Report - immersedtoddle.com/wsf1nit26j?dev=r&iiraubj=71&key=7ff94e9461629d2f54ff14725863196e&kw=["new","-","onejav","com","-","free","jav","torrents"]&pst=&refer=https://onejav.com/new?page=2&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=9&v=20.8.v.1

Report Overview

Visited public
2024-05-22 08:12:56
Tags
Submit Tags
URL
immersedtoddle.com/wsf1nit26j?dev=r&iiraubj=71&key=7ff94e9461629d2f54ff14725863196e&kw=["new","-","onejav","com","-","free","jav","torrents"]&pst=&refer=https://onejav.com/new?page=2&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=9&v=20.8.v.1
Finishing URL
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
IP / ASN
192.243.59.13
#39572 DataWeb Global Group B.V.
Title
Lust Goddes

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
immersedtoddle.com	unknown	2024-05-17	2024-05-18 20:59:28	2024-05-21 09:39:09	3.0 kB	4.4 kB	192.243.59.12
theeverydaygame.com	unknown	2024-03-01	2020-12-16 12:09:39	2024-05-14 09:46:24	9.4 kB	590 kB	172.67.163.114
ln.gamesrevenue.com	117740	2014-05-30	2017-01-29 21:27:07	2024-05-02 10:41:50	404 B	88 kB	5.161.79.44
holdhostel.space	unknown	2024-02-21	2024-02-21 18:47:09	2024-05-14 09:46:15	549 B	42 kB	104.21.76.98

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-22	medium	immersedtoddle.com	Sinkholed
2024-05-22	medium	immersedtoddle.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	theeverydaygame.com/awpx_click.js?v=005	ScriptElement	1.5 kB	2023-03-26	2025-05-12
Pretty URL theeverydaygame.com/awpx_click.js?v=005 IP 172.67.163.114 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 01:11 Last Seen2025-05-12 23:35 Times Seen1611 Hash 7aeb87811ad3a82fde3e2783544819ee d1d9174cbcbb1abdccee6841f170ba21f899925b 7fff603702e9bea03cf47ba47947bb7f8655eb7fcb1c8f7091e9a38d8f5d949c Loading...

	theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js	ScriptElement	521 B	2023-12-02	2025-07-04
Pretty URL theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js IP 172.67.163.114 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 02:07 Last Seen2025-07-04 08:00 Times Seen861 Hash 86f0754abfb6014908e557e6e268f3e2 4efa8a0c962e30bb7e314ad37a3f2c55b91052e6 70910209572bcf5a0ba1022d53bb9fe24d82ed842370c70234994dd2b29ba1a9 Loading...

	theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-07-16
Pretty URL theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js IP 172.67.163.114 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-16 08:00 Times Seen65803 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	ln.gamesrevenue.com/px1.js	ScriptElement	15 kB	2023-12-23	2025-05-21
Pretty URL ln.gamesrevenue.com/px1.js IP 5.161.79.44 ASN #213230 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-23 09:34 Last Seen2025-05-21 06:16 Times Seen1601 Hash b01fc426cbc4f33a52a28ee9ca2e2050 577332c8c5f62167ad432c5d20b3ca285e75c91e d40fc3bebe2dc3c28f08f2f4f5a6059425ccc5541ada3f0945f7539e90374441 Loading...

HTTP Transactions (20)

URL IP Response Size

immersedtoddle.com/wsf1nit26j?dev=r&iiraubj=71&key=7ff94e9461629d2f54ff14725863196e&kw=[%22new%22,%22-%22,%22onejav%22,%22com%22,%22-%22,%22free%22,%22jav%22,%22torrents%22]&pst=&refer=https://onejav.com/new?page=2&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=9&v=20.8.v.1

192.243.59.12

1.6 kB

URL
immersedtoddle.com/wsf1nit26j?dev=r&iiraubj=71&key=7ff94e9461629d2f54ff14725863196e&kw=[%22new%22,%22-%22,%22onejav%22,%22com%22,%22-%22,%22free%22,%22jav%22,%22torrents%22]&pst=&refer=https://onejav.com/new?page=2&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=9&v=20.8.v.1
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text, with very long lines (895)
Size
1.6 kB (1573 bytes)
Hash
7a553b1a8fc6f83ee0c4472df298fefe
e9044f477252ce8322a20b0fa6d7cf61f4dbe97f
0684b94a406a69872c8a1a675225ced8306653787aa2907c1f76c19b06b14fd8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wsf1nit26j?dev=r&iiraubj=71&key=7ff94e9461629d2f54ff14725863196e&kw=[%22new%22,%22-%22,%22onejav%22,%22com%22,%22-%22,%22free%22,%22jav%22,%22torrents%22]&pst=&refer=https://onejav.com/new?page=2&res=7.31&scrHeight=1080&scrWidth=1920&ship=&tz=9&v=20.8.v.1 HTTP/1.1
Host: immersedtoddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 22 May 2024 08:12:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14217017; expires=Thu, 23 May 2024 08:12:29 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.o_mobARpBb-XpielZL7tPOQxYhITYXi7N5hOqkoDCqA; expires=Wed, 22 May 2024 08:13:29 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 765ce4dd8e7fd79ec5c666bdd3b6e148
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET immersedtoddle.com/api/users?token=L3dzZjFuaXQyNmo_ZGV2PXImaWlyYXViaj03MSZrZXk9N2ZmOTRlOTQ2MTYyOWQyZjU0ZmYxNDcyNTg2MzE5NmUma3c9JTVCJTIybmV3JTIyJTJDJTIyLSUyMiUyQyUyMm9uZWphdiUyMiUyQyUyMmNvbSUyMiUyQyUyMi0lMjIlMkMlMjJmcmVlJTIyJTJDJTIyamF2JTIyJTJDJTIydG9ycmVudHMlMjIlNUQmcHN0PTE3MTYzNjU2MDkmcmVmZXI9aHR0cHMlM0ElMkYlMkZvbmVqYXYuY29tJTJGbmV3JTNGcGFnZSUzRDImcmVzPTcuMzEmcm10Yz10JnNjckhlaWdodD0xMDgwJnNjcldpZHRoPTE5MjAmc2hpcD0mc2h1PTQxZWNkNjFiMWVjY2ZhMmI1MWY0NWQzMjc1Y2YxOTAxODU0YzEyNjNhZjI0MjUxMmZjODk5YTE2ZWI5NzJjMGM0ODcyMDI4NjI3ZGIzOThjYWNhMGUzYzcwMGZmNzMxZTY1MTFkYmYzYjExZGNhYzc3ODYyOTRkYTU4NDZhNTIxZjc1YWU5MzZjOTQ1NDI5NmMyOWE2N2Q5NWQ2NjdlOTU2OWI3ODYzM2Y3ZGNlOTI2NTkyMGE3ZWY3NTdlJnR6PTkmdj0yMC44LnYuMQ&uuid=&pii=&in=false

192.243.59.20

302 Found

0 B

URL User Request GET HTTP/1.1
immersedtoddle.com/api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Certificate
IssuerLet's Encrypt
Subjectimmersedtoddle.com
FingerprintA2:A2:5D:B2:DE:09:1A:34:47:F4:08:27:03:53:2D:8B:12:8F:00:D7
ValidityFri, 17 May 2024 11:25:42 GMT - Thu, 15 Aug 2024 11:25:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/users?token=L3dzZjFuaXQyNmo_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&uuid=&pii=&in=false HTTP/1.1
Host: immersedtoddle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://immersedtoddle.com/api/users?token=L3dzZjFuaXQyNmo_a2V5PTljYTYwMWE5ZjQ3YzczNWRmNzZkNWNhNDZmYTI2YTY2JnN1Ym1ldHJpYz0xNDIxNzAxNw
Cookie: u_pl=14217017; ain=eyJhbGciOiJIUzI1NiJ9.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.o_mobARpBb-XpielZL7tPOQxYhITYXi7N5hOqkoDCqA; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.19.5
Date: Wed, 22 May 2024 08:12:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://holdhostel.space/?6622842d7176c&ag_custom_domain=14217017
Set-Cookie: iprce63c8872bcdd60a24a0709b307af7126=5188702; expires=Thu, 23 May 2024 08:12:30 GMT
pdhtkv=true; expires=Thu, 23 May 2024 08:12:30 GMT
uncs=1; expires=Thu, 23 May 2024 08:12:30 GMT
pdhtkv28=true; expires=Thu, 23 May 2024 08:12:30 GMT
uncs28=1; expires=Thu, 23 May 2024 08:12:30 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e7ab973255734dbcf9935563c1b1abd9
Strict-Transport-Security: max-age=0; includeSubdomains

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn1.png

172.67.163.114

200 OK

6.9 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn1.png
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
PNG image data, 339 x 207, 8-bit colormap, non-interlaced
Size
6.9 kB (6866 bytes)
Hash
a67051906425835b13dc4292c6fe2ef7
c96b01fb21c60a17fad9e89f235fdb8809ffc43d
f000409df7dd5222fc51cc35113519a133596c011f61bc5a7f65f9dcd2843a37

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/btn1.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/png
content-length: 6866
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-1ad2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1314
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NbhcAzDqnGjGRqd2no3bza0dxGIIt4xFTUDRIsfT8WKfrX%2Bwds6bBf1z9rCPFO7KK9VeTyc0qd2HrIlGxX3DmL5sIl9A7unvnmIHrmZD%2F5g09gX2MVHjrotAdDSgcykWKGhRgVfl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b57778a75b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn2.png

172.67.163.114

200 OK

9.8 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/btn2.png
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
PNG image data, 339 x 207, 8-bit colormap, non-interlaced
Size
9.8 kB (9771 bytes)
Hash
8c7c430e736c07b069cf61a2870c7254
a1b6cf722997131aa569f2214df2ce8a9e6e5630
42269355807fe5c4d7dabbccff1cc602725b5ffccae86759412219b83198a180

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/btn2.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/png
content-length: 9771
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-262b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6474
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xAsjxMymSxifEAMoE6DYAGE%2F0hHLORyjvsgWjzx01sk7YxQ1Wh%2FQGNGkOpCRksrIGQt0mH0MYoe9x946TdzfGkqbWAigEBppK1BO6T%2ByXGY3BF1zU63cVEHb5IHyZ1vRY3efAjaa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b57779a7cb4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js

172.67.163.114

200 OK

634 B

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/scripts/main.js
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JavaScript source, ASCII text, with very long lines (521), with no line terminators
Size
634 B (634 bytes)
Hash
86f0754abfb6014908e557e6e268f3e2
4efa8a0c962e30bb7e314ad37a3f2c55b91052e6
70910209572bcf5a0ba1022d53bb9fe24d82ed842370c70234994dd2b29ba1a9

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/scripts/main.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:38 GMT
etag: W/"65f0845a-209"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6545
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=50fdJwGTllhnwlBkBhXFttFJoL8zx0VFotYyXRbeg74Zah3D0Y2T6V1x7SJN1Wgwy50fQrfhtLbDfAfTMPDEzTpLrJYqrB7jmTZCOYgvA4v53OrT5zdbXILFZR7yn5WEpaZV0xFn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b57779a80b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET ln.gamesrevenue.com/px1.js

5.161.79.44

200 OK

88 kB

URL GET HTTP/2
ln.gamesrevenue.com/px1.js
IP
5.161.79.44:443
ASN
#213230 Hetzner Online GmbH

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subject*.gamesrevenue.com
Fingerprint26:F6:46:89:AA:A5:C6:FB:C1:75:DF:03:13:81:3C:53:01:08:81:B6
ValiditySun, 12 May 2024 09:33:45 GMT - Sat, 10 Aug 2024 09:33:44 GMT

File type
gzip compressed data, max speed, from Unix
Size
88 kB (87931 bytes)
Hash
a88c9946a6ffcabc015f8fa19b4ab13a
90f46164eed8ce33690f657a210c885cde93ecfe
8e6bb5c718a8583d6fdfb6e049a35189568e27600c07b288c4d3c6221e9c1c85

HTTP Headers

GET /px1.js HTTP/1.1
Host: ln.gamesrevenue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 22 May 2024 08:12:31 GMT
content-type: application/javascript
last-modified: Fri, 22 Dec 2023 10:12:56 GMT
etag: W/"65856128-3b88"
content-encoding: gzip
X-Firefox-Spdy: h2

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_close.jpg

172.67.163.114

200 OK

40 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_close.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
40 kB (40179 bytes)
Hash
3d830c378aa76c9caa82a73805459893
4a48546372f2ef6311cbed974d536273bcfdd711
8d88b039c0e88133bd2f53dc2fef48ea2d8bdae4eb6e3162fec9db714f97adea

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g1_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 40179
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-9cf3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2716
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=re1M1E5q%2FAUslBXzZJE3INN8pspzuL99hlr88uYcIp2Q9G%2FKzku3SZIPRhVpIToieGHQMISW1LNIwCfx3M6umrcDd1LkZQg4zF5no2vuaIVGc4ZVh3UX33lLwVqdFoONV8oJcCU5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b5779ed71b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_open.jpg

172.67.163.114

200 OK

80 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_open.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
80 kB (79598 bytes)
Hash
12e061b10b2c654a24ea704af3aaec43
9c506625e1fa700f0e6522cced2a53b0cde2bd54
d321fc26bb399bd642b1a3ae059a03308d286526e6b87a9cb37ba63833673372

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g2_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 79598
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-136ee"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6473
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6JgfohSI7ZQHJEPCBi4EPSsm4Yilp%2BcJFXQUI6E%2FHfOIz53hTNZJ2uvtp%2F0f2txkxtryqaxRjO4CD%2BKLfYVSax%2B2CSGOx%2FnY8GU6%2BPlvz%2B8LunCfFlsRJ2sy4ZSehWgIv9vJbmx%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b5779ed77b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_close.jpg

172.67.163.114

200 OK

42 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g2_close.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
42 kB (41478 bytes)
Hash
955f59a0876a28b432c71c0d274727c7
789778a09f2fa8f8bd24be2bb781914f5070dd3d
40e8cd16f27d5d6a0cfd007881651ef8acd93ba95423c05741bc410454eabf40

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g2_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 41478
last-modified: Tue, 12 Mar 2024 16:35:34 GMT
etag: "65f08456-a206"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5598
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XPRkZ4ToU1VDboa7D93w1T%2BpffDnfLz7CWq7fw%2FveoQK9XmJo4%2FvDi4WKpzC4leiKyGvTWe1tsGEuzjS9gaT3qLpX1A5miI8sKUqwH4ITWikelapPpeFf9oh8oQAehd8NneBuVwH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b5779fd81b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_open.jpg

172.67.163.114

200 OK

63 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_open.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
63 kB (63206 bytes)
Hash
d837068776c28a251131d2c0138c5db4
bc8d3e395fa77a6b801f13d1c22ff159776cc430
a8364b19810c700ee3899c55089ca678291758ee0d62dbad821e2a6d73b08c93

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g3_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 63206
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-f6e6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2360
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ni7VRYDevG%2FXrX%2F9wNBzwFGasao54qRr4kCw6mN9xt4BCFZnRBLH4MrImafdaZ%2BjOX4XjQsouPETlBf8K%2FUcwchZib3XMrw8kNpjUBq9TpixrFRjX7xgzYV9MHwm7PxKCwY5NMCO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b5779fd86b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_open.jpg

172.67.163.114

200 OK

73 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_open.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
73 kB (72874 bytes)
Hash
c37fec311feadcbd0c77987b383b0596
9a8f5df2805241f6bc484151dc31f3b72bb9a196
a61a23797d6b68ed79222d950596e90da320e59f8ee23e7eb776c94ee0d6734c

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g4_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 72874
last-modified: Tue, 12 Mar 2024 16:35:36 GMT
etag: "65f08458-11caa"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1314
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WTgF1rGZZSObspG1mfocHeEMAI0Z6D7rzTieQ%2BcxMfmE1vcejf2%2FNPm6Yve%2FOGC5IqCoCiwMA0PqUi2OjTmaXByH%2F3RsN9J%2Byzl8UMsu%2B1N4hMIFuJMXPK8VluNoG6peyof%2B%2F%2Bsw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b577a0d99b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_close.jpg

172.67.163.114

200 OK

41 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g3_close.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
41 kB (40609 bytes)
Hash
aa7031c41077d720cfc935e8de98de95
47aaf9ec464983016d35bb8150928c7f96cdff8c
6a49dc8fe71fafd7db501c43d96537be26a508a2c8a932ff8f03746bc9a55a83

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g3_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 40609
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-9ea1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6473
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ErM%2F6Nr0wmWQcqWHaBmMAgimuLTTZ2Esl5AtH0%2Fbu9MS0C9P2Eer0AG0BDh3np%2BDVIICenjLFaDh%2BgD%2BqitUl9PoZlHoNYm5NHbSUkB38F1pAKzr5dr8DRD5ObHDFkcSqYQfb8mZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b577a0d97b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET holdhostel.space/?6622842d7176c&ag_custom_domain=14217017

104.21.76.98

302 Found

41 kB

URL User Request GET HTTP/2
holdhostel.space/?6622842d7176c&ag_custom_domain=14217017
IP
104.21.76.98:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectholdhostel.space
Fingerprint30:62:41:BC:7C:17:FC:EE:0D:5B:5B:39:AE:06:1C:8A:08:6D:67:D6
ValiditySat, 20 Apr 2024 18:12:17 GMT - Fri, 19 Jul 2024 18:12:16 GMT

File type
data
Size
41 kB (41344 bytes)
Hash
089396c27c884ef71f359d228cdeb621
25842505f7c9d0ebe484ce6dc74d634954525949
44424b261c7e71081eaac5dccb3915440a4488c2af49b9020748021aac309bba

HTTP Headers

GET /?6622842d7176c&ag_custom_domain=14217017 HTTP/1.1
Host: holdhostel.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://immersedtoddle.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 22 May 2024 08:12:30 GMT
content-type: text/html
location: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
set-cookie: c_2022b6829ad3bc8a5d74a4bfe5cf4db8=1; Expires=Thu, 23-May-24 08:12:30 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
z_dd834028817d054ef3568898fa07ee8f=1; Expires=Thu, 23-May-24 08:12:30 GMT; Domain=holdhostel.space; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zuAwyCHcCVpITMwjdCnv83hkgOd90SmkZGylSvp0nff9OOQnVBI6eqdM9aoTx6IlHiblFub6bZLZ2ezy%2F0YAoZxmS2MAgiPFvxksK4CAxp%2F6k78vKu31y0IRBDcwMlFEmXy%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 887b57750eff56aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/fav.png

172.67.163.114

200 OK

1.4 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/fav.png
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
1.4 kB (1425 bytes)
Hash
10c5dd857fd3653492ef5eeaa86cd48b
193484a907a40d7b145af2136ef83bef593d2f21
a689201508b9dc7b2cc3049c7d89947f96a19790411506ecd6eb1875374fe329

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/fav.png HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/png
content-length: 1425
last-modified: Tue, 12 Mar 2024 16:35:33 GMT
etag: "65f08455-591"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3251
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uHmHCgQnsuTiV%2FPyaB8kq%2BdoGg%2FndcL6TRQX%2Ff4913vcfnXEs%2FVCliyPHs8MjkU0tJ%2F8zHl91%2FLDwd0%2FCJBP%2BLUTwLSgZuzTMY8BLBfq1%2FakW8ErRgBYxdvAG19ZE891yhtiFAwp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b577aae5bb4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css

172.67.163.114

200 OK

6.5 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
ASCII text
Size
6.5 kB (6533 bytes)
Hash
fe0b76350b350c505af8892b3fb2d60b
ef4c2c4974e98708c9586248f502ec7a42ea9259
d95650f7fef33e32e64ea982168684f103e294fcf7e2df8a1c833929a7c1745d

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/css/main.css HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 16:35:32 GMT
etag: W/"65f08454-ce3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2835
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Hn%2BR4977wsWOK8Sx6tKc9wy%2FY1oVps%2FvUUHO3OJ%2Fe91IOGJaab%2Fx6a0buau4qYNNIJ2My%2BA2N2%2BKsZwBPBhp7ZGagqXDvXYj5p5LiTmq9vamkG16sE52Kn6DfQRIVP6F1coZVB0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b57778a67b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_open.jpg

172.67.163.114

200 OK

84 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g1_open.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
84 kB (84260 bytes)
Hash
a3efbcb7561dddaeb36ba22fb8fae56f
a9363a7f6b6e9a5a6dcbb37a0abfa7bb3ab3ea1d
d95424c3f3857c13ff9f6a957f805b188a568ce769b51ee9fe68c8fd3537b319

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g1_open.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 84260
last-modified: Tue, 12 Mar 2024 16:35:34 GMT
etag: "65f08456-14924"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2360
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qxbVVrVWNgyBPlvLvZiYGhNisrW%2F7Wl8KSbfszkLSERPrVijqnPO%2BM42DKq%2FB7gHwph1WC4B%2BTaSNgJZhHn8f2CljWCn6tpfez3o4lQQveVrUoWNhWBpV3aC94v38e6mNGV%2Bd%2F3Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b5779ed66b4f7-OSL
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js

172.67.163.114

200 OK

87 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/libs/jquery.min.js
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/libs/jquery.min.js HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 16:35:38 GMT
etag: W/"65f0845a-1538f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6545
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3uFYvnJ3elTC1UYK%2BDCrf5yS5Y5wmsqKJUNMVhdlBGFS810Ni9D4iCwxvrfTqW1AC7%2BK0lCp84UG4mKDLnxun1pshP9BhW4WjOW4P82x%2FZYYP4OrYpPouDqUIWJFtcaIIp%2FaWLXi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b57778a6cb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169

172.67.163.114

200 OK

2.2 kB

URL User Request GET HTTP/2
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
HTML document, ASCII text, with very long lines (2342), with no line terminators
Size
2.2 kB (2167 bytes)
Hash
f610d79a049b22911f1e6c2bd37a4aee
42004ffdfe77bc85d8da4df1f7b7dc9c72eb527f
c4b1dbd27978982fc23fedac9a3feac059909e8b969e3f0f337a7f529cd6f4b0

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://immersedtoddle.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aruYISBnU9T13ZnTENXqNCF44q2AZutAQzskXN413RrfSBMrk20G0eeYyx4Gf2ORPCnp%2FcPutbkd0PRM6VrGYCsUQeEiljceBFsz6ldvIq%2FNTIRLkKIybaHtruB3E1L8jMVonsNJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 887b5775dd9b0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET theeverydaygame.com/awpx_click.js?v=005

172.67.163.114

200 OK

1.5 kB

URL GET HTTP/3
theeverydaygame.com/awpx_click.js?v=005
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
ASCII text, with very long lines (1544), with no line terminators
Size
1.5 kB (1490 bytes)
Hash
684379265eb9f58cc45bc0d82f0db964
dcceb2eb66dd485a8df52da17210e1ea660354ee
45f7be3af362b2f0b894e51e8394ecc08066d8b9004fb095ba7665edbd8ce078

HTTP Headers

GET /awpx_click.js?v=005 HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 09:49:36 GMT
etag: W/"6409abb0-5d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1919
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T2Abyb%2F8BCXKfNHUEkO%2BsJWs1%2BQPi%2BhiGzqP6dGGf5M8Xbni3eVVCUZTVjkJzlP0y8pmU2kyUrAjhP5IlKnM7zxEIHFIME0CFr2Ruab6Eudj5l14HwZM3JPb9K%2FgOw8Ijk0yupT5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b57778a70b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_close.jpg

172.67.163.114

200 OK

41 kB

URL GET HTTP/3
theeverydaygame.com/lg/lg_0324/land_lg_140324_en/image/g4_close.jpg
IP
172.67.163.114:443
ASN
#13335 CLOUDFLARENET

Requested by
https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/index.html?utm_campaign=pu_lg_terra_no_adult&utm_medium=click&utm_source=pu&utm_content=14217017&bnid=land_lg_140324_en&land=land_lg_140324_en&crID=2503015&zID=100169
Certificate
IssuerLet's Encrypt
Subjecttheeverydaygame.com
FingerprintE1:71:71:8C:28:0C:89:C4:6F:BD:61:EF:AB:FE:37:B3:65:12:2B:39
ValidityMon, 29 Apr 2024 16:57:53 GMT - Sun, 28 Jul 2024 16:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x1071, components 3
Size
41 kB (40656 bytes)
Hash
4735a029efd2d2e8b15fab5879842219
82ac18ec8aae9a2cc311cdb3b92862e56d161f99
11c0bdd5fc2ba1dfea6ccaedded312f27fd5d5ddf21f24ee607ad05c2c0f197b

HTTP Headers

GET /lg/lg_0324/land_lg_140324_en/image/g4_close.jpg HTTP/1.1
Host: theeverydaygame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theeverydaygame.com/lg/lg_0324/land_lg_140324_en/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 22 May 2024 08:12:31 GMT
content-type: image/jpeg
content-length: 40656
last-modified: Tue, 12 Mar 2024 16:35:35 GMT
etag: "65f08457-9ed0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6473
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=17PAbanfTziR%2FK7wRDsWVwL%2BAwZ%2Bcld%2BVZfiBWsHX7r%2FAcbvDXecb%2BWt95rmXdMFvlq6%2FnziQHnj%2F1vcxYuk%2FBHedIWIfaqRBHeY0nMp%2BfBjQ9%2F42B%2Ba%2B8%2Fv7Duv9RdQsiNkZCwy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 887b577a0d9ab4f7-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (20)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN