ichliebecasinos.de/
188.166.106.236301 Moved Permanently 319 B IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4172259ed908326b519ae1adce9f4167
3a77162b0278faa91ef0f680b75a002136ec156d
f27e64d7b787e26c4870f27aaf3ef709b24fc2a39ad687f49680a095f99258d8
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 11 Jan 2023 09:25:27 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://ichliebecasinos.de/
Content-Length: 319
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15798
Expires: Wed, 11 Jan 2023 13:48:45 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1f67827b21be68d925837dd729590f2d
dc24511141f5352e496b300d7d7e81b0cffb7475
afb1850e7c16f02d267a1310f1681367ecf598816fc62bd02447ffcd26117a9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB1850E7C16F02D267A1310F1681367ECF598816FC62BD02447FFCD26117A9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17578
Expires: Wed, 11 Jan 2023 14:18:25 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 718fc486cd6a70fcacc1653759703fae
bf60ba7a37d2deef1b7000e91cc88da586bb75ca
398d02e16da466ffe87b64ac34b007615951cca14d43610b4acd58bc2a5fadff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "398D02E16DA466FFE87B64AC34B007615951CCA14D43610B4ACD58BC2A5FADFF"
Last-Modified: Tue, 10 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16518
Expires: Wed, 11 Jan 2023 14:00:45 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 08:41:48 GMT
content-type: application/json
age: 2619
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7pxn6gQhcCyA1fDexzSqcolqKNWUkJH4EPNcYphbLIz9DkJLWLpAaVNClvTwWA8rShX/0fdY9PAzIjCZaUqdIQ==
x-amz-request-id: 4BG2GBV94GMF1T4F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 11 Jan 2023 09:16:59 GMT
age: 508
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 09:25:27 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f110d80998f9d59b24af28fc5aa9863
30f26142505d8fe1b05efb240995627c8f22e516
5dd4844e2d351f34fba34f7dfcb472b7caf2286db66f25d27b83b23c3c41ec76
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DD4844E2D351F34FBA34F7DFCB472B7CAF2286DB66F25D27B83B23C3C41EC76"
Last-Modified: Tue, 10 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21563
Expires: Wed, 11 Jan 2023 15:24:50 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 09:17:24 GMT
age: 483
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ichliebecasinos.de/
188.166.106.236200 OK 8.0 kB IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (321)
Hash 901c0a9acab3942a93a8b3f9a362dc96
5a5587e70c1e14f7fe8bbcaf3f4c95e913115f17
1eeca8a89ef2bbb0d4d2a1d204c438c51c62086fb129a71b5bc3a7d0b71048ae
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:27 GMT
Server: Apache/2.4.41 (Ubuntu)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7958
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a831a999b5e598b4e9f4e31e8054ca7c
9971a4a806f48777ae6d9525085d16d0c6314c51
cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3675
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:24:13 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ichliebecasinos.de/css/main.css
188.166.106.236200 OK 1.0 kB URL HTTP/1.1 ichliebecasinos.de/css/main.css
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
Hash 14653da30efae57f019e972cf507f2b4
d87287314ca66389a12430c8cd512228f367fc7c
162df8fd4d2dd1052d5fa73a8b32a6e4d285c69c7d0e1e49bb27d7c0268a5797
GET /css/main.css HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 31 May 2022 09:38:39 GMT
ETag: "acf-5e04b89a1a52e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1023
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 862c2b3f49fdaa3290196382315e9052
fcc92f91c58844372be3a08a5cb95ed7ce42457c
cef18ec97b6ac9ee6a8f989232780c785cdc9ab754671803a0ae2272665cdbd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2927
Cache-Control: max-age=109101
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Etag: "63bd7c46-118"
Expires: Thu, 12 Jan 2023 15:43:49 GMT
Last-Modified: Tue, 10 Jan 2023 14:55:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 017b1e7700354b11ebf635e7bdc05f48
45f4820fdc971ec5b75fa8c89ee88577e092df7b
c25e96ebae6eb8dcc01449935481faf6373aa217fbfa26cb36da1c9dbe7cd327
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2675
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:40:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ab36612af330976d207310dd9b1d5273
42b2f257cf4116e1efe4d6197a745c7fee1ae5b6
3db4ac04af47e4a83c15a63d66d5b6d4a6748e5bcada60a37b8eb9a5902ca626
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5507
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 07:53:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39e74fee23bd195e2926cf5241f2fca5
a3361a128141f84053b85994e1a3b2f3e9c9d979
aaa2168872731f90ab7c5d5e98dc17660973582d1b157f4e4a3be4939e99b7e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ab36612af330976d207310dd9b1d5273
42b2f257cf4116e1efe4d6197a745c7fee1ae5b6
3db4ac04af47e4a83c15a63d66d5b6d4a6748e5bcada60a37b8eb9a5902ca626
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5507
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 07:53:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
142.250.74.74200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 15:00:01 GMT
expires: Sun, 07 Jan 2024 15:00:01 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
age: 325527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5FC8JXC
142.250.74.8200 OK 72 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5FC8JXC
IP 142.250.74.8:0
File type ASCII text, with very long lines (9786)
Hash 0588a6a831c695dda92a494504be2cea
d87a153e1c8cbba72c85b4d8ad6646ed0df571bb
30743caed9bda3c4917596f0fb0ec8b977c93ddf7ed99d3ef309745e2787ac74
GET /gtm.js?id=GTM-5FC8JXC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jan 2023 09:25:28 GMT
expires: Wed, 11 Jan 2023 09:25:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 11 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39e74fee23bd195e2926cf5241f2fca5
a3361a128141f84053b85994e1a3b2f3e9c9d979
aaa2168872731f90ab7c5d5e98dc17660973582d1b157f4e4a3be4939e99b7e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.typekit.net/gih0ues.css
95.101.11.120200 OK 730 B URL HTTP/2 use.typekit.net/gih0ues.css
IP 95.101.11.120:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 0b0fb949da4a8cbef2e9a9c1911e7223
8293e8819276d5387bc1dc2af66762993442da51
da467bb4bec67590fa4887895b5925fd4c801c070afbdf4e31e9334a47da9381
GET /gih0ues.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 730
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.214.202.214101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.202.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NIPCD/r2XAsoGDQKGa1eqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SCOs9O9yp3EH6XqU9HT+cve6qDc=
kit.fontawesome.com/cb23647627.js
104.18.22.52403 Forbidden 9 B URL HTTP/2 kit.fontawesome.com/cb23647627.js
IP 104.18.22.52:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /cb23647627.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: text/plain; charset=utf-8
content-length: 9
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; preload
x-request-id: Fzk27Q3CsIoNZW9ZA-KC
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c9af2bad1b4f3-OSL
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=gih0ues&ht=tk&f=10294.10295.10296.10297&a=86976406&app=typekit&e=css
95.101.11.112200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=gih0ues&ht=tk&f=10294.10295.10296.10297&a=86976406&app=typekit&e=css
IP 95.101.11.112:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=gih0ues&ht=tk&f=10294.10295.10296.10297&a=86976406&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2
ichliebecasinos.de/img/footer/gamble-aware.png
188.166.106.236200 OK 11 kB URL HTTP/1.1 ichliebecasinos.de/img/footer/gamble-aware.png
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 150 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 499e197160300bb5d2d57bd821a4410e
3ff5074aea6c6b4a86679618424ecf6a3d62931c
89c2611ced1bdfdb816cebedb3c8ded0111d6cbf64a989e60a6d114cd91ec112
GET /img/footer/gamble-aware.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:06 GMT
ETag: "2a9d-5bde2d1f6e98b"
Accept-Ranges: bytes
Content-Length: 10909
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ichliebecasinos.de/img/footer/gambling-therapy.jpg
188.166.106.236200 OK 3.2 kB URL HTTP/1.1 ichliebecasinos.de/img/footer/gambling-therapy.jpg
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 180x60, components 3\012- data
Hash 7809800b14308992dc482773c8099ee2
e6b52c1c0edee045558c7bc2065c36474ad96f62
8bbf132b1eafb66efa9a77b4899646ef9669e02e1bf6f318438f6ba0bcde3eac
GET /img/footer/gambling-therapy.jpg HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:08 GMT
ETag: "cb0-5bde2d21cd097"
Accept-Ranges: bytes
Content-Length: 3248
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js
161.35.78.172200 OK 40 kB URL HTTP/2 www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js
IP 161.35.78.172:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (40454), with no line terminators
Hash f0e275779a0252d75d8f0b733cbd4b2c
546deb4cd7ccf32b4c11080d4c938cdb4424a7a0
25c19ef17c25c86b3b885e6e9dce3a107538aed212eabcab5ce0489fbb9f5170
Analyzer Verdict Alert fortinet Phishing
GET /storage/pu_cm_de_cs_ichliebecasinos.js HTTP/1.1
Host: www.securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 40454
last-modified: Fri, 19 Aug 2022 12:28:42 GMT
etag: "62ff81fa-9e06"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ichliebecasinos.de/img/footer/bzga.png
188.166.106.236200 OK 13 kB URL HTTP/1.1 ichliebecasinos.de/img/footer/bzga.png
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 274 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 466702905225d95f8203f67db268a24e
75ae1358929e2f30db4855dfc1190829b7403f0d
62e10ffeb984425c012153e14a143e6a8d45a14bc31087c8a34e29caea2d0d33
GET /img/footer/bzga.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:04 GMT
ETag: "3166-5bde2d1dd0899"
Accept-Ranges: bytes
Content-Length: 12646
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ichliebecasinos.de/img/footer/18.png
188.166.106.236200 OK 7.3 kB URL HTTP/1.1 ichliebecasinos.de/img/footer/18.png
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 60ab638ee5dd67bb626284c9e0087c70
bc816a384d093a90e52d5482073735070dec0698
0b2051cb1308c9ea37e07e03acb24ec4d3b468a688a1d7dbc9253cedbcb3ee39
GET /img/footer/18.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:05 GMT
ETag: "1c8c-5bde2d1ec4ad1"
Accept-Ranges: bytes
Content-Length: 7308
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ichliebecasinos.de/img/footer/spiel-sucht.png
188.166.106.236200 OK 31 kB URL HTTP/1.1 ichliebecasinos.de/img/footer/spiel-sucht.png
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 154 x 137, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f05548747323835542ce61ac7f6499a
293570eb31b595ab9ff74314b177494b8667f969
fde10956f242d471a5064b7544ebde78fa8cf06683dd440107bb6f58e6e16c91
GET /img/footer/spiel-sucht.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:06 GMT
ETag: "77cc-5bde2d1f19a2e"
Accept-Ranges: bytes
Content-Length: 30668
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
95.101.11.120200 OK 27 kB URL HTTP/2 use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 95.101.11.120:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Hash 6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc
GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
95.101.11.120200 OK 28 kB URL HTTP/2 use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 95.101.11.120:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 27712, version 1.0\012- data
Hash ce87f4e0d16868acaa3a5f4d894e9c29
b0b82fa20adb7c495172f8345f0ef0a64d2f815e
fc19e2d873270cfa3ce69c2345fac36b8ab1b0fe2cd8983f0946a8c180f236b3
GET /af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27712
etag: "79f9defc7632bc87dc40a06c82c11882a3000992"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87407
Date: Wed, 11 Jan 2023 09:25:28 GMT
Etag: "63bd27ce-1d7"
Expires: Thu, 12 Jan 2023 09:42:15 GMT
Last-Modified: Tue, 10 Jan 2023 08:54:38 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -Ez19h_65_Cgb3usE59cnaEDyyHx-sSO19HWoBsS6z5NK5LfDGfKSQ==
Age: 2857
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:47:53 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 65v-2VKkgNyBzrvBydvPkGkLAcvIGAdmlECcLzkO1KPAaNa4-IJvTQ==
Age: 2255
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:47:53 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6X54EeTLu0spqfkR2iSeSqIdCN7Hsooo08Tpq515xnH0xWJIWLH2-Q==
Age: 2255
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:50:59 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PBChCueI1dMs9AfsVsltSRnOqIPzzG-zLPoM0cdzjHL5OkdT3eLu6Q==
Age: 2070
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:50:59 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Y7iOKu3o4Aa9NshStq79TBXZBSEKDb-UTyPzM1-_iSzPW-S6uW-i4Q==
Age: 2070
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3d0edaa0ae26b49818fef456feaef7f9
d33d325b73384eb8c75ae42dc4db6acd8b33bd29
5d1f1fe42de039874f514c5cfc0e75336c434b5d3bdf021feb71045cf7984934
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4522
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Etag: "63bd225a-116"
Last-Modified: Wed, 11 Jan 2023 08:10:06 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 278
assets-srv.s3.eu-west-1.amazonaws.com/logo-luckydays-1.jpg
52.92.3.106200 OK 11 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/logo-luckydays-1.jpg
IP 52.92.3.106:0
File type JPEG image data, baseline, precision 8, 170x70, components 3\012- data
Hash 5c94c741f793969a495fc1befd88326b
4a5c83dbe81b55793ce02fb2b8316d715d19b070
6b2d107d81292a4547748df4f159304a3b478a129bee2048ada72cba1a36fb5c
GET /logo-luckydays-1.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: UxL/LZJnbSBrAQgFCN+Cag8KhYajc56piyOCwmvobmdka+4mvMAJhXU8Qz9dViz3MTnaJnC+NpA=
x-amz-request-id: X9HCE47VYNKWPKN3
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Thu, 31 Mar 2022 12:56:09 GMT
ETag: "5c94c741f793969a495fc1befd88326b"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 10796
ichliebecasinos.de/img/viennaskyline6.jpg
188.166.106.236200 OK 6.5 MB URL HTTP/1.1 ichliebecasinos.de/img/viennaskyline6.jpg
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2], baseline, precision 8, 4930x2020, components 3\012- data
Size 6.5 MB (6529222 bytes)
Hash 4d194cc293f0b178ee4371a4a5a200c5
b51b102362612eede50ff3cb47c579044a2840c3
813ab0ecbf1dd6961365e3d4df6adb02b87d234c6514de388af6e2a3545eceb4
GET /img/viennaskyline6.jpg HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:23:31 GMT
ETag: "63a0c6-5bde2c8bb3a5f"
Accept-Ranges: bytes
Content-Length: 6529222
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
assets-srv.s3.eu-west-1.amazonaws.com/logo-boomerang5.jpg
52.92.3.106200 OK 9.6 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/logo-boomerang5.jpg
IP 52.92.3.106:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, manufacturer=BeFunky, orientation=upper-left, xresolution=94, yresolution=102, resolutionunit=2, software=BeFunky Photo Editor], baseline, precision 8, 123x70, components 3\012- data
Hash 54bc23bf4ee54f1d9fba4cbe508028c0
1c75859d2c589600531435204a64db09d2eccc6a
1f5315ddb8b1732b0ac04f01a0417a08a17db503b875ab6e5f98920bc39c7097
GET /logo-boomerang5.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0UgZtnlAsflDYwYG/W81qI+pXOCRm9b6aayYh9F0XQB9P8mPsb09lYBmLMq0YrRQFaglTdPs0Dk=
x-amz-request-id: X9H7K5B20V8G60E4
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 08:01:57 GMT
ETag: "54bc23bf4ee54f1d9fba4cbe508028c0"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9610
assets-srv.s3.eu-west-1.amazonaws.com/bitdreams-for-dark-background-25.png
52.92.3.106200 OK 7.1 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/bitdreams-for-dark-background-25.png
IP 52.92.3.106:0
File type PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d8f383f4fcade93624d1742234d5405
1cb670c35d30e5b08422e9cfb2107ad195b79d7e
18bc330bcf07c4b533ef7fb695e1892a483ef3aab23f097e17fe57d4106c43a5
GET /bitdreams-for-dark-background-25.png HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 67i4QjYvDmrKVz0iOIThqYTrHZNsEIn04WE1OV4SzsNXcTepAfB3byApPfOhmB08e01bgzek1aM=
x-amz-request-id: X9H0PTVD9JZ3PEB2
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 08:29:02 GMT
ETag: "6d8f383f4fcade93624d1742234d5405"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7126
assets-srv.s3.eu-west-1.amazonaws.com/logo-spinaway.jpg
52.92.3.106200 OK 9.8 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/logo-spinaway.jpg
IP 52.92.3.106:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 126x51, components 3\012- data
Hash 46b7df091be13e7144eeadfb5eae5e96
404f393d51968c823d749ca39df69c0f9d286ea3
a4254e65d07733be9a6dea22200872378768083de64d896727f31e3663da3a97
GET /logo-spinaway.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: N6s2lRu8rLcibWhMAr1kNXPjWhsvomi0kV2E0LmLM+ni4EqTqChib/QUVMwaNPN2UMEC/h6AqMc=
x-amz-request-id: X9H0VCY9TQDGJTDP
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 07:54:34 GMT
ETag: "46b7df091be13e7144eeadfb5eae5e96"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9832
assets-srv.s3.eu-west-1.amazonaws.com/logo-n1-1.jpg
52.92.3.106200 OK 9.6 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/logo-n1-1.jpg
IP 52.92.3.106:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 92x68, components 3\012- data
Hash 791489d5ac224ea50ce34440393859a9
0414d427a6574cefc4aeabb6ff133cccd1d59279
1190c4bf59e07cb6df1191c13c8105ecda769f346ab47f87692087e7aa83199c
GET /logo-n1-1.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ll6GcmMRss5ermk/5i068h3x1skeOrRx4C271IQgWHnIR9fsjC6xvrH84WLjjijypBwfaq3Zo+I=
x-amz-request-id: X9H0PEJA479SYT2D
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 11:05:50 GMT
ETag: "791489d5ac224ea50ce34440393859a9"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9570
assets-srv.s3.eu-west-1.amazonaws.com/logo-silverplay1.jpg
52.92.3.106200 OK 10 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/logo-silverplay1.jpg
IP 52.92.3.106:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, manufacturer=BeFunky, orientation=upper-left, xresolution=94, yresolution=102, resolutionunit=2, software=BeFunky Photo Editor], baseline, precision 8, 170x50, components 3\012- data
Hash 24cdf5800247ce0d1514e73f69b2217d
37931f5c81c828baba0bbfaaedfc0b9a55a0b1b6
f5aa97a5e9e4afb1d4b415eeb042c848b53fa52b930fbcc92d46a83dfb6c1429
GET /logo-silverplay1.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0ktvfAdhw8c0Bfy07XcYLBnafaqfQJylmxo2YqE+TyYZBybyoMIH6aZw8ygk0T2bRl7WpghRzzA=
x-amz-request-id: X9H382P5Y23ATF9M
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Thu, 31 Mar 2022 12:47:23 GMT
ETag: "24cdf5800247ce0d1514e73f69b2217d"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 10005
assets-srv.s3.eu-west-1.amazonaws.com/ggbet-6.png
52.92.3.106200 OK 1.7 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/ggbet-6.png
IP 52.92.3.106:0
File type PNG image data, 290 x 160, 8-bit colormap, non-interlaced\012- data
Hash 05860c50ae6c3dec039fa850bde1af51
291c0be49627032e3567bd21982dd3e1f8756e94
af3dc476ada5390cfaeeb5f0fecc9b2d9e101399028087b5a9409f1c384d3b95
GET /ggbet-6.png HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: UByylwlt0hoD58b3YQlN285VOaHLnWXccBwbjU9EJhrEYomgX1aHeGf4U3jJTm6rTfRZKLVhxj4=
x-amz-request-id: X9H7RBN9AB2D79PC
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Tue, 15 Mar 2022 09:26:35 GMT
ETag: "05860c50ae6c3dec039fa850bde1af51"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1667
imstore.bet365affiliates.com/?AffiliateCode=365_01156702&CID=196&DID=84&TID=1&PID=149&LNG=5
5.226.179.31302 Found 202 B URL HTTP/1.1 imstore.bet365affiliates.com/?AffiliateCode=365_01156702&CID=196&DID=84&TID=1&PID=149&LNG=5
IP 5.226.179.31:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4429007461dbbc48dd2015d8e2709bf5
24492ff4693811843008a0b48513898157a03abb
b09d5258462925311cada50f726dac7c888e3123606c89ee95848eb86e00e494
GET /?AffiliateCode=365_01156702&CID=196&DID=84&TID=1&PID=149&LNG=5 HTTP/1.1
Host: imstore.bet365affiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 11 Jan 2023 09:25:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 202
Connection: keep-alive
Cache-Control: private
Expires: Mon, 09 Jan 2023 09:25:28 GMT
Location: /AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif
P3P: CP="CAO PSA OUR"
X-AspNet-Version: 4.0.30319
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=VeEicrTP4DR2tBau7z2BYU8tbuZD4y_N8zKCHZaYwBk-1673429128-0-AWQS7RP4EnIbCHTp2tDCIwYQeqPg78zvHVjrbCzhPxB7R3w54T2EJhrGYEiwCbo5ouIW692ZbseE+gP4pP7czU8=; path=/; expires=Wed, 11-Jan-23 09:55:28 GMT; domain=.bet365affiliates.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 787c9af75e9c0b41-OSL
assets-srv.s3.eu-west-1.amazonaws.com/1650871318/cazimbo-casino-logo.png
52.92.3.106200 OK 2.4 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/1650871318/cazimbo-casino-logo.png
IP 52.92.3.106:0
File type PNG image data, 265 x 135, 8-bit colormap, non-interlaced\012- data
Hash f467bfba9c864ceea15715c78a9b66c8
ffb2ecf4bff9407e76a63d4b1a98692d09afa0a3
c96f504b005905b5ebdd2294b1659987270e9ef741a61a5d3f3043901f3a853d
GET /1650871318/cazimbo-casino-logo.png HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: AIH8Qlxga6OrvupDgmgPWTzD4/QHtMZHdQ/qKWysp7JChXriUnHF7mC8TDhPaU4LJwcrfQrT5Sw=
x-amz-request-id: D3X0WZY0A6MVJYV9
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Mon, 25 Apr 2022 07:21:59 GMT
ETag: "f467bfba9c864ceea15715c78a9b66c8"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2379
assets-srv.s3.eu-west-1.amazonaws.com/logo-vulkanvegas.jpg
52.92.3.106200 OK 4.5 kB URL HTTP/1.1 assets-srv.s3.eu-west-1.amazonaws.com/logo-vulkanvegas.jpg
IP 52.92.3.106:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 170x73, components 3\012- data
Hash db4db07a2efddf087fff8433ba57a7cb
658ac58b8ceec3934c4ea9cb948b5024286ef51a
36bd67d48664cc45022f4f961e4e014d9f31c7ead484b6346125340ea30c230a
GET /logo-vulkanvegas.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: UGcRoYaH/TH+XeSsnMb8NmGicJeon3nXwChHmfODvu5vFbhxwShPsQpSkDTeMD3a9JAjUQd9DlQ=
x-amz-request-id: D3XA1GW6SFVJ7DX5
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Wed, 30 Mar 2022 14:25:07 GMT
ETag: "db4db07a2efddf087fff8433ba57a7cb"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 4495
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8644b05c3037ce8fb1cb4f40c0802b3
14a3c401f9f94a5b34b7066d1d13b60e67cca49b
55740388090983ae3b066cac41df4067d5b8ff813692e36a7a04cf6612b1ff9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55740388090983AE3B066CAC41DF4067D5B8FF813692E36A7A04CF6612B1FF9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15695
Expires: Wed, 11 Jan 2023 13:47:04 GMT
Date: Wed, 11 Jan 2023 09:25:29 GMT
Connection: keep-alive
imstore.bet365affiliates.com/AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif
5.226.179.31200 OK 66 kB URL HTTP/1.1 imstore.bet365affiliates.com/AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif
IP 5.226.179.31:0
ASN #209242 Cloudflare London, LLC
File type GIF image data, version 89a, 728 x 90\012- data
Hash f7ef9e854e020708d2a8605452ae9acf
676e6794eeba2023b82c3e976c1ff69aec3b3173
fa085ea8cd23a814292ae2c55c1357b4a38a446452c42060f4a2d6b55ffe6b2a
GET /AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif HTTP/1.1
Host: imstore.bet365affiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ichliebecasinos.de/
Connection: keep-alive
Cookie: __cf_bm=VeEicrTP4DR2tBau7z2BYU8tbuZD4y_N8zKCHZaYwBk-1673429128-0-AWQS7RP4EnIbCHTp2tDCIwYQeqPg78zvHVjrbCzhPxB7R3w54T2EJhrGYEiwCbo5ouIW692ZbseE+gP4pP7czU8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Content-Type: image/gif
Content-Length: 65479
Connection: keep-alive
Last-Modified: Tue, 03 Dec 2019 15:43:34 GMT
ETag: "3817f66bf0a9d51:0"
CF-Cache-Status: HIT
Age: 3157
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afc3b4d0b41-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 09:25:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8dd7ce9ec97e2db3fd99ab38935bd1b4
c3bccefd5b017e26c3c7688a5f5e052b0d102294
5f9ab032107c82c0239e9ed0fd3fa237f2a02382cef6122959523a6fdba34967
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Server: ECS (amb/6B99)
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56de8a53fb494855ff7717eeb39c1fed
438999ac8d0853e235a2c0e0f404291961c891ab
357db338b2f6fcf434bdd9c2561f91d3fc7e5d42a92e5068402ce3eeb6fba412
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6400
x-amzn-requestid: f76c3961-a118-4639-a943-2ffbd3d28537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eaD7hEEdoAMFs5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba4d16-3881379864dcae085aa4fd4d;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 04:56:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmS2bnkBSYTi7rEZuQ_frZ6GwU-PHrD3GfDXv7rDkp_ytjR7c9FhWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 09:00:56 GMT
age: 1473
etag: "438999ac8d0853e235a2c0e0f404291961c891ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d6e4e6b49974cfffd89597cf23644029
56a9175bdf1745015a7afbafcc1a2807f08da03f
63457be9b1574609f3404d23d657e0666092b870fe7a56c479865ebbb512be74
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 181
Cache-Control: max-age=109235
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Etag: "63bd8787-116"
Expires: Thu, 12 Jan 2023 15:46:04 GMT
Last-Modified: Tue, 10 Jan 2023 15:43:03 GMT
Server: ECS (amb/6BC6)
X-Cache: HIT
Content-Length: 278
ichliebecasinos.de/favicon.ico
188.166.106.236200 OK 15 kB URL HTTP/1.1 ichliebecasinos.de/favicon.ico
IP 188.166.106.236:0
ASN #14061 DIGITALOCEAN-ASN
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 257f15f92266d3467d747049d7b30429
80c8072b9410ce8604dc958e5d0ccd4b989bc709
f971cb33e3aedbfb003c751bcee938901db8515c6f376f3ae2f0897f9c20e6e3
GET /favicon.ico HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Cookie: _ga_9D905MV9JJ=GS1.1.1673429114.1.0.1673429114.0.0.0; _ga=GA1.1.253314320.1673429114
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 15:02:04 GMT
ETag: "3c2e-5bde4ffc0ad26"
Accept-Ranges: bytes
Content-Length: 15406
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
region1.google-analytics.com/g/collect?v=2&tid=G-9D905MV9JJ>m=2oe190&_p=1740238922&cid=253314320.1673429114&ul=en-us&sr=1280x1024&_s=1&sid=1673429114&sct=1&seg=0&dl=https%3A%2F%2Fichliebecasinos.de%2F&dt=Online%20Top%20Casinos%20Deutschland&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-9D905MV9JJ>m=2oe190&_p=1740238922&cid=253314320.1673429114&ul=en-us&sr=1280x1024&_s=1&sid=1673429114&sct=1&seg=0&dl=https%3A%2F%2Fichliebecasinos.de%2F&dt=Online%20Top%20Casinos%20Deutschland&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9D905MV9JJ>m=2oe190&_p=1740238922&cid=253314320.1673429114&ul=en-us&sr=1280x1024&_s=1&sid=1673429114&sct=1&seg=0&dl=https%3A%2F%2Fichliebecasinos.de%2F&dt=Online%20Top%20Casinos%20Deutschland&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ichliebecasinos.de
date: Wed, 11 Jan 2023 09:25:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafa65a02-09d0-4085-a53b-c07e296653d0.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafa65a02-09d0-4085-a53b-c07e296653d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33e73a984b73aaa3a6d2343a2268dcee
073e249b7c5ae5f048263c96a86b2612a31daef0
3d7683406e87edf9fa873d0b19938cca2464f49ab61fd6c6c540ac51af14a26f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafa65a02-09d0-4085-a53b-c07e296653d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7669
x-amzn-requestid: 4eca1479-54d3-440f-8df3-010b1c6a1592
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ0gqEyEoAMF8gA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba346a-21bd3fe53c321ba7719dc850;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:11:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GV18ViMbE66xv4gszajfeLaE2qQXq7-g0XJDerRFjBOYJoTH3BSzXg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 07:21:32 GMT
age: 7437
etag: "073e249b7c5ae5f048263c96a86b2612a31daef0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f5f3214d73a0066cf4784dac4d8573b
47832303343c4a19070eac14f0587518430a65e2
448453048adc356672036cfeb00a74126e089dc389a1c0eac52373ae99e39951
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4688
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Wed, 11 Jan 2023 08:07:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 74eafe3bfabac6843100686971153898
e9df2e14485c412107d742d4baab53aa36cd8ca4
46fcfba703552a587888b3c6e6a1deb01930e347192d05d95a5a5f46e9d0fea1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9301
x-amzn-requestid: 7f43eb13-8bca-4b2b-a6a4-325c6161608e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei73_GVVIAMFn5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-3f5d8e784f0d806b6416138f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rT4PDtLOo9eKH4xOnr2nkKVl4KqzRUZykXl_UYwIt_MIF_WUpuGq7w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:44:21 GMT
age: 42068
etag: "e9df2e14485c412107d742d4baab53aa36cd8ca4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82b10434cd29773d0f2f05a9904bd8d7
254f8d0a30d61afe871b7d603d4f0669bfb59808
5955b48e68572fd477fbb1bf172c3d590320b7408668a7fc586022362dd7447d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8395
x-amzn-requestid: 13f52de6-c624-4005-8c98-b8299ce3d156
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei75DGBwIAMFU3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d3-278ee7ad4b30336e2ada7970;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GgE9t2dma-Vdolh6eOwjqtNz-rLzDCflksYIj1mcogunBV8dxgCIkQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:51:12 GMT
age: 41657
etag: "254f8d0a30d61afe871b7d603d4f0669bfb59808"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 35ee3a36f2d56adfa27324f734f8f7fc
6ec36e85e464004c5e6255739e962e6dcc4c24c6
6cedd3770eb8879c837799d36ebca9d631789d972d3631d730829fc5d64abb25
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8024
x-amzn-requestid: b331ee66-c166-4fa6-b950-287134d07fa2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ6EM0oAMFQFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-39ff669b44e3dd9339daa56b;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fk214iXw9pGVhIOu0uwvDOrqHR-pOjicJOttxjMb0JDhxXbfpyRncg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 07:54:43 GMT
age: 5446
etag: "6ec36e85e464004c5e6255739e962e6dcc4c24c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 11 Jan 2023 08:41:08 GMT
expires: Wed, 11 Jan 2023 10:41:08 GMT
cache-control: public, max-age=7200
age: 2661
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6517dc-ccae-435f-be23-e98711eb6062.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6517dc-ccae-435f-be23-e98711eb6062.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45f8fac831914525dcaa19617e3e212c
494878e02f916ef7bf57703062b33328778e1adc
8d51e3567a0cfdb3bbddfd365c7073c9b7a396552c7455787f1c4d386d01646e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6517dc-ccae-435f-be23-e98711eb6062.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9120
x-amzn-requestid: 2a627ed6-6dcb-43db-b3f1-9466d191c644
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: edG9MHNaoAMF2Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb8521-7ade615a424161503546feaa;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 03:08:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qlhIrLaS-Ws8BAKtj4DMPoQ5cmu8q38Iq88V8lXe2L29QpS2fmhtfQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:13:53 GMT
age: 22296
etag: "494878e02f916ef7bf57703062b33328778e1adc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 4aa5723e20bb937995d58baee63ccef3
4f4451ce70e0f1174447f509b9ecfae0030d69b8
a442ce52f0330fe4e1d6e25a76d9cf569cf7e649416caf201d0570a1cadf7de8
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: kMrvgjN8dm0xuoc3DZI1Tv5BXmLbfq3O8CK5n3IgZTz7OkiTC++fViWtO5tyYks8W13hnZoKxjrTa87rUFNOSg==
priority: u=3,i
content-length: 27613
x-fb-trip-id: 1904183273
date: Wed, 11 Jan 2023 09:25:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e5a79d52fe080e6cfcd3bc9c2748832c
b596f5cd20c240d0c47df3417c24636a9b29c19f
0bd60296b6d568712cf27f0a268ae8f41c7ea998a27b9145b0eefbe832c6b43f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "0BD60296B6D568712CF27F0A268AE8F41C7EA998A27B9145B0EEFBE832C6B43F"
Last-Modified: Mon, 09 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15431
Expires: Wed, 11 Jan 2023 13:42:40 GMT
Date: Wed, 11 Jan 2023 09:25:29 GMT
Connection: keep-alive
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=23E8AD0C51C26468212CBF9A50376560; domain=.bing.com; expires=Mon, 05-Feb-2024 09:25:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E5534CEC800142199FD1087363301619 Ref B: OSL30EDGE0115 Ref C: 2023-01-11T09:25:29Z
date: Wed, 11 Jan 2023 09:25:29 GMT
X-Firefox-Spdy: h2
go.affilirise.com/redirect.aspx?pid=2727&bid=1527
23.36.79.11307 Temporary Redirect 0 B URL HTTP/2 go.affilirise.com/redirect.aspx?pid=2727&bid=1527
IP 23.36.79.11:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=2727&bid=1527 HTTP/1.1
Host: go.affilirise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://cazimbo.com/de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Wed, 11 Jan 2023 09:25:29 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 11 Jan 2023 09:25:29 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a2727%2c%22BID%22%3a1527%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1673429129794)%5c%2f%22%2c%22CookieTag%22%3a%2215272727451240919C2023111925%22%7d%5d; SameSite=None;; domain=.affilirise.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221590228%7c1%22%7d%5d; domain=.affilirise.com; expires=Fri, 11-Jan-3022 09:25:29 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=64, origin; dur=68
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.de/olp/open-account?affiliate=365_01156703
5.226.179.19200 OK 3.5 kB URL HTTP/1.1 www.bet365.de/olp/open-account?affiliate=365_01156703
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4f284a0457f0efcbb20fde5ff641aec0
e61dfdfdbe12b2a533c17120805cd6035f32b701
11fe3cc7f3d2f8643a828c4a778461ad6b3369884e62c46f4514aee64aea821a
GET /olp/open-account?affiliate=365_01156703 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--1P2 - 12-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=; path=/; expires=Wed, 11-Jan-23 09:55:29 GMT; domain=.bet365.de; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 787c9afd1d78fabc-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f5f3214d73a0066cf4784dac4d8573b
47832303343c4a19070eac14f0587518430a65e2
448453048adc356672036cfeb00a74126e089dc389a1c0eac52373ae99e39951
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4688
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Wed, 11 Jan 2023 08:07:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.omappapi.com/v2/embed/69502?d=ichliebecasinos.de
54.230.111.48200 OK 227 B URL HTTP/2 api.omappapi.com/v2/embed/69502?d=ichliebecasinos.de
IP 54.230.111.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5995623f04f7d18ba2d381744e87f09d
525cdbe6d85cb933b8e6d806b46584273a4952fe
5aa4142a40b5a1e0cdee8d5416c145c0e3d8b785254a566b5393069dcd2e0de8
GET /v2/embed/69502?d=ichliebecasinos.de HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 227
date: Wed, 11 Jan 2023 09:25:29 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Wed, 11 Jan 2023 09:00:54 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: "b91e5dc54e033e761837b7b846da520f"
x-optinmonster-account: 78125
access-control-expose-headers: X-OptinMonster-Account, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AHyoEy5fSRen1wE3TGP7NPfbFrIY2HOp8fsAjmVUiy1rACbL4uCFbw==
X-Firefox-Spdy: h2
www.bet365.de/olpc/de/75/0/1/open-account
5.226.179.19200 OK 13 kB URL HTTP/1.1 www.bet365.de/olpc/de/75/0/1/open-account
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2360), with CRLF line terminators
Hash fcacc556d46f8f6b0394b12c0066fdcf
3b2096a83449b405c3317b8cb542eec4fe3a681e
7367179d1931385c52a222c21fc0cb1980b734294d7f5192564a8b8898ea81c8
GET /olpc/de/75/0/1/open-account HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olp/open-account?affiliate=365_01156703
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13246
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.de 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.de/ https://content001.bet365.de/SportsContent/ 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';connect-src 'self' https://www.google-analytics.com http://members.bet365.de https://extra.bet365.de 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';font-src 'self' data: 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';
Last-Modified: Wed, 11 Jan 2023 07:29:27 GMT
CF-Cache-Status: HIT
Age: 3191
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9afdee40fabc-OSL
bat.bing.com/action/0?ti=22022257&tm=gtm002&Ver=2&mid=91bbc480-0329-4d55-9383-1045dc5c31c1&sid=db709ea0919111edac5a6dd59d23ded2&vid=db7089d0919111ed9c88117454e1c621&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Top%20Casinos%20Deutschland&p=https%3A%2F%2Fichliebecasinos.de%2F&r=<=1567&evt=pageLoad&sv=1&rn=429993
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=22022257&tm=gtm002&Ver=2&mid=91bbc480-0329-4d55-9383-1045dc5c31c1&sid=db709ea0919111edac5a6dd59d23ded2&vid=db7089d0919111ed9c88117454e1c621&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Top%20Casinos%20Deutschland&p=https%3A%2F%2Fichliebecasinos.de%2F&r=<=1567&evt=pageLoad&sv=1&rn=429993
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=22022257&tm=gtm002&Ver=2&mid=91bbc480-0329-4d55-9383-1045dc5c31c1&sid=db709ea0919111edac5a6dd59d23ded2&vid=db7089d0919111ed9c88117454e1c621&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Top%20Casinos%20Deutschland&p=https%3A%2F%2Fichliebecasinos.de%2F&r=<=1567&evt=pageLoad&sv=1&rn=429993 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2E6D9D5FA1A5644A04398FC9A05065E2; domain=.bing.com; expires=Mon, 05-Feb-2024 09:25:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 23B468AD504F4869972F624B26205BB8 Ref B: OSL30EDGE0115 Ref C: 2023-01-11T09:25:29Z
date: Wed, 11 Jan 2023 09:25:29 GMT
X-Firefox-Spdy: h2
buttons-config.sharethis.com/js/6298814693aa1c00193de1c5.js
54.230.111.126200 OK 873 B URL HTTP/2 buttons-config.sharethis.com/js/6298814693aa1c00193de1c5.js
IP 54.230.111.126:0
File type ASCII text, with very long lines (873), with no line terminators
Hash 75f189d6f12fd8cd7e93e9183a3a512c
e46982f4225da2a34e2db2e5635a7c0f729cef7a
28eba250e61ae33e6c538e504d7aaef8a84ec5b746e629b4c969b6b62656a102
GET /js/6298814693aa1c00193de1c5.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 873
last-modified: Thu, 02 Jun 2022 10:00:23 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 11 Jan 2023 09:25:04 GMT
cache-control: max-age=60,public
etag: "75f189d6f12fd8cd7e93e9183a3a512c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uXU592-WUhC23D3_uwfn5sXbk4AyrI8R0v9wGJLsMjWotXlwj62pbg==
age: 26
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.bet365.de/olpc/olpc-styles.css?v=dBd_Fzh-UuBag0eayavwW9rzJvksZje1jEYTq5m-RbU1
5.226.179.19200 OK 118 kB URL HTTP/1.1 www.bet365.de/olpc/olpc-styles.css?v=dBd_Fzh-UuBag0eayavwW9rzJvksZje1jEYTq5m-RbU1
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 118 kB (118143 bytes)
Hash dbc3ddcf12e27496caf37db9a8fbe3d0
cfd2d0afdb0d397c647dc89548ace59f3571de59
6f4b74761a431f9d6c9c753f1d185588a94c776fbce9ce36227aa7ddfa7c132a
GET /olpc/olpc-styles.css?v=dBd_Fzh-UuBag0eayavwW9rzJvksZje1jEYTq5m-RbU1 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Wed, 10 Jan 2024 19:26:36 GMT
Last-Modified: Tue, 10 Jan 2023 19:26:36 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 3192
Server: cloudflare
CF-RAY: 787c9afe8e55b524-OSL
www.bet365.de/olpc/Content/Fonts/FTN45__W.woff2
5.226.179.19200 OK 46 kB URL HTTP/1.1 www.bet365.de/olpc/Content/Fonts/FTN45__W.woff2
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 07:42:43 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afe5e9ffabc-OSL
bat.bing.com/p/action/22022257.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/22022257.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/22022257.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=2F6427B6A229679635CF3520A3DC660A; domain=.bing.com; expires=Mon, 05-Feb-2024 09:25:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D8A8932FDC7340D0B4098D2460FEF79E Ref B: OSL30EDGE0115 Ref C: 2023-01-11T09:25:29Z
date: Wed, 11 Jan 2023 09:25:29 GMT
X-Firefox-Spdy: h2
www.bet365.de/olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1
5.226.179.19200 OK 7.6 kB URL HTTP/1.1 www.bet365.de/olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (21910), with no line terminators
Hash b67c3ce5e8cbbca3fab865a90d284113
2afa9bf3970312d52bb5f93d546c89ee6d4902f5
68f0811836f6d0b1d4d9a9cf428154b7c0594a6ac88a1a5f527d2dae88bdadb1
GET /olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7634
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Wed, 10 Jan 2024 19:26:38 GMT
Last-Modified: Tue, 10 Jan 2023 19:26:38 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 3192
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9afe8ec4fabc-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8dd7ce9ec97e2db3fd99ab38935bd1b4
c3bccefd5b017e26c3c7688a5f5e052b0d102294
5f9ab032107c82c0239e9ed0fd3fa237f2a02382cef6122959523a6fdba34967
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Wed, 11 Jan 2023 09:25:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js
5.226.179.19200 OK 3.6 kB URL HTTP/1.1 www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
x-bet-hop: 1
Pragma: no-cache
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 09:25:30 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afe8a0eb52d-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 1b1aa390fb469af7c7d81a50020ea69e
b1c1cab0cefa46f4a0f823fd3943ddc885300934
94e9afe51c05578980a5431ed8b3d0930ad92113ac715382803f81c94c0506f4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Wed, 11 Jan 2023 08:16:19 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tWm_kuvVzwDSyyyzhjrNGAPUNRqQU00g87t3IZqHJ1whWFQwHmLwvA==
Age: 4151
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c17cf7068f6c6308fdd2f677fba7d7fb
3250d9ab2a48cd0588ff58720181cde513bffd5c
21c7d09d6dc2473e2e116d7f691f23387b3748cbe7e829440f9454d1e0434fe1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2572
Cache-Control: max-age=152994
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be2920-117"
Expires: Fri, 13 Jan 2023 03:55:24 GMT
Last-Modified: Wed, 11 Jan 2023 03:12:32 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 279
platform-cdn.sharethis.com/img/facebook.svg
54.230.111.57200 OK 301 B URL HTTP/2 platform-cdn.sharethis.com/img/facebook.svg
IP 54.230.111.57:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash c6e9be45643e197ce1db1d7e24a99adc
d7338e398bb0f7a9082d24f121140d2cf9e88859
768d97ec0916217ae82c70aeda3a61b9b0dab344edc4a3240a4f7cd94af00307
GET /img/facebook.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 301
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 09 Jan 2023 03:18:13 GMT
cache-control: public, max-age=2592000
etag: "c6e9be45643e197ce1db1d7e24a99adc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GcgLd1LDz7IjI9M3pJIui8mZIxCRCR2iXmGkKa5Vz8KQxUkcNBZLWQ==
age: 194841
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c17cf7068f6c6308fdd2f677fba7d7fb
3250d9ab2a48cd0588ff58720181cde513bffd5c
21c7d09d6dc2473e2e116d7f691f23387b3748cbe7e829440f9454d1e0434fe1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1262
Cache-Control: max-age=151684
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be2920-117"
Expires: Fri, 13 Jan 2023 03:33:34 GMT
Last-Modified: Wed, 11 Jan 2023 03:12:32 GMT
Server: ECS (amb/6BA2)
X-Cache: HIT
Content-Length: 279
www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?async
5.226.179.19200 OK 695 B URL HTTP/1.1 www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (987), with no line terminators
Hash 547eb34b244964f4937fab71e3477d44
80c63c322207b103cfdb08a82d1011d5631f5fb2
9b77b7893771b169a00b58a449642c41455b4c2b9a0bf6262d397f863f06d5f5
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
x-bet-hop: 1
Pragma: no-cache
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 09:25:30 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afeedab0b4d-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c17cf7068f6c6308fdd2f677fba7d7fb
3250d9ab2a48cd0588ff58720181cde513bffd5c
21c7d09d6dc2473e2e116d7f691f23387b3748cbe7e829440f9454d1e0434fe1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2970
Cache-Control: max-age=153392
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be2920-117"
Expires: Fri, 13 Jan 2023 04:02:02 GMT
Last-Modified: Wed, 11 Jan 2023 03:12:32 GMT
Server: ECS (amb/6BB0)
X-Cache: HIT
Content-Length: 279
l.sharethis.com/pview?event=pview&hostname=ichliebecasinos.de&location=%2F&product=sop&url=https%3A%2F%2Fichliebecasinos.de%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Online%20Top%20Casinos%20Deutschland&cms=unknown&publisher=6298814693aa1c00193de1c5&sop=true&version=st_sop.js&lang=en
35.158.7.46204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=ichliebecasinos.de&location=%2F&product=sop&url=https%3A%2F%2Fichliebecasinos.de%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Online%20Top%20Casinos%20Deutschland&cms=unknown&publisher=6298814693aa1c00193de1c5&sop=true&version=st_sop.js&lang=en
IP 35.158.7.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=ichliebecasinos.de&location=%2F&product=sop&url=https%3A%2F%2Fichliebecasinos.de%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Online%20Top%20Casinos%20Deutschland&cms=unknown&publisher=6298814693aa1c00193de1c5&sop=true&version=st_sop.js&lang=en HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://ichliebecasinos.de
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 11 Jan 2023 09:25:30 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
members.bet365.de/Members/Helpers/DefaultAff.aspx?affiliate=365_01156703
5.226.179.19200 OK 177 B URL HTTP/1.1 members.bet365.de/Members/Helpers/DefaultAff.aspx?affiliate=365_01156703
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01156703 HTTP/1.1
Host: members.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01156703&prd=Sports; domain=.bet365.de; expires=Sat, 25-Feb-2023 09:25:30 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=EAA4B5A316374FFF89497AC0A160DFDB000003; domain=.bet365.de; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787c9afe7886b4ee-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 44ea0f9a8238c03d01bad35cbeb9a5d4
89a2fb565436045f2b0ea92675b5380d68947e6f
d77d3c8d7644f7777f36ca0518724efe4ab9de84c902f75af06380594e4a1ad7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116947
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63bda65d-118"
Expires: Thu, 12 Jan 2023 17:54:37 GMT
Last-Modified: Tue, 10 Jan 2023 17:54:37 GMT
Server: nginx
Content-Length: 280
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Klarna.svg
5.226.179.19200 OK 2.3 kB URL HTTP/1.1 content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Klarna.svg
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (6225)
Hash 63331f7e52204ca7388196d9ca4c4396
b311883c42a4eafd995270cfb2b2e1cbef3f6e5d
78411136dae0b3928ec452f8a9f6e5d93b90ba9b4e9cefcb943d26084e1b060a
GET /SportsContent/FeaturesTemplate/SVG/Payment/Klarna.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Content-Length: 2337
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Wed, 02 Nov 2022 16:04:08 GMT
Vary: Accept-Encoding
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9aff58bdfab8-OSL
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/eco%20Payz.svg
5.226.179.19200 OK 2.2 kB URL HTTP/1.1 content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/eco%20Payz.svg
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4675), with no line terminators
Hash 79177c339d6c2a796f609cf1e3c97000
704e22404bc904d6fd6f168bc84de08594c1c7d9
d76888330707743d0db9e7e9fe93251f435864fe4c6edf2313503f8e436f8644
GET /SportsContent/FeaturesTemplate/SVG/Payment/eco%20Payz.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 09 Sep 2021 09:12:46 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff5a32b51d-OSL
Content-Encoding: gzip
www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDCDqCFAQAA6fiZFAoF3LQBO4zRhxcLDIEjzo5S-8W34Ftq_FczE3D4dBuQ&PIRXTcSdwp--z=q
5.226.179.19200 OK 175 kB URL HTTP/1.1 www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDCDqCFAQAA6fiZFAoF3LQBO4zRhxcLDIEjzo5S-8W34Ftq_FczE3D4dBuQ&PIRXTcSdwp--z=q
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 175 kB (174958 bytes)
Hash 7103627b808f21f2da872c37282ace70
014675f8bebe20c166fd69cbce25d7114a8a3b0f
c306859e826d6e3816ae52dcd5830d413bbafc629750e128b8690b0146373b3d
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDCDqCFAQAA6fiZFAoF3LQBO4zRhxcLDIEjzo5S-8W34Ftq_FczE3D4dBuQ&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 09:00:00 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff7f6cb524-OSL
content001.bet365.de/SportsContent/Global/Footer/eCogra-Horizontal2x.png
5.226.179.19200 OK 1.7 kB URL HTTP/1.1 content001.bet365.de/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff7a290b45-OSL
content001.bet365.de/SportsContent/Global/Footer/GGL/PNG/x2/GGL_Grey-2x.png
5.226.179.19200 OK 1.7 kB URL HTTP/1.1 content001.bet365.de/SportsContent/Global/Footer/GGL/PNG/x2/GGL_Grey-2x.png
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 110 x 72, 8-bit gray+alpha, non-interlaced\012- data
Hash 0d1599794b53a324e86676ab1af02de7
76247342739b924edfb0e603e11627808a14e4fb
ac97b0520a8964b7bbb241a4f2d43f8c473b25b2946451a0dee98d0287a6ab32
GET /SportsContent/Global/Footer/GGL/PNG/x2/GGL_Grey-2x.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 1659
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:14:16 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 232769
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affc8f7fab8-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content001.bet365.de/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
5.226.179.19200 OK 6.4 kB URL HTTP/1.1 content001.bet365.de/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff7d53b500-OSL
a.omappapi.com/app/js/api.min.css
194.242.11.186200 OK 7.8 kB URL HTTP/2 a.omappapi.com/app/js/api.min.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (17996), with no line terminators
Hash 584a24a08b29f458fe6cdd5fadda3cdd
67e8341bbf5e6460f42729860d7738a9921a66d0
34004030e8bdeef9c99f8d3d5c1350c873db3774cf02fb50600db02415d96805
GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:29 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63bceea0-464c"
last-modified: Tue, 10 Jan 2023 04:50:40 GMT
cdn-storageserver: DE-167
cdn-requestpullsuccess: True
cdn-fileserver: 533
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 05:23:45
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0a540241b5824e1991a67375533e582f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 30d2205eaa1ce2dc92b7e02558b36c79
0899d974eb13d220dce7532e1b9f32b82fa002e4
45af6f7a039de19bf0b7cda174e1de6ddcfc7d31e2861d99b8059aefa15a1063
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=156559
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be4119-117"
Expires: Fri, 13 Jan 2023 04:54:49 GMT
Last-Modified: Wed, 11 Jan 2023 04:54:49 GMT
Server: nginx
Content-Length: 279
content001.bet365.de/SportsContent/Global/Footer/SPORTSX2-18.png
5.226.179.19200 OK 4.4 kB URL HTTP/1.1 content001.bet365.de/SportsContent/Global/Footer/SPORTSX2-18.png
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 386534
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affea800b45-OSL
a.omappapi.com/app/js/5.c7ff1c6f.min.js
194.242.11.186200 OK 5.2 kB URL HTTP/2 a.omappapi.com/app/js/5.c7ff1c6f.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (16062)
Hash f900aa40839cd9718160deab0ec09204
c0b1e0c85b2337d4ca774f2dceaf6ee917c3b4a6
bb2b297065ef21109cbad8c9000df65fefe4643ffcf8870c1a76bdf557c4ab14
GET /app/js/5.c7ff1c6f.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:30 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f974-3efd"
last-modified: Wed, 14 Dec 2022 16:27:32 GMT
cdn-storageserver: DE-199
cdn-requestpullsuccess: True
cdn-fileserver: 420
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 19:35:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 79b95b65fa9edd00760834c0eb75d95c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=479006207257612&ev=PageView&dl=https%3A%2F%2Fichliebecasinos.de%2F&rl=&if=false&ts=1673429115931&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673429115930.1867488034&it=1673429115610&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=479006207257612&ev=PageView&dl=https%3A%2F%2Fichliebecasinos.de%2F&rl=&if=false&ts=1673429115931&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673429115930.1867488034&it=1673429115610&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=479006207257612&ev=PageView&dl=https%3A%2F%2Fichliebecasinos.de%2F&rl=&if=false&ts=1673429115931&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673429115930.1867488034&it=1673429115610&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 11 Jan 2023 09:25:30 GMT
X-Firefox-Spdy: h2
content001.bet365.de/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
5.226.179.19200 OK 7.9 kB URL HTTP/1.1 content001.bet365.de/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affcaefb51d-OSL
boomerang-casino100.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
45.8.106.227301 Moved Permanently 0 B URL HTTP/2 boomerang-casino100.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
IP 45.8.106.227:0
ASN #209242 Cloudflare London, LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS HTTP/1.1
Host: boomerang-casino100.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 11 Jan 2023 09:25:30 GMT
content-length: 0
location: https://boomerang-casino.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c9aff9d10b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Paypal.svg
5.226.179.19200 OK 2.8 kB URL HTTP/1.1 content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Paypal.svg
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7331), with no line terminators
Hash 1fce617a5142d14d60ccec8322f3e6f7
f4b86459952dfa834c1e442c951b1f9e7281175b
386bb936628d2d045dc1168cd7a5cb8a586c7d43b4b3b2902300b353693f6ffb
GET /SportsContent/FeaturesTemplate/SVG/Payment/Paypal.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Content-Length: 2832
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 09 Sep 2021 09:13:53 GMT
Vary: Accept-Encoding
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9afffe09b500-OSL
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg
5.226.179.19200 OK 6.0 kB URL HTTP/1.1 content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (15567), with no line terminators
Hash aa0df9e46b1f7ac3b17c0958b5027d01
3240acf3cf0ddc96973ebb44c940ee6df907566c
d997b14180dfe368dfc9baaf26be95255299617eae701add25de55dfd5f42aaf
GET /SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 09 Sep 2021 09:13:23 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affe917fab8-OSL
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 44ea0f9a8238c03d01bad35cbeb9a5d4
89a2fb565436045f2b0ea92675b5380d68947e6f
d77d3c8d7644f7777f36ca0518724efe4ab9de84c902f75af06380594e4a1ad7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=116947
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63bda65d-118"
Expires: Thu, 12 Jan 2023 17:54:37 GMT
Last-Modified: Tue, 10 Jan 2023 17:54:37 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 30d2205eaa1ce2dc92b7e02558b36c79
0899d974eb13d220dce7532e1b9f32b82fa002e4
45af6f7a039de19bf0b7cda174e1de6ddcfc7d31e2861d99b8059aefa15a1063
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=156559
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be4119-117"
Expires: Fri, 13 Jan 2023 04:54:49 GMT
Last-Modified: Wed, 11 Jan 2023 04:54:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
www.bet365.de/olpc/de/75/0/1/cookieconsentajax?
5.226.179.19200 OK 1.5 kB URL HTTP/1.1 www.bet365.de/olpc/de/75/0/1/cookieconsentajax?
IP 5.226.179.19:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (535), with CRLF, LF line terminators
Hash 5ef8facc79c57fff4d946a13f70c1f95
b3d4de2b65de66a94086b0652137f03a5d0b1c10
463693dbc102dbee2bda325ea1478e21a8a858039c3f240f1b29be6259ff5142
POST /olpc/de/75/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.de
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1468
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787c9b01fb25b524-OSL
boomerang-casino.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
45.8.105.214200 OK 1.6 kB URL HTTP/2 boomerang-casino.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
IP 45.8.105.214:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1589)
Hash 30431d2136d5a9e9f142f9731c0f4f7c
a8fecd61940245d95fdfe67a2a7baf54e90db8f9
1ba2011b61a10504fb55556822976f98a5efc112c8095d8f3ab437d6c01b3f52
GET /de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS HTTP/1.1
Host: boomerang-casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:30 GMT
content-type: text/html
cf-ray: 787c9b0098a00b51-OSL
access-control-allow-origin: *
last-modified: Tue, 10 Jan 2023 13:20:51 GMT
set-cookie: _cf_reyid=2sitdH7STxvUgVBDY0a8Z7MI1xliZqfjofhugWRe4MEWnU/lRyyR2cvAI0l97TGha1ApOtw041GF+EGFBqwo1Q==
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: null, Accept-Encoding
cf-cache-status: DYNAMIC
cf-ttl: 1673429190472
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
188.114.97.1200 OK 1.0 kB URL HTTP/2 www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash b454613b3d04b7e711c678da0b6fd6a5
a8b23c856f8065569a1a80b11e33995fd152892f
78495009555299d62cf56391854566ba8b3ce67347305bdfa240cd58c0f1f121
GET /?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ= HTTP/1.1
Host: www.oopserror.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:31 GMT
content-type: text/html
x-amz-id-2: Go6vIfazmqqdVSGRCg7rB5A3PJpQVtfkpY/4SYiuYhXoZbjdMIt9zzlTEvOAvkQqev4nJIsmoss=
x-amz-request-id: T022M2WZD82XP0SH
last-modified: Sun, 18 Jul 2021 11:07:46 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oz%2FNnSCjx9o0VOR4ZZaxTOJPUp2w5tTvcfa4WMLoFlCA%2FfYEtZgnqQmiT39RohtxV6FSjWex0id7npAurK80hstF%2BafLH99JZxL9u%2BIza%2Fozv5eL28B8BIt6Xid2EfjJtoOO1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c9b060a2c0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
boomerang11.com/?serial=3343&creative_id=9&anid=PU_CM_DE_DT_ICHLIEBECASINOS
188.114.96.1302 Found 0 B URL HTTP/2 boomerang11.com/?serial=3343&creative_id=9&anid=PU_CM_DE_DT_ICHLIEBECASINOS
IP 188.114.96.1:0
GET /?serial=3343&creative_id=9&anid=PU_CM_DE_DT_ICHLIEBECASINOS HTTP/1.1
Host: boomerang11.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 11 Jan 2023 09:25:29 GMT
content-type: text/html; charset=utf-8
location: https://boomerang-casino100.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache
x-request-id: 83eda438-9b07-4315-ad23-8ecabc0c843d
x-runtime: 0.058090
strict-transport-security: max-age=31536000
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=alHCnuJ6afRj9d8tG65DmvJlwR2mMT7iULQI6Qg4Hh70wUa6QMIpgmNI61gulEhTidE9aZW%2Fe01WqJu5MGAXgt6JrERUb9UF%2BzWSqzMH9U%2BrOi4YKt5ODu8RmnxxeE2Sjo8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c9afcfc110b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.oopserror.com/css/style.css
188.114.97.1404 Not Found 0 B URL HTTP/2 www.oopserror.com/css/style.css
IP 188.114.97.1:0
GET /css/style.css HTTP/1.1
Host: www.oopserror.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Wed, 11 Jan 2023 09:25:31 GMT
content-type: text/html; charset=utf-8
x-amz-request-id: T026FEXRN1JBYKNE
x-amz-id-2: efMw7Q7a+ATFopECl+VN1VEeXiNfurXwz5D3dqA5YvKmEEKDV88uL8zJQIwkZlHcV4k9Qjam7og=
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=35ddcYnw54KfmwDGRvWmF%2FshStG5d%2FGSapOXXrRElfa79ACP4MXE%2F%2BnP8JaEA%2BIIvcN%2BH2G6EU0aIHB8nSzqUbO0dixNVoyolb%2FCuZgdCrRMbGXAqsOoRot1UBLttbt0dhlZFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c9b06db0d0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:29 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63bcedb3-c7f5"
last-modified: Tue, 10 Jan 2023 04:46:43 GMT
cdn-storageserver: DE-164
cdn-requestpullsuccess: True
cdn-fileserver: 531
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 04:47:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ce50d1f88e6abd250a39e58fed158f9d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cazimbo.com/de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E
45.8.107.86200 OK 0 B URL HTTP/2 cazimbo.com/de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E
IP 45.8.107.86:0
ASN #209242 Cloudflare London, LLC
GET /de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E HTTP/1.1
Host: cazimbo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:30 GMT
content-type: text/html
cf-ray: 787c9b002863b524-OSL
access-control-allow-origin: *
last-modified: Tue, 03 Jan 2023 10:07:26 GMT
set-cookie: _cf_reyid=IX9ANOLAgbCSpAtKAGjN5MMEceCQdPA+D4inUsyqjK4qvNopNo3lOAgS9KJdTTYn
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: null, Accept-Encoding
cf-cache-status: DYNAMIC
cf-ttl: 1673429190414
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
platform-cdn.sharethis.com/img/instagram.svg
54.230.111.57200 OK 0 B URL HTTP/2 platform-cdn.sharethis.com/img/instagram.svg
IP 54.230.111.57:0
GET /img/instagram.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 28 Dec 2022 03:13:17 GMT
cache-control: public, max-age=2592000
etag: W/"da6090b1b675f09ecfa36f0098ebe1c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -KBevn2NYHEQbgcHProUFkq_Dq_-1EBS6Fai5JgUyDraOj5QyYVerg==
age: 1231934
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
spa.silverplayaffiliates.com/u/b/2958225/iW0AOOJCF8zx
188.114.97.1302 Found 0 B URL HTTP/2 spa.silverplayaffiliates.com/u/b/2958225/iW0AOOJCF8zx
IP 188.114.97.1:0
GET /u/b/2958225/iW0AOOJCF8zx HTTP/1.1
Host: spa.silverplayaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 11 Jan 2023 09:25:31 GMT
content-type: text/html; charset=UTF-8
location: https://www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
set-cookie: AWSALB=nCetLNJ+byulIuLz9aHCusqUjt9VG0Jk24JPwImRAuqCqcK9NYBgq4wXLb/ucpk/vlqbd7pKq9IJ1Tv5e7GLQB0EF2+Q7CYsPsBe/X4KinOrtfgIvihkwIo80+am; Expires=Wed, 18 Jan 2023 09:25:29 GMT; Path=/
AWSALBCORS=nCetLNJ+byulIuLz9aHCusqUjt9VG0Jk24JPwImRAuqCqcK9NYBgq4wXLb/ucpk/vlqbd7pKq9IJ1Tv5e7GLQB0EF2+Q7CYsPsBe/X4KinOrtfgIvihkwIo80+am; Expires=Wed, 18 Jan 2023 09:25:29 GMT; Path=/; SameSite=None
PHPSESSID=jtkelum4l8s00klsf55t0rppds; path=/
x-powered-by: PHP/8.0.25
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=29uahtHIBhtch3LE%2Bkc3%2BTrpGtPuVNqJQ9GhWparsys%2FQBlndiUv%2BX6AQNERJNlrBIXsBOjMMT1ZMj1d913duSw5ZbqiNRZdr7Ils2yHHp3hUSxydT782lkFSjWfpBDJz5fvOyM88kazY5FoYaqy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c9afd7e330af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/flexboxgrid2@7.2.1/flexboxgrid2.css
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/flexboxgrid2@7.2.1/flexboxgrid2.css
IP 104.16.122.175:0
GET /flexboxgrid2@7.2.1/flexboxgrid2.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sun, 11 Mar 2018 09:44:23 GMT
etag: W/"56a4-v1R5qYpQrdlZIpVwnn1fUQr4l/s"
via: 1.1 fly.io
fly-request-id: 01GPECVSY88NF4VYC25BE248AQ-ams
cf-cache-status: HIT
age: 56110
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 787c9af29fbab50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.226.52200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.226.52:0
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1115
expires: Sat, 14 Jan 2023 09:25:28 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 787c9af2cdfeb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2