Network Analysis

GET / HTTP/1.1 Connection: Keep-Alive Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 Accept-Language: en,q=0.9;q=0.8,ja;q=0.7,af;q=0.6,am;q=0.5,sq;q=0.4,ar;q=0.3,an;q=0.2,hy;q=0.1,ast;q=0.1,az;q=0.1,bn;q=0.1,eu;q=0.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 viewport-width: 1920 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 Upgrade-Insecure-Requests: 1 Host: www.facebook.com

HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate X-Frame-Options: DENY X-XSS-Protection: 0 Strict-Transport-Security: max-age=15552000; preload content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests; Set-Cookie: fr=1FJ01sw4ofsX5mB0B..BgvuLq.8d.AAA.0.0.BgvuLq.AWVVFIO3sX8; expires=Mon, 06-Sep-2021 03:24:25 GMT; Max-Age=7775999; path=/; domain=.facebook.com; secure; httponly; SameSite=None Set-Cookie: sb=6uK-YMwlQ4y2mjGVPxVa61F7; expires=Thu, 08-Jun-2023 03:24:26 GMT; Max-Age=63072000; path=/; domain=.facebook.com; secure; httponly; SameSite=None X-Content-Type-Options: nosniff Expires: Sat, 01 Jan 2000 00:00:00 GMT Vary: Accept-Encoding Pragma: no-cache x-fb-rlafr: 0 Content-Type: text/html; charset="utf-8" X-FB-Debug: nReiZtCxCPk7QmjVpLIOAMG3sjIhBlNFDTj8VlJn7/yvNUg1egoWvgjYS0E1R+r1UJL6xrdVmwYdsmqrl15Grg== Date: Tue, 08 Jun 2021 03:24:26 GMT Transfer-Encoding: chunked Alt-Svc: h3-29=":443"; ma=3600,h3-27=":443"; ma=3600 Connection: keep-alive

GET / HTTP/1.1 Connection: Keep-Alive Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 Accept-Language: en,q=0.9;q=0.8,ja;q=0.7,af;q=0.6,am;q=0.5,sq;q=0.4,ar;q=0.3,an;q=0.2,hy;q=0.1,ast;q=0.1,az;q=0.1,bn;q=0.1,eu;q=0.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 viewport-width: 1920 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 Upgrade-Insecure-Requests: 1 Host: www.facebook.com

HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate X-Frame-Options: DENY X-XSS-Protection: 0 Strict-Transport-Security: max-age=15552000; preload content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests; Set-Cookie: fr=17nqkT4RkT5sg0ERd..BgvuL2.87.AAA.0.0.BgvuL2.AWWLrFjauwk; expires=Mon, 06-Sep-2021 03:24:37 GMT; Max-Age=7775999; path=/; domain=.facebook.com; secure; httponly; SameSite=None Set-Cookie: sb=9uK-YLfAeSeRDG9mfQ7Rv0Ga; expires=Thu, 08-Jun-2023 03:24:38 GMT; Max-Age=63072000; path=/; domain=.facebook.com; secure; httponly; SameSite=None X-Content-Type-Options: nosniff Expires: Sat, 01 Jan 2000 00:00:00 GMT Vary: Accept-Encoding Pragma: no-cache x-fb-rlafr: 0 Content-Type: text/html; charset="utf-8" X-FB-Debug: AAUrRfcJeB3b4xNRhKEZW5n+T1rXvIaEtG3coe1klQRdEXICFNFHUQViY+HDahfoy3/bYTV7Et7j3/C5TayHNQ== Date: Tue, 08 Jun 2021 03:24:38 GMT Priority: u=3,i Transfer-Encoding: chunked Alt-Svc: h3-29=":443"; ma=3600,h3-27=":443"; ma=3600 Connection: keep-alive

GET /18hh57 HTTP/1.1 Connection: Keep-Alive Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 Accept-Language: en,q=0.9;q=0.8,ja;q=0.7,af;q=0.6,am;q=0.5,sq;q=0.4,ar;q=0.3,an;q=0.2,hy;q=0.1,ast;q=0.1,az;q=0.1,bn;q=0.1,eu;q=0.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 viewport-width: 1920 Host: iplogger.org

HTTP/1.1 200 OK Server: nginx Date: Tue, 08 Jun 2021 03:24:48 GMT Content-Type: image/png Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: PHPSESSID=cklo2426rveu0dntk85vlihu91; path=/; HttpOnly Pragma: no-cache Set-Cookie: clhf03028ja=175.208.134.150; expires=Wed, 18-Jul-2029 05:49:51 GMT; Max-Age=255925503; path=/ Set-Cookie: timezone=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ Set-Cookie: timezone=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:01 GMT Answers: whoami: 58149afe84e6908d185d00c0e4340f3899f9bb38dcbdea3b271effc65ef0bb5a Strict-Transport-Security: max-age=31536000; preload X-Frame-Options: DENY

GET /json/ HTTP/1.1 Connection: Keep-Alive Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 Accept-Language: en,q=0.9;q=0.8,ja;q=0.7,af;q=0.6,am;q=0.5,sq;q=0.4,ar;q=0.3,an;q=0.2,hy;q=0.1,ast;q=0.1,az;q=0.1,bn;q=0.1,eu;q=0.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 viewport-width: 1920 Host: ip-api.com

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:19 GMT Content-Type: application/json; charset=utf-8 Content-Length: 275 Access-Control-Allow-Origin: * X-Ttl: 60 X-Rl: 44

GET /json/?fields=8198 HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: ip-api.com Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:46 GMT Content-Type: application/json; charset=utf-8 Content-Length: 60 Access-Control-Allow-Origin: * X-Ttl: 33 X-Rl: 43

POST /report7.4.php HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: iw.gamegame.info Content-Length: 282 Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:47 GMT Content-Type: application/json; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive CF-Cache-Status: DYNAMIC cf-request-id: 0a8b3fcda000003678eb143000000001 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=FqtQgBbHrc5W3GJBHCrmk4%2FMxChd%2B%2FH%2BI8s4ou5Lz1ayCUSGE8LFySfAsN2oiDs3GwOMKlPTcUpXSevpie0LVEmg6abO2rah%2FD71Z0ddQfUERgFjaTnyShQDqXkDTQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 65bf025c3cac3678-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /api/fbtime HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 Host: uyg5wye.2ihsfa.com

HTTP/1.1 200 OK Server: nginx Date: Tue, 08 Jun 2021 03:24:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/7.3.21

POST /api/?sid=244033&key=14a21546c007e98b00ef413b26924f80 HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 Content-Length: 266 Host: uyg5wye.2ihsfa.com

HTTP/1.1 200 OK Server: nginx Date: Tue, 08 Jun 2021 03:24:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/7.3.21

GET /json/?fields=8198 HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: ip-api.com Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:47 GMT Content-Type: application/json; charset=utf-8 Content-Length: 60 Access-Control-Allow-Origin: * X-Ttl: 31 X-Rl: 42

POST /report7.4.php HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: ol.gamegame.info Content-Length: 282 Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:48 GMT Content-Type: application/json; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive CF-Cache-Status: DYNAMIC cf-request-id: 0a8b3fd22c0000051b4e084000000001 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=QAo9RwfwNvR3ly1WpWTFxISqcqJrUcNpBzpdLF9yzEHO%2FM%2Fv5el0El8M0Rf6BGGt5q%2FxgEMJA7v2C0BrTNyaTo6EwmSVle2Ux7YC4Rs6SawTIwupCedmbK0UV8s%2B%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 65bf0263781b051b-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /json/?fields=8198 HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: ip-api.com Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:49 GMT Content-Type: application/json; charset=utf-8 Content-Length: 60 Access-Control-Allow-Origin: * X-Ttl: 30 X-Rl: 41

POST /report7.4.php HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: iw.gamegame.info Content-Length: 282 Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:49 GMT Content-Type: application/json; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive CF-Cache-Status: DYNAMIC cf-request-id: 0a8b3fd4b400003678b63e3000000001 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=r0MnZEfZZyFTVYotsCwiQA%2FpqaSy7UlQFVveGKos%2FbQKetS%2F%2BJYmqp7RPn%2FFEzXs%2FjFM%2FHMB8LPvqCEnGik3nVCmzRK2xTPVR49vX3QyzEt33BRcsRXB1PQ%2FhPnvoA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 65bf02678af43678-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /json/?fields=8198 HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: ip-api.com Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:49 GMT Content-Type: application/json; charset=utf-8 Content-Length: 60 Access-Control-Allow-Origin: * X-Ttl: 30 X-Rl: 40

POST /report7.4.php HTTP/1.1 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Host: iw.gamegame.info Content-Length: 254 Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Date: Tue, 08 Jun 2021 03:24:50 GMT Content-Type: application/json; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive CF-Cache-Status: DYNAMIC cf-request-id: 0a8b3fd68200003678f61be000000001 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=JeuYumpTAwDfZiEgpkzZR8rAuj3gMvgSIY32%2BeRBx9%2FRZLOT5%2BWFgzD4mBGJiSmmA3oE3fE5U3jnNRj%2FbDeGr76GQqCew7YqV7stBTbcmXkJNP5ALFN9LZkE564lOQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 65bf026a6b7b3678-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400