1a1d3e086b40d1ebd31bd6cc07016190860847136f572a04e83f2d

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/style.css HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: W/"6413037f-f9b8"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 16112
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/css/landings.css

23.36.76.200

200 OK

34 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/css/landings.css
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (30394)
Size
34 kB (33733 bytes)
Hash
c28ae5ff656ecfc5b4093c66823a6be8
315d35d08bfee82b26f14d24943cbe64c39090d6
6829044d1be4d0475d33f650264dd1fb2abc48efebec2b74e98675659bc43444

HTTP Headers

GET /i/hw-web/v2/366294/css/landings.css HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 16 Mar 2023 11:54:35 GMT
ETag: W/"6413037b-47980"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 33733
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/landingSocials.js

23.36.76.200

200 OK

112 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/js/landingSocials.js
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
112 kB (112307 bytes)
Hash
f6754ed0a71187564dbcc57045e7eeac
5ef4b8a2faf795098793f68595995c995b26262e
c2f4da84bcad4fd0a00a2fba8cee1509c78a41a86648bddd145af6c1ab205a96

HTTP Headers

GET /i/hw-web/v2/366294/js/landingSocials.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: W/"64130384-4c4e1"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 112307
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/main.js

23.36.76.200

200 OK

93 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/main.js
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
93 kB (92932 bytes)
Hash
75e6cebec5a657a4cddb470b483a7188
14cb470c8e876f5850e850103dd14d64626b7de6
3e505eeac9a691047262e58e905a7c1dae21f896caeb90159f5da0e9b2ab4dc7

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/main.js HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: W/"6413037f-3a1b0"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 92932
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:52 GMT
Connection: keep-alive
Vary: Accept-Encoding

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
db7a51fe853d91ea7990bb3c41ba3cb4
f416e7ea87e2ac443e81afac853a3d05071d88e4
a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
37cad346bf9c7582600ca9e3cd8f9252
9021fcfa670921097bb9e71b10e07e8ae42443ae
fd83195c6e32d99ad1c76db3d4431ee060bd077ac738f090851138c5a8986340

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
db7a51fe853d91ea7990bb3c41ba3cb4
f416e7ea87e2ac443e81afac853a3d05071d88e4
a928e7cde6f4fc75660068bfb5e8ac2270f43f8ae58ccb8f4f63a3ca6a376141

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

44.228.230.125

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.228.230.125:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2npyGH3+Uogsyq21IWBpKw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LTzhhXea+q9PPF0ujQO+/a1LErQ=

cdn.gsght.com/sdk.js

54.230.111.57

200 OK

55 kB

URL HTTP/2
cdn.gsght.com/sdk.js
IP
54.230.111.57:0
ASN
#16509 AMAZON-02

File type
data
Size
55 kB (54625 bytes)
Hash
3045aca01d1884df60e1a9ef53118381
efde8a6fd71a640f20e83a0ef34528d90cca86ba
35a0f04baca57bfc5c23a2bf7b0648d683211d23cc1af7ba2b6315fafd67be06

HTTP Headers

GET /sdk.js HTTP/1.1
Host: cdn.gsght.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 06 Mar 2023 11:09:30 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 19 Mar 2023 07:39:52 GMT
cache-control: max-age=3600
etag: W/"39e6a2d911f5664205a5da4244c313f5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BRtF9HRosg7AI8yp483ZBiP6fK43MrgVPQqbHsEnZHc11EvdaD5LgQ==
age: 1561
X-Firefox-Spdy: h2

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-bold-66ab29.ttf

23.36.76.200

200 OK

228 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-bold-66ab29.ttf
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2012 Google Inc. All Rights Reserved.Noto SansBoldMonotype Imaging - Noto Sans BoldNot\012- data
Size
228 kB (227723 bytes)
Hash
4f92731a93b3c62c3d38035d97c8bb8e
ee8ba0c35ac5e610fb4fcd046929068947cb6b28
fa36342639b455643c1c37b53d89dd40a90804d96755decf62ed2522d221007a

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-bold-66ab29.ttf HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/x-custom
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: W/"64130380-6153c"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 227723
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-regular-fa1162.ttf

23.36.76.200

200 OK

228 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-regular-fa1162.ttf
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2012 Google Inc. All Rights Reserved.Noto SansRegularMonotype Imaging - Noto SansVersi\012- data
Size
228 kB (228486 bytes)
Hash
a14ea0a3f23442cebc5f2f8eb5bc0455
afcc7e8b21ffa85d6ac164387978ca9cfaa43dd6
6e2e869479585e21fada872fbd1bd6ca3bd79c79ab1b166e6420176ba1aa21a0

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/noto-sans-regular-fa1162.ttf HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/x-custom
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: W/"64130380-61678"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 228486
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/apple-touch-icon-180x180.png

23.36.76.200

200 OK

56 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/apple-touch-icon-180x180.png
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
56 kB (55646 bytes)
Hash
3fe4985b592380ae38f1c893b38e2313
8360179cf29132c4e7546efb2f73f395d7229add
d07470888d14cfcd84ae639fb9edbb0573a7f5558f963ec381a10acd4e7a838f

HTTP Headers

GET /i/hw-web/v2/366294/images/pwa/apple-touch-icon-180x180.png HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 55646
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: "64130384-d95e"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/favicon-16x16.png

23.36.76.200

200 OK

246 B

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/pwa/favicon-16x16.png
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
246 B (246 bytes)
Hash
092dd0cc004db08ff98265037350b81a
bbbdf08c3f279ea318fe308202ca65a74bc1c001
c0723f5312022bead9fff56a976c8be0915470be2ea0f441d785de1632ceec73

HTTP Headers

GET /i/hw-web/v2/366294/images/pwa/favicon-16x16.png HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 246
Last-Modified: Thu, 16 Mar 2023 11:54:44 GMT
ETag: "64130384-f6"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:53 GMT
Connection: keep-alive

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
14632d58f00907c27bb986ee95790c8f
b16eeaee45cf727e5e17588887c4030645e05c49
682c43f278df56045a30928216563e4686d1dbc7523f5312b5c2bbf26394f698

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5270
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:53 GMT
Etag: "64167f0e-1d7"
Last-Modified: Sun, 19 Mar 2023 06:38:03 GMT
Server: ECAcc (ska/F757)
X-Cache: HIT
Content-Length: 471

cdn.taboola.com/libtrc/unip/1171685/tfa.js

151.101.193.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1171685/tfa.js
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (59030)
Size
18 kB (18170 bytes)
Hash
b323933ba6ed85ba7f2b9fe23f58915e
ae013dd9dddbc2f44b47adcaf02a07ae0929e0f4
2c4a0991e5d11b11cbafe8d744eda0545e799f7e257d26919f3edb582e7c0142

HTTP Headers

GET /libtrc/unip/1171685/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: VWGKAHs0ZXG4WMH/dyz6IR0tomgvjGbhYTH+/wtnI7BVw9JBC+zYX3F3WEldou/0B9pzEagEh4w=
x-amz-request-id: AZ48ES2T695J89ZX
x-amz-replication-status: PENDING
last-modified: Sun, 12 Mar 2023 11:17:58 GMT
etag: "b0e67cb5713d0490e0ebad8ee2c01383"
x-amz-server-side-encryption: AES256
x-amz-version-id: qHYaCrFWamK51_WSTXEuUVmLlvZpoad.
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
age: 37
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1679213154.554129,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 47
access-control-allow-origin: *
content-length: 18170
X-Firefox-Spdy: h2

trc.taboola.com/1171685/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7260&ssd=2&scd=0

151.101.193.44

204 No Content

0 B

URL HTTP/2
trc.taboola.com/1171685/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7260&ssd=2&scd=0
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1171685/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7260&ssd=2&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.817526,VS0,VE88
x-vcl-time-ms: 88
X-Firefox-Spdy: h2

trc.taboola.com/1123625/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7377&ssd=2&scd=0

151.101.193.44

204 No Content

0 B

URL HTTP/2
trc.taboola.com/1123625/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7377&ssd=2&scd=0
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1123625/log/3/unip?en=view_content&tim=1679213156951&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285&tos=7377&ssd=2&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:54 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.932591,VS0,VE93
x-vcl-time-ms: 93
X-Firefox-Spdy: h2

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/bg-3d32c1.svg

23.36.76.200

200 OK

3.5 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/bg-3d32c1.svg
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (786)
Size
3.5 kB (3470 bytes)
Hash
4212f0df70ce4cda261cbe08658421e5
b1c4d9f327a36cbc4d5864455365f55c99442ba6
6072eb1586a8d300060b02e127ac8c8421e5ccbc3cb3c070e58b43174f746ccd

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/bg-3d32c1.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1fa3"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 3470
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/towers-d5ffb6.svg

23.36.76.200

200 OK

10 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/towers-d5ffb6.svg
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2326)
Size
10 kB (10357 bytes)
Hash
3e7937e41a27bc82e75a7eeaa6a3d397
a7701cec7f28b58dbbda2f1418ce064d9967a25d
f6cdc47617cf2578a6e1ae2277d33bb11903de00ebb3516a209427c09be8e259

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/towers-d5ffb6.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-7e1b"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 10357
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ginger-b03d52b.webp

23.36.76.200

200 OK

14 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ginger-b03d52b.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
14 kB (13862 bytes)
Hash
2e8663dd4215f2d3d4bb4271c73ddc37
bffd24e9e881f90e277efad99fdede10a40cd7f5
283856d09211de08297a75cc12f45aea9b694a0993b15e278bcd1b903b72de1d

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/ginger-b03d52b.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 13862
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-3626"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

trc.taboola.com/1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i

151.101.193.44

200 OK

11 kB

URL HTTP/2
trc.taboola.com/1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type
data
Size
11 kB (11425 bytes)
Hash
6ce19b5aada667b4a9939aa633fa7efd
43627a7976a5d63d1006e30c10aa19ff73cf7eef
0d7447ab88d6eee251e71d37f6cacb3d65bf99a0343059be7bac308c53c89efb

HTTP Headers

GET /1171685/trc/3/json?tim=1679213156941&data=%7B%22id%22%3A839%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156940%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7113%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.699849,VS0,VE100
vary: Accept-Encoding
x-vcl-time-ms: 100
X-Firefox-Spdy: h2

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/black_knight-5a362d5.webp

23.36.76.200

200 OK

9.3 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/black_knight-5a362d5.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
9.3 kB (9346 bytes)
Hash
287288105402330b2d10a358c43a042a
a82dd1e5c53764405fb91ed7ab6cd491d5151be5
7cde0f58459eb081f94bef63b674ca3a931ea0629e0877452add1a160685c0db

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/black_knight-5a362d5.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 9346
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2482"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/logo-c94394.svg

23.36.76.200

200 OK

6.2 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/logo-c94394.svg
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5881)
Size
6.2 kB (6238 bytes)
Hash
a48f23affde0dc75283fdf148f9a2184
033b3aeb55019260ad5df68dcc4a5cd9bc743695
11f597479ffa36d611fd2b0ba9debdc56f44ea25265f995c028f333c8bc5e1b7

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/logo-c94394.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-48bd"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 6238
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal-38d8eab.webp

23.36.76.200

200 OK

187 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal-38d8eab.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
187 kB (186656 bytes)
Hash
563078b70c1de7e080903d04c6fd60be
478a7c7f4b658d9f38cedfa8cbc566c40e6f340b
21e44734099b642f5ba52eb01be88947322565151c9322c2554051c8caa55e4d

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/gal-38d8eab.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 186656
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2d920"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/text-frame-667c04.svg

23.36.76.200

200 OK

1.8 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/text-frame-667c04.svg
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2749)
Size
1.8 kB (1761 bytes)
Hash
191694fd8e857c3f89fec0904d354c1e
222d20c0dc395850770ff1c2aad05d55734acca7
de0d81f3b1b4f8bf753091329222a8190be10b4d27d4e7bc2b9bdc3541deb28d

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/text-frame-667c04.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1156"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 1761
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/check_mark-05cddc.png

23.36.76.200

200 OK

6.9 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/check_mark-05cddc.png
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 90 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
6.9 kB (6932 bytes)
Hash
f276701de6eaa741bf6ba261c4581c02
0bad0bbea2b6790a62d8a5047803f1ac994edeee
8b96d4c630c5ad729dbecb69bcd75912b8544e2e3f631c077e0b1bdae80d095b

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/check_mark-05cddc.png HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 6932
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1b14"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/thea_large-3af0725.webp

23.36.76.200

200 OK

175 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/thea_large-3af0725.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
175 kB (174986 bytes)
Hash
cec52ee5871de39dd311756bad2cdb80
662edec35dfd483efd731a50dab7451c212ed3c6
c5433373aa4cb0efaeaba382a06922e11f6365e379a0ddde7e7ebd80576f8981

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/thea_large-3af0725.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 174986
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2ab8a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/1_large-5b92196.webp

23.36.76.200

200 OK

234 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/1_large-5b92196.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
234 kB (233546 bytes)
Hash
1aedb0df39b3eedd38393450a0747865
da2910bf1cd762ddde5649527b82099af64b97bb
03deb04764a65535f3130e57e9a0d437d190a9c8c2a7facf72951bac4da7b674

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/1_large-5b92196.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 233546
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: "6413037f-3904a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cinmao_large-4704e4b.webp

23.36.76.200

200 OK

178 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cinmao_large-4704e4b.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
178 kB (178278 bytes)
Hash
2c7060a60e5e4ed916137f9390ef4d65
5e662c26d008c2a645e37999aeeda9000db46ffe
9b27eaa99a093bfb301fae6727f1f6bf67f93e125fe8b1709d17419aacab7bf1

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/cinmao_large-4704e4b.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 178278
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-2b866"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/helios_large-bb24fba.webp

23.36.76.200

200 OK

219 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/helios_large-bb24fba.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
219 kB (219148 bytes)
Hash
1e812fbd393d088f06237f6500b3314b
dac10a414ec13f0621dcc7372369a59701a85455
f9b59774f8f8b69305342b14184fd68d2ee1e651599f9e024e1874e740f058d2

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/helios_large-bb24fba.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 219148
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-3580c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal_large-51115d2.webp

23.36.76.200

200 OK

275 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/gal_large-51115d2.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
275 kB (274596 bytes)
Hash
fcaf8f062344de37ea56e369a10a7374
8e81c0fe008e7748899caa04922db54b78123faa
138c0b2399a27d22b0af506183a793f8f80ceebdc9d52a7936d8fcc7e8bb9e3b

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/gal_large-51115d2.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 274596
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-430a4"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cleaver_large-35d8649.webp

23.36.76.200

200 OK

213 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/cleaver_large-35d8649.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
213 kB (212616 bytes)
Hash
3cdccf9b885eb762b5d60bf123154eeb
d0302b37bb193e4479c2840b06a5f6ce965274e7
798d325f0f2d7409062d16019aac020a27ffb54d4502d88e91cbd80eb4dc4dcd

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/cleaver_large-35d8649.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 212616
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-33e88"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ismail_large-022d9a8.webp

23.36.76.200

200 OK

116 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/ismail_large-022d9a8.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
116 kB (116420 bytes)
Hash
1fba3de362e4336525ce2daf21e64ece
537f26d980f369c8d6a088b7215f72f64d0b4e79
21df1a425625fb5419a5d5ecaa95935364ff6ae35c4cc92fb68112b97e76be9f

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/ismail_large-022d9a8.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 116420
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-1c6c4"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/tobi-17b4e6.woff

23.36.76.200

200 OK

32 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/tobi-17b4e6.woff
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 32076, version 0.0\012- data
Size
32 kB (32076 bytes)
Hash
0121ac0434dc61d1a39ab964b45d8a0c
5f33adbf1b1f7b8616c2371a8c404c32ea8492ce
b58bf22626ee2712530564846babe7ca1be5d2520d623c0e59e7dc6d68d3b4ff

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/tobi-17b4e6.woff HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff
Content-Length: 32076
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-7d4c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/artemis_large-20e6564.webp

23.36.76.200

200 OK

155 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/artemis_large-20e6564.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
155 kB (154874 bytes)
Hash
4e74542ff46ff148dd899bc13512cb6e
fcc811344e008d4a68d954404ebe42828a7e0463
992c7fbffc6e4b69081c39c65740d08ce861ceeca8dbd61a629945814c2fbf0e

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/artemis_large-20e6564.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 154874
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-25cfa"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/daredevil_large-6b50e11.webp

23.36.76.200

200 OK

76 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/daredevil_large-6b50e11.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
76 kB (76282 bytes)
Hash
b0c912b784918fdbc128cb4db8ac580a
07060b09950a5a67be5dbb953c08f66c8090035e
72dd4a68d0615e155ef06cac6c7a906156026b0dc8e32b8ecd5921a71c0750ae

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/daredevil_large-6b50e11.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 76282
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-129fa"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/portal-20a24ff.webp

23.36.76.200

200 OK

410 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/portal-20a24ff.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
410 kB (410290 bytes)
Hash
582a0be1aaf126ebf9439dc199a2685d
7990a4ac6d5f04886731c277f6b0e529734c6bb4
ada522ce953e7f6d0d0321e5ec24869fe7a3a809d28d959047a943d9537c5c96

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/portal-20a24ff.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 410290
Last-Modified: Thu, 16 Mar 2023 11:54:40 GMT
ETag: "64130380-642b2"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/game-adaptive/icons-sprite.svg

23.36.76.200

200 OK

20 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/images/game-adaptive/icons-sprite.svg
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3738)
Size
20 kB (19547 bytes)
Hash
2d94601cf1490657585236db1c1c7176
dc485bfffab1f240c578b9a87b99a938add3db27
0c83f0e1906a34461bf8211c5c8a5ba0b408312ca7e910a05dbdffa781389b20

HTTP Headers

GET /i/hw-web/v2/366294/images/game-adaptive/icons-sprite.svg HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/svg+xml
Last-Modified: Thu, 16 Mar 2023 11:54:43 GMT
ETag: "64130383-ff49"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 19547
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/2_large-3aa29a3.webp

23.36.76.200

200 OK

136 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/2_large-3aa29a3.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
136 kB (135554 bytes)
Hash
1baa259f7705502868c022e297195be7
2c7c8eb203c139f3f33cb10c377bd8e1d1833320
ae7fba6a152c3b81bcc1b2f95edb38800d74f412450c5ed347e9c82825e31574

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/2_large-3aa29a3.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 135554
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: "6413037f-21182"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/11_large-fec0567.webp

23.36.76.200

200 OK

379 kB

URL HTTP/1.1
heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/assets/11_large-fec0567.webp
IP
23.36.76.200:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x700, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
379 kB (379146 bytes)
Hash
da4103aebf8350bc0aa1a268c73aec43
f85ac206811a5cca56abb629604a900fc0552d84
aff6afe4fad0b53fd3d483a0344297d590780da7a10e1568321f0dda19673a60

HTTP Headers

GET /i/hw-web/v2/366294/external_landings/infolong4/assets/11_large-fec0567.webp HTTP/1.1
Host: heroesweb-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heroesweb-a.akamaihd.net/i/hw-web/v2/366294/external_landings/infolong4/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/webp
Content-Length: 379146
Last-Modified: Thu, 16 Mar 2023 11:54:39 GMT
ETag: "6413037f-5c90a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

www.hero-wars.com/log/cookie_acceptance

23.73.2.84

204 No Content

0 B

URL HTTP/2
www.hero-wars.com/log/cookie_acceptance
IP
23.73.2.84:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /log/cookie_acceptance HTTP/1.1
Host: www.hero-wars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ==
Content-Length: 86
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
Cookie: XSRF-TOKEN=eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ%3D%3D; hero_wars_session=eyJpdiI6IkVQSFZRc3VjeWI3TlpuOGNHUmpEZnc9PSIsInZhbHVlIjoiT1lNL2M0VDI2NG5ISnlmOThNL3ZISXhVTmpseGVrYWZ5a0twb3VkeTV5RWdTMW51SHBLK2RQQWpsSFhMVDFNNiIsIm1hYyI6IjJkN2UxNTJiNGU0NjY2YWY5YzQ2N2I1ZjM1NzQ0ZDNjMjBjYTVlMjRhOTE4YWQ5ZTc3NzAxYmU0NTViZGI3YWQiLCJ0YWciOiIifQ%3D%3D; AKA_A2=A; ak_bmsc=BEAEF172F652C7677CA5F56308EADDB3~000000000000000000000000000000~YAAQSQFJF59M7ryGAQAACxLn+BNjKU8cB1kc5dq7lB4lE+N4jxFAkhSqRROvTjQUA+p3slELWzaZp2PO8VlJuRBJCGT1ewZK3D4s5EfMib1yKZorQVCYowxC8n/EcjKBSweRBuXOB3BY12JIWH3p0ZhbFlDwGYITbuyWC8MsogarXt7hWoaoOCNOpetMMAdn2XSW3NNE/AL30vtB+tasG6/Vm08g9o81F1370t5cME5Sa+w2HiNJKFAYtnl7WF+0rIapBcFjQ6Ga4ynHBH0PrsRC1g9gq7H0YZbVtGkrIjOLiv2rbsvBUrnfvWoOighVye60qK7cHcbdh1sy+8/4MAZ21brserOXLAjSk7fASCE0az6WQYNQtFohz70MKr1YSA2yVs3tB6yru2Nj; _gcl_au=1.1.319014930.1679213142; RT="z=1&dm=www.hero-wars.com&si=32c426ad-c467-4b54-bd5a-9b1e29cddaf6&ss=lff45bz8&sl=1&tt=23u&rl=1"; _fbp=fb.1.1679213142831.590618137; bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzPMCNqGAQAAQkrn+BMOxLyHe7GtsZfRiAuraSLTAl0EUkpSlI6vrTQ1UuAsCjc5YzRtFt8lRzkUNQBmGivAaFqU24VaCf4DeU0DxYAEcbDsppIYdU9LnpJqT6d8gvUrM8qyMB3GRSd7O3FGDCguTuwnaOuQRrdZNtaGSJ+n/LA9kjLG+dMgIjoTQIgMxY5n8mIGFTxenoGMZHoX3xBE80UPMEEWTe00K7nqDD7tGgqH9TZo1cdehRP06wwC~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS,DELETE,PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range,x-auth-application-id,x-auth-network-ident,x-auth-player-id,x-auth-session-id,x-auth-session-init,x-auth-session-key,x-auth-signature,x-auth-token,x-auth-user-id,x-env-referrer,x-request-id,x-requested-with,x-server-time,x-env-library-version,x-auth-network-sign,authorization
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sun, 19 Mar 2023 08:05:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:05:54 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6InNOVUo5L1c0ZHludFRkdTNpTm11cVE9PSIsInZhbHVlIjoiNHFLY3BsRjNITnFXc2JhTDMxVGxpUGhUYmtVNXRmQml5UXVuNjdsa0R4U1V2M3Z5UUhkNmtTSUk1cURLT2dFayIsIm1hYyI6IjJiMzhlOTJkMzI4M2ViNDE5YjRiOGY4NGYzNmM0MGY3ZWU4YTI3M2I0OTc3NzM4MWMwNGQ2N2M4YWE1M2FjMjgiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; samesite=lax
hero_wars_session=eyJpdiI6ImwrUCtFbWsrNTU0UzE4SmFTMnk4YWc9PSIsInZhbHVlIjoiNUtpS2hWTDA3M3gzajd5eE1QZi9YSFg4U3lpRmk5cGROV25QK2p1QlZ4Qkk4SUdUVGI1cUZIWmNoWWpEVTA5SiIsIm1hYyI6IjFiNmYyZTAxODMzN2JmNWY4NjFlNjAyMjM0OWNjMzA5NTE5OWVjNWVlM2NiMDk3NDNjNDA4ZWQ0NjU5Y2JlZGUiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; httponly; samesite=lax
server-timing: edge; dur=4, origin; dur=57, cdn-cache; desc=MISS, ak_p; desc="466448_390660436_43196458_6104_3851_10_0";dur=1
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
657e225fbd809f16e51b4997847e5710
28b88c58a006257deb72f43ea236d0a513081847
f37f7d971e2f36b0d260965c8ab09863cffc87cfc3d561c40c3d72c9c207eae5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 19 Mar 2023 08:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.hero-wars.com/landing_loaded

23.73.2.84

200 OK

44 B

URL HTTP/2
www.hero-wars.com/landing_loaded
IP
23.73.2.84:0
ASN
#20940 Akamai International B.V.

File type
JSON data\012- , ASCII text, with no line terminators
Size
44 B (44 bytes)
Hash
0abe67293af335f2189a2ba8fd737da5
08d0e71b7625d4364e9f01eb583343ca1c6d0f8f
fd2f79eac6a346cf9255f3c8ac7157ef0d70686332a0d07881f4a58c79a8dfa6

HTTP Headers

POST /landing_loaded HTTP/1.1
Host: www.hero-wars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hero-wars.com/?l=infolong4&m=registration&nx_source=adx_PropellerAds.Hero+Wars+Web+PropellerAds+Infolong4.pt-5543285.cid-Hero+Wars+Web+PropellerAds+Infolong4&aff_click=6416c260e79eb00001a338ec&pid=5&custom2=PropellerAds&custom3=Hero+Wars+Web+PropellerAds+Infolong4&custom4=5543285
Content-Type: application/json
X-CSRF-Token: Gxv1jiPcfm0azeZIJVrHMokmUxhnF2fEcMhQoBTa
Origin: https://www.hero-wars.com
Content-Length: 317
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjQreTNqdkltRTMxSjBjaVpJYXQ4K3c9PSIsInZhbHVlIjoibExpZmVlSjVBNGs0ak9hbUZPSytMSmcrNzhIbXVyeVozdWQvUFBtVDNNV2U0b0xzZS85anRXRmxUaTMzZHdoVCIsIm1hYyI6IjQ2MWJmZGEyYmVmMGRjNGJmOGJmNDEyNDg0YWUwNDYzZDA5ZWQ4ZTFmZjc0ZDExMmU1MTlmYmIxMzkzZDIyYjciLCJ0YWciOiIifQ%3D%3D; hero_wars_session=eyJpdiI6IkVQSFZRc3VjeWI3TlpuOGNHUmpEZnc9PSIsInZhbHVlIjoiT1lNL2M0VDI2NG5ISnlmOThNL3ZISXhVTmpseGVrYWZ5a0twb3VkeTV5RWdTMW51SHBLK2RQQWpsSFhMVDFNNiIsIm1hYyI6IjJkN2UxNTJiNGU0NjY2YWY5YzQ2N2I1ZjM1NzQ0ZDNjMjBjYTVlMjRhOTE4YWQ5ZTc3NzAxYmU0NTViZGI3YWQiLCJ0YWciOiIifQ%3D%3D; AKA_A2=A; ak_bmsc=BEAEF172F652C7677CA5F56308EADDB3~000000000000000000000000000000~YAAQSQFJF59M7ryGAQAACxLn+BNjKU8cB1kc5dq7lB4lE+N4jxFAkhSqRROvTjQUA+p3slELWzaZp2PO8VlJuRBJCGT1ewZK3D4s5EfMib1yKZorQVCYowxC8n/EcjKBSweRBuXOB3BY12JIWH3p0ZhbFlDwGYITbuyWC8MsogarXt7hWoaoOCNOpetMMAdn2XSW3NNE/AL30vtB+tasG6/Vm08g9o81F1370t5cME5Sa+w2HiNJKFAYtnl7WF+0rIapBcFjQ6Ga4ynHBH0PrsRC1g9gq7H0YZbVtGkrIjOLiv2rbsvBUrnfvWoOighVye60qK7cHcbdh1sy+8/4MAZ21brserOXLAjSk7fASCE0az6WQYNQtFohz70MKr1YSA2yVs3tB6yru2Nj; _gcl_au=1.1.319014930.1679213142; RT="z=1&dm=www.hero-wars.com&si=32c426ad-c467-4b54-bd5a-9b1e29cddaf6&ss=lff45bz8&sl=1&tt=23u&rl=1"; _fbp=fb.1.1679213142831.590618137; bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzPMCNqGAQAAQkrn+BMOxLyHe7GtsZfRiAuraSLTAl0EUkpSlI6vrTQ1UuAsCjc5YzRtFt8lRzkUNQBmGivAaFqU24VaCf4DeU0DxYAEcbDsppIYdU9LnpJqT6d8gvUrM8qyMB3GRSd7O3FGDCguTuwnaOuQRrdZNtaGSJ+n/LA9kjLG+dMgIjoTQIgMxY5n8mIGFTxenoGMZHoX3xBE80UPMEEWTe00K7nqDD7tGgqH9TZo1cdehRP06wwC~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS,DELETE,PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range,x-auth-application-id,x-auth-network-ident,x-auth-player-id,x-auth-session-id,x-auth-session-init,x-auth-session-key,x-auth-signature,x-auth-token,x-auth-user-id,x-env-referrer,x-request-id,x-requested-with,x-server-time,x-env-library-version,x-auth-network-sign,authorization
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sun, 19 Mar 2023 08:05:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 19 Mar 2023 08:05:54 GMT
content-length: 44
set-cookie: XSRF-TOKEN=eyJpdiI6ImVNeE1zSldOWjVLdTZEQld5czR2cmc9PSIsInZhbHVlIjoiRmlaUjBUN2dlbGM5aHlxajJ0NU1YOFdadEkzU0pjaVpKZlN5aHJWa0FtaTVYL3ErcmphazlPV3UrU1lLbWR3bCIsIm1hYyI6ImU3MjY5MDI5MTU4YjRhNmM5YTE0NzA5MWY0ZjUyMDJlOTI5NjFiZGYzMjA3ZWUxYzBkMTMzZTFlNGVkZDg2MWQiLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; samesite=lax
hero_wars_session=eyJpdiI6Imk4YTkrcm5CaXp5bEkvNFZXUEQzL3c9PSIsInZhbHVlIjoiZHV3MGpObWpOQktnU0IwMjR3bExGT0tITUdGNHptc09vOUVlV0UwQmZxWFVqZmZTa2VIWWhla3QwSS9SUDRxYyIsIm1hYyI6IjQwZjEzZmYwMGVjNjg3NjRkN2UzODdlZTM3YzYwZTg0NTIzOTMxNzJiYjA3YzlkNDNlOTczNzVmZGI0Mzc4NjciLCJ0YWciOiIifQ%3D%3D; expires=Thu, 18-May-2023 08:05:54 GMT; Max-Age=5184000; path=/; secure; httponly; samesite=lax
bm_sv=C1F80406F2092DD9673239801868A316~YAAQVAFJFzTMCNqGAQAAG1Dn+BMEES1p62Hvo2BPWCGO4RQ1rExxEXYxX/j7yaSX0G4H12OyK3Ma8NIYmx8K7h3xZHcTShb1rMo9sq1uUHLaUCuNDszB8EV2JNXnJJTV4x1nQXmf+w3tY3OKrtqJ659j8wgqdXHl3srsXxs56h8WW6UebKKxOKcES5bRLxMnBAY8xSx7BLjkovc3zNPL7PA2555oXUjTfLRlqLgCimFsP0TNDwNcPef6DnHKxCsrMMiv~1; Domain=.hero-wars.com; Path=/; Expires=Sun, 19 Mar 2023 10:05:40 GMT; Max-Age=7186; Secure
server-timing: edge; dur=4, origin; dur=143, cdn-cache; desc=MISS, ak_p; desc="466448_390660436_43196457_14715_3906_16_0";dur=1
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2995
Expires: Sun, 19 Mar 2023 08:55:49 GMT
Date: Sun, 19 Mar 2023 08:05:54 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6530 bytes)
Hash
088ecc88f297af7324cf5c27f019daea
dd2634cc71555b254ffcb21621b1b4426bae619a
f0f7467e6d6a3d89157fbea1e554ba0cb04ec97411012c048ce7374a2cd980d7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6530
x-amzn-requestid: feaef7fd-1486-4717-b373-06546368aa4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wZCGnJoAMFWqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dd3-71249f9a6287e81730459c65;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _DYEnVROIUK5IYSWguE6xBBoIfvoNJMfB0gxidrjCkL65QeISMW6ow==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:44:27 GMT
age: 37287
etag: "dd2634cc71555b254ffcb21621b1b4426bae619a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5311 bytes)
Hash
07289211ce045b31693c7bb59c06f338
210abec1182bb94b9d0e48827ecb8023611c4489
808b7bfa4b75cfb91e003d6375802da7d2719de29d4f64776dea57992b7632c4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5311
x-amzn-requestid: 3e000f36-3e2a-4008-950b-2e9f83306e51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_w3eFmtIAMF7EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e95-1b9e4cc8033920ea365de22f;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: mB-sWMCTChGtVbvW4TkpKqqpSACyRLw9x32bDY3kvV3f0IrEsti9cg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:48:16 GMT
etag: "210abec1182bb94b9d0e48827ecb8023611c4489"
content-type: image/jpeg
age: 37058
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10338 bytes)
Hash
78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: K19FG80YIBs-7NnPFJQEodETe4DpifB_BA2FpyYtB0W-sXXjNlLKxw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 07:04:47 GMT
age: 3667
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6219 bytes)
Hash
7e58e6553fe8e5d936a911080cec36dc
75dd9bdbaf7f19102036d27e69a011f4c37942a9
0c565b97125e28b8183baab26baf7c703e70f82fad13117c5780259e6d91a89d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6219
x-amzn-requestid: 61b80920-2ba3-4688-80ee-848d68031908
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BwlmnG0KoAMFd0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64101c90-17c159767df548c4672b7365;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 07:04:48 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ACswRkub0RlODaxJHJGsGkACkMQKk85qY3VxYPscNccAMYdpkQ9evA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 23:47:26 GMT
age: 29908
etag: "75dd9bdbaf7f19102036d27e69a011f4c37942a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7842 bytes)
Hash
916a27eee94b9be1c268cd17c11c4824
4530492308074d7f4f7f888593149377e70ee561
a7aeaf49047efb11e4cd8b72bd2e00b4afdfe461b5be50d88c343ffbf3d3ca45

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58bd5191-7eab-437d-a18c-a930f08c6cc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7842
x-amzn-requestid: 6e6fff9e-c942-498d-b649-9f7f6d82fba6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B6lDbHn4oAMF5BA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64141baf-268367ad5333899e40d8353d;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 07:50:07 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: k1cHkKf_bxsiXniP1nGXKi6fUo9WFRCOkvu7hewwOQZdtkWnBtoktQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:13:50 GMT
age: 35524
etag: "4530492308074d7f4f7f888593149377e70ee561"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ca6f680-5e4b-497f-aef4-6cca71cb98d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11784 bytes)
Hash
49b71c6b1d8a81d5c9e5281eec609c25
59d56060ea97e27de572e48eb907882f5767f427
d8d1aa817b12b61d85115c0020fafd2c2e02a0277417e96fb995329ea3c7f01a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ca6f680-5e4b-497f-aef4-6cca71cb98d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11784
x-amzn-requestid: 29c7373c-4eb0-4374-8c4c-205285e23667
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_whwHM7oAMF_kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e0a-0c30752b04757beb7ea417a7;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: pPIURVGevjYlykVadfXACVKOnHw9BNb9udBL65Kl-z7I9AUWFDoOeQ==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:14:05 GMT
age: 35509
etag: "59d56060ea97e27de572e48eb907882f5767f427"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

trc-events.taboola.com/1123625/log/3/unip?en=pre_d_eng_tb&tos=13197&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163024&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1123625/log/3/unip?en=pre_d_eng_tb&tos=13197&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163024&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1123625/log/3/unip?en=pre_d_eng_tb&tos=13197&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163024&vi=1679213156937&ri=99628cb2e40f11469cdbca33ae33978a&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Sun, 19 Mar 2023 08:05:59 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

trc-events.taboola.com/1171685/log/3/unip?en=pre_d_eng_tb&tos=13199&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163025&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/1171685/log/3/unip?en=pre_d_eng_tb&tos=13199&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163025&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1171685/log/3/unip?en=pre_d_eng_tb&tos=13199&scd=0&ssd=2&est=1679213142580&ver=36&isls=true&src=i&invt=6000&msa=0&rv=1&tim=1679213163025&vi=1679213156937&ri=fcd32f888a0fa0ba0319e659f888a153&ref=null&cv=20230312-9-RELEASE&item-url=https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hero-wars.com
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Sun, 19 Mar 2023 08:05:59 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.hero-wars.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

trc.taboola.com/1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i

151.101.193.44

200 OK

0 B

URL HTTP/2
trc.taboola.com/1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
151.101.193.44:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /1123625/trc/3/json?tim=1679213157088&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1679213156937%2C%22cv%22%3A%2220230312-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.hero-wars.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnextersglobal-herowarsweb-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1679213156950%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.hero-wars.com%2F%3Fl%3Dinfolong4%26m%3Dregistration%26nx_source%3Dadx_PropellerAds.Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4.pt-5543285.cid-Hero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26aff_click%3D6416c260e79eb00001a338ec%26pid%3D5%26custom2%3DPropellerAds%26custom3%3DHero%2BWars%2BWeb%2BPropellerAds%2BInfolong4%26custom4%3D5543285%22%2C%22tos%22%3A7123%2C%22ssd%22%3A2%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hero-wars.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 19 Mar 2023 08:05:53 GMT
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679213154.821524,VS0,VE96
vary: Accept-Encoding
x-vcl-time-ms: 96
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML