Report - ichliebecasinos.de/

Report Overview

Submitted URL
ichliebecasinos.de/
IP
188.166.106.236
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2023-01-11 09:25:39
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	32 kB	142.250.74.74
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.214.202.214
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	21 kB	142.250.74.110
go.affilirise.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	462 B	1.1 kB	23.36.79.11
a.omappapi.com	5418	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	16 kB	194.242.11.186
boomerang-casino.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	485 B	2.3 kB	45.8.105.214
www.oopserror.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	994 B	2.6 kB	188.114.97.1
cdn.onesignal.com	3015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	553 B	104.18.226.52
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	56 kB	95.101.11.120
kit.fontawesome.com	1868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	593 B	104.18.22.52
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	574 B	104.16.122.175
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.1 kB	11 kB	93.184.220.29
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	667 B	565 B	216.239.32.36
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	14 kB	204.79.197.200
www.bet365.de	390457	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.5 kB	373 kB	5.226.179.19
content001.bet365.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.3 kB	39 kB	5.226.179.19
cazimbo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	680 B	45.8.107.86
www.securely-send.com	317044	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	41 kB	161.35.78.172
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	728 B	23.36.77.32
l.sharethis.com	4794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	685 B	403 B	35.158.7.46
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	592 B	349 B	31.13.72.36
boomerang-casino100.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	325 B	45.8.106.227
ichliebecasinos.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	6.6 MB	188.166.106.236
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	73 kB	142.250.74.8
platform-cdn.sharethis.com	11841	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	805 B	1.5 kB	54.230.111.57
members.bet365.de	602217	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	725 B	5.226.179.19
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	442 B	338 B	95.101.11.112
spa.silverplayaffiliates.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	466 B	1.3 kB	188.114.97.1
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.131
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	5.7 kB	54.230.245.100
assets-srv.s3.eu-west-1.amazonaws.com	544449	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	69 kB	52.92.3.106
api.omappapi.com	5038	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	1.1 kB	54.230.111.48
boomerang11.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	917 B	188.114.96.1
imstore.bet365affiliates.com	98295	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	67 kB	5.226.179.31
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	29 kB	31.13.72.12
buttons-config.sharethis.com	6006	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	1.5 kB	54.230.111.126

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-11	medium	ichliebecasinos.de/	Malware
2023-01-11	medium	ichliebecasinos.de/	Malware
2023-01-11	medium	www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtm.js?id=GTM-5FC8JXC	199 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5FC8JXC IP 142.250.74.8 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 0a9d68507369afd716bbdd19cc0e37ee f8b593f6101fab3a69fc6c12d1b748ebdacf35c1 b3fe32fb84555b9085ce58bb84af85df1b63d0f67fd5690c545533d03f468a89 Loading...

	ichliebecasinos.de/	4.9 kB	2023-03-12	2023-03-12
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash aa8b884e5e8dfbef0b700e875e4aa53c 1901c3f7061b72295297dcfeca686c3209e43910 258359838447051e4da16ea0d7a3b08ca4d52e27d415608b4e6d42fb15fb5d71 Loading...

	platform-api.sharethis.com/js/sharethis.js#property=6298814693aa1c00193de1c5&product=sop	197 kB	2023-03-08	2023-03-13
Pretty URL platform-api.sharethis.com/js/sharethis.js#property=6298814693aa1c00193de1c5&product=sop IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:38 Last Seen2023-03-13 03:12:01 Times Seen1 Hash c8bc939471ef6dab0c390710d339b448 e11ff1d6671b1d8a0df09e4bf1e3b577d36ffea6 f2543598ef1f4ead06a604ac151e0466dd405bd6fcce02c9074567066eb89085 Loading...

	www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?async	987 B	2023-03-12	2023-03-12
Pretty URL www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?async IP 5.226.179.19 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 2f7b1028c4f5b2e3ab636797d5bdcf87 c1ba278ce350b9620ef58bce233b77a9ccb808e9 ad47752909d9ca58f895c77fc088f262173c80ea1e77de8e72cfa46ed550ea12 Loading...

	ichliebecasinos.de/	271 B	2023-03-07	2024-04-28
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:13 Last Seen2024-04-28 20:39:25 Times Seen77 Hash 1f8f23de99c68200cabc8db5b7168758 3cf085af7367bae8e00b2161f61bbae0f65a2e6f a19ea246af2b8cb3f0d67255d494ccb958df343ce6288b1c302c7d562d6a623b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	bat.bing.com/p/action/22022257.js	0 B	2023-03-07	2024-05-11
Pretty URL bat.bing.com/p/action/22022257.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 02:28:46 Times Seen37533982 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM	99 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 2cce711bebb4d81d38156693e8bffdd0 510792f30f4f1660e8cb5356cbd306a4b24d6801 39eb8ffbaa8972457f64dd6bf51251239478c3da08f72b3ff13c740340071ead Loading...

	ichliebecasinos.de/	21 B	2023-03-12	2023-03-12
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 5a41d19002dbf1a373d3a54e45770ce6 4848472b0b5d927a92bb4f32d9f6315e4fc4f3ee 35b8453138b42f34228f454e3a0113bd7c39f86fbd779b6edca7b520e08d74fd Loading...

	ichliebecasinos.de/	4.1 kB	2023-03-12	2024-01-25
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2024-01-25 16:11:10 Times Seen6 Hash 67c12f3b767d8081c83df2fe254b81eb b470ab63ec23e41ee23804360b4f163452726db2 5809075e8f1ed59b3ec979e9ecd7d83fe9b48e251bf3a66c0046e2593a2a2010 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-08	2024-01-01
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:52:15 Last Seen2024-01-01 05:01:16 Times Seen16 Hash 258ac0be54e333a28d69bfd394fcde90 daecd0687e8b00f5d67a7732ccbe9174326821d9 f2c4b7d20ff42a433d0c76631c460cd75128f8f0436d052ce2cf79dc4fa6a244 Loading...

	ichliebecasinos.de/	422 B	2023-03-12	2023-03-12
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 6751fe018cf4539d3735e46c2a376533 9ca40e7d1b03243a8ae7745f0249699956cb79e4 d0be23028b84cc35b013a61eef3ebd4234d97846e20beec95b566d057d0d52c3 Loading...

	www.bet365.de/olp/open-account?affiliate=365_01156703	157 B	2023-03-12	2023-03-12
Pretty URL www.bet365.de/olp/open-account?affiliate=365_01156703 IP 5.226.179.19 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash a42d17707507163cff59d87c88aa5ba3 48452a1e63eab818654d0103e2f58c23d5c093dc 6f74cd569a5117749574259ecd5a6f76e7dcc01ce43fcf6ea641a17a9a3361ab Loading...

	www.bet365.de/olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1	22 kB	2023-03-12	2023-03-13
Pretty URL www.bet365.de/olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1 IP 5.226.179.19 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 10:45:07 Last Seen2023-03-13 01:41:37 Times Seen1 Hash 4b7abea341a3be81e00f62d618876842 22f4f41d48879a81b1dc7ee884663f8a7987bafa 921ee52b2045f30e5f94e878104f45002015a89bcf48fba1ea82725e08eecf93 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-11 02:14:27 Times Seen143279 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cdn.onesignal.com/sdks/OneSignalSDK.js	9.1 kB	2023-03-07	2023-04-02
Pretty URL cdn.onesignal.com/sdks/OneSignalSDK.js IP 104.18.226.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:42 Last Seen2023-04-02 21:25:26 Times Seen2 Hash ae63ef8ff03da61fffaa7f165729897a 96a95093b2be6ed11dc11b689c728c2ec0dbe19c d12c6745eca14e06d4dea70f4c2bd875769b349770d04300477ab18d0db005d4 Loading...

	cdn.onesignal.com/sdks/OneSignalPageSDKES6.js?v=151514	290 kB	2023-03-07	2023-05-22
Pretty URL cdn.onesignal.com/sdks/OneSignalPageSDKES6.js?v=151514 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:26 Last Seen2023-05-22 12:53:59 Times Seen6 Hash 2f96824aee4bf927e734cc519e3e726d 217f9bc83ea70521ed2b8d89b8e2a1fa05cf9146 843114448aaeeda7e8caa0cf76d61e0c63b8bffccd34517483363fdb15cdc80c Loading...

	ichliebecasinos.de/	164 B	2023-03-12	2023-03-12
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 30c5a727bf83aaa72aaaef49d075f82f de0a69a4cbb3c8b9321b9a6104cb6530e5105926 051d3b3a3f5b393d866b951b273db965a9c1a8112f407d56e246147040bd66fb Loading...

	http:blank	59 B	2023-03-07	2024-02-08
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:27 Last Seen2024-02-08 13:35:54 Times Seen260 Hash a28b243f3123f213df62f7015ddce48e a3973e7775db82c05ad4baaf15a1893a6b1f0d74 aa833980668c95d7162ad334554374579ce18da5216cce5adddd5809cdfc11c0 Loading...

	www.bet365.de/olp/open-account?affiliate=365_01156703	1.2 kB	2023-03-09	2023-04-05
Pretty URL www.bet365.de/olp/open-account?affiliate=365_01156703 IP 5.226.179.19 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:12:14 Last Seen2023-04-05 02:10:56 Times Seen45 Hash 1584573278071de2163a674661e54630 cb63768f616c9b53a96dcc3020d31a82c931a4aa 468d70f19835e9c6b452d9bbeeac7cd5796c7648aca72a17ceb59410f1193c8d Loading...

	www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js	40 kB	2023-03-12	2023-03-12
Pretty URL www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js IP 161.35.78.172 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash f0e275779a0252d75d8f0b733cbd4b2c 546deb4cd7ccf32b4c11080d4c938cdb4424a7a0 25c19ef17c25c86b3b885e6e9dce3a107538aed212eabcab5ce0489fbb9f5170 Loading...

	connect.facebook.net/en_US/fbevents.js	108 kB	2023-03-12	2023-03-13
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:27:05 Last Seen2023-03-13 02:53:43 Times Seen1 Hash 215d19684091f3dc2c98b38b0a1254b1 4625cc5882f5730370f2a753ce1b740ad69e7463 cba8862bc0eeff77ab390c0669021b95055e809f226aa0e7dc438d79e3ad399f Loading...

	www.bet365.de/olp/open-account?affiliate=365_01156703	265 B	2023-03-12	2023-03-13
Pretty URL www.bet365.de/olp/open-account?affiliate=365_01156703 IP 5.226.179.19 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 10:45:07 Last Seen2023-03-13 06:01:55 Times Seen1 Hash eee9f80b2da08d2cc9106cbad637ce2a 447e1259f11775ee18c81eb4cd20b64a3bdedc87 c67171599af509f2d3ea6437e79f64318587cc11db3b5768702118626a881ce9 Loading...

	buttons-config.sharethis.com/js/6298814693aa1c00193de1c5.js	873 B	2023-03-12	2023-03-12
Pretty URL buttons-config.sharethis.com/js/6298814693aa1c00193de1c5.js IP 54.230.111.126 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 75f189d6f12fd8cd7e93e9183a3a512c e46982f4225da2a34e2db2e5635a7c0f729cef7a 28eba250e61ae33e6c538e504d7aaef8a84ec5b746e629b4c969b6b62656a102 Loading...

	a.omappapi.com/app/js/5.c7ff1c6f.min.js	16 kB	2023-03-09	2023-03-13
Pretty URL a.omappapi.com/app/js/5.c7ff1c6f.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:02:33 Last Seen2023-03-13 07:08:28 Times Seen1 Hash cb9bb50f985adfe39aa9009186f7192c c93b927dc0d1f69637e939eca0442204db490d9b fec0886863401c8f31e1d26f3d950dcd7b7dcea15532a3781ab4dcba0ce1b712 Loading...

	www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js	9.9 kB	2023-03-08	2023-09-09
Pretty URL www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js IP 5.226.179.19 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:47:05 Last Seen2023-09-09 22:59:51 Times Seen513 Hash a36241f1a0a722542a61d6001ab074a4 0c137bba1e20a7c0264025dc6ab0506871643e3d 938be9a666ad7c7f2d3433915964417613c1a0a3a7de7261f7f9420747f9702e Loading...

	ichliebecasinos.de/	341 B	2023-03-12	2023-03-12
Pretty URL ichliebecasinos.de/ IP 188.166.106.236 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 9b802e3e0a5eea2899b9b9ff6ed08897 a62d6595b3203bc4146c5857e9c8a33ab3407a09 95a9786e49b6de966e285c25270067bf97713e282dc8cc2c8cbc94a039c92d18 Loading...

	www.googletagmanager.com/gtag/js?id=G-9D905MV9JJ&l=dataLayer&cx=c	222 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtag/js?id=G-9D905MV9JJ&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash a6ac84a85add6aa2ac272fa7f2448ecc 05e269d70dc1d614dfc186bd38486f6e71276e95 d35e40c12bd043955a6423448f76baf07fd7512a9795c20170a70fc38340136a Loading...

	a.omappapi.com/app/js/api.min.js	51 kB	2023-03-12	2023-03-12
Pretty URL a.omappapi.com/app/js/api.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:36:10 Last Seen2023-03-12 20:27:26 Times Seen1 Hash 1c0204fdf32c4246068640546c7bb56a b05cacec860009675af099a92bbfb4db4be73411 b9fa0193408e2ae6c6f55f80615866d49de3af7b2a2c4430ff8f3587fbed1cee Loading...

	www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=	170 B	2023-03-08	2023-03-12
Pretty URL www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ= IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:41:24 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 18327e89087b9f8868f97913c1d0dd68 d77d2cb61bc4bd0e038b1febccbece7388e985eb 0b38b79b5efa913fa02889cb5e087909dec417aaa7991bb17298047a280263d0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 782df48863ac47c3e5c107a21bb1981f	300 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-10 20:39:32 Times Seen2239 Hash 782df48863ac47c3e5c107a21bb1981f b168ef536a75014f6ae9f2a57d66d069b7dfa56a d41e1dcde991113b31463b01bf26258e4a9ff50dc530bd1a66eb61d1c685bb7f Loading...

	#2 Eval - 4fc3047af98c627dbe0e172ffc137010	311 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-10 20:39:32 Times Seen3447 Hash 4fc3047af98c627dbe0e172ffc137010 7bdfb08c510896f7fac79d8a8c17187f70ba9e20 83b34ed574c9630f2d800fa605bcc5d84e287907f47456c7bd1be0deabd38901 Loading...

	#3 Eval - 3e260b602cbeb214edc167fd2f94b322	6.9 kB	2023-03-12	2023-03-12
Pretty Observations First Seen2023-03-12 20:21:28 Last Seen2023-03-12 20:21:28 Times Seen1 Hash 3e260b602cbeb214edc167fd2f94b322 92eae3526bebc081de5a0878412bb240e7866397 b2588535e0d4adcc88c9ea428d597a0974b821575d7ec347942237a07c6a929d Loading...

	#4 Eval - ff15f011b7b9ce2efa340a7c01852dde	83 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:31:07 Last Seen2024-05-10 05:58:20 Times Seen671 Hash ff15f011b7b9ce2efa340a7c01852dde f912bbf4a8e5cdf13a590cb3b03ee0f142c59025 16546b79ed36a9ca2495b23fbef53975fd6d324b4b03a379a09a22cf788ba32c Loading...

HTTP Transactions (124)

URL IP Response Size

ichliebecasinos.de/

188.166.106.236

301 Moved Permanently

319 B

URL HTTP/1.1
ichliebecasinos.de/
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
319 B (319 bytes)
Hash
4172259ed908326b519ae1adce9f4167
3a77162b0278faa91ef0f680b75a002136ec156d
f27e64d7b787e26c4870f27aaf3ef709b24fc2a39ad687f49680a095f99258d8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 11 Jan 2023 09:25:27 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://ichliebecasinos.de/
Content-Length: 319
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15798
Expires: Wed, 11 Jan 2023 13:48:45 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1f67827b21be68d925837dd729590f2d
dc24511141f5352e496b300d7d7e81b0cffb7475
afb1850e7c16f02d267a1310f1681367ecf598816fc62bd02447ffcd26117a9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB1850E7C16F02D267A1310F1681367ECF598816FC62BD02447FFCD26117A9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17578
Expires: Wed, 11 Jan 2023 14:18:25 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
718fc486cd6a70fcacc1653759703fae
bf60ba7a37d2deef1b7000e91cc88da586bb75ca
398d02e16da466ffe87b64ac34b007615951cca14d43610b4acd58bc2a5fadff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "398D02E16DA466FFE87B64AC34B007615951CCA14D43610B4ACD58BC2A5FADFF"
Last-Modified: Tue, 10 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16518
Expires: Wed, 11 Jan 2023 14:00:45 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 08:41:48 GMT
content-type: application/json
age: 2619
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 7pxn6gQhcCyA1fDexzSqcolqKNWUkJH4EPNcYphbLIz9DkJLWLpAaVNClvTwWA8rShX/0fdY9PAzIjCZaUqdIQ==
x-amz-request-id: 4BG2GBV94GMF1T4F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 11 Jan 2023 09:16:59 GMT
age: 508
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 09:25:27 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9f110d80998f9d59b24af28fc5aa9863
30f26142505d8fe1b05efb240995627c8f22e516
5dd4844e2d351f34fba34f7dfcb472b7caf2286db66f25d27b83b23c3c41ec76

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DD4844E2D351F34FBA34F7DFCB472B7CAF2286DB66F25D27B83B23C3C41EC76"
Last-Modified: Tue, 10 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21563
Expires: Wed, 11 Jan 2023 15:24:50 GMT
Date: Wed, 11 Jan 2023 09:25:27 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 09:17:24 GMT
age: 483
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ichliebecasinos.de/

188.166.106.236

200 OK

8.0 kB

URL HTTP/1.1
ichliebecasinos.de/
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (321)
Size
8.0 kB (7958 bytes)
Hash
901c0a9acab3942a93a8b3f9a362dc96
5a5587e70c1e14f7fe8bbcaf3f4c95e913115f17
1eeca8a89ef2bbb0d4d2a1d204c438c51c62086fb129a71b5bc3a7d0b71048ae

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:27 GMT
Server: Apache/2.4.41 (Ubuntu)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7958
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a831a999b5e598b4e9f4e31e8054ca7c
9971a4a806f48777ae6d9525085d16d0c6314c51
cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3675
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:24:13 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ichliebecasinos.de/css/main.css

188.166.106.236

200 OK

1.0 kB

URL HTTP/1.1
ichliebecasinos.de/css/main.css
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text
Size
1.0 kB (1023 bytes)
Hash
14653da30efae57f019e972cf507f2b4
d87287314ca66389a12430c8cd512228f367fc7c
162df8fd4d2dd1052d5fa73a8b32a6e4d285c69c7d0e1e49bb27d7c0268a5797

HTTP Headers

GET /css/main.css HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 31 May 2022 09:38:39 GMT
ETag: "acf-5e04b89a1a52e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1023
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
862c2b3f49fdaa3290196382315e9052
fcc92f91c58844372be3a08a5cb95ed7ce42457c
cef18ec97b6ac9ee6a8f989232780c785cdc9ab754671803a0ae2272665cdbd9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2927
Cache-Control: max-age=109101
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Etag: "63bd7c46-118"
Expires: Thu, 12 Jan 2023 15:43:49 GMT
Last-Modified: Tue, 10 Jan 2023 14:55:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
017b1e7700354b11ebf635e7bdc05f48
45f4820fdc971ec5b75fa8c89ee88577e092df7b
c25e96ebae6eb8dcc01449935481faf6373aa217fbfa26cb36da1c9dbe7cd327

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2675
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:40:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ab36612af330976d207310dd9b1d5273
42b2f257cf4116e1efe4d6197a745c7fee1ae5b6
3db4ac04af47e4a83c15a63d66d5b6d4a6748e5bcada60a37b8eb9a5902ca626

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5507
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 07:53:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39e74fee23bd195e2926cf5241f2fca5
a3361a128141f84053b85994e1a3b2f3e9c9d979
aaa2168872731f90ab7c5d5e98dc17660973582d1b157f4e4a3be4939e99b7e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ab36612af330976d207310dd9b1d5273
42b2f257cf4116e1efe4d6197a745c7fee1ae5b6
3db4ac04af47e4a83c15a63d66d5b6d4a6748e5bcada60a37b8eb9a5902ca626

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5507
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 07:53:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.74

200 OK

31 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 15:00:01 GMT
expires: Sun, 07 Jan 2024 15:00:01 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
age: 325527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-5FC8JXC

142.250.74.8

200 OK

72 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5FC8JXC
IP
142.250.74.8:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (9786)
Size
72 kB (72369 bytes)
Hash
0588a6a831c695dda92a494504be2cea
d87a153e1c8cbba72c85b4d8ad6646ed0df571bb
30743caed9bda3c4917596f0fb0ec8b977c93ddf7ed99d3ef309745e2787ac74

HTTP Headers

GET /gtm.js?id=GTM-5FC8JXC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jan 2023 09:25:28 GMT
expires: Wed, 11 Jan 2023 09:25:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 11 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39e74fee23bd195e2926cf5241f2fca5
a3361a128141f84053b85994e1a3b2f3e9c9d979
aaa2168872731f90ab7c5d5e98dc17660973582d1b157f4e4a3be4939e99b7e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/gih0ues.css

95.101.11.120

200 OK

730 B

URL HTTP/2
use.typekit.net/gih0ues.css
IP
95.101.11.120:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
730 B (730 bytes)
Hash
0b0fb949da4a8cbef2e9a9c1911e7223
8293e8819276d5387bc1dc2af66762993442da51
da467bb4bec67590fa4887895b5925fd4c801c070afbdf4e31e9334a47da9381

HTTP Headers

GET /gih0ues.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 730
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.214.202.214

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.202.214:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NIPCD/r2XAsoGDQKGa1eqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SCOs9O9yp3EH6XqU9HT+cve6qDc=

kit.fontawesome.com/cb23647627.js

104.18.22.52

403 Forbidden

9 B

URL HTTP/2
kit.fontawesome.com/cb23647627.js
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

HTTP Headers

GET /cb23647627.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: text/plain; charset=utf-8
content-length: 9
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; preload
x-request-id: Fzk27Q3CsIoNZW9ZA-KC
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c9af2bad1b4f3-OSL
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=gih0ues&ht=tk&f=10294.10295.10296.10297&a=86976406&app=typekit&e=css

95.101.11.112

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=gih0ues&ht=tk&f=10294.10295.10296.10297&a=86976406&app=typekit&e=css
IP
95.101.11.112:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=gih0ues&ht=tk&f=10294.10295.10296.10297&a=86976406&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2

ichliebecasinos.de/img/footer/gamble-aware.png

188.166.106.236

200 OK

11 kB

URL HTTP/1.1
ichliebecasinos.de/img/footer/gamble-aware.png
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 150 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10909 bytes)
Hash
499e197160300bb5d2d57bd821a4410e
3ff5074aea6c6b4a86679618424ecf6a3d62931c
89c2611ced1bdfdb816cebedb3c8ded0111d6cbf64a989e60a6d114cd91ec112

HTTP Headers

GET /img/footer/gamble-aware.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:06 GMT
ETag: "2a9d-5bde2d1f6e98b"
Accept-Ranges: bytes
Content-Length: 10909
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

ichliebecasinos.de/img/footer/gambling-therapy.jpg

188.166.106.236

200 OK

3.2 kB

URL HTTP/1.1
ichliebecasinos.de/img/footer/gambling-therapy.jpg
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 180x60, components 3\012- data
Size
3.2 kB (3248 bytes)
Hash
7809800b14308992dc482773c8099ee2
e6b52c1c0edee045558c7bc2065c36474ad96f62
8bbf132b1eafb66efa9a77b4899646ef9669e02e1bf6f318438f6ba0bcde3eac

HTTP Headers

GET /img/footer/gambling-therapy.jpg HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:08 GMT
ETag: "cb0-5bde2d21cd097"
Accept-Ranges: bytes
Content-Length: 3248
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js

161.35.78.172

200 OK

40 kB

URL HTTP/2
www.securely-send.com/storage/pu_cm_de_cs_ichliebecasinos.js
IP
161.35.78.172:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (40454), with no line terminators
Size
40 kB (40454 bytes)
Hash
f0e275779a0252d75d8f0b733cbd4b2c
546deb4cd7ccf32b4c11080d4c938cdb4424a7a0
25c19ef17c25c86b3b885e6e9dce3a107538aed212eabcab5ce0489fbb9f5170

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /storage/pu_cm_de_cs_ichliebecasinos.js HTTP/1.1
Host: www.securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 40454
last-modified: Fri, 19 Aug 2022 12:28:42 GMT
etag: "62ff81fa-9e06"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

ichliebecasinos.de/img/footer/bzga.png

188.166.106.236

200 OK

13 kB

URL HTTP/1.1
ichliebecasinos.de/img/footer/bzga.png
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 274 x 90, 8-bit/color RGB, non-interlaced\012- data
Size
13 kB (12646 bytes)
Hash
466702905225d95f8203f67db268a24e
75ae1358929e2f30db4855dfc1190829b7403f0d
62e10ffeb984425c012153e14a143e6a8d45a14bc31087c8a34e29caea2d0d33

HTTP Headers

GET /img/footer/bzga.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:04 GMT
ETag: "3166-5bde2d1dd0899"
Accept-Ranges: bytes
Content-Length: 12646
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

ichliebecasinos.de/img/footer/18.png

188.166.106.236

200 OK

7.3 kB

URL HTTP/1.1
ichliebecasinos.de/img/footer/18.png
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
7.3 kB (7308 bytes)
Hash
60ab638ee5dd67bb626284c9e0087c70
bc816a384d093a90e52d5482073735070dec0698
0b2051cb1308c9ea37e07e03acb24ec4d3b468a688a1d7dbc9253cedbcb3ee39

HTTP Headers

GET /img/footer/18.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:05 GMT
ETag: "1c8c-5bde2d1ec4ad1"
Accept-Ranges: bytes
Content-Length: 7308
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

ichliebecasinos.de/img/footer/spiel-sucht.png

188.166.106.236

200 OK

31 kB

URL HTTP/1.1
ichliebecasinos.de/img/footer/spiel-sucht.png
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 154 x 137, 8-bit/color RGBA, non-interlaced\012- data
Size
31 kB (30668 bytes)
Hash
6f05548747323835542ce61ac7f6499a
293570eb31b595ab9ff74314b177494b8667f969
fde10956f242d471a5064b7544ebde78fa8cf06683dd440107bb6f58e6e16c91

HTTP Headers

GET /img/footer/spiel-sucht.png HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:26:06 GMT
ETag: "77cc-5bde2d1f19a2e"
Accept-Ranges: bytes
Content-Length: 30668
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

95.101.11.120

200 OK

27 kB

URL HTTP/2
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
95.101.11.120:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Size
27 kB (26888 bytes)
Hash
6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc

HTTP Headers

GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

95.101.11.120

200 OK

28 kB

URL HTTP/2
use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
95.101.11.120:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 27712, version 1.0\012- data
Size
28 kB (27712 bytes)
Hash
ce87f4e0d16868acaa3a5f4d894e9c29
b0b82fa20adb7c495172f8345f0ef0a64d2f815e
fc19e2d873270cfa3ce69c2345fac36b8ab1b0fe2cd8983f0946a8c180f236b3

HTTP Headers

GET /af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27712
etag: "79f9defc7632bc87dc40a06c82c11882a3000992"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 11 Jan 2023 09:25:28 GMT
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87407
Date: Wed, 11 Jan 2023 09:25:28 GMT
Etag: "63bd27ce-1d7"
Expires: Thu, 12 Jan 2023 09:42:15 GMT
Last-Modified: Tue, 10 Jan 2023 08:54:38 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -Ez19h_65_Cgb3usE59cnaEDyyHx-sSO19HWoBsS6z5NK5LfDGfKSQ==
Age: 2857

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:47:53 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 65v-2VKkgNyBzrvBydvPkGkLAcvIGAdmlECcLzkO1KPAaNa4-IJvTQ==
Age: 2255

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:47:53 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6X54EeTLu0spqfkR2iSeSqIdCN7Hsooo08Tpq515xnH0xWJIWLH2-Q==
Age: 2255

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:50:59 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PBChCueI1dMs9AfsVsltSRnOqIPzzG-zLPoM0cdzjHL5OkdT3eLu6Q==
Age: 2070

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
cf32d76dbac1aa90b81545310fc74ecc
8ec295f7f99693b895531bd5fe6019d0d75c0764
a35ac738774d720e416b2b67676e652860ed87a9309655403dd308d9beba600f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:28 GMT
Last-Modified: Wed, 11 Jan 2023 08:50:59 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Y7iOKu3o4Aa9NshStq79TBXZBSEKDb-UTyPzM1-_iSzPW-S6uW-i4Q==
Age: 2070

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
3d0edaa0ae26b49818fef456feaef7f9
d33d325b73384eb8c75ae42dc4db6acd8b33bd29
5d1f1fe42de039874f514c5cfc0e75336c434b5d3bdf021feb71045cf7984934

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4522
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:28 GMT
Etag: "63bd225a-116"
Last-Modified: Wed, 11 Jan 2023 08:10:06 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 278

assets-srv.s3.eu-west-1.amazonaws.com/logo-luckydays-1.jpg

52.92.3.106

200 OK

11 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/logo-luckydays-1.jpg
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
JPEG image data, baseline, precision 8, 170x70, components 3\012- data
Size
11 kB (10796 bytes)
Hash
5c94c741f793969a495fc1befd88326b
4a5c83dbe81b55793ce02fb2b8316d715d19b070
6b2d107d81292a4547748df4f159304a3b478a129bee2048ada72cba1a36fb5c

HTTP Headers

GET /logo-luckydays-1.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: UxL/LZJnbSBrAQgFCN+Cag8KhYajc56piyOCwmvobmdka+4mvMAJhXU8Qz9dViz3MTnaJnC+NpA=
x-amz-request-id: X9HCE47VYNKWPKN3
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Thu, 31 Mar 2022 12:56:09 GMT
ETag: "5c94c741f793969a495fc1befd88326b"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 10796

ichliebecasinos.de/img/viennaskyline6.jpg

188.166.106.236

200 OK

6.5 MB

URL HTTP/1.1
ichliebecasinos.de/img/viennaskyline6.jpg
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2], baseline, precision 8, 4930x2020, components 3\012- data
Size
6.5 MB (6529222 bytes)
Hash
4d194cc293f0b178ee4371a4a5a200c5
b51b102362612eede50ff3cb47c579044a2840c3
813ab0ecbf1dd6961365e3d4df6adb02b87d234c6514de388af6e2a3545eceb4

HTTP Headers

GET /img/viennaskyline6.jpg HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 12:23:31 GMT
ETag: "63a0c6-5bde2c8bb3a5f"
Accept-Ranges: bytes
Content-Length: 6529222
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

assets-srv.s3.eu-west-1.amazonaws.com/logo-boomerang5.jpg

52.92.3.106

200 OK

9.6 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/logo-boomerang5.jpg
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, manufacturer=BeFunky, orientation=upper-left, xresolution=94, yresolution=102, resolutionunit=2, software=BeFunky Photo Editor], baseline, precision 8, 123x70, components 3\012- data
Size
9.6 kB (9610 bytes)
Hash
54bc23bf4ee54f1d9fba4cbe508028c0
1c75859d2c589600531435204a64db09d2eccc6a
1f5315ddb8b1732b0ac04f01a0417a08a17db503b875ab6e5f98920bc39c7097

HTTP Headers

GET /logo-boomerang5.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 0UgZtnlAsflDYwYG/W81qI+pXOCRm9b6aayYh9F0XQB9P8mPsb09lYBmLMq0YrRQFaglTdPs0Dk=
x-amz-request-id: X9H7K5B20V8G60E4
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 08:01:57 GMT
ETag: "54bc23bf4ee54f1d9fba4cbe508028c0"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9610

assets-srv.s3.eu-west-1.amazonaws.com/bitdreams-for-dark-background-25.png

52.92.3.106

200 OK

7.1 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/bitdreams-for-dark-background-25.png
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
7.1 kB (7126 bytes)
Hash
6d8f383f4fcade93624d1742234d5405
1cb670c35d30e5b08422e9cfb2107ad195b79d7e
18bc330bcf07c4b533ef7fb695e1892a483ef3aab23f097e17fe57d4106c43a5

HTTP Headers

GET /bitdreams-for-dark-background-25.png HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 67i4QjYvDmrKVz0iOIThqYTrHZNsEIn04WE1OV4SzsNXcTepAfB3byApPfOhmB08e01bgzek1aM=
x-amz-request-id: X9H0PTVD9JZ3PEB2
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 08:29:02 GMT
ETag: "6d8f383f4fcade93624d1742234d5405"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7126

assets-srv.s3.eu-west-1.amazonaws.com/logo-spinaway.jpg

52.92.3.106

200 OK

9.8 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/logo-spinaway.jpg
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 126x51, components 3\012- data
Size
9.8 kB (9832 bytes)
Hash
46b7df091be13e7144eeadfb5eae5e96
404f393d51968c823d749ca39df69c0f9d286ea3
a4254e65d07733be9a6dea22200872378768083de64d896727f31e3663da3a97

HTTP Headers

GET /logo-spinaway.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: N6s2lRu8rLcibWhMAr1kNXPjWhsvomi0kV2E0LmLM+ni4EqTqChib/QUVMwaNPN2UMEC/h6AqMc=
x-amz-request-id: X9H0VCY9TQDGJTDP
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 07:54:34 GMT
ETag: "46b7df091be13e7144eeadfb5eae5e96"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9832

assets-srv.s3.eu-west-1.amazonaws.com/logo-n1-1.jpg

52.92.3.106

200 OK

9.6 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/logo-n1-1.jpg
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 92x68, components 3\012- data
Size
9.6 kB (9570 bytes)
Hash
791489d5ac224ea50ce34440393859a9
0414d427a6574cefc4aeabb6ff133cccd1d59279
1190c4bf59e07cb6df1191c13c8105ecda769f346ab47f87692087e7aa83199c

HTTP Headers

GET /logo-n1-1.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: ll6GcmMRss5ermk/5i068h3x1skeOrRx4C271IQgWHnIR9fsjC6xvrH84WLjjijypBwfaq3Zo+I=
x-amz-request-id: X9H0PEJA479SYT2D
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Fri, 01 Apr 2022 11:05:50 GMT
ETag: "791489d5ac224ea50ce34440393859a9"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 9570

assets-srv.s3.eu-west-1.amazonaws.com/logo-silverplay1.jpg

52.92.3.106

200 OK

10 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/logo-silverplay1.jpg
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, manufacturer=BeFunky, orientation=upper-left, xresolution=94, yresolution=102, resolutionunit=2, software=BeFunky Photo Editor], baseline, precision 8, 170x50, components 3\012- data
Size
10 kB (10005 bytes)
Hash
24cdf5800247ce0d1514e73f69b2217d
37931f5c81c828baba0bbfaaedfc0b9a55a0b1b6
f5aa97a5e9e4afb1d4b415eeb042c848b53fa52b930fbcc92d46a83dfb6c1429

HTTP Headers

GET /logo-silverplay1.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 0ktvfAdhw8c0Bfy07XcYLBnafaqfQJylmxo2YqE+TyYZBybyoMIH6aZw8ygk0T2bRl7WpghRzzA=
x-amz-request-id: X9H382P5Y23ATF9M
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Thu, 31 Mar 2022 12:47:23 GMT
ETag: "24cdf5800247ce0d1514e73f69b2217d"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 10005

assets-srv.s3.eu-west-1.amazonaws.com/ggbet-6.png

52.92.3.106

200 OK

1.7 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/ggbet-6.png
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
PNG image data, 290 x 160, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1667 bytes)
Hash
05860c50ae6c3dec039fa850bde1af51
291c0be49627032e3567bd21982dd3e1f8756e94
af3dc476ada5390cfaeeb5f0fecc9b2d9e101399028087b5a9409f1c384d3b95

HTTP Headers

GET /ggbet-6.png HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: UByylwlt0hoD58b3YQlN285VOaHLnWXccBwbjU9EJhrEYomgX1aHeGf4U3jJTm6rTfRZKLVhxj4=
x-amz-request-id: X9H7RBN9AB2D79PC
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Tue, 15 Mar 2022 09:26:35 GMT
ETag: "05860c50ae6c3dec039fa850bde1af51"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1667

imstore.bet365affiliates.com/?AffiliateCode=365_01156702&CID=196&DID=84&TID=1&PID=149&LNG=5

5.226.179.31

302 Found

202 B

URL HTTP/1.1
imstore.bet365affiliates.com/?AffiliateCode=365_01156702&CID=196&DID=84&TID=1&PID=149&LNG=5
IP
5.226.179.31:0
ASN
#209242 Cloudflare London, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
202 B (202 bytes)
Hash
4429007461dbbc48dd2015d8e2709bf5
24492ff4693811843008a0b48513898157a03abb
b09d5258462925311cada50f726dac7c888e3123606c89ee95848eb86e00e494

HTTP Headers

GET /?AffiliateCode=365_01156702&CID=196&DID=84&TID=1&PID=149&LNG=5 HTTP/1.1
Host: imstore.bet365affiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Wed, 11 Jan 2023 09:25:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 202
Connection: keep-alive
Cache-Control: private
Expires: Mon, 09 Jan 2023 09:25:28 GMT
Location: /AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif
P3P: CP="CAO PSA OUR"
X-AspNet-Version: 4.0.30319
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=VeEicrTP4DR2tBau7z2BYU8tbuZD4y_N8zKCHZaYwBk-1673429128-0-AWQS7RP4EnIbCHTp2tDCIwYQeqPg78zvHVjrbCzhPxB7R3w54T2EJhrGYEiwCbo5ouIW692ZbseE+gP4pP7czU8=; path=/; expires=Wed, 11-Jan-23 09:55:28 GMT; domain=.bet365affiliates.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 787c9af75e9c0b41-OSL

assets-srv.s3.eu-west-1.amazonaws.com/1650871318/cazimbo-casino-logo.png

52.92.3.106

200 OK

2.4 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/1650871318/cazimbo-casino-logo.png
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
PNG image data, 265 x 135, 8-bit colormap, non-interlaced\012- data
Size
2.4 kB (2379 bytes)
Hash
f467bfba9c864ceea15715c78a9b66c8
ffb2ecf4bff9407e76a63d4b1a98692d09afa0a3
c96f504b005905b5ebdd2294b1659987270e9ef741a61a5d3f3043901f3a853d

HTTP Headers

GET /1650871318/cazimbo-casino-logo.png HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: AIH8Qlxga6OrvupDgmgPWTzD4/QHtMZHdQ/qKWysp7JChXriUnHF7mC8TDhPaU4LJwcrfQrT5Sw=
x-amz-request-id: D3X0WZY0A6MVJYV9
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Mon, 25 Apr 2022 07:21:59 GMT
ETag: "f467bfba9c864ceea15715c78a9b66c8"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2379

assets-srv.s3.eu-west-1.amazonaws.com/logo-vulkanvegas.jpg

52.92.3.106

200 OK

4.5 kB

URL HTTP/1.1
assets-srv.s3.eu-west-1.amazonaws.com/logo-vulkanvegas.jpg
IP
52.92.3.106:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 170x73, components 3\012- data
Size
4.5 kB (4495 bytes)
Hash
db4db07a2efddf087fff8433ba57a7cb
658ac58b8ceec3934c4ea9cb948b5024286ef51a
36bd67d48664cc45022f4f961e4e014d9f31c7ead484b6346125340ea30c230a

HTTP Headers

GET /logo-vulkanvegas.jpg HTTP/1.1
Host: assets-srv.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: UGcRoYaH/TH+XeSsnMb8NmGicJeon3nXwChHmfODvu5vFbhxwShPsQpSkDTeMD3a9JAjUQd9DlQ=
x-amz-request-id: D3XA1GW6SFVJ7DX5
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Wed, 30 Mar 2022 14:25:07 GMT
ETag: "db4db07a2efddf087fff8433ba57a7cb"
Cache-Control: public, max-age=3153600000
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 4495

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8644b05c3037ce8fb1cb4f40c0802b3
14a3c401f9f94a5b34b7066d1d13b60e67cca49b
55740388090983ae3b066cac41df4067d5b8ff813692e36a7a04cf6612b1ff9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55740388090983AE3B066CAC41DF4067D5B8FF813692E36A7A04CF6612B1FF9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15695
Expires: Wed, 11 Jan 2023 13:47:04 GMT
Date: Wed, 11 Jan 2023 09:25:29 GMT
Connection: keep-alive

imstore.bet365affiliates.com/AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif

5.226.179.31

200 OK

66 kB

URL HTTP/1.1
imstore.bet365affiliates.com/AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif
IP
5.226.179.31:0
ASN
#209242 Cloudflare London, LLC

File type
GIF image data, version 89a, 728 x 90\012- data
Size
66 kB (65479 bytes)
Hash
f7ef9e854e020708d2a8605452ae9acf
676e6794eeba2023b82c3e976c1ff69aec3b3173
fa085ea8cd23a814292ae2c55c1357b4a38a446452c42060f4a2d6b55ffe6b2a

HTTP Headers

GET /AffiliateCreativeBanners/Sports/Soccer/no1socceropenoffer/nn-NO/All/STD/728x90_8.gif HTTP/1.1
Host: imstore.bet365affiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ichliebecasinos.de/
Connection: keep-alive
Cookie: __cf_bm=VeEicrTP4DR2tBau7z2BYU8tbuZD4y_N8zKCHZaYwBk-1673429128-0-AWQS7RP4EnIbCHTp2tDCIwYQeqPg78zvHVjrbCzhPxB7R3w54T2EJhrGYEiwCbo5ouIW692ZbseE+gP4pP7czU8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Content-Type: image/gif
Content-Length: 65479
Connection: keep-alive
Last-Modified: Tue, 03 Dec 2019 15:43:34 GMT
ETag: "3817f66bf0a9d51:0"
CF-Cache-Status: HIT
Age: 3157
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afc3b4d0b41-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 09:25:29 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
8dd7ce9ec97e2db3fd99ab38935bd1b4
c3bccefd5b017e26c3c7688a5f5e052b0d102294
5f9ab032107c82c0239e9ed0fd3fa237f2a02382cef6122959523a6fdba34967

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Server: ECS (amb/6B99)
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6400 bytes)
Hash
56de8a53fb494855ff7717eeb39c1fed
438999ac8d0853e235a2c0e0f404291961c891ab
357db338b2f6fcf434bdd9c2561f91d3fc7e5d42a92e5068402ce3eeb6fba412

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6400
x-amzn-requestid: f76c3961-a118-4639-a943-2ffbd3d28537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eaD7hEEdoAMFs5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba4d16-3881379864dcae085aa4fd4d;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 04:56:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmS2bnkBSYTi7rEZuQ_frZ6GwU-PHrD3GfDXv7rDkp_ytjR7c9FhWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 09:00:56 GMT
age: 1473
etag: "438999ac8d0853e235a2c0e0f404291961c891ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
d6e4e6b49974cfffd89597cf23644029
56a9175bdf1745015a7afbafcc1a2807f08da03f
63457be9b1574609f3404d23d657e0666092b870fe7a56c479865ebbb512be74

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 181
Cache-Control: max-age=109235
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Etag: "63bd8787-116"
Expires: Thu, 12 Jan 2023 15:46:04 GMT
Last-Modified: Tue, 10 Jan 2023 15:43:03 GMT
Server: ECS (amb/6BC6)
X-Cache: HIT
Content-Length: 278

ichliebecasinos.de/favicon.ico

188.166.106.236

200 OK

15 kB

URL HTTP/1.1
ichliebecasinos.de/favicon.ico
IP
188.166.106.236:0
ASN
#14061 DIGITALOCEAN-ASN

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15406 bytes)
Hash
257f15f92266d3467d747049d7b30429
80c8072b9410ce8604dc958e5d0ccd4b989bc709
f971cb33e3aedbfb003c751bcee938901db8515c6f376f3ae2f0897f9c20e6e3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ichliebecasinos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Cookie: _ga_9D905MV9JJ=GS1.1.1673429114.1.0.1673429114.0.0.0; _ga=GA1.1.253314320.1673429114
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 19 Mar 2021 15:02:04 GMT
ETag: "3c2e-5bde4ffc0ad26"
Accept-Ranges: bytes
Content-Length: 15406
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

region1.google-analytics.com/g/collect?v=2&tid=G-9D905MV9JJ&gtm=2oe190&_p=1740238922&cid=253314320.1673429114&ul=en-us&sr=1280x1024&_s=1&sid=1673429114&sct=1&seg=0&dl=https%3A%2F%2Fichliebecasinos.de%2F&dt=Online%20Top%20Casinos%20Deutschland&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-9D905MV9JJ&gtm=2oe190&_p=1740238922&cid=253314320.1673429114&ul=en-us&sr=1280x1024&_s=1&sid=1673429114&sct=1&seg=0&dl=https%3A%2F%2Fichliebecasinos.de%2F&dt=Online%20Top%20Casinos%20Deutschland&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-9D905MV9JJ&gtm=2oe190&_p=1740238922&cid=253314320.1673429114&ul=en-us&sr=1280x1024&_s=1&sid=1673429114&sct=1&seg=0&dl=https%3A%2F%2Fichliebecasinos.de%2F&dt=Online%20Top%20Casinos%20Deutschland&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://ichliebecasinos.de
date: Wed, 11 Jan 2023 09:25:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafa65a02-09d0-4085-a53b-c07e296653d0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7669 bytes)
Hash
33e73a984b73aaa3a6d2343a2268dcee
073e249b7c5ae5f048263c96a86b2612a31daef0
3d7683406e87edf9fa873d0b19938cca2464f49ab61fd6c6c540ac51af14a26f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafa65a02-09d0-4085-a53b-c07e296653d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7669
x-amzn-requestid: 4eca1479-54d3-440f-8df3-010b1c6a1592
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ0gqEyEoAMF8gA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba346a-21bd3fe53c321ba7719dc850;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:11:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GV18ViMbE66xv4gszajfeLaE2qQXq7-g0XJDerRFjBOYJoTH3BSzXg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 07:21:32 GMT
age: 7437
etag: "073e249b7c5ae5f048263c96a86b2612a31daef0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5f5f3214d73a0066cf4784dac4d8573b
47832303343c4a19070eac14f0587518430a65e2
448453048adc356672036cfeb00a74126e089dc389a1c0eac52373ae99e39951

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4688
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Wed, 11 Jan 2023 08:07:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9301 bytes)
Hash
74eafe3bfabac6843100686971153898
e9df2e14485c412107d742d4baab53aa36cd8ca4
46fcfba703552a587888b3c6e6a1deb01930e347192d05d95a5a5f46e9d0fea1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9301
x-amzn-requestid: 7f43eb13-8bca-4b2b-a6a4-325c6161608e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei73_GVVIAMFn5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-3f5d8e784f0d806b6416138f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rT4PDtLOo9eKH4xOnr2nkKVl4KqzRUZykXl_UYwIt_MIF_WUpuGq7w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:44:21 GMT
age: 42068
etag: "e9df2e14485c412107d742d4baab53aa36cd8ca4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8395 bytes)
Hash
82b10434cd29773d0f2f05a9904bd8d7
254f8d0a30d61afe871b7d603d4f0669bfb59808
5955b48e68572fd477fbb1bf172c3d590320b7408668a7fc586022362dd7447d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8395
x-amzn-requestid: 13f52de6-c624-4005-8c98-b8299ce3d156
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei75DGBwIAMFU3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d3-278ee7ad4b30336e2ada7970;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GgE9t2dma-Vdolh6eOwjqtNz-rLzDCflksYIj1mcogunBV8dxgCIkQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:51:12 GMT
age: 41657
etag: "254f8d0a30d61afe871b7d603d4f0669bfb59808"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8024 bytes)
Hash
35ee3a36f2d56adfa27324f734f8f7fc
6ec36e85e464004c5e6255739e962e6dcc4c24c6
6cedd3770eb8879c837799d36ebca9d631789d972d3631d730829fc5d64abb25

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8024
x-amzn-requestid: b331ee66-c166-4fa6-b950-287134d07fa2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ6EM0oAMFQFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-39ff669b44e3dd9339daa56b;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fk214iXw9pGVhIOu0uwvDOrqHR-pOjicJOttxjMb0JDhxXbfpyRncg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 07:54:43 GMT
age: 5446
etag: "6ec36e85e464004c5e6255739e962e6dcc4c24c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 11 Jan 2023 08:41:08 GMT
expires: Wed, 11 Jan 2023 10:41:08 GMT
cache-control: public, max-age=7200
age: 2661
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6517dc-ccae-435f-be23-e98711eb6062.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9120 bytes)
Hash
45f8fac831914525dcaa19617e3e212c
494878e02f916ef7bf57703062b33328778e1adc
8d51e3567a0cfdb3bbddfd365c7073c9b7a396552c7455787f1c4d386d01646e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6517dc-ccae-435f-be23-e98711eb6062.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9120
x-amzn-requestid: 2a627ed6-6dcb-43db-b3f1-9466d191c644
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: edG9MHNaoAMF2Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb8521-7ade615a424161503546feaa;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 03:08:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qlhIrLaS-Ws8BAKtj4DMPoQ5cmu8q38Iq88V8lXe2L29QpS2fmhtfQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:13:53 GMT
age: 22296
etag: "494878e02f916ef7bf57703062b33328778e1adc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27613 bytes)
Hash
4aa5723e20bb937995d58baee63ccef3
4f4451ce70e0f1174447f509b9ecfae0030d69b8
a442ce52f0330fe4e1d6e25a76d9cf569cf7e649416caf201d0570a1cadf7de8

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: kMrvgjN8dm0xuoc3DZI1Tv5BXmLbfq3O8CK5n3IgZTz7OkiTC++fViWtO5tyYks8W13hnZoKxjrTa87rUFNOSg==
priority: u=3,i
content-length: 27613
x-fb-trip-id: 1904183273
date: Wed, 11 Jan 2023 09:25:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
e5a79d52fe080e6cfcd3bc9c2748832c
b596f5cd20c240d0c47df3417c24636a9b29c19f
0bd60296b6d568712cf27f0a268ae8f41c7ea998a27b9145b0eefbe832c6b43f

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "0BD60296B6D568712CF27F0A268AE8F41C7EA998A27B9145B0EEFBE832C6B43F"
Last-Modified: Mon, 09 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15431
Expires: Wed, 11 Jan 2023 13:42:40 GMT
Date: Wed, 11 Jan 2023 09:25:29 GMT
Connection: keep-alive

bat.bing.com/bat.js

204.79.197.200

200 OK

12 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Size
12 kB (11460 bytes)
Hash
d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=23E8AD0C51C26468212CBF9A50376560; domain=.bing.com; expires=Mon, 05-Feb-2024 09:25:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E5534CEC800142199FD1087363301619 Ref B: OSL30EDGE0115 Ref C: 2023-01-11T09:25:29Z
date: Wed, 11 Jan 2023 09:25:29 GMT
X-Firefox-Spdy: h2

go.affilirise.com/redirect.aspx?pid=2727&bid=1527

23.36.79.11

307 Temporary Redirect

0 B

URL HTTP/2
go.affilirise.com/redirect.aspx?pid=2727&bid=1527
IP
23.36.79.11:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect.aspx?pid=2727&bid=1527 HTTP/1.1
Host: go.affilirise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://cazimbo.com/de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Wed, 11 Jan 2023 09:25:29 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 11 Jan 2023 09:25:29 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a2727%2c%22BID%22%3a1527%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1673429129794)%5c%2f%22%2c%22CookieTag%22%3a%2215272727451240919C2023111925%22%7d%5d; SameSite=None;; domain=.affilirise.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221590228%7c1%22%7d%5d; domain=.affilirise.com; expires=Fri, 11-Jan-3022 09:25:29 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=64, origin; dur=68
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.bet365.de/olp/open-account?affiliate=365_01156703

5.226.179.19

200 OK

3.5 kB

URL HTTP/1.1
www.bet365.de/olp/open-account?affiliate=365_01156703
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
3.5 kB (3478 bytes)
Hash
4f284a0457f0efcbb20fde5ff641aec0
e61dfdfdbe12b2a533c17120805cd6035f32b701
11fe3cc7f3d2f8643a828c4a778461ad6b3369884e62c46f4514aee64aea821a

HTTP Headers

GET /olp/open-account?affiliate=365_01156703 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--1P2 - 12-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=; path=/; expires=Wed, 11-Jan-23 09:55:29 GMT; domain=.bet365.de; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 787c9afd1d78fabc-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5f5f3214d73a0066cf4784dac4d8573b
47832303343c4a19070eac14f0587518430a65e2
448453048adc356672036cfeb00a74126e089dc389a1c0eac52373ae99e39951

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4688
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Last-Modified: Wed, 11 Jan 2023 08:07:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.omappapi.com/v2/embed/69502?d=ichliebecasinos.de

54.230.111.48

200 OK

227 B

URL HTTP/2
api.omappapi.com/v2/embed/69502?d=ichliebecasinos.de
IP
54.230.111.48:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
227 B (227 bytes)
Hash
5995623f04f7d18ba2d381744e87f09d
525cdbe6d85cb933b8e6d806b46584273a4952fe
5aa4142a40b5a1e0cdee8d5416c145c0e3d8b785254a566b5393069dcd2e0de8

HTTP Headers

GET /v2/embed/69502?d=ichliebecasinos.de HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
content-length: 227
date: Wed, 11 Jan 2023 09:25:29 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Wed, 11 Jan 2023 09:00:54 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: "b91e5dc54e033e761837b7b846da520f"
x-optinmonster-account: 78125
access-control-expose-headers: X-OptinMonster-Account, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AHyoEy5fSRen1wE3TGP7NPfbFrIY2HOp8fsAjmVUiy1rACbL4uCFbw==
X-Firefox-Spdy: h2

www.bet365.de/olpc/de/75/0/1/open-account

5.226.179.19

200 OK

13 kB

URL HTTP/1.1
www.bet365.de/olpc/de/75/0/1/open-account
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2360), with CRLF line terminators
Size
13 kB (13246 bytes)
Hash
fcacc556d46f8f6b0394b12c0066fdcf
3b2096a83449b405c3317b8cb542eec4fe3a681e
7367179d1931385c52a222c21fc0cb1980b734294d7f5192564a8b8898ea81c8

HTTP Headers

GET /olpc/de/75/0/1/open-account HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olp/open-account?affiliate=365_01156703
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13246
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.de 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.de/ https://content001.bet365.de/SportsContent/ 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';connect-src 'self' https://www.google-analytics.com http://members.bet365.de https://extra.bet365.de 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';font-src 'self' data: 'nonce-XuM+fK3Hhbzugma3bVi/I6K2VAZfNcGoE3wZ0xlf0iI=';
Last-Modified: Wed, 11 Jan 2023 07:29:27 GMT
CF-Cache-Status: HIT
Age: 3191
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9afdee40fabc-OSL

bat.bing.com/action/0?ti=22022257&tm=gtm002&Ver=2&mid=91bbc480-0329-4d55-9383-1045dc5c31c1&sid=db709ea0919111edac5a6dd59d23ded2&vid=db7089d0919111ed9c88117454e1c621&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Top%20Casinos%20Deutschland&p=https%3A%2F%2Fichliebecasinos.de%2F&r=&lt=1567&evt=pageLoad&sv=1&rn=429993

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=22022257&tm=gtm002&Ver=2&mid=91bbc480-0329-4d55-9383-1045dc5c31c1&sid=db709ea0919111edac5a6dd59d23ded2&vid=db7089d0919111ed9c88117454e1c621&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Top%20Casinos%20Deutschland&p=https%3A%2F%2Fichliebecasinos.de%2F&r=&lt=1567&evt=pageLoad&sv=1&rn=429993
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=22022257&tm=gtm002&Ver=2&mid=91bbc480-0329-4d55-9383-1045dc5c31c1&sid=db709ea0919111edac5a6dd59d23ded2&vid=db7089d0919111ed9c88117454e1c621&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Online%20Top%20Casinos%20Deutschland&p=https%3A%2F%2Fichliebecasinos.de%2F&r=&lt=1567&evt=pageLoad&sv=1&rn=429993 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2E6D9D5FA1A5644A04398FC9A05065E2; domain=.bing.com; expires=Mon, 05-Feb-2024 09:25:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 23B468AD504F4869972F624B26205BB8 Ref B: OSL30EDGE0115 Ref C: 2023-01-11T09:25:29Z
date: Wed, 11 Jan 2023 09:25:29 GMT
X-Firefox-Spdy: h2

buttons-config.sharethis.com/js/6298814693aa1c00193de1c5.js

54.230.111.126

200 OK

873 B

URL HTTP/2
buttons-config.sharethis.com/js/6298814693aa1c00193de1c5.js
IP
54.230.111.126:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (873), with no line terminators
Size
873 B (873 bytes)
Hash
75f189d6f12fd8cd7e93e9183a3a512c
e46982f4225da2a34e2db2e5635a7c0f729cef7a
28eba250e61ae33e6c538e504d7aaef8a84ec5b746e629b4c969b6b62656a102

HTTP Headers

GET /js/6298814693aa1c00193de1c5.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript
content-length: 873
last-modified: Thu, 02 Jun 2022 10:00:23 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 11 Jan 2023 09:25:04 GMT
cache-control: max-age=60,public
etag: "75f189d6f12fd8cd7e93e9183a3a512c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uXU592-WUhC23D3_uwfn5sXbk4AyrI8R0v9wGJLsMjWotXlwj62pbg==
age: 26
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

www.bet365.de/olpc/olpc-styles.css?v=dBd_Fzh-UuBag0eayavwW9rzJvksZje1jEYTq5m-RbU1

5.226.179.19

200 OK

118 kB

URL HTTP/1.1
www.bet365.de/olpc/olpc-styles.css?v=dBd_Fzh-UuBag0eayavwW9rzJvksZje1jEYTq5m-RbU1
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size
118 kB (118143 bytes)
Hash
dbc3ddcf12e27496caf37db9a8fbe3d0
cfd2d0afdb0d397c647dc89548ace59f3571de59
6f4b74761a431f9d6c9c753f1d185588a94c776fbce9ce36227aa7ddfa7c132a

HTTP Headers

GET /olpc/olpc-styles.css?v=dBd_Fzh-UuBag0eayavwW9rzJvksZje1jEYTq5m-RbU1 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Wed, 10 Jan 2024 19:26:36 GMT
Last-Modified: Tue, 10 Jan 2023 19:26:36 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 3192
Server: cloudflare
CF-RAY: 787c9afe8e55b524-OSL

www.bet365.de/olpc/Content/Fonts/FTN45__W.woff2

5.226.179.19

200 OK

46 kB

URL HTTP/1.1
www.bet365.de/olpc/Content/Fonts/FTN45__W.woff2
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Size
46 kB (45892 bytes)
Hash
e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751

HTTP Headers

GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 07:42:43 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afe5e9ffabc-OSL

bat.bing.com/p/action/22022257.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/22022257.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/22022257.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=2F6427B6A229679635CF3520A3DC660A; domain=.bing.com; expires=Mon, 05-Feb-2024 09:25:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D8A8932FDC7340D0B4098D2460FEF79E Ref B: OSL30EDGE0115 Ref C: 2023-01-11T09:25:29Z
date: Wed, 11 Jan 2023 09:25:29 GMT
X-Firefox-Spdy: h2

www.bet365.de/olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1

5.226.179.19

200 OK

7.6 kB

URL HTTP/1.1
www.bet365.de/olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
ASCII text, with very long lines (21910), with no line terminators
Size
7.6 kB (7634 bytes)
Hash
b67c3ce5e8cbbca3fab865a90d284113
2afa9bf3970312d52bb5f93d546c89ee6d4902f5
68f0811836f6d0b1d4d9a9cf428154b7c0594a6ac88a1a5f527d2dae88bdadb1

HTTP Headers

GET /olpc/olpc-scripts.js?v=rFtYSQymHsg1Oi3u_Pek5p3y3x-FAFn_GxqtcGwAakg1 HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7634
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Wed, 10 Jan 2024 19:26:38 GMT
Last-Modified: Tue, 10 Jan 2023 19:26:38 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 3192
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9afe8ec4fabc-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
8dd7ce9ec97e2db3fd99ab38935bd1b4
c3bccefd5b017e26c3c7688a5f5e052b0d102294
5f9ab032107c82c0239e9ed0fd3fa237f2a02382cef6122959523a6fdba34967

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Wed, 11 Jan 2023 09:25:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279

www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js

5.226.179.19

200 OK

3.6 kB

URL HTTP/1.1
www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
ASCII text, with very long lines (9857), with no line terminators
Size
3.6 kB (3619 bytes)
Hash
8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa

HTTP Headers

GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
x-bet-hop: 1
Pragma: no-cache
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 09:25:30 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afe8a0eb52d-OSL

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1b1aa390fb469af7c7d81a50020ea69e
b1c1cab0cefa46f4a0f823fd3943ddc885300934
94e9afe51c05578980a5431ed8b3d0930ad92113ac715382803f81c94c0506f4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 11 Jan 2023 09:25:30 GMT
Last-Modified: Wed, 11 Jan 2023 08:16:19 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tWm_kuvVzwDSyyyzhjrNGAPUNRqQU00g87t3IZqHJ1whWFQwHmLwvA==
Age: 4151

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
c17cf7068f6c6308fdd2f677fba7d7fb
3250d9ab2a48cd0588ff58720181cde513bffd5c
21c7d09d6dc2473e2e116d7f691f23387b3748cbe7e829440f9454d1e0434fe1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2572
Cache-Control: max-age=152994
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be2920-117"
Expires: Fri, 13 Jan 2023 03:55:24 GMT
Last-Modified: Wed, 11 Jan 2023 03:12:32 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 279

platform-cdn.sharethis.com/img/facebook.svg

54.230.111.57

200 OK

301 B

URL HTTP/2
platform-cdn.sharethis.com/img/facebook.svg
IP
54.230.111.57:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
301 B (301 bytes)
Hash
c6e9be45643e197ce1db1d7e24a99adc
d7338e398bb0f7a9082d24f121140d2cf9e88859
768d97ec0916217ae82c70aeda3a61b9b0dab344edc4a3240a4f7cd94af00307

HTTP Headers

GET /img/facebook.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 301
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 09 Jan 2023 03:18:13 GMT
cache-control: public, max-age=2592000
etag: "c6e9be45643e197ce1db1d7e24a99adc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GcgLd1LDz7IjI9M3pJIui8mZIxCRCR2iXmGkKa5Vz8KQxUkcNBZLWQ==
age: 194841
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
c17cf7068f6c6308fdd2f677fba7d7fb
3250d9ab2a48cd0588ff58720181cde513bffd5c
21c7d09d6dc2473e2e116d7f691f23387b3748cbe7e829440f9454d1e0434fe1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1262
Cache-Control: max-age=151684
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be2920-117"
Expires: Fri, 13 Jan 2023 03:33:34 GMT
Last-Modified: Wed, 11 Jan 2023 03:12:32 GMT
Server: ECS (amb/6BA2)
X-Cache: HIT
Content-Length: 279

www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?async

5.226.179.19

200 OK

695 B

URL HTTP/1.1
www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
ASCII text, with very long lines (987), with no line terminators
Size
695 B (695 bytes)
Hash
547eb34b244964f4937fab71e3477d44
80c63c322207b103cfdb08a82d1011d5631f5fb2
9b77b7893771b169a00b58a449642c41455b4c2b9a0bf6262d397f863f06d5f5

HTTP Headers

GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
x-bet-hop: 1
Pragma: no-cache
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 09:25:30 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9afeedab0b4d-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
c17cf7068f6c6308fdd2f677fba7d7fb
3250d9ab2a48cd0588ff58720181cde513bffd5c
21c7d09d6dc2473e2e116d7f691f23387b3748cbe7e829440f9454d1e0434fe1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2970
Cache-Control: max-age=153392
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be2920-117"
Expires: Fri, 13 Jan 2023 04:02:02 GMT
Last-Modified: Wed, 11 Jan 2023 03:12:32 GMT
Server: ECS (amb/6BB0)
X-Cache: HIT
Content-Length: 279

l.sharethis.com/pview?event=pview&hostname=ichliebecasinos.de&location=%2F&product=sop&url=https%3A%2F%2Fichliebecasinos.de%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Online%20Top%20Casinos%20Deutschland&cms=unknown&publisher=6298814693aa1c00193de1c5&sop=true&version=st_sop.js&lang=en

35.158.7.46

204 No Content

0 B

URL HTTP/1.1
l.sharethis.com/pview?event=pview&hostname=ichliebecasinos.de&location=%2F&product=sop&url=https%3A%2F%2Fichliebecasinos.de%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Online%20Top%20Casinos%20Deutschland&cms=unknown&publisher=6298814693aa1c00193de1c5&sop=true&version=st_sop.js&lang=en
IP
35.158.7.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pview?event=pview&hostname=ichliebecasinos.de&location=%2F&product=sop&url=https%3A%2F%2Fichliebecasinos.de%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Online%20Top%20Casinos%20Deutschland&cms=unknown&publisher=6298814693aa1c00193de1c5&sop=true&version=st_sop.js&lang=en HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ichliebecasinos.de
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://ichliebecasinos.de
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 11 Jan 2023 09:25:30 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive

members.bet365.de/Members/Helpers/DefaultAff.aspx?affiliate=365_01156703

5.226.179.19

200 OK

177 B

URL HTTP/1.1
members.bet365.de/Members/Helpers/DefaultAff.aspx?affiliate=365_01156703
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
177 B (177 bytes)
Hash
475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811

HTTP Headers

GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01156703 HTTP/1.1
Host: members.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01156703&prd=Sports; domain=.bet365.de; expires=Sat, 25-Feb-2023 09:25:30 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=EAA4B5A316374FFF89497AC0A160DFDB000003; domain=.bet365.de; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787c9afe7886b4ee-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
44ea0f9a8238c03d01bad35cbeb9a5d4
89a2fb565436045f2b0ea92675b5380d68947e6f
d77d3c8d7644f7777f36ca0518724efe4ab9de84c902f75af06380594e4a1ad7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116947
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63bda65d-118"
Expires: Thu, 12 Jan 2023 17:54:37 GMT
Last-Modified: Tue, 10 Jan 2023 17:54:37 GMT
Server: nginx
Content-Length: 280

content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Klarna.svg

5.226.179.19

200 OK

2.3 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Klarna.svg
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (6225)
Size
2.3 kB (2337 bytes)
Hash
63331f7e52204ca7388196d9ca4c4396
b311883c42a4eafd995270cfb2b2e1cbef3f6e5d
78411136dae0b3928ec452f8a9f6e5d93b90ba9b4e9cefcb943d26084e1b060a

HTTP Headers

GET /SportsContent/FeaturesTemplate/SVG/Payment/Klarna.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Content-Length: 2337
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Wed, 02 Nov 2022 16:04:08 GMT
Vary: Accept-Encoding
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9aff58bdfab8-OSL

content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/eco%20Payz.svg

5.226.179.19

200 OK

2.2 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/eco%20Payz.svg
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4675), with no line terminators
Size
2.2 kB (2185 bytes)
Hash
79177c339d6c2a796f609cf1e3c97000
704e22404bc904d6fd6f168bc84de08594c1c7d9
d76888330707743d0db9e7e9fe93251f435864fe4c6edf2313503f8e436f8644

HTTP Headers

GET /SportsContent/FeaturesTemplate/SVG/Payment/eco%20Payz.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 09 Sep 2021 09:12:46 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff5a32b51d-OSL
Content-Encoding: gzip

www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDCDqCFAQAA6fiZFAoF3LQBO4zRhxcLDIEjzo5S-8W34Ftq_FczE3D4dBuQ&PIRXTcSdwp--z=q

5.226.179.19

200 OK

175 kB

URL HTTP/1.1
www.bet365.de/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDCDqCFAQAA6fiZFAoF3LQBO4zRhxcLDIEjzo5S-8W34Ftq_FczE3D4dBuQ&PIRXTcSdwp--z=q
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
ASCII text, with very long lines (65536), with no line terminators
Size
175 kB (174958 bytes)
Hash
7103627b808f21f2da872c37282ace70
014675f8bebe20c166fd69cbce25d7114a8a3b0f
c306859e826d6e3816ae52dcd5830d413bbafc629750e128b8690b0146373b3d

HTTP Headers

GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDCDqCFAQAA6fiZFAoF3LQBO4zRhxcLDIEjzo5S-8W34Ftq_FczE3D4dBuQ&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 09:00:00 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff7f6cb524-OSL

content001.bet365.de/SportsContent/Global/Footer/eCogra-Horizontal2x.png

5.226.179.19

200 OK

1.7 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1671 bytes)
Hash
9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349

HTTP Headers

GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff7a290b45-OSL

content001.bet365.de/SportsContent/Global/Footer/GGL/PNG/x2/GGL_Grey-2x.png

5.226.179.19

200 OK

1.7 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/Global/Footer/GGL/PNG/x2/GGL_Grey-2x.png
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
PNG image data, 110 x 72, 8-bit gray+alpha, non-interlaced\012- data
Size
1.7 kB (1659 bytes)
Hash
0d1599794b53a324e86676ab1af02de7
76247342739b924edfb0e603e11627808a14e4fb
ac97b0520a8964b7bbb241a4f2d43f8c473b25b2946451a0dee98d0287a6ab32

HTTP Headers

GET /SportsContent/Global/Footer/GGL/PNG/x2/GGL_Grey-2x.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 1659
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:14:16 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 232769
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affc8f7fab8-OSL

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

content001.bet365.de/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png

5.226.179.19

200 OK

6.4 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
6.4 kB (6386 bytes)
Hash
1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f

HTTP Headers

GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9aff7d53b500-OSL

a.omappapi.com/app/js/api.min.css

194.242.11.186

200 OK

7.8 kB

URL HTTP/2
a.omappapi.com/app/js/api.min.css
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (17996), with no line terminators
Size
7.8 kB (7841 bytes)
Hash
584a24a08b29f458fe6cdd5fadda3cdd
67e8341bbf5e6460f42729860d7738a9921a66d0
34004030e8bdeef9c99f8d3d5c1350c873db3774cf02fb50600db02415d96805

HTTP Headers

GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:29 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63bceea0-464c"
last-modified: Tue, 10 Jan 2023 04:50:40 GMT
cdn-storageserver: DE-167
cdn-requestpullsuccess: True
cdn-fileserver: 533
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 05:23:45
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0a540241b5824e1991a67375533e582f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
30d2205eaa1ce2dc92b7e02558b36c79
0899d974eb13d220dce7532e1b9f32b82fa002e4
45af6f7a039de19bf0b7cda174e1de6ddcfc7d31e2861d99b8059aefa15a1063

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=156559
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be4119-117"
Expires: Fri, 13 Jan 2023 04:54:49 GMT
Last-Modified: Wed, 11 Jan 2023 04:54:49 GMT
Server: nginx
Content-Length: 279

content001.bet365.de/SportsContent/Global/Footer/SPORTSX2-18.png

5.226.179.19

200 OK

4.4 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/Global/Footer/SPORTSX2-18.png
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4400 bytes)
Hash
097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af

HTTP Headers

GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 386534
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affea800b45-OSL

a.omappapi.com/app/js/5.c7ff1c6f.min.js

194.242.11.186

200 OK

5.2 kB

URL HTTP/2
a.omappapi.com/app/js/5.c7ff1c6f.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (16062)
Size
5.2 kB (5162 bytes)
Hash
f900aa40839cd9718160deab0ec09204
c0b1e0c85b2337d4ca774f2dceaf6ee917c3b4a6
bb2b297065ef21109cbad8c9000df65fefe4643ffcf8870c1a76bdf557c4ab14

HTTP Headers

GET /app/js/5.c7ff1c6f.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:30 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f974-3efd"
last-modified: Wed, 14 Dec 2022 16:27:32 GMT
cdn-storageserver: DE-199
cdn-requestpullsuccess: True
cdn-fileserver: 420
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 19:35:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 79b95b65fa9edd00760834c0eb75d95c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=479006207257612&ev=PageView&dl=https%3A%2F%2Fichliebecasinos.de%2F&rl=&if=false&ts=1673429115931&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673429115930.1867488034&it=1673429115610&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=479006207257612&ev=PageView&dl=https%3A%2F%2Fichliebecasinos.de%2F&rl=&if=false&ts=1673429115931&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673429115930.1867488034&it=1673429115610&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=479006207257612&ev=PageView&dl=https%3A%2F%2Fichliebecasinos.de%2F&rl=&if=false&ts=1673429115931&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673429115930.1867488034&it=1673429115610&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 11 Jan 2023 09:25:30 GMT
X-Firefox-Spdy: h2

content001.bet365.de/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png

5.226.179.19

200 OK

7.9 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7868 bytes)
Hash
51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b

HTTP Headers

GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affcaefb51d-OSL

boomerang-casino100.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS

45.8.106.227

301 Moved Permanently

0 B

URL HTTP/2
boomerang-casino100.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
IP
45.8.106.227:0
ASN
#209242 Cloudflare London, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS HTTP/1.1
Host: boomerang-casino100.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Wed, 11 Jan 2023 09:25:30 GMT
content-length: 0
location: https://boomerang-casino.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c9aff9d10b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Paypal.svg

5.226.179.19

200 OK

2.8 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Paypal.svg
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7331), with no line terminators
Size
2.8 kB (2832 bytes)
Hash
1fce617a5142d14d60ccec8322f3e6f7
f4b86459952dfa834c1e442c951b1f9e7281175b
386bb936628d2d045dc1168cd7a5cb8a586c7d43b4b3b2902300b353693f6ffb

HTTP Headers

GET /SportsContent/FeaturesTemplate/SVG/Payment/Paypal.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Content-Length: 2832
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 09 Sep 2021 09:13:53 GMT
Vary: Accept-Encoding
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 787c9afffe09b500-OSL

content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg

5.226.179.19

200 OK

6.0 kB

URL HTTP/1.1
content001.bet365.de/SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (15567), with no line terminators
Size
6.0 kB (5973 bytes)
Hash
aa0df9e46b1f7ac3b17c0958b5027d01
3240acf3cf0ddc96973ebb44c940ee6df907566c
d997b14180dfe368dfc9baaf26be95255299617eae701add25de55dfd5f42aaf

HTTP Headers

GET /SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg HTTP/1.1
Host: content001.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.de/
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 09 Sep 2021 09:13:23 GMT
Timing-Allow-Origin: *
CF-Cache-Status: REVALIDATED
Expires: Mon, 16 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787c9affe917fab8-OSL
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
44ea0f9a8238c03d01bad35cbeb9a5d4
89a2fb565436045f2b0ea92675b5380d68947e6f
d77d3c8d7644f7777f36ca0518724efe4ab9de84c902f75af06380594e4a1ad7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=116947
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63bda65d-118"
Expires: Thu, 12 Jan 2023 17:54:37 GMT
Last-Modified: Tue, 10 Jan 2023 17:54:37 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
30d2205eaa1ce2dc92b7e02558b36c79
0899d974eb13d220dce7532e1b9f32b82fa002e4
45af6f7a039de19bf0b7cda174e1de6ddcfc7d31e2861d99b8059aefa15a1063

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=156559
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 09:25:30 GMT
Etag: "63be4119-117"
Expires: Fri, 13 Jan 2023 04:54:49 GMT
Last-Modified: Wed, 11 Jan 2023 04:54:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279

www.bet365.de/olpc/de/75/0/1/cookieconsentajax?

5.226.179.19

200 OK

1.5 kB

URL HTTP/1.1
www.bet365.de/olpc/de/75/0/1/cookieconsentajax?
IP
5.226.179.19:0
ASN
#209242 Cloudflare London, LLC

File type
Unicode text, UTF-8 text, with very long lines (535), with CRLF, LF line terminators
Size
1.5 kB (1468 bytes)
Hash
5ef8facc79c57fff4d946a13f70c1f95
b3d4de2b65de66a94086b0652137f03a5d0b1c10
463693dbc102dbee2bda325ea1478e21a8a858039c3f240f1b29be6259ff5142

HTTP Headers

POST /olpc/de/75/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.de
Connection: keep-alive
Referer: https://www.bet365.de/olpc/de/75/0/1/open-account
Cookie: __cf_bm=EKY8nsTszcyB5NqfED7zCm4IT4496GKJTCH6yzFJOMw-1673429129-0-AXZZttztOHVeIDNua2z5UV+JAXpoMlqtwE9Yc3islQjlCVYor+D+AkACkHyhi4bpZf5Cgr5NSyloWql6lIZuROA=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 09:25:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1468
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787c9b01fb25b524-OSL

boomerang-casino.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS

45.8.105.214

200 OK

1.6 kB

URL HTTP/2
boomerang-casino.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
IP
45.8.105.214:0
ASN
#209242 Cloudflare London, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1589)
Size
1.6 kB (1560 bytes)
Hash
30431d2136d5a9e9f142f9731c0f4f7c
a8fecd61940245d95fdfe67a2a7baf54e90db8f9
1ba2011b61a10504fb55556822976f98a5efc112c8095d8f3ab437d6c01b3f52

HTTP Headers

GET /de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS HTTP/1.1
Host: boomerang-casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:30 GMT
content-type: text/html
cf-ray: 787c9b0098a00b51-OSL
access-control-allow-origin: *
last-modified: Tue, 10 Jan 2023 13:20:51 GMT
set-cookie: _cf_reyid=2sitdH7STxvUgVBDY0a8Z7MI1xliZqfjofhugWRe4MEWnU/lRyyR2cvAI0l97TGha1ApOtw041GF+EGFBqwo1Q==
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: null, Accept-Encoding
cf-cache-status: DYNAMIC
cf-ttl: 1673429190472
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=

188.114.97.1

200 OK

1.0 kB

URL HTTP/2
www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
1.0 kB (1016 bytes)
Hash
b454613b3d04b7e711c678da0b6fd6a5
a8b23c856f8065569a1a80b11e33995fd152892f
78495009555299d62cf56391854566ba8b3ce67347305bdfa240cd58c0f1f121

HTTP Headers

GET /?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ= HTTP/1.1
Host: www.oopserror.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:31 GMT
content-type: text/html
x-amz-id-2: Go6vIfazmqqdVSGRCg7rB5A3PJpQVtfkpY/4SYiuYhXoZbjdMIt9zzlTEvOAvkQqev4nJIsmoss=
x-amz-request-id: T022M2WZD82XP0SH
last-modified: Sun, 18 Jul 2021 11:07:46 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oz%2FNnSCjx9o0VOR4ZZaxTOJPUp2w5tTvcfa4WMLoFlCA%2FfYEtZgnqQmiT39RohtxV6FSjWex0id7npAurK80hstF%2BafLH99JZxL9u%2BIza%2Fozv5eL28B8BIt6Xid2EfjJtoOO1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c9b060a2c0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

boomerang11.com/?serial=3343&creative_id=9&anid=PU_CM_DE_DT_ICHLIEBECASINOS

188.114.96.1

302 Found

0 B

URL HTTP/2
boomerang11.com/?serial=3343&creative_id=9&anid=PU_CM_DE_DT_ICHLIEBECASINOS
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?serial=3343&creative_id=9&anid=PU_CM_DE_DT_ICHLIEBECASINOS HTTP/1.1
Host: boomerang11.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 11 Jan 2023 09:25:29 GMT
content-type: text/html; charset=utf-8
location: https://boomerang-casino100.com/de/?qtag=a622_t3343_c9_sPU_CM_DE_DT_ICHLIEBECASINOS
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache
x-request-id: 83eda438-9b07-4315-ad23-8ecabc0c843d
x-runtime: 0.058090
strict-transport-security: max-age=31536000
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=alHCnuJ6afRj9d8tG65DmvJlwR2mMT7iULQI6Qg4Hh70wUa6QMIpgmNI61gulEhTidE9aZW%2Fe01WqJu5MGAXgt6JrERUb9UF%2BzWSqzMH9U%2BrOi4YKt5ODu8RmnxxeE2Sjo8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c9afcfc110b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.oopserror.com/css/style.css

188.114.97.1

404 Not Found

0 B

URL HTTP/2
www.oopserror.com/css/style.css
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css/style.css HTTP/1.1
Host: www.oopserror.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Wed, 11 Jan 2023 09:25:31 GMT
content-type: text/html; charset=utf-8
x-amz-request-id: T026FEXRN1JBYKNE
x-amz-id-2: efMw7Q7a+ATFopECl+VN1VEeXiNfurXwz5D3dqA5YvKmEEKDV88uL8zJQIwkZlHcV4k9Qjam7og=
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=35ddcYnw54KfmwDGRvWmF%2FshStG5d%2FGSapOXXrRElfa79ACP4MXE%2F%2BnP8JaEA%2BIIvcN%2BH2G6EU0aIHB8nSzqUbO0dixNVoyolb%2FCuZgdCrRMbGXAqsOoRot1UBLttbt0dhlZFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 787c9b06db0d0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

a.omappapi.com/app/js/api.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/api.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:29 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63bcedb3-c7f5"
last-modified: Tue, 10 Jan 2023 04:46:43 GMT
cdn-storageserver: DE-164
cdn-requestpullsuccess: True
cdn-fileserver: 531
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 04:47:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ce50d1f88e6abd250a39e58fed158f9d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cazimbo.com/de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E

45.8.107.86

200 OK

0 B

URL HTTP/2
cazimbo.com/de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E
IP
45.8.107.86:0
ASN
#209242 Cloudflare London, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /de/?viewType=sport&btag=654614_14BAAD1DF4E949B88951B8DA4474CC6E HTTP/1.1
Host: cazimbo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:30 GMT
content-type: text/html
cf-ray: 787c9b002863b524-OSL
access-control-allow-origin: *
last-modified: Tue, 03 Jan 2023 10:07:26 GMT
set-cookie: _cf_reyid=IX9ANOLAgbCSpAtKAGjN5MMEceCQdPA+D4inUsyqjK4qvNopNo3lOAgS9KJdTTYn
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: null, Accept-Encoding
cf-cache-status: DYNAMIC
cf-ttl: 1673429190414
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

platform-cdn.sharethis.com/img/instagram.svg

54.230.111.57

200 OK

0 B

URL HTTP/2
platform-cdn.sharethis.com/img/instagram.svg
IP
54.230.111.57:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /img/instagram.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 28 Dec 2022 03:13:17 GMT
cache-control: public, max-age=2592000
etag: W/"da6090b1b675f09ecfa36f0098ebe1c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -KBevn2NYHEQbgcHProUFkq_Dq_-1EBS6Fai5JgUyDraOj5QyYVerg==
age: 1231934
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

spa.silverplayaffiliates.com/u/b/2958225/iW0AOOJCF8zx

188.114.97.1

302 Found

0 B

URL HTTP/2
spa.silverplayaffiliates.com/u/b/2958225/iW0AOOJCF8zx
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /u/b/2958225/iW0AOOJCF8zx HTTP/1.1
Host: spa.silverplayaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 11 Jan 2023 09:25:31 GMT
content-type: text/html; charset=UTF-8
location: https://www.oopserror.com/?error=RXJyb3IgQ29kZSA6IHNvbWV0aGluZyB3ZW50IHdyb25nIHBsZWFzZSBjb250YWN0IHN1cHBvcnQ=
set-cookie: AWSALB=nCetLNJ+byulIuLz9aHCusqUjt9VG0Jk24JPwImRAuqCqcK9NYBgq4wXLb/ucpk/vlqbd7pKq9IJ1Tv5e7GLQB0EF2+Q7CYsPsBe/X4KinOrtfgIvihkwIo80+am; Expires=Wed, 18 Jan 2023 09:25:29 GMT; Path=/
AWSALBCORS=nCetLNJ+byulIuLz9aHCusqUjt9VG0Jk24JPwImRAuqCqcK9NYBgq4wXLb/ucpk/vlqbd7pKq9IJ1Tv5e7GLQB0EF2+Q7CYsPsBe/X4KinOrtfgIvihkwIo80+am; Expires=Wed, 18 Jan 2023 09:25:29 GMT; Path=/; SameSite=None
PHPSESSID=jtkelum4l8s00klsf55t0rppds; path=/
x-powered-by: PHP/8.0.25
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=29uahtHIBhtch3LE%2Bkc3%2BTrpGtPuVNqJQ9GhWparsys%2FQBlndiUv%2BX6AQNERJNlrBIXsBOjMMT1ZMj1d913duSw5ZbqiNRZdr7Ils2yHHp3hUSxydT782lkFSjWfpBDJz5fvOyM88kazY5FoYaqy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 787c9afd7e330af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/flexboxgrid2@7.2.1/flexboxgrid2.css

104.16.122.175

200 OK

0 B

URL HTTP/2
unpkg.com/flexboxgrid2@7.2.1/flexboxgrid2.css
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /flexboxgrid2@7.2.1/flexboxgrid2.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sun, 11 Mar 2018 09:44:23 GMT
etag: W/"56a4-v1R5qYpQrdlZIpVwnn1fUQr4l/s"
via: 1.1 fly.io
fly-request-id: 01GPECVSY88NF4VYC25BE248AQ-ams
cf-cache-status: HIT
age: 56110
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 787c9af29fbab50c-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.onesignal.com/sdks/OneSignalSDK.js

104.18.226.52

200 OK

0 B

URL HTTP/2
cdn.onesignal.com/sdks/OneSignalSDK.js
IP
104.18.226.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ichliebecasinos.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 11 Jan 2023 09:25:28 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1115
expires: Sat, 14 Jan 2023 09:25:28 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 787c9af2cdfeb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations