Report - ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925

Report Overview

Submitted URL
ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925
IP
54.237.163.208
ASN
#14618 AMAZON-AES
Submitted
2023-01-27 14:32:49
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
116

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	7.7 kB	142.250.74.131
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	831 B	457 B	216.239.34.36
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	18 kB	142.250.74.8
ocsp.netsolssl.com	8381	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	342 B	964 B	172.64.155.188
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	44 kB	142.250.74.106
ui.fraudfree.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	858 B	823 B	54.237.163.208
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	8.9 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.203.75.56
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	784 B	78 kB	172.217.21.168
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	499 B	563 B	173.194.73.157
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.northernedgecasino.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	59 kB	2.9 MB	216.15.188.190
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.8 kB	93.184.220.29
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	868 B	22 kB	188.114.99.234
www.navajogaming.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	55 kB	192.124.249.12
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	63 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-27	medium	www.northernedgecasino.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/css/extensions.min.css?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/style.css?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/css/style_dynamic.css?ver=1667038821	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1667038821	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/css/custom_css.css?ver=1667038822	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/uploads/2022/09/northern-edge-logo-small-1.webp	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/jquery.bxslider.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/extensions.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/uploads/2022/09/navajoplayerscards_ny.webp	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.3	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1667038822	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/themes/bridge/js/custom_js.js?ver=1667038822	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/uploads/2022/09/SQUASH-BLOSSUM-BG-1.webp	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/uploads/2022/09/ship-rock.webp	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/uploads/2022/09/navajo-bg-1.webp	Malware
2023-01-27	medium	www.northernedgecasino.com/wp-content/uploads/2023/01/NEN0123ATVH_Northern-Edge-New-Year-New-Getaway_FINAL_122722_.mp4	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (91)

	URL	Size	First Seen	Last Seen
	www.northernedgecasino.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1	18 kB	2023-03-07	2024-02-04
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-02-04 00:11:20 Times Seen210 Hash e5928fe54e2689822e39407a9ce71391 8c205903aedfae7f51df37d2387e14542544e4aa 8b934f3213c33c849410d6edf4fa6f85f970839503d462d94413bd8c15a2e106 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1	6.7 kB	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2023-12-27 20:46:58 Times Seen49 Hash 986cbf4f93616febf4243f6e3e76e3e9 7de9dd72732ca8fe46c0242749d4a705345fe0b7 c3a015f250093ba41c36da57625051930eada74b0bb8d61b7e0c6fef36952317 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1	6.2 kB	2023-03-07	2024-02-01
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-02-01 14:46:37 Times Seen66 Hash 11ff8e4ed98bf4c707f67352f66786e4 0bd3e2ba53ef69de977d8bf30af79c65a0c881b3 b3874d7912ab8f1f860c5eef8cfb799fcae41b23259165082a1791e15a65050f Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.3	63 kB	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen1349 Hash 46b01ea5e87d87d67d03ca99deafad16 ac4f11008b12da6c1e10f28911dacadeb32f6373 8127722d44fb798dbb4655664648465dc1ca23780212e0ae5f495c62f4cb297a Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/smoothPageScroll.min.js?ver=6.0.3	667 B	2023-03-07	2024-04-12
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/smoothPageScroll.min.js?ver=6.0.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:24 Last Seen2024-04-12 17:25:37 Times Seen364 Hash 23ed54cd9895f7376861fcb95511ba5a 493e3dfe05f9577bb35ab81aa12e0b5ec685267e 68660ed034ce29ee691170a7958a6bae5fdd90495fe55f77fa2ded95bec9ab48 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	341 B	2023-03-12	2024-02-23
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2024-02-23 20:46:33 Times Seen3 Hash d7cb4a89617cdc00890fd21d4d56a291 f066025b3041d79b6ed88a72bccb7d4d045a5019 7a82bde79e9360babaa33c37491bfc0533df8a092ae70cd60151d7323d35aee5 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 09:54:53 Times Seen31826 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1667038822	4.0 kB	2023-03-12	2023-03-14
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1667038822 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2023-03-14 09:27:46 Times Seen1 Hash 3e831af9946220c967e7b4cba82adaab dab8ef89a13799abc282358c78762c2feda0549f 065b7ca5f0920d2e0230b17bec92f5f672347826925a3b0dbf68c50d86895f39 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.3	592 B	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-04-19 20:39:52 Times Seen1250 Hash 6ed9de3daa3809aa226075080814054b 6b602468f609bc7e399e4a52ca1ba9a86d2a43bd 77d308d40b0f03f15ef770f10887ce32a8648fbccab8548ae1375139727a557d Loading...

	www.northernedgecasino.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5	2.5 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-04-24 18:24:18 Times Seen6202 Hash 496baa8dab0a9861cd85d4e329f5aa77 5a036d58aecc5c5c471237d6dc719333cfe225e6 5df2942db2352e49e00bcf3393b875a71d0acee986e48fbdcc5879846f5c3689 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1	37 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-24 13:45:07 Times Seen592 Hash 24443da3a469ca21411e562a861ec083 14a10995d6efe48ceea5916e218ecf177560352a 2e65f5c3b3b4c402074c19dee3d24d6bc02a8a86b19c8c992a4a6e78b254b2cd Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1	2.5 kB	2023-03-07	2024-03-11
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-03-11 19:49:50 Times Seen122 Hash 20aba941eb2feba7c046aae513527b3d c5c89b5c563436d87eee0ad4ae38a8b6cba94a18 f28d622f456af32c48e68aceec4d3f6db98f7ea796d14a0fac9068dee2374933 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1	864 B	2023-03-07	2024-01-30
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:54 Last Seen2024-01-30 15:41:53 Times Seen106 Hash 1811d0fd151b753022f9c2f00c336759 26b34a66e68e39f8a3eb1f991b24d13c0b1c4f27 5b7cf2e9a80f496ad0b7673b4228631a2262599454e1d420cd262d72ec087fdd Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1	632 B	2023-03-07	2024-02-22
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:53 Last Seen2024-02-22 06:51:22 Times Seen107 Hash 4071c300c4e790dc774dcaa4ae3a5c4b 8239b95a308e073f4dd1373a14bef8729c1997bd fe4a54844495b5ea28b5813e3c2baa18da12c9c9d1ca6d130973f50aec64be15 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/default.min.js?ver=6.0.3	207 kB	2023-03-09	2024-02-23
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/default.min.js?ver=6.0.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:31:58 Last Seen2024-02-23 20:46:35 Times Seen10 Hash a23ae40d98d073c5fe6fd85180cf56ac 7ba7a4317db39a6fa3e8cfd92295fa30b1bd5dc4 2d8ce4df7b38ca943c370f1a0d1b43fea5ca296a7edc7e08096f941e1c082b64 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	2.0 kB	2023-03-13	2023-03-13
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:34:26 Last Seen2023-03-13 09:15:24 Times Seen1 Hash 0dd5c5b00729179fc10f6f07cf817789 af1e325e0fe19bf0a63f317a076d46845d13bd5b ecea12c94db8155aa3c18338f580de319a9493d60c3c8bfb5597f5caad75729d Loading...

	www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/jquery.bxslider.min.js?ver=6.0.3	19 kB	2023-03-07	2024-04-01
Pretty URL www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/jquery.bxslider.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:17:31 Last Seen2024-04-01 16:31:06 Times Seen7 Hash 215d577c0a8faad0ea3253b5162b5320 c64d5b1558855ec0cc9873a4ab6abc13fc7290eb fa1e4c31bebeff184e9e14ed6dc1a46f6a7563b24cd561f196bf1390ad8a7529 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	493 B	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-25 08:48:28 Times Seen4273 Hash f73f3cc147a181d5955eaba113c1c122 07a5ef5a63d37a99d17986786d75bdcb3cda6409 5aab3a40376dc0dffe15b2882b50d298e6c877683a4f25ddfcf77fbd16d47b56 Loading...

	www.northernedgecasino.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94	10 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen2080 Hash f270dd1f483179fdcfb29ce5f91aea13 166661187a97f0b6b685ec4dbdff871e9824168f 1dc4b29dd0acbed77ec2fd81036c33efd4ab5989e8182705a30615a00a0117f7 Loading...

	www.northernedgecasino.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3	4.9 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen24388 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1	4.5 kB	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen35 Hash a7542d820d701a8f7da3ebe3706428a7 843bdd4dbd8afecbca3d85237bd619eb4b65675d 288a4ad9b25d7bdf1556d408f48547176288ec48746ab117a3f32a8107c8084b Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.3	6.1 kB	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen1349 Hash 5d9071e402d996e2f10c2d4215d5e630 adcab9dd3883ce4134b4c53bb851a88705f6d7d5 4b8162ebeb85874a5a4cca3f316ec836ed89a3740d0c2d924070d8fed9d1213c Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	202 B	2023-03-12	2024-02-23
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2024-02-23 20:46:34 Times Seen3 Hash 46a3e3619d49e67dd211b427e216d678 a8d223a13922f909a2e23e33eeafd120cbeff743 068f3598f0958be5009274acded2475c78167ef001dac75a1bfb3d13300d8a31 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	516 B	2023-03-12	2023-03-13
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2023-03-13 20:54:42 Times Seen1 Hash c3d6587826d9b700a5c17bd3c28fa76a cc6fd27d61b46dd9e6de5a802989e779803fd52f a33d1bcd1d78fbfcbd0611b1b883000896c06be9d0ef0b0a233458885dfcc82f Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1	10 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-04-24 18:24:18 Times Seen228 Hash 887f1d35750dab9617fc2e87ed2c7905 eea3e0885cc6653aba765826337e4aa5ec17a899 f4154825dc56e715b2138ad66a290eb8b17824bb0c08685a2888c2fcec94b36a Loading...

	www.northernedgecasino.com/wp-includes/js/comment-reply.min.js?ver=6.0.3	3.0 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/wp-includes/js/comment-reply.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-25 09:56:49 Times Seen29281 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	600 B	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-24 13:45:05 Times Seen2819 Hash 465b287774ce34eb83ead8af520c1149 d7981fbda1f395b47c5a615aca55c730634d00d5 24a9df5c9124b14e865bc4574068003fc22dd9815889607d6badbdf19d4256b3 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1	1.0 kB	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:54 Last Seen2023-12-27 20:46:58 Times Seen40 Hash f63059e246fd4567adcb57e2f3842baa 50a821f87c52bb0b8a54fba154e5d17421d07404 56c4e28c08abf142166f545092d81930c498ef9a8a89884e121f75c65d29a0b1 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.3	14 kB	2023-03-07	2024-04-12
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-12 17:25:37 Times Seen1850 Hash 2e704c1f29cbb512e403ffe68315094a 97fcc42bff5c65aa3418ae419d3ef248c4ec195e 60ef0ce4272c1ae361476cf56578930a5517b8d9d699e22dffc94524d7234b6d Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen3653 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1	13 kB	2023-03-07	2024-02-04
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-02-04 00:11:20 Times Seen135 Hash f02a63086bd91b817c00f7521ec7d115 94f500fa6d4c4f60a509ebea337f109474d9d708 97da09ae98803932c42d9e9cfe80acc4d2953b60cc6020acf11a19f04689283c Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1	4.3 kB	2023-03-07	2024-04-11
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-04-11 00:17:37 Times Seen483 Hash 0e2f9957a0a30999856c8f8c5d3996ac 7a60318efd39761e6728218f1571b6dfaa35a316 10094e3448750a4d28c63270c34a48a713985bcc5602ffc783e2a3e187d9ccff Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1	26 kB	2023-03-07	2024-04-15
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-15 11:35:11 Times Seen352 Hash 9c987714777529a5e2b4afd81a1f2f7f 8248ee40c640ae5c4afb9753c7e30176a3728038 6d4f84a86bb86352e951b6c9af87c3411920e6bdbc2f407b17af06e1ab5caaa4 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 11:22:31 Times Seen37061945 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.3	8.2 kB	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:52 Last Seen2024-04-19 20:39:52 Times Seen991 Hash 8e6d77fce7090901552dca7b2e3547f0 e04b99fbfeb9607e70e332ac53954be6f15dab26 7b85a02b04b5b57387fca1e766d3478accf8b14142f11cd2665fdd80c890f773 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-TP2QB6R	97 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-TP2QB6R IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:34:26 Last Seen2023-03-13 08:34:26 Times Seen1 Hash 32a2c7fd5451d1bca864f93d9a99d00d fbbadd83f629c3a4197060ff60e35771b506f88e f5e9f9f685a1c09e16ec57ff17dd57e20a4bf3ef4d468386928f401bd608cc45 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1	8.5 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-24 18:24:18 Times Seen170 Hash 44856f993a926c164e52d1ed2cedfeec 0d113e4a8f1022bb8f48f02ae4ea2eb290579b71 dbc9abd87b47faecc6fedf2c7b0611103f405caa7296005432456196a735aed6 Loading...

	www.northernedgecasino.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 04:27:24 Times Seen15495 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	263 B	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-24 18:24:17 Times Seen2578 Hash 6f35b6645bb854163663bd445d10a947 0ed94701f3b2f1e0312ad8f86c041658f23dce3b f70b1a7e02d635c75235a4a8351bb4bb3b4ba6e3a51acb1b1b231b3c230541b9 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1	4.4 kB	2023-03-07	2024-02-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-02-27 14:58:06 Times Seen155 Hash e63e2c516bd4f59b064811e08b8f4c2c c7fe8baf4dfd3800ff82750b4887a364b5263e53 2f266be2c8dcaa0d833e327744db160b6e5edecad0da8f0f081a5ff22c64e74e Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	3.4 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-24 18:24:18 Times Seen626 Hash 5c38aa6d5b98586ca2ba973ab8b4b6b1 8215983363ea0d74f99368336404b0d27217778f 7c4dcab706e6bf67c64df89d3f5e137cb19efa293771613f511aff1ad563a6df Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1	975 B	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen38 Hash c6e092664cece8036f31c49c8a95564c 3c426284d22293bc411cd2a005cdb11c9387151a 75524d6fd308ed9d9318bf3118e5b029301edb6eba5d277cd16a63aa52649373 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.3	5.6 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:48 Last Seen2024-04-24 14:24:47 Times Seen1509 Hash 9ae82f0efe3e33139fecb89cfee71c08 93f15dd89ef09486ef3097e428c44424fd59f225 f7b3dc94297cd47d4b2195477eff1acd681aa73851590061b58b32fc05a4a007 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	341 B	2023-03-12	2024-02-23
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2024-02-23 20:46:33 Times Seen3 Hash 756d50f2c2d0f7467349fc9a52215c78 7eb69523f644fd4075627fd852cc4854d616889f 6ec0abb8a92b4c05534e4eee9709e080dc309a49bc7c5425d824946ab9424abb Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1	8.8 kB	2023-03-07	2024-04-15
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-04-15 11:35:11 Times Seen294 Hash 98f09b434a4910c56d74bcabc23ac05b c52a1a8e6e5823f859ed4123a00d730237c39893 73e77da1e0317a722f4c849f2f40227d33eecbdb930b04df897a78d993180b16 Loading...

	www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6	18 kB	2023-03-07	2024-03-26
Pretty URL www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:41 Last Seen2024-03-26 15:40:27 Times Seen598 Hash 8391e8089560b253140f7ea746be476a bb0d4ac4f9885ada407cb711b91aee9883a11ad1 5a7504db48a8093fa26f7b551db60ee5a3927df2ce7095625f6bef4a7a7aa6d9 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1	2.5 kB	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen40 Hash bcf3e4b9c2047a8b735f8954d7fada81 0c3775b28dc11b9bab2fa322f4261546139a31fe 03c232e9da2bd0f0379ddc20d734d298cdfb08210089e766c0e6eee8a8d28d7c Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.3	36 kB	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen2718 Hash 95ed1955938c1024a682da5565431c98 843a4bed1fb222ce5406d27ed5641fe1e5c829ca 764f3462a55275c599ea9a2941db915ec788cb9b67334378cb64772c05bc7a08 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PQQV6T9	99 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PQQV6T9 IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:34:26 Last Seen2023-03-13 08:34:26 Times Seen1 Hash 5235dc2343c42eb71fd2f800d55d6728 03223ef5774831da40745421c1572810373ea79f 8697bc37163e5aeeeb39ea433af3b1d907df9d719d1de3b47038c362a8f82db3 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1	17 kB	2023-03-07	2024-04-15
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:41 Last Seen2024-04-15 06:53:32 Times Seen595 Hash aa5fef7b171510a2a430328d4a0f3b03 cf6377f9bd83d9ce5f18c3de8ac7e57c047168d4 5f030eda75a32de3b4f63e28a38e83642b8a723c84ae73bf3726b85cd411bfee Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1	780 B	2023-03-07	2024-01-30
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-01-30 15:41:53 Times Seen87 Hash 248f082057a26a02233a1d5a09745731 24d22c7bf5ac8ebca0db1630a01267526bc89b9d 96286bfafadffbbd868add4c09452da72cd90e49ab22cc2c76c90cca66abbce4 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.3	24 kB	2023-03-07	2024-04-12
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:24 Last Seen2024-04-12 17:25:37 Times Seen632 Hash 88b9132aaf81cacd83bd7c80eb2658b7 762db98caaad949d6fd013dc80d4177d7ed1dea2 0fba7bdad2b7fdeff46c69ac1355d79575b10f8c15db750b1d3d19f659180cd5 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1	19 kB	2023-03-07	2024-02-04
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-02-04 00:11:20 Times Seen144 Hash b3d4dfc449fca06f4949f6c43f004bbc 865696c68d9f889910dbd29e506cf67644322495 aad7aa1a4b01b34fabc6eb823865de09b1019050b80c8ddbc2d68667d92217ef Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1	7.6 kB	2023-03-07	2024-02-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-02-27 14:58:08 Times Seen47 Hash 9d82936d3e9cf953a2eb71de00c93cfa d6bb2a04aa9a8814022f57d76419741ac15347db f470b54d9d5c1f93c9605a4eb764a7e8ea9e309f3c590d1d7e3402057a44e3c3 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1	12 kB	2023-03-07	2024-04-15
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:43 Last Seen2024-04-15 11:35:11 Times Seen457 Hash 1d376be55e51aea00d432f6659d3e0d1 cc5b9f6fa12d0a90b38d3d6e918401c9ad26332b 34934dc0d2652647955344d4d53218860096f14217c81c1eb5b02e54526835b6 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1	707 B	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen44 Hash e44254aee10ef35f6b4ae8ff61794ce7 37bd0b661ac048a7ea282b4e6ac8426d96430a95 ab41f275f8588ca434760a503eca552f89e2cb1f2c8684df9cf65c868ea4fe49 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	2.2 kB	2023-03-12	2023-03-14
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2023-03-14 09:27:46 Times Seen1 Hash 9a796633f64d11855030e6ce29bb72b7 21eac85d0e6d827d2b1ecff018a69c769606a35c a2db2fd858258f551e18dfd5c27bcef2a11221d1c3d913eb64e2434b2d1f1e7c Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	526 B	2023-03-12	2024-02-23
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2024-02-23 20:46:33 Times Seen3 Hash 97014443756627073cd140ec45613765 7607aae27d52525aa491a5d07556490b200f8c6b 10fe77fce2dada725b98549677902d5deea178a3fc1b02665a377d4c23a5b004 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	332 B	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 08:48:28 Times Seen9155 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/video.play.min.js?ver=2.9.6	2.8 kB	2023-03-07	2024-02-23
Pretty URL www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/video.play.min.js?ver=2.9.6 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:05 Last Seen2024-02-23 20:46:35 Times Seen28 Hash 760e4e6f1ebfb8fd0d45c4c2b4413abd f2f60d903c65847bce00c5b16abb530621dc913a 001abcda73c2785b1c08b6d427ff2986d761f7570fd3998472e22232e07b8572 Loading...

	www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/extensions.min.js?ver=6.0.3	74 kB	2023-03-12	2024-02-23
Pretty URL www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/extensions.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2024-02-23 20:46:35 Times Seen5 Hash c3af7cc4bdbb5b7eb29864f9a22830da 030e260d4fb26c05a0a65a57e70b26c47daa1c08 9d905862c35d71798a0a0de8016ddafa0ae3e3fc03d5a4b532071d8a013c786a Loading...

	www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31	392 kB	2023-03-07	2024-04-23
Pretty URL www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:07 Last Seen2024-04-23 17:19:03 Times Seen756 Hash 57873e88ecc07a217b2b7149a169d6f7 9e61a16932f643d23582b07bb7f780059866b37f d048af27682e7811ddf8a3be2684b8446f5c16c4fb39141567913ac8aac28fc0 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1	11 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:41 Last Seen2024-04-24 18:24:18 Times Seen348 Hash 0ee357a183287d64fcf277f66d532e6d b45721bde387037ac73347020edb890ac4a77814 7ce6eb9cd7f07b424c34ee977214503668ae5e137d07b3fe0a37373e57686ebf Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.stretch.js?ver=6.0.3	4.2 kB	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.stretch.js?ver=6.0.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen1056 Hash 33ce418cee8273af0cfd13c55bf91b05 2584c1fc6919667fba43769a1cea535f490bc503 ef54a3ac899fe8ac2f4500328f1b540120de3efafb21c1f8a849859bcc5c3711 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	78 B	2023-03-12	2023-03-14
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2023-03-14 09:27:46 Times Seen1 Hash 4cb886f6755bd7bc7cbc03f9de11c2e4 6e939659c99a99a8dc2a9914639651ff719ef962 ca06d658fc98cecffec543be9dc62be67f619eb636cfd0a5237601098211bb0b Loading...

	www.googletagmanager.com/gtag/js?id=G-TXC8BHSENP&l=dataLayer&cx=c	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-TXC8BHSENP&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:34:26 Last Seen2023-03-13 08:34:26 Times Seen1 Hash aaecb639ec26773a396b4d8d591a857a 73e725481c374570f9afb1b3070b7c3fa1d28285 b5fcecac8c2a1408304e8d24822b22f1602127ab01637299225fde6964f327e0 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1	672 B	2023-03-07	2024-02-22
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-02-22 06:51:22 Times Seen113 Hash 4760297cad568dfa9e1cefa776a29a16 082f6e70a5ca7dea776d324779538ae71960af01 24eeb2854bbf479ff1b52cbcca54307d75b6f916f740dc42f5dcea329bfbcf97 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.3	26 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:24 Last Seen2024-04-24 17:15:49 Times Seen1049 Hash 5b98a23d300b46fd6af2eebaaf649f76 a6aae44f5e0a7fc693cc7f1c6600cc6c1f7c0aaa 1bbc039202f6031d91e225eae8cb4c201f906eac06ded4251cbf5ab1e86176b7 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.3	1.4 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:40 Last Seen2024-04-24 23:33:27 Times Seen2606 Hash 25db04e9daee1c00f6ca337537c32c01 cc1d92c5536c9b2dd766b6eddc0c8ba8cf831438 c8104390115f92b27003b1e4e503ef59343ccfef4ac19751093544e8cfaeae26 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/custom_js.js?ver=1667038822	85 B	2023-03-07	2024-03-27
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/custom_js.js?ver=1667038822 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:24 Last Seen2024-03-27 18:44:49 Times Seen596 Hash 24b28ecb559a8adf2ee81d794dc3352a 8381f0ae423fb7155cfb006261bb7c13345acc4c e7a8810a40ac398eaf5862eed41b7388c648acba58021c08a381a62024ecaf48 Loading...

	www.northernedgecasino.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	19 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 04:27:26 Times Seen38041 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	120 B	2023-03-13	2024-02-23
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:34:26 Last Seen2024-02-23 20:46:34 Times Seen3 Hash 17fd2278522bd0d4190a326e4ee69f8a d4dc11c5471aa5718550bc3a60a02f0125f69e3c 9e6290516c664694029b261cd1d3220425c53fe612dd57afd0dae850afa5f839 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1	509 B	2023-03-07	2024-02-01
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-02-01 17:47:00 Times Seen112 Hash 1a0cb909d51d4ae1116207312f05933f 353b98cb11bb714c201f778d21d60f85a55a9aa5 2ef9a0b7735658c436b863ae36c4dec0a5d831988b8fa6c5874e066289afc8c4 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	68 B	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 11:15:10 Times Seen22471 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/ScrollToPlugin.min.js?ver=6.0.3	2.5 kB	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/ScrollToPlugin.min.js?ver=6.0.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-04-24 17:15:48 Times Seen971 Hash 663093ff09dc009c20665c9d2a1c583d fe37b57b0f8147357165a9778f1f3dd14d892234 f3146fcaf21d54d25c505c2127dc519509eb9240289f14b24d3d783ed598f29b Loading...

	www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18	129 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-25 08:48:30 Times Seen3357 Hash fb0dc63ed31433d3e16526f9e415d57e 3d4029b9f66e3f3c086eba04a02c140660a94acb 559f367b8631134334b4870bed568b019af144c801b574a252e337d4e837a05a Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.1	6.1 kB	2023-03-07	2024-02-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:24 Last Seen2024-02-27 14:58:09 Times Seen153 Hash f6999ce0d77483a68163c6647359d498 859f9a56ec2fa6db2492f5fc77a1915ab298bf06 a0b4e1978c954ef1b191725c1a7b725e24a5d89b9242f9342d1b69694d7117bd Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1	737 B	2023-03-07	2023-12-27
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen152 Hash 2faf0e0203fa3c8ae0145b629f6b64eb 575a0fec649d158f2e4cb68999dc20cad55d3e52 d27ac49b93db7bed6bea6326d4fff6ae4fd4d6aae4d6d3a6513e866d92e77bb5 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1	426 B	2023-03-07	2024-01-30
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-01-30 15:41:53 Times Seen83 Hash dd90af7ff0f41c30b3e2795c7264e311 e336e34cf8c76092f47483bc3994b70d1bc5284d 5ea9f096b4f4251b19cc82cba7a53a4dd7ba1a75299d522096b3843bce23dfd1 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	335 B	2023-03-12	2023-03-14
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2023-03-14 09:27:46 Times Seen1 Hash cb2f49c6077699a8591cf65ca0cb0cdf c18641fe541d65733ba5aff31380371a21fab8c9 8dfcb94e270794e61e7db86253150d7846a6f08f40c710c4d0cd0f92e8ca0a51 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 10:34:46 Times Seen68619 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.northernedgecasino.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff	498 B	2023-03-07	2024-04-24
Pretty URL www.northernedgecasino.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-24 19:12:41 Times Seen11719 Hash b0b80b0256874e70acdc820b52bbf1aa 9aace9a7989736bf535d65f229d0c10e9acea41b 166c7c3bb5f76f977a9f2a5490589b3466374eb2b3f064802e56f08bad71fbf0 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1	1.1 kB	2023-03-07	2024-01-30
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-01-30 15:41:53 Times Seen85 Hash be2beaa629d644dca898dff086d13207 595f686d864feefaa4f363b4f7b0f2d8a91e0353 19131de09b4f3d0bdf511ce35dcb52d5b917980f79802b702d3cdc563a8f3c7f Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1	830 B	2023-03-07	2024-02-28
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-02-28 23:31:42 Times Seen84 Hash ce1026e3d157a85920e61bc8ce3678d9 1008c8fa388e8ef91eccfdd9db518189e15fbe6a 623693095612074947923eba63605287bf38513b63a2773d5ead8c2112aa6556 Loading...

	www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1	901 B	2023-03-07	2024-04-15
Pretty URL www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:41 Last Seen2024-04-15 06:53:32 Times Seen268 Hash e0b6ee7035469fab34982887e7ef21f7 8f38f75ae3db197142744524b6fcb8dc11efd577 f7f639c14daca92fe9f66f08d4ef076d2413eb99dbc35129158de1814d1d7c91 Loading...

	www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.3	12 kB	2023-03-07	2024-04-19
Pretty URL www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.3 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen1763 Hash 507efc0c0f5e9fff2ebfec66b8d90b0b c5d3785cd113ae27e53f6d8eb13e3cbdf204d3f8 7d632e84eb41df6458229ff7231547c3f015e6e17ed341f7e355f5bc1edbf5eb Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 142.250.74.8 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	90 B	2023-03-12	2024-02-23
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:30:42 Last Seen2024-02-23 20:46:33 Times Seen3 Hash 40d142ca330d44fd865712b0e2720b9b b8548862da47bcdbd00b53d4eb5ede2ae3a4b02f 00ed6259bb2b2d0c4d03d398d151b0b9dc9fcf6f8e45d1b5f8a758a7f197d166 Loading...

	www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90	2.3 kB	2023-03-07	2024-04-25
Pretty URL www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 IP 216.15.188.190 ASN #7393 CYBERCON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:07 Last Seen2024-04-25 08:48:27 Times Seen7937 Hash f0bef95e258d5b84f82c5d4e29252176 eac5936c555c039bc38816d0916e13c0b364d797 a6c3ffec54ef5f2ca033b1fcdf84e1feac93437a3d8d4439667e9276ca2a9836 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ac7b7677cd067588de11a4e8c45457d8	24 kB	2023-03-07	2024-03-26
Pretty Observations First Seen2023-03-07 12:02:11 Last Seen2024-03-26 15:40:28 Times Seen380 Hash ac7b7677cd067588de11a4e8c45457d8 2d9a777b71ad0e2a50058ef2715943727c143a9a 9427b28bccd70e88ae216329d97b400e65432ac4f65058d19e7f713c9a5007d8 Loading...

	#2 Eval - c562232c26bcc5e500eb506ed3cf7324	3.1 kB	2023-03-07	2024-02-23
Pretty Observations First Seen2023-03-07 13:18:05 Last Seen2024-02-23 20:46:34 Times Seen19 Hash c562232c26bcc5e500eb506ed3cf7324 d3a0df63278d7bcd31adb0a318de0648ef15278d 4574298b78b556a37adda06dbc63f5abbb548483f73ab1d76c6a4cb3ef0e57d8 Loading...

HTTP Transactions (157)

URL IP Response Size

ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925

54.237.163.208

301 Moved Permanently

178 B

URL HTTP/1.1
ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925
IP
54.237.163.208:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b

HTTP Headers

GET /api/r/i/63ae5075a9cd46fb16509925 HTTP/1.1
Host: ui.fraudfree.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 27 Jan 2023 14:32:36 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16151
Expires: Fri, 27 Jan 2023 19:01:47 GMT
Date: Fri, 27 Jan 2023 14:32:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3966
Expires: Fri, 27 Jan 2023 15:38:42 GMT
Date: Fri, 27 Jan 2023 14:32:36 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 13:35:22 GMT
content-type: application/json
age: 3434
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3350
Expires: Fri, 27 Jan 2023 15:28:26 GMT
Date: Fri, 27 Jan 2023 14:32:36 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: WSa8eYQSlLd1Ovo01hpWBiOjW00TYs1+mCVL1FqjCV3s5HTYrJER1pf4wxYbEIiFfPIpoC59vAo=
x-amz-request-id: RDHHPFD2V0Q8VW6T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 13:49:26 GMT
age: 2590
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 14:32:36 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f0d58774d254557a1b943310e5354553
6324416644eba79ee92d39ab97853691bb41f736
71757bc7f3c1fc550feee9de9c72b28cf8b15c2bc75a4a4a875c4b4a24d9b8f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71757BC7F3C1FC550FEEE9DE9C72B28CF8B15C2BC75A4A4A875C4B4A24D9B8F1"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Fri, 27 Jan 2023 20:32:04 GMT
Date: Fri, 27 Jan 2023 14:32:36 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 13:41:40 GMT
age: 3056
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925

54.237.163.208

301 Moved Permanently

0 B

URL HTTP/1.1
ui.fraudfree.net/api/r/i/63ae5075a9cd46fb16509925
IP
54.237.163.208:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/r/i/63ae5075a9cd46fb16509925 HTTP/1.1
Host: ui.fraudfree.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 27 Jan 2023 14:32:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Referer: https://ui.fraudfree.net/api/tracking/redirect/63ae507881c295fbe0120a51
Location: http://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17891
Expires: Fri, 27 Jan 2023 19:30:48 GMT
Date: Fri, 27 Jan 2023 14:32:37 GMT
Connection: keep-alive

push.services.mozilla.com/

54.203.75.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.203.75.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u2Fz9nKxxW3szeYU1EUdgA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8TjcwuloVtJq87aRrM6RZZaWCKI=

www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90

216.15.188.190

301 Moved Permanently

707 B

URL HTTP/1.1
www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 27 Jan 2023 14:32:36 GMT
server: LiteSpeed
location: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
vary: User-Agent
content-security-policy: upgrade-insecure-requests;

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6581
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:32:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6581
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:32:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6581
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:32:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6581
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:32:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6581
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:32:38 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9056 bytes)
Hash
dc869235086902c4acc379733b6bfdb8
0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae
e614e29b14e69209fd4b82a688290f7a3f541909833a6558cf480aca899bab6d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9056
x-amzn-requestid: 81cf473d-8dc6-49e7-b012-d0b7dfaec7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fB4COHTlIAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca3a0e-0848461c054db5c66fde9107;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 06:51:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MApUIVJ9KiOB34nLWUtMNmA8deQVoQ9xyNqSUYXlzdLlGoP9n78C5A==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:42 GMT
age: 29276
etag: "0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11372 bytes)
Hash
ed3df3868d4a13270faf944f911637a7
1b69b2433956c79510bc4a013648a5fb12882884
e13e2ca5d6552a96eb972936f553937a5aff566eb37f39b0928f15d3eeab617f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: d50f0c0e-a383-419a-a3ca-630d5fd32821
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPAw_E_rIAMF0hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf7b39-64abe6b72176db7d7b67f315;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 06:31:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7AecnloBAOZbROe_gGLZL8AcwRb1rrSIo577CwGZpzyDdtRa-Ae_9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:08 GMT
age: 60330
etag: "1b69b2433956c79510bc4a013648a5fb12882884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5943 bytes)
Hash
ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 60170
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5737 bytes)
Hash
5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 79263
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11568 bytes)
Hash
b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:35:59 GMT
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
age: 71799
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61f2aec8-2d63-4f9f-9980-04c179cc5720.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4627 bytes)
Hash
464592dade1d7207d58b22d5d09d9254
3caa2537edfe4c738540884b3eda51e437d26f4d
c0cdec94ff460c4b875657bb53ed90ef2ef786a2b8095d1ebf09365556536375

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61f2aec8-2d63-4f9f-9980-04c179cc5720.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4627
x-amzn-requestid: 38f2ed09-3a2e-4b5d-bde9-24fd7467d1a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZJE-BIAMFvdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3a-4ad90b1c2883444f547b6f84;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Pl5Ta4lZHz2a_R1U3OnL1AZFcLc4Ez6_2U7WZ6ZYUC26k9r7m6mxXw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 03:05:12 GMT
age: 41246
etag: "3caa2537edfe4c738540884b3eda51e437d26f4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2dd49753b725c0adb91fafd2a7821613
92547466e2927540da351740e1c8702b00016188
9a8ce5d24a953b03df10246293da6632a6e779f6719f51b1877c98ebc961a7ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6146
Cache-Control: max-age=136730
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Etag: "63d33b9f-117"
Expires: Sun, 29 Jan 2023 04:31:29 GMT
Last-Modified: Fri, 27 Jan 2023 02:49:03 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2dd49753b725c0adb91fafd2a7821613
92547466e2927540da351740e1c8702b00016188
9a8ce5d24a953b03df10246293da6632a6e779f6719f51b1877c98ebc961a7ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5965
Cache-Control: max-age=136549
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Etag: "63d33b9f-117"
Expires: Sun, 29 Jan 2023 04:28:28 GMT
Last-Modified: Fri, 27 Jan 2023 02:49:03 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279

www.northernedgecasino.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3

216.15.188.190

200 OK

11 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (43771)
Size
11 kB (10946 bytes)
Hash
d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 18:31:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10946
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/css/extensions.min.css?ver=6.0.3

216.15.188.190

200 OK

11 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/css/extensions.min.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (639)
Size
11 kB (11091 bytes)
Hash
56832b3e0ca1bfc02187ee576a4d0dec
850d148cc2465ae61059367550ca9d3fed1e75e5
9c13d52b4444b1c76f0980010cfb8339ae066105f136700d6e379826bb9c4570

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/css/extensions.min.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:23:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11091
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/style.css?ver=6.0.3

216.15.188.190

200 OK

287 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/style.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
287 B (287 bytes)
Hash
1787c807534fe4cb8773734c046cc49b
48a6e4a8d332e16ff73c62fb9242de6bd477dbfb
1e28963c8e240fb28d70f5d573dc6d74edf6c1716220707ff0603bd642c63307

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/style.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:08:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 287
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.northernedgecasino.com/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.3

216.15.188.190

200 OK

6.7 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (30837)
Size
6.7 kB (6658 bytes)
Hash
97c6ce9b4936f66aa388ad33c39aba2d
3f14a7e78fbb4935cf35c20779dc2035531849a9
1eea453c424793fc56ef14093c10b373e3ca8388a70e847394e8084048c5ce38

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:31:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6658
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=6.0.3

216.15.188.190

200 OK

4.1 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (21769), with no line terminators
Size
4.1 kB (4073 bytes)
Hash
a211ff7edbfa20f37a4255dd408fea1e
b844983f4a2742adfb08d37a0885313e45efa4a7
41afc3a1d4ecc028e45d4191063307548d98059d56b0234ca4a626b85a9a129c

HTTP Headers

GET /wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:23:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4073
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/linea-icons/style.css?ver=6.0.3

216.15.188.190

200 OK

7.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/linea-icons/style.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (369)
Size
7.3 kB (7337 bytes)
Hash
60f8b842b9aadc413db91298b0a22277
253e26c13304a308b85f1f11a1bbb92cfaf26ebf
ad96d8dac53bfa3dc81d5c8b86cb70b712cd71d2080921569c5e736db9070c47

HTTP Headers

GET /wp-content/themes/bridge/css/linea-icons/style.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:23:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7337
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.3

216.15.188.190

200 OK

1.7 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
1.7 kB (1690 bytes)
Hash
01f67987067b61ea8d95fd8a798e1581
d73f78b56fd8b727f0850fecd0d688d832c1c30c
4cb2a4b75d2e6c2c30365cae564c890639c1eb16bc7d069da12c8e360a6e9bb3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:23:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1690
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2dd49753b725c0adb91fafd2a7821613
92547466e2927540da351740e1c8702b00016188
9a8ce5d24a953b03df10246293da6632a6e779f6719f51b1877c98ebc961a7ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6146
Cache-Control: max-age=136730
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Etag: "63d33b9f-117"
Expires: Sun, 29 Jan 2023 04:31:29 GMT
Last-Modified: Fri, 27 Jan 2023 02:49:03 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-PQQV6T9

172.217.21.168

200 OK

39 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PQQV6T9
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
39 kB (38993 bytes)
Hash
be6f9361cf8d02bd8d6a6f00259e2586
603bf562f403c176f68b2eefb74f6be940fd9d1d
043a3421ccae94bb9a52d5ef7f141f6c7e9e6b31200292d1475877f4ee1f71e4

HTTP Headers

GET /gtm.js?id=GTM-PQQV6T9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 14:32:39 GMT
expires: Fri, 27 Jan 2023 14:32:39 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38993
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-TP2QB6R

172.217.21.168

200 OK

38 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-TP2QB6R
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
38 kB (38214 bytes)
Hash
ab12b9070fd8e612c7a78efae4191ddf
a07282b59cd67efcc77b85d53f5c45126499959c
3b17f3559414b25591c5f4a2f5e97595abb549c767b885397d5e2468005b0f5b

HTTP Headers

GET /gtm.js?id=GTM-TP2QB6R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 14:32:39 GMT
expires: Fri, 27 Jan 2023 14:32:39 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38214
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.northernedgecasino.com/wp-content/themes/bridge/css/stylesheet.min.css?ver=6.0.3

216.15.188.190

200 OK

88 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/stylesheet.min.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (65536), with no line terminators
Size
88 kB (87818 bytes)
Hash
78f1e3ea16243e0753902c511fce3470
d85e5b80d8fe0fb09c7bd5b303e5238ea8b46522
09183f4e475a7ae51c43b2b51179a97bf0891365aa69ec91035e74486f717f9b

HTTP Headers

GET /wp-content/themes/bridge/css/stylesheet.min.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:11:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 87818
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/print.css?ver=6.0.3

216.15.188.190

200 OK

233 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/print.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
233 B (233 bytes)
Hash
4694e872dbf625988ec2ed58bcc68d61
07d569079314ac0499392683c40a695a0f818c6f
7cb3293816c217a91c322ba7cd51c6ce159038e86675af485c08a85221706c24

HTTP Headers

GET /wp-content/themes/bridge/css/print.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:10:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 233
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/style_dynamic.css?ver=1667038821

216.15.188.190

200 OK

5.8 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/style_dynamic.css?ver=1667038821
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (324)
Size
5.8 kB (5827 bytes)
Hash
fbdd1023459a5556a06f3083226ec7a4
0534cfd9be36bd9f09d67d050f0bbd20a3cdf9c8
e3a3a05e2edf04c14bb22835cceccd7ae1d0040bf6584d404426953d20d7ec9e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/css/style_dynamic.css?ver=1667038821 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 10:20:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5827
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/responsive.min.css?ver=6.0.3

216.15.188.190

200 OK

12 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/responsive.min.css?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (65536), with no line terminators
Size
12 kB (12401 bytes)
Hash
367989862765bd5ddbb89f38506d7236
ca0540c2f43926346bff0a0280e21cad12a7c902
906ebfbf9ac3441388c32453bf2a9619bf8ab55ffdaa8a1f714af3d4fd66aabd

HTTP Headers

GET /wp-content/themes/bridge/css/responsive.min.css?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sun, 10 Jun 2018 10:10:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12401
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1667038821

216.15.188.190

200 OK

295 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1667038821
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
295 B (295 bytes)
Hash
6ded922bcfd08b50084e7332131634dd
fe24b459bfb87d4058bd5b8bf0a866f28d1df604
2bbce9935773d820ac4fe2e335c5e20896d1a14d43a4ae7821bab55dc90bd601

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1667038821 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 10:20:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 295
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/css/custom_css.css?ver=1667038822

216.15.188.190

200 OK

199 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/css/custom_css.css?ver=1667038822
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with CRLF, LF line terminators
Size
199 B (199 bytes)
Hash
2b51d85e442adefa5ef6528544e45276
9c8603c2c30c38f58b0ecf8b0026faaa2f454e58
9a4bc2c9feb098af265c6f285937a74297323dac2eaae934970dcf9db375616d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/css/custom_css.css?ver=1667038822 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 10:20:22 GMT
accept-ranges: bytes
content-length: 199
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6

216.15.188.190

200 OK

12 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (65412)
Size
12 kB (12128 bytes)
Hash
f939f11451ff5d0b91c776b434374477
8ba4ce276493ae39112b159315c3abacae59a741
2be43c352e1ddff151daaefb74b890462a9b6f86d7eb75570a76220eb1a4792a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Tue, 16 Feb 2021 19:08:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12128
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6

216.15.188.190

200 OK

2.7 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (36512)
Size
2.7 kB (2677 bytes)
Hash
2c5ab0a12b2e7a6cb02045765967f97f
d73693cde81821b8e47109f539ccfff9f8494eb2
c6ff61e4d2c086e683e313a114c32133328e5cd2428d3a3916f76f2c0c618ba2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: text/css
last-modified: Tue, 16 Feb 2021 19:08:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2677
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2022/09/northern-edge-logo-small-1.webp

216.15.188.190

200 OK

9.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2022/09/northern-edge-logo-small-1.webp
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
RIFF (little-endian) data, Web/P image\012- data
Size
9.0 kB (9034 bytes)
Hash
eec7526efd972a816cb2b57242a01a29
cb12bdb5ff459a0a87ad597b40fcfcb670a40333
e9d5554e3e2f8ef4a5d5ff786fb4abe6df707b1b1264c12399990169fd689823

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2022/09/northern-edge-logo-small-1.webp HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: image/webp
last-modified: Fri, 23 Sep 2022 10:29:08 GMT
accept-ranges: bytes
content-length: 9034
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/assets/dummy.png

216.15.188.190

200 OK

68 B

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: image/png
last-modified: Mon, 29 Aug 2022 21:03:36 GMT
accept-ranges: bytes
content-length: 68
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/04/gaming-icon.png

216.15.188.190

200 OK

2.2 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/04/gaming-icon.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 150 x 149, 8-bit colormap, non-interlaced\012- data
Size
2.2 kB (2243 bytes)
Hash
190c2e3819999b61595033ef5e7b720e
03975c8db81227032eb02c4c85a0e45c4e7ea29e
cc8df767c65e1489c3687653a128e915d2c081a8f67382fd2ca6a2c41825d96a

HTTP Headers

GET /wp-content/uploads/2018/04/gaming-icon.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:12:15 GMT
accept-ranges: bytes
content-length: 2243
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/05/entertainment-icon.png

216.15.188.190

200 OK

2.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/05/entertainment-icon.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 150 x 148, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2257 bytes)
Hash
d0cc5d1674115198da3af1a5088d54b2
bc55a69d7c91ca1950d39f2af26a6f9e0f7f9dfb
1a7f6bbb75bab973a3e4dd3279e15a28895b29f75326931c607a8fa5f22008d6

HTTP Headers

GET /wp-content/uploads/2018/05/entertainment-icon.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:09:57 GMT
accept-ranges: bytes
content-length: 2257
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/05/dining-icon.png

216.15.188.190

200 OK

2.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/05/dining-icon.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 150 x 148, 8-bit colormap, non-interlaced\012- data
Size
2.0 kB (2015 bytes)
Hash
3bc7c8f64c0b8b1a8c81904847b73ae2
cdb45c19ccc6178d919f65f84ad57172f70ba97b
d32cecf2f04cd1bb26ec65f6c697cd6961884fa52a5e44a61bb7c104f13da612

HTTP Headers

GET /wp-content/uploads/2018/05/dining-icon.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:37 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:09:59 GMT
accept-ranges: bytes
content-length: 2015
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90

216.15.188.190

200 OK

18 kB

URL HTTP/2
www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8163), with CRLF, LF line terminators
Size
18 kB (17522 bytes)
Hash
0ebd16f963cb12cb5905c39ff319a5ae
a25892d30b6b150e277f83b0c84dd9f0756efc5e
0ce1d372b6b1decbdb6f6f28a3b50d9da54599db8af68e5a2aaaee3386d170a4

HTTP Headers

GET /?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://www.northernedgecasino.com/wp-json/>; rel="https://api.w.org/", <https://www.northernedgecasino.com/wp-json/wp/v2/pages/239>; rel="alternate"; type="application/json", <https://www.northernedgecasino.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Fri, 27 Jan 2023 14:32:37 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

ocsp.netsolssl.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.netsolssl.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
986372576927c9d83e458ffdcc8d2ee7
061cff3e7148771390a86d14577196112f8c81dd
a3f1d07929e3cce75c94d4ab77d17094427986b49daf1b3629758f6463c8b6b8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.netsolssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:32:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 04:43:24 GMT
Expires: Fri, 03 Feb 2023 04:43:23 GMT
Etag: "061cff3e7148771390a86d14577196112f8c81dd"
Cache-Control: max-age=568843,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790232edf87fb506-OSL

www.navajogaming.com/wp-content/uploads/2020/11/NMSafeCertified.png

192.124.249.12

200 OK

55 kB

URL HTTP/2
www.navajogaming.com/wp-content/uploads/2020/11/NMSafeCertified.png
IP
192.124.249.12:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 800 x 394, 8-bit/color RGBA, non-interlaced\012- data
Size
55 kB (54562 bytes)
Hash
acf8478395bb49eb988c6ae88242c8ee
19ab436405c296bf7b54c75a9326b1a49b803b9a
7db6a069ecfadfe41e8d7601e943c5759f63ddec6cdad516b2f5183c6aeafa58

HTTP Headers

GET /wp-content/uploads/2020/11/NMSafeCertified.png HTTP/1.1
Host: www.navajogaming.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 14:32:39 GMT
content-type: image/png
content-length: 54562
x-sucuri-id: 19012
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 16 Nov 2020 19:42:33 GMT
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6

216.15.188.190

200 OK

10 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (35475)
Size
10 kB (10317 bytes)
Hash
575cd3382b71fd529e1b917c35b55184
4d3067951ecf3f04283b69ab1d2e9f2a69e29e62
37216948fddd89b9dc1e9b46bdfd763334acdd5d4d225b43698b4272cef6bfd1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: text/css
last-modified: Tue, 16 Feb 2021 19:08:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10317
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

216.15.188.190

200 OK

30 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (65447)
Size
30 kB (30273 bytes)
Hash
34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: application/javascript
last-modified: Tue, 12 Oct 2021 15:44:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30273
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

216.15.188.190

200 OK

4.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3995 bytes)
Hash
7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: application/javascript
last-modified: Thu, 31 Dec 2020 11:44:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/jquery.bxslider.min.js?ver=6.0.3

216.15.188.190

200 OK

5.2 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/jquery.bxslider.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (19038)
Size
5.2 kB (5204 bytes)
Hash
385a605a956f040ae93711db0e8cfe83
a9e4994795dcfd587295cbfca27693de1b055c12
a88c489dce9c3175f40a575f99bc4a10230a9e15cf5cc4a928b9e23ae82c1fab

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/jquery.bxslider.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:23:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5204
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2023/01/LunarNewYear7.jpg

216.15.188.190

200 OK

63 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2023/01/LunarNewYear7.jpg
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 405x510, components 3\012- data
Size
63 kB (63352 bytes)
Hash
71137dd45ff0f1f878e55c896bacdd6a
b95dc7ecaf3f671827d1924904af0e7b5b16092c
8347d6dba026010e64e38660d89d168fcb5ff68a6fa57b59a653a5d9ec664f5b

HTTP Headers

GET /wp-content/uploads/2023/01/LunarNewYear7.jpg HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/jpeg
last-modified: Tue, 17 Jan 2023 18:16:44 GMT
accept-ranges: bytes
content-length: 63352
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c6c64fc014f993e296f124e4b2f0f175
68d3e62fcd25c05d19894a28f4490cf1d04a44c1
7cee6b4b9234d595e6abd78d1bc14febaf314cdab54cc18e07f92e0b24fe1e79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.northernedgecasino.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 329999
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-TXC8BHSENP&gtm=2oe1p0&_p=1477390244&cid=665437478.1674829959&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674829959&sct=1&seg=0&dl=https%3A%2F%2Fwww.northernedgecasino.com%2F%3Futm_source%3DProData%26utm_medium%3DBanner%26utm_campaign%3D2030283%26utm_content%3DNew_Year_Getaway_728x90&dt=Northern%20Edge%20Casino%20in%20Farmington%2C%20New%20Mexico&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-TXC8BHSENP&gtm=2oe1p0&_p=1477390244&cid=665437478.1674829959&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674829959&sct=1&seg=0&dl=https%3A%2F%2Fwww.northernedgecasino.com%2F%3Futm_source%3DProData%26utm_medium%3DBanner%26utm_campaign%3D2030283%26utm_content%3DNew_Year_Getaway_728x90&dt=Northern%20Edge%20Casino%20in%20Farmington%2C%20New%20Mexico&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-TXC8BHSENP&gtm=2oe1p0&_p=1477390244&cid=665437478.1674829959&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674829959&sct=1&seg=0&dl=https%3A%2F%2Fwww.northernedgecasino.com%2F%3Futm_source%3DProData%26utm_medium%3DBanner%26utm_campaign%3D2030283%26utm_content%3DNew_Year_Getaway_728x90&dt=Northern%20Edge%20Casino%20in%20Farmington%2C%20New%20Mexico&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.northernedgecasino.com
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.northernedgecasino.com
date: Fri, 27 Jan 2023 14:32:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/didactgothic/v19/ahcfv8qz1zt6hCC5G4F_P4ASlUuYpg.woff2

216.58.207.227

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/didactgothic/v19/ahcfv8qz1zt6hCC5G4F_P4ASlUuYpg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16780, version 1.0\012- data
Size
17 kB (16780 bytes)
Hash
442e4ee909315121ec3abc8db2f5c2e5
c8ad6315296b32c25350e9c7c724d10a2a745cb6
9143c69a1b271019aa0c602b4addb1c0256e503785c1ddd6163c2cb176c50768

HTTP Headers

GET /s/didactgothic/v19/ahcfv8qz1zt6hCC5G4F_P4ASlUuYpg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.northernedgecasino.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:05:16 GMT
expires: Sat, 27 Jan 2024 10:05:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:53:45 GMT
content-type: font/woff2
age: 16044
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c6c64fc014f993e296f124e4b2f0f175
68d3e62fcd25c05d19894a28f4490cf1d04a44c1
7cee6b4b9234d595e6abd78d1bc14febaf314cdab54cc18e07f92e0b24fe1e79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.northernedgecasino.com/wp-content/uploads/2023/01/2023_Locals_FP5.jpg

216.15.188.190

200 OK

102 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2023/01/2023_Locals_FP5.jpg
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 405x510, components 3\012- data
Size
102 kB (102511 bytes)
Hash
4f60d80ae1add5e641e5235818156597
2a65643d02c4341ba547cc92225f14631531cf54
3a040edc82111bba1b37ed6b1b9885a0370a7ef8170c37df7c323620b04557d0

HTTP Headers

GET /wp-content/uploads/2023/01/2023_Locals_FP5.jpg HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/jpeg
last-modified: Mon, 02 Jan 2023 20:17:27 GMT
accept-ranges: bytes
content-length: 102511
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31

216.15.188.190

200 OK

12 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
12 kB (11913 bytes)
Hash
5759693240a256e1c04a9aa241217f7d
4a8d20375f5b5ea2ca66fe2d7795299446702f65
61ff82a558e57fdd04525c81cf385bd25d98ebfc581c752a749c3cfc93097eeb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: text/css
last-modified: Mon, 29 Aug 2022 21:03:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11913
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/extensions.min.js?ver=6.0.3

216.15.188.190

200 OK

17 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/extensions.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (65536), with no line terminators
Size
17 kB (17320 bytes)
Hash
fc4065b4ec2672ff8b392f7cb6e3236a
1aea096e8ca789056698b463eaea6fd69905749e
f44dfe1e2446a195f594a3c22a18fcf25b25f004e2be18ada7d15bd740b3e1ac

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/rd-extensions-bundle-for-king-composer/assets/js/extensions.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:23:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17320
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18

216.15.188.190

200 OK

47 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (45108)
Size
47 kB (47289 bytes)
Hash
502eeaf921955755f84ae8b09eb22768
6457324b9b1b24121f99514ec32ac73d617361c8
32038768c28b9e02f9df2740ecd01abba2d3c0ff3476d7e31ae64469f6befeb3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 21:03:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 47289
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31

216.15.188.190

200 OK

98 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (64288)
Size
98 kB (97780 bytes)
Hash
562660858fcd53f2d8e67d2072b02ff6
b64b4262a6862c775c3bcdb5a2cfc17d09282bd8
80a120eeb1e42c4ffa9bbb2ac3737355dfae37392a2e42466f338c341020dd39

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 21:03:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 97780
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2022/09/navajoplayerscards_ny.webp

216.15.188.190

200 OK

22 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2022/09/navajoplayerscards_ny.webp
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
RIFF (little-endian) data, Web/P image\012- data
Size
22 kB (22260 bytes)
Hash
31d7334f2f51b31478bce2977fd7b721
b90afbe6c27202a2c484934d86cb6464e3a3ab3f
d71f7e5d62374241921b9b65a8d8691dfca064fc2afe717610f6aa35195f9606

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2022/09/navajoplayerscards_ny.webp HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/webp
last-modified: Fri, 23 Sep 2022 10:25:56 GMT
accept-ranges: bytes
content-length: 22260
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/05/fire-rock-logo.png

216.15.188.190

200 OK

970 B

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/05/fire-rock-logo.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 100 x 51, 8-bit colormap, non-interlaced\012- data
Size
970 B (970 bytes)
Hash
8af92fcaab424b2e3369b538bd5739c7
b810a72934779b8f9b91645b98987b6ac4842a54
e33cc9c26e5fac6d150f61ee57f0b97c5c9ac4bd61cf7e52b6405a688b3e2762

HTTP Headers

GET /wp-content/uploads/2018/05/fire-rock-logo.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:10:10 GMT
accept-ranges: bytes
content-length: 970
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/05/flowing-water-casino-logo.png

216.15.188.190

200 OK

1.1 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/05/flowing-water-casino-logo.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 100 x 51, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1120 bytes)
Hash
96a7d7f58723198d367980cfade0b7b2
dbc177c0e7b0746c6b084ae0c833a46b36dcb4b1
139195e4bc73a77ce3de12972f31317ed75b76e963e98308437fe01970a28933

HTTP Headers

GET /wp-content/uploads/2018/05/flowing-water-casino-logo.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:10:09 GMT
accept-ranges: bytes
content-length: 1120
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/05/northern-edge-casino-logo.png

216.15.188.190

200 OK

1.1 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/05/northern-edge-casino-logo.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 100 x 51, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1066 bytes)
Hash
49ebe0b2383d08d934fe85ab16ce7bb7
384f6c3a83edcd72eea03f709b23bef216d5c449
b58e8e146cfa703d526f6da01f245cf041f91fa8c8ab5e327c7e57b7a5c4f865

HTTP Headers

GET /wp-content/uploads/2018/05/northern-edge-casino-logo.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:10:05 GMT
accept-ranges: bytes
content-length: 1066
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/05/twin-arrows-casino-logo-sm.png

216.15.188.190

200 OK

1.1 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/05/twin-arrows-casino-logo-sm.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 100 x 51, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1123 bytes)
Hash
4b9a0f600cd596246bf78184ffe90548
6a9b7d228fa5e3f0e1ef9ce7278adb6cad30139f
d80dd34ba7729a52b1018d280fde0f7bec82d96e45856c444935bc3e257e4a6b

HTTP Headers

GET /wp-content/uploads/2018/05/twin-arrows-casino-logo-sm.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 22:10:03 GMT
accept-ranges: bytes
content-length: 1123
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2020/10/navajo-blue-logo-2.png

216.15.188.190

200 OK

2.5 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2020/10/navajo-blue-logo-2.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 154 x 51, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2520 bytes)
Hash
36c6a99f1cac59fd8555c99caf6465a0
94dbf85b4295c5a5c3f10f8ddeaa267e0aaf9f96
9bddd4643721cda93cd2d6ad8ffc764c2afc608ee85c86f6f1686d43c9b0bb5f

HTTP Headers

GET /wp-content/uploads/2020/10/navajo-blue-logo-2.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 21:26:16 GMT
accept-ranges: bytes
content-length: 2520
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2023/01/15kHiCardDraw7.png

216.15.188.190

200 OK

200 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2023/01/15kHiCardDraw7.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 405 x 510, 8-bit/color RGBA, non-interlaced\012- data
Size
200 kB (199966 bytes)
Hash
b92f1bffbeddf0d6ddd45ceef0596b3d
c15e8ec47eb4a5c6e300e184737dc5779f7c4d28
5a97177ef3ff1524612ed6c8f9b139956da3b649f4dcb8ca234b9e8ecc5e9aa8

HTTP Headers

GET /wp-content/uploads/2023/01/15kHiCardDraw7.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 02 Jan 2023 20:13:19 GMT
accept-ranges: bytes
content-length: 199966
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2023/01/NewYearNewGetaway7.png

216.15.188.190

200 OK

291 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2023/01/NewYearNewGetaway7.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 405 x 510, 8-bit/color RGB, non-interlaced\012- data
Size
291 kB (290754 bytes)
Hash
0a8f2673e16311f9926a1515011c1fe4
f87d162ebcdb023ca7a2494d94c7bc27406a5f39
70d6fba214c95776f59e4de5538d4355e334a2aa8d17d3e26a71c6507529b365

HTTP Headers

GET /wp-content/uploads/2023/01/NewYearNewGetaway7.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 02 Jan 2023 20:13:54 GMT
accept-ranges: bytes
content-length: 290754
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2023/01/SilverPrivileges7.png

216.15.188.190

200 OK

283 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2023/01/SilverPrivileges7.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 405 x 510, 8-bit/color RGBA, non-interlaced\012- data
Size
283 kB (282724 bytes)
Hash
5b26a0fabe82d9d82ea24426b702b4b2
b7f811568e64e14915bbd83a80fbe81e3bf17446
d2a2c732ae077cfa61db20556bfe6900ab26f4e483cd4f5d20ea61b5e838c890

HTTP Headers

GET /wp-content/uploads/2023/01/SilverPrivileges7.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/png
last-modified: Mon, 02 Jan 2023 20:15:44 GMT
accept-ranges: bytes
content-length: 282724
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2022/12/NEC_JanCal_11x8.5.jpg

216.15.188.190

200 OK

943 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2022/12/NEC_JanCal_11x8.5.jpg
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1855x1433, components 3\012- data
Size
943 kB (943300 bytes)
Hash
99681ec6bd4f0eb78067a914002b9f0b
fe4aed50575792df9db541229cd5e01cefe947ce
eb139deb30088a35e2132ca7aa70084a23b97c26ead3ac5aad9926013d39f48f

HTTP Headers

GET /wp-content/uploads/2022/12/NEC_JanCal_11x8.5.jpg HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:38 GMT
content-type: image/jpeg
last-modified: Fri, 30 Dec 2022 23:40:44 GMT
accept-ranges: bytes
content-length: 943300
date: Fri, 27 Jan 2023 14:32:38 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.3

216.15.188.190

200 OK

306 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (592), with no line terminators
Size
306 B (306 bytes)
Hash
e576eebbe0a4707f924ada1fb3994b11
fc34bd52b0a5c2f751688be3e3b40fcd14c3af0f
e0156bce1fce14ad57c7cf6b915f57520acca9761dfcb5db2198a488fc19ec7e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 306
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

216.15.188.190

200 OK

6.6 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
6.6 kB (6637 bytes)
Hash
139a41f01d192d239e7dce15ca307983
62a3e7c0c77209832dc649bc5583e5e0b4918bf5
d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6637
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1

216.15.188.190

200 OK

2.6 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (8632)
Size
2.6 kB (2645 bytes)
Hash
d907b8e007d5ed72022815b9ccc95f11
e77303ded461745c207af9d76cf91c8b32a46e3e
a90b61a5e379b42615eebab01de76934200af87a50bd10c7f78690ee210d6c83

HTTP Headers

GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2645
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1

216.15.188.190

200 OK

2.9 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (9937)
Size
2.9 kB (2880 bytes)
Hash
49204cf52f39b1e15b9785d1fdb9fb4d
b02e2fb4f1e54b93e52b7084b50f015a680953c5
8955fe73098cdba5385083c9014f5d55da1b69d106635981617128c359261f4b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2880
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

216.15.188.190

200 OK

2.4 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.4 kB (2354 bytes)
Hash
4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2354
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

216.15.188.190

200 OK

6.9 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size
6.9 kB (6872 bytes)
Hash
1f5152610686781567fb3008c4429792
d0c0bddf5fb8603ed8e55c32f3093c2207f72471
75806ece853d0d76e655a433bd03548d3be6237ea1e4cacd5963f528bbe0d192

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6872
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff

216.15.188.190

200 OK

281 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (463)
Size
281 B (281 bytes)
Hash
2bd32222de02ec6631cc34c5a5e0d23a
870c0f56cd4535a5546d974ff3eb2e3e66c97cfd
234dabb9c00a28b9055c7409fb1bc88581dfd807959239e281dbd7ef85df6551

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 281
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3

216.15.188.190

200 OK

1.6 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (4875)
Size
1.6 kB (1575 bytes)
Hash
06a8ac0e71976bc143cfa7861a31169d
def6031fe13259bf17752661832d815e37068bf2
e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1575
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94

216.15.188.190

200 OK

3.7 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
data
Size
3.7 kB (3717 bytes)
Hash
f778ade6a70be55cbf039cfafb20fa7f
68d7a7f2d88907a038ec557ae0ab67f58d7bcdc5
88fd2a2f80a5ff9f70a6c4019d81f3bae8bc92623697454faa44f448cc43ad93

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3717
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5

216.15.188.190

200 OK

858 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
Unicode text, UTF-8 text, with very long lines (2472)
Size
858 B (858 bytes)
Hash
be2374eabf981621988021fc2425df91
96272e603964f155600a1e8aa3835fe2fe95756f
2db40c016bc0a8cb0361a98a69c29e9043a42467198035460dc4604035729eff

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 858
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1

216.15.188.190

200 OK

2.7 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (8339)
Size
2.7 kB (2692 bytes)
Hash
fa734a7edac912fe0dd64d553e03ce24
76ecc26bf8c3ab2f083a816729ade021fc0ce31d
f36fed518bce85ac04631138ca442fb3630037749d36e1003ca4c9a5ca41bc63

HTTP Headers

GET /wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2692
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1

216.15.188.190

200 OK

1.5 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (4230)
Size
1.5 kB (1458 bytes)
Hash
195f7259e4d622106534c411efbab52e
45f3fb5f1b226ca3b87bc0110fc8363a369c56a9
8a8e2390e4e2fa11ffd8471cb68a7f840bb1a8f888454e16dbc95970c1f78887

HTTP Headers

GET /wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1458
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1

216.15.188.190

200 OK

1.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (4145)
Size
1.3 kB (1277 bytes)
Hash
5d8ab242717db0b53caa5e432f0b2de5
3904696d5ab950faa19dd5d76ba8c58f5353c00f
dfc140a7f85b0f7be1a3f4cd6b787fa4ba9397d4c66ea7e5e1903d37520d4a25

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1277
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.1

216.15.188.190

200 OK

1.8 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (5959)
Size
1.8 kB (1813 bytes)
Hash
1731a20b854eb4d87e01eed65ce8d6e6
a54530be602794fc94da32a093c510e8ada302ae
88099d70563fc2c263b6c38da856d8014bf91073047b9af7a18fdbdaffc2c6ba

HTTP Headers

GET /wp-includes/js/jquery/ui/button.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1813
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1

216.15.188.190

200 OK

10 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (36560)
Size
10 kB (10499 bytes)
Hash
6a3abc4777f2019e8a4a56ef15fad918
f9a62dfb1c9a97a5339cb908c38bbe4e41e925d1
3dbaeb84eedb9802084c31f8f2962282fe36d32e7b6f9f36115aba450230cb0c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10499
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1

216.15.188.190

200 OK

1.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (3233)
Size
1.0 kB (1000 bytes)
Hash
9e26fdd5e87f346b6419a2f81e6b3fcb
ae55a3391e61ef838c8b352738e27417f4a88ad3
889b8ea6140d0999ba175bd4d8e13966def1de6a67e7ae4ba9c0b8ce2d4ccf85

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1000
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1

216.15.188.190

200 OK

5.1 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (18523)
Size
5.1 kB (5120 bytes)
Hash
69d44ed0699a7b6e24f3a15dee49ec98
a047c69a419930df77a93d4fb2c6972075da66c6
dd6ff9795762edb4f50545e28641781889d3ef127dadf270350007f523ab7029

HTTP Headers

GET /wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5120
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1

216.15.188.190

200 OK

4.6 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (18145)
Size
4.6 kB (4648 bytes)
Hash
40a06c22ccca1fe24af5c56ab90b6dd6
fd8604eb37050f0eaac024fc7f7a05119defb4a3
23cbc84c4c1c2a67f890dff176637fa339bce87691f5b43e20f3d1e278920296

HTTP Headers

GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4648
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1

216.15.188.190

200 OK

3.6 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (12793)
Size
3.6 kB (3629 bytes)
Hash
34975534fac388465e0315e20ca3a2fd
05b9c4744b6e25ed33df5bed6406a7b882146c8f
de3d007fee3141f0647850eb836dc97816342682c271aa142ad9403c898b7f64

HTTP Headers

GET /wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3629
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1

216.15.188.190

200 OK

1.9 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (6469)
Size
1.9 kB (1897 bytes)
Hash
71fb1bf715053ce88e6500710bdd1bcb
ab2542e9e5fa72f6e012083bc2a5be4635150e44
cfdb5fd50f137649cd5c9cd2c5e37aaf62f8b7e64082bc0457ac37c51ad766d5

HTTP Headers

GET /wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:39 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1897
date: Fri, 27 Jan 2023 14:32:39 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1

216.15.188.190

200 OK

832 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (2356)
Size
832 B (832 bytes)
Hash
3a3d4c91262a8189309293fa5db6403f
28cc7f494801219ec47bdb74a09b2d1937eb74e6
bf6f9e037a8f75139540ddf1c0b46c8251546608fd2180d586bb9c8dec655108

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 832
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1

216.15.188.190

200 OK

1.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (4308)
Size
1.3 kB (1304 bytes)
Hash
a432db3e4012292266844f0742f466d6
99264e8bb0d89a0feb2e70d689da5b2968495f3a
58b96f836abfcf9253c38e1c7497c36f6ffc63f16b15ddf880bdc63f6e8c9caa

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1304
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1

216.15.188.190

200 OK

6.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
HTML document, ASCII text, with very long lines (25274)
Size
6.3 kB (6330 bytes)
Hash
a7e69a1542d0a43eddc8317544f17b1e
98e234ad57bc3362434b19a9706a12a208a6da9e
7ae4fdd186ab6ef0c5d2548e9bfb916e9c8556cffaf098ac2cfe1799fa9ab803

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6330
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1

216.15.188.190

200 OK

3.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (10572)
Size
3.0 kB (3000 bytes)
Hash
4d91b181c899d08e40a921209ff01a35
a1fab39994e7a3a0bd3669e4d90867bdcb4c92fe
f03654a085cb9f742b777444c1a0d98925dbc1cae16f9d9c634eaadad6633dde

HTTP Headers

GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3000
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1

216.15.188.190

200 OK

2.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (7451)
Size
2.3 kB (2281 bytes)
Hash
9fa87ca32d6e8e0bb3a5c340b2cdd3cf
fe89afe6bd2735532596c09f5bda17b68539012f
69bd41f6d5b4690ad0f96fb40a1006904469cfb7eb294ca3947599eb75f33fc7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2281
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1

216.15.188.190

200 OK

2.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (6004)
Size
2.0 kB (1989 bytes)
Hash
f461bea3a99553a81e8079c25b5579ee
02c6d731414a5444e55b610c2ae8f896bd5da33e
37115d62808d743aa9564fe2a67ba8036fb1517ca3104daf05276d5496ac05f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1989
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1

216.15.188.190

200 OK

3.8 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (11760)
Size
3.8 kB (3760 bytes)
Hash
cf07f8ed6f9f97c95566c2b77872c681
6b9c0b5521255b6b1dd77c1a0569224de7cc351c
c31ec4601e031d50be0b5732b8b22ed7055c990de764617f37093de9004ef206

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3760
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1

216.15.188.190

200 OK

6.3 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (15439)
Size
6.3 kB (6306 bytes)
Hash
46c619da94a7689538602b22b02cb0d2
d161ff0b1a1cf9728c94a45d6e506b85dcebc84a
40fba14e5b02855b7773e2a364d90e178087c768ae4192f593a895a4c4b0d5e9

HTTP Headers

GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6306
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1

216.15.188.190

200 OK

444 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (678)
Size
444 B (444 bytes)
Hash
ea38a044a01eb94f833b1509a6051e9e
a1895be9b7c78ae2c066c18e6879dd74629ac30d
ae6569939d46f49e5e3e4789001b8f9c854980c8121eef23fe6c5bed8f38e857

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 444
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1

216.15.188.190

200 OK

534 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (788)
Size
534 B (534 bytes)
Hash
33c92ce0d92fb8a7ad61d417ca3d00b1
d2a2e95187b844c0b481b277aa72a750497a4e1a
7bddff391001510df7ebe37b4520377c2a866f3d36421054d623ad7d110f2d2a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 534
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1

216.15.188.190

200 OK

400 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (595)
Size
400 B (400 bytes)
Hash
7c13e3d5d2faaea1e98145a1b1ff9ebe
d5a8dc8d80894277f780dcf44e8c8391719a96fc
53d86d77efeb134bd70c0d5172f65a2e2553c52c07a4e2b032d8f72b686af7f3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 400
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1

216.15.188.190

200 OK

416 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (552)
Size
416 B (416 bytes)
Hash
7e170f5fc0408639fc726d374db1823b
18e66b6dd31207b53b01d69fe293725549c15604
f26978f4cd536b8dc98e2a7b9fb2110c2461e5a8e5be14b28f6cf7cb7c52f558

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 416
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1

216.15.188.190

200 OK

587 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (918)
Size
587 B (587 bytes)
Hash
3b5ff5d438b826675b2aa029e2413ddd
6b65c3dd8b58aa1621eb3b405c6a7e0aef50bbb2
202d5cb5ed4179e2d961229c5c481fdb8d858036721048403215105ecfe4568e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 587
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1

216.15.188.190

200 OK

290 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (324)
Size
290 B (290 bytes)
Hash
e730425aa52405fcf913d7a5e484c878
f18610aeb1353d8876983ccf24502c729e9d237f
2c4a06c2abcccf8f9654294184fa500aa3eba7a358802e8ce423326e2d26da9b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 290
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1

216.15.188.190

200 OK

510 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (819)
Size
510 B (510 bytes)
Hash
1445dd0b1f6bf6269c40ce8395ab6fc4
ef58bb0151597ca8d414a02685b7812408f2a71e
7aa177b5ae385fdbe53a71d2da35b7632126287b14d7aeda46483b6e838314e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 510
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1

216.15.188.190

200 OK

341 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (442)
Size
341 B (341 bytes)
Hash
d595b5e4a9e060ae93eba34bafc6ffdc
0f66aeb9ff02928c6c5901eceab3fc05a2b7b0d7
a43121cb11d93eeaec5808a40ade953c1e2346b74f827bc87d3a66384a26c8d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 341
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1

216.15.188.190

200 OK

373 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (484)
Size
373 B (373 bytes)
Hash
351cb47d8737f6d610cf73b6648e8ce3
4e84a39e9842b62158223b6c851661d0a223734c
9c9550cdda85529b57d4032862d1ae79d2d4427ac5efedb65323601d8c1b9df3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 373
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1

216.15.188.190

200 OK

887 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (2290)
Size
887 B (887 bytes)
Hash
be448ad7660329a3a497d7b8ece893aa
78b58e18accaef1cb9634017813d3e10008033c8
bdd2c66a9fc957727e0be1ee60c89320781459ac74ad1fa2ae43aa49fdc9a59c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 887
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1

216.15.188.190

200 OK

368 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (521)
Size
368 B (368 bytes)
Hash
e185c49f11239fc93f8ddfabb1cd6227
ea2e1908ca8e114ee59955a3175604bbdaed3ccd
0116afbd69e32568e861f7d7cba1c0d3ecae2c59d5a5c875b8c2342b22e3e230

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 368
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1

216.15.188.190

200 OK

433 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (644)
Size
433 B (433 bytes)
Hash
70355ca2dec0790ab6faed31f20d6a12
89440e38f3c5eccf075142183f7e9c462778e6b3
121cf76d635e6f968c86c6aecf96607505975926fd5c63297dd70b154cf85263

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 433
date: Fri, 27 Jan 2023 14:32:40 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1

216.15.188.190

200 OK

486 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (715)
Size
486 B (486 bytes)
Hash
3b7a30d4b8a9fac3700f506823b445a5
bfda8f407a298e3435300b51e4214e5624c9f3a1
564266f4459d3e44f0ae583d15423f5599fd0db813a2fed4b79dbcc4101b4676

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 486
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1

216.15.188.190

200 OK

245 B

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
245 B (245 bytes)
Hash
46586f87b8736a1c01b63685cff12ba9
ec1f2d502147ca8ee9e0cbb221db81e063b963de
eca97a30e3de3dabd3406730179a3495158454f08d4af0619a2dd135ac4be1e7

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 245
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins.js?ver=6.0.3

216.15.188.190

200 OK

126 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (14756)
Size
126 kB (126419 bytes)
Hash
dee161fa08993731e2ed2a88fcb9329f
b00d3aff98b6c0be5ef4bf7ba5ff11fe7043cdb9
cb19d1d4e28f0be4a1713452f995f1d86993164eb32cb9d98dc9a0f0efab3bd8

HTTP Headers

GET /wp-content/themes/bridge/js/plugins.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:11:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 126419
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.3

216.15.188.190

200 OK

14 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (62633), with no line terminators
Size
14 kB (14013 bytes)
Hash
1a2745354f551fc6ced7ff8a0fba74c0
22f1fea265f557848c8202280ce1b2fcee5f5abd
810cc58621880aee4bff8d0f0bbc769318ae4e9c85845d06b27ebb49b1a0d55d

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14013
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.3

216.15.188.190

200 OK

1.4 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (6059), with no line terminators
Size
1.4 kB (1375 bytes)
Hash
9d3857011601a80726fe88556d597fb2
82bd64920fd4c3a235fa840c0265daafa1d2f8ef
95d5ae697bdaef272e77557300aca8a72d6033f006dbf26fbb98892fdc4e4c37

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1375
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.3

216.15.188.190

200 OK

6.9 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (550)
Size
6.9 kB (6902 bytes)
Hash
c021aad149cb5ba028e6f38a6ca7b476
79805cc173a5f53854f009240df0d7c4aa6c60be
cd1b70431c3970e8c1867cc457d306a897fa86bf6df28b2a19bae90afec79b61

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6902
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.3

216.15.188.190

200 OK

632 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (1020)
Size
632 B (632 bytes)
Hash
3121d1d14d1ab1ee5a3dc7d2a482188e
2bd5e8a56ab3a4312244972ed5cd8955f7b0c770
fb3e136d13e98bf78273a34c1ff3ea60cb2c0ccd4db72b4750b9f89a1e6cdb39

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 632
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.3

216.15.188.190

200 OK

3.9 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (11417)
Size
3.9 kB (3853 bytes)
Hash
25bbc9364ae6fdb9ee7fde67315d050c
53b4ccdc64aec24fa96ce5c0fd2833d51a92de80
848454e6a1ec0ac728d04865f512242e13f8db221089eb77dad7dd2f7d3b9931

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3853
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.3

216.15.188.190

200 OK

9.4 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (32003)
Size
9.4 kB (9448 bytes)
Hash
aeaba22097e698869d19f9d8f6245348
df68f36a8dd690dd3a35042fcbfbddbdaaeaf655
ed796bee3a79b79f74f45dfa7176a7660581d3e44b3d8f6211391cb3460bde7b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9448
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.3

216.15.188.190

200 OK

4.0 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (13547)
Size
4.0 kB (4002 bytes)
Hash
35d96f3fa0ccddfe6362afadf76399d4
6ca699f146382ec8bcbae7c61952423af56a0629
5b1c7c642573cd113c8a6c99d2ee7ec518197ec10eb0b95b7d909ec5208754bf

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4002
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.3

216.15.188.190

200 OK

1.7 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (5442)
Size
1.7 kB (1698 bytes)
Hash
fbb281e56f1113643d4578bf18beee03
055719bf5d6bd80f027d7b0994595ed2faa92f83
cd052e866ef5786e9e62735e1cf530c15c4723a82df3a2f9a38df43873531b20

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1698
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.3

216.15.188.190

200 OK

2.5 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (8049)
Size
2.5 kB (2496 bytes)
Hash
526bf4ee927eb16f719d553f6a1bfb8b
c7f3d358f8354a89590d80a37d4651949adc464f
9c11c6b7724e3559ec399fb4e1790e0cb8374044a5159c57ccd14abf7a9935b8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2496
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.3

216.15.188.190

200 OK

8.5 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (25057)
Size
8.5 kB (8541 bytes)
Hash
230073383d84e5c707277dbe7b2bf187
333b50ebc205e111303ae66cd28e4a596e2a864a
7d341974027d1d8d5a2dac3da5adfd0af3d40b517ec5a019b3f1c1a3f21fbdb3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sun, 10 Jun 2018 10:24:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8541
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Didact+Gothic:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Open+Sans:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Abril+Fatface:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic&subset=latin,latin-ext

142.250.74.106

200 OK

2.6 kB

URL HTTP/2
fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Didact+Gothic:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Open+Sans:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Abril+Fatface:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic&subset=latin,latin-ext
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
2.6 kB (2588 bytes)
Hash
b3ca7b4b96bce24e6a33a07eacf6c3aa
0c6ab1d2742f71e66f3db9d853fd664265cd083a
cc8aa801dfa079d2d4353a487e7f0185613b63e780fdb57e80c34f46cc39b654

HTTP Headers

GET /css?family=Raleway:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Didact+Gothic:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Open+Sans:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic|Abril+Fatface:100,200,300,400,500,600,700,800,900,300italic,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 14:32:39 GMT
date: Fri, 27 Jan 2023 14:32:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css?ver=6.0.3

188.114.99.234

200 OK

21 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css?ver=6.0.3
IP
188.114.99.234:0
ASN
#0

File type
ASCII text, with very long lines (65371)
Size
21 kB (20621 bytes)
Hash
4c85db6e80696b8063d488025f51d1fd
aee7b91bc27c2e659f88294485a1b39a5934f13b
a7d711cc89511352f5e80b7285170c9808c9da323441c3f988d9889ba0f629b1

HTTP Headers

GET /bootstrap/3.3.6/css/bootstrap.min.css?ver=6.0.3 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 27 Jan 2023 14:32:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"2f624089c65f12185e79925bc5a7fc42"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 08/20/2022 02:31:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6badee49dcbeee95d6a4fb116d53378b
cdn-cache: HIT
cf-cache-status: HIT
age: 8779354
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 790232ec3b6cb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1667038822

216.15.188.190

200 OK

1.4 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1667038822
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
1.4 kB (1434 bytes)
Hash
067496a2175fbfb57317734f3c5b4dea
faea0badcf002e0dfa3c9cafdd4eb843aae0e29e
56326dc46adb777f95e65a52b1755d5f00cb2c049bfaf388852be436d5ca148b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/default_dynamic.js?ver=1667038822 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 10:20:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1434
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400&display=swap

142.250.74.106

200 OK

40 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
40 kB (40203 bytes)
Hash
bb4e7a20328ee5647e69db5e7f85960e
855f6f1107a87597e69cbb509b6b4d82edac26b0
211ebc99dcc0a48f70faa38af98996276d8806e18c35b1908635c64ec98f0852

HTTP Headers

GET /css?family=Roboto:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 14:32:39 GMT
date: Fri, 27 Jan 2023 14:32:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/themes/bridge/js/custom_js.js?ver=1667038822

216.15.188.190

200 OK

85 B

URL HTTP/2
www.northernedgecasino.com/wp-content/themes/bridge/js/custom_js.js?ver=1667038822
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text
Size
85 B (85 bytes)
Hash
24b28ecb559a8adf2ee81d794dc3352a
8381f0ae423fb7155cfb006261bb7c13345acc4c
e7a8810a40ac398eaf5862eed41b7388c648acba58021c08a381a62024ecaf48

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/bridge/js/custom_js.js?ver=1667038822 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 10:20:22 GMT
accept-ranges: bytes
content-length: 85
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/comment-reply.min.js?ver=6.0.3

216.15.188.190

200 OK

1.2 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/comment-reply.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (2946)
Size
1.2 kB (1228 bytes)
Hash
7d8acf37582bf5212cbf4e31105de2ac
19581f31ceed66b11804eb6a2b3d00d43f73f071
d48d28cdb9d3dd8b812129663e5cc8b373b67629e2e65988d2b274960f7b847f

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:41 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1228
date: Fri, 27 Jan 2023 14:32:41 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6

216.15.188.190

200 OK

7.5 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (17655)
Size
7.5 kB (7540 bytes)
Hash
26670605724b5bb4dde1f1d914d737cb
5223750bd2f7341295d53632278411fe1a8afa6f
f27bb7a07ceb26bd54630894e1ae5715484a68d6bf60eef676c04a82062a4eb2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 19:08:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7540
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/video.play.min.js?ver=2.9.6

216.15.188.190

200 OK

1.5 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/plugins/kingcomposer/assets/frontend/js/video.play.min.js?ver=2.9.6
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (2765)
Size
1.5 kB (1485 bytes)
Hash
85fa3a49d167f121499846ff7f1f72c1
0653e5d0c99fabfa62b7f6ce5ae7524e6889f2d2
51ec9b39329cd3a9fd7d9711181a67f1d20c341856ecd5064c10856ff1fc3f1f

HTTP Headers

GET /wp-content/plugins/kingcomposer/assets/frontend/js/video.play.min.js?ver=2.9.6 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 19:08:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1485
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3

216.15.188.190

200 OK

4.6 kB

URL HTTP/2
www.northernedgecasino.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4619 bytes)
Hash
0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 17:40:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2022/09/SQUASH-BLOSSUM-BG-1.webp

216.15.188.190

200 OK

8.8 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2022/09/SQUASH-BLOSSUM-BG-1.webp
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
RIFF (little-endian) data, Web/P image\012- data
Size
8.8 kB (8800 bytes)
Hash
e70276d68057e1bc781bcbc379e0c750
aff394ecfb8039652c5184ba0a6d9bdd84a1cdba
d5847fb4c9bb3ee9f4c3f4fffd54b3e82d7ecb83165e96d305ae86f4629aa8b2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2022/09/SQUASH-BLOSSUM-BG-1.webp HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Cookie: _ga_TXC8BHSENP=GS1.1.1674829959.1.0.1674829959.0.0.0; _ga=GA1.1.665437478.1674829959
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: image/webp
last-modified: Sat, 24 Sep 2022 10:08:45 GMT
accept-ranges: bytes
content-length: 8800
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2022/09/ship-rock.webp

216.15.188.190

200 OK

44 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2022/09/ship-rock.webp
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
RIFF (little-endian) data, Web/P image\012- data
Size
44 kB (44292 bytes)
Hash
a88ba34df6243b9890f9277b0fdd0267
3c4e94178129c928bea99f8f6e080d0fd34540d0
77797dff0a46e7d26631f285cde956a2c5ea4e85f4d268672cf5609fdd3bcc73

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2022/09/ship-rock.webp HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Cookie: _ga_TXC8BHSENP=GS1.1.1674829959.1.0.1674829959.0.0.0; _ga=GA1.1.665437478.1674829959
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: image/webp
last-modified: Sat, 24 Sep 2022 09:47:26 GMT
accept-ranges: bytes
content-length: 44292
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2022/09/navajo-bg-1.webp

216.15.188.190

200 OK

168 kB

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2022/09/navajo-bg-1.webp
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
RIFF (little-endian) data, Web/P image\012- data
Size
168 kB (168418 bytes)
Hash
cf76e36206ba4b267f4a563a42458b2f
68bd03d173edf6fe22954b98d3329a914ee45d01
9edf5ec7927754403f2df7f63b29788df1ffef8e657037c94f69b930bed1d741

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2022/09/navajo-bg-1.webp HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Cookie: _ga_TXC8BHSENP=GS1.1.1674829959.1.0.1674829959.0.0.0; _ga=GA1.1.665437478.1674829959
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: image/webp
last-modified: Sat, 24 Sep 2022 09:56:54 GMT
accept-ranges: bytes
content-length: 168418
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

ssl.google-analytics.com/ga.js

142.250.74.8

200 OK

17 kB

URL HTTP/2
ssl.google-analytics.com/ga.js
IP
142.250.74.8:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Fri, 27 Jan 2023 12:41:10 GMT
expires: Fri, 27 Jan 2023 14:41:10 GMT
cache-control: public, max-age=7200
age: 6694
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-90264610-1&cid=665437478.1674829959&jid=1880561110&_v=5.7.2&z=718106134

173.194.73.157

200 OK

35 B

URL HTTP/2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-90264610-1&cid=665437478.1674829959&jid=1880561110&_v=5.7.2&z=718106134
IP
173.194.73.157:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-90264610-1&cid=665437478.1674829959&jid=1880561110&_v=5.7.2&z=718106134 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.northernedgecasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 27 Jan 2023 14:32:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:32:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.northernedgecasino.com/wp-content/uploads/2020/02/northern-edge-favicon.png

216.15.188.190

200 OK

722 B

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2020/02/northern-edge-favicon.png
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
722 B (722 bytes)
Hash
7225604362597f8dc26f19f914041ca9
32e03f706685c5db90484ef7cb3a31e81fbb9e32
a34537411e3686c1204c44645893a0bd54081de432986e62b66100a2abbc43cc

HTTP Headers

GET /wp-content/uploads/2020/02/northern-edge-favicon.png HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Cookie: _ga_TXC8BHSENP=GS1.1.1674829959.1.0.1674829959.0.0.0; _ga=GA1.1.665437478.1674829959
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: image/png
last-modified: Mon, 17 Oct 2022 21:29:10 GMT
accept-ranges: bytes
content-length: 722
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css?ver=6.0.3

188.114.99.234

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css?ver=6.0.3
IP
188.114.99.234:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.5.0/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 27 Jan 2023 14:32:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4fbd15cb6047af93373f4f895639c8bf"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/04/2022 16:30:16
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0157da27c959d58ce386b514495c90c7
cdn-cache: HIT
cf-cache-status: HIT
age: 8782407
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 790232ec5b8fb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2018/06/northern-edge-casino.jpg

216.15.188.190

200 OK

0 B

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2018/06/northern-edge-casino.jpg
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/06/northern-edge-casino.jpg HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Cookie: _ga_TXC8BHSENP=GS1.1.1674829959.1.0.1674829959.0.0.0; _ga=GA1.1.665437478.1674829959
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 03 Feb 2023 14:32:42 GMT
content-type: image/jpeg
last-modified: Mon, 17 Oct 2022 21:46:56 GMT
accept-ranges: bytes
content-length: 381435
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

www.northernedgecasino.com/wp-content/uploads/2023/01/NEN0123ATVH_Northern-Edge-New-Year-New-Getaway_FINAL_122722_.mp4

216.15.188.190

206 Partial Content

0 B

URL HTTP/2
www.northernedgecasino.com/wp-content/uploads/2023/01/NEN0123ATVH_Northern-Edge-New-Year-New-Getaway_FINAL_122722_.mp4
IP
216.15.188.190:0
ASN
#7393 CYBERCON

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2023/01/NEN0123ATVH_Northern-Edge-New-Year-New-Getaway_FINAL_122722_.mp4 HTTP/1.1
Host: www.northernedgecasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.northernedgecasino.com/?utm_source=ProData&utm_medium=Banner&utm_campaign=2030283&utm_content=New_Year_Getaway_728x90
Cookie: _ga_TXC8BHSENP=GS1.1.1674829959.1.0.1674829959.0.0.0; _ga=GA1.1.665437478.1674829959
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Tue, 03 Jan 2023 16:44:20 GMT
content-range: bytes 0-4438957/4438958
content-length: 4438958
date: Fri, 27 Jan 2023 14:32:42 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests;
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (91)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML