Report - yukongold.casino/referral

Report Overview

Submitted URL
yukongold.casino/referral
IP
66.212.229.231
ASN
#14537 CL-1379-14537
Submitted
2022-12-12 22:19:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	3.0 kB	104.18.32.68
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	117 kB	151.101.1.229
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	516 B	694 B	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	46 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	21 kB	216.239.32.178
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	608 B	711 B	64.233.164.154
api.zxxcdn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	467 B	1.2 kB	66.212.229.188
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	517 B	694 B	216.58.207.228
yukongold.casino	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	128 kB	66.212.229.231
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.164.56.167
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.131
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	78 kB	142.250.74.168
cdn.zxxcdn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	531 kB	66.212.229.189

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-12	medium	yukongold.casino/referral	Malware
2022-12-12	medium	yukongold.casino/referral	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	yukongold.casino/en/	430 B	2023-03-09	2023-09-23
Pretty URL yukongold.casino/en/ IP 66.212.229.231 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-09-23 08:35:18 Times Seen5 Hash 479b1a85cca6b821dfa56f59048b37f6 0b848a6e838a7ef57dd58e6adcfc3b07d2a49a75 8d4df9440242d4ed3af60a4112651322779558f7def19854a42f711222705535 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M5BBV36	132 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M5BBV36 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-03-09 05:08:15 Times Seen1 Hash e29b43cc4859d129a85b8e8ce9655dca ff6a55c9f8aefa820ba24616df8512bfe126a3c6 f0ea415843614fbccf18aa5d07f3a24e0dc978c20956bce7df8c7c80cc5423d1 Loading...

	yukongold.casino/Scripts/bootstrap@4.6.0/bootstrap.min.js	64 kB	2023-03-07	2024-04-27
Pretty URL yukongold.casino/Scripts/bootstrap@4.6.0/bootstrap.min.js IP 66.212.229.231 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:47 Last Seen2024-04-27 00:44:08 Times Seen8598 Hash f0c2bcf5ef0c4476508d79ec9cdcce07 3beed68ed7d753c6bf4f61c26386ddd7929ba030 edd03b96ae4ff7886406c59d7dfeeaa1b624a7da297bf2f92d0cb6b7f9633cba Loading...

	yukongold.casino/bundles/js-yg_en?v=y1bU8KM5DaEKGET1NwdjcbKQfSXVqUv5ibN9_KTJh3w1	146 kB	2023-03-09	2023-03-09
Pretty URL yukongold.casino/bundles/js-yg_en?v=y1bU8KM5DaEKGET1NwdjcbKQfSXVqUv5ibN9_KTJh3w1 IP 66.212.229.231 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-03-09 05:08:15 Times Seen1 Hash 8bc50f085a0cb392a1beebfaa8fb27c1 01b301b1e026f6c64eeb8f61d9ba2b32e394951d 29cb47cbb9dbf8f48205d211d54b4ea9798c9587fbc49508c959ddbb78d1791a Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 06:15:56 Times Seen37112116 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	yukongold.casino/Scripts/bootstrap@4.6.0/popper.min.js	21 kB	2023-03-07	2024-04-27
Pretty URL yukongold.casino/Scripts/bootstrap@4.6.0/popper.min.js IP 66.212.229.231 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-27 01:34:44 Times Seen5979 Hash 1022eaf388cc780bcfeb6456157adb7d 313789ca0e31b654784dbba8b0f83f364f8683b4 fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f Loading...

	yukongold.casino/Scripts/headScripts.js	5.0 kB	2023-03-09	2023-09-23
Pretty URL yukongold.casino/Scripts/headScripts.js IP 66.212.229.231 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-09-23 08:35:18 Times Seen5 Hash be80862213ae662a6037a08c18481489 ff29899d0f53a09960f9a3ea64777f6522112586 7131c02b972ed7f6627ac050b7c2ffacf498d8be4eb248ee88bd2a3c2c09670e Loading...

	cdn.zxxcdn.com/webcdn/js/cookieConsentCr/cookieConsentCr-2.0.1.min.js	16 kB	2023-03-09	2023-09-23
Pretty URL cdn.zxxcdn.com/webcdn/js/cookieConsentCr/cookieConsentCr-2.0.1.min.js IP 66.212.229.189 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-09-23 08:35:19 Times Seen9 Hash 974bf4904d09f287e5c2b12ff0e69997 3145769dd71624996a98f7665845e6cf0a465f1c db831b38818ca80979d21a6721b6fb23ff944c2b760b7a0c1b49974de821526b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-27
Pretty URL www.google-analytics.com/analytics.js IP 216.239.32.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-27 02:03:36 Times Seen1536 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	api.zxxcdn.com/ApiMgs.svc/GetProgressivesByCultureName/?cultureName=EN_USD&callback=progressiveJackpotResult_EN_USD&_=1670883565371	3.0 kB	2023-03-09	2023-03-09
Pretty URL api.zxxcdn.com/ApiMgs.svc/GetProgressivesByCultureName/?cultureName=EN_USD&callback=progressiveJackpotResult_EN_USD&_=1670883565371 IP 66.212.229.188 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-03-09 05:08:15 Times Seen1 Hash 717d44bc542996a6bf184c8d85061cd0 0d61b554f6c8f57296c7130ee54f32ccb237267d da2904f9a2cd6ccc98d6d6925430487e48283ecc1c3f4b84ecbdcd70d31ddedc Loading...

	cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.min.js	90 kB	2023-03-07	2024-04-27
Pretty URL cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-27 06:13:52 Times Seen139490 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	yukongold.casino/en/	132 B	2023-03-09	2023-03-09
Pretty URL yukongold.casino/en/ IP 66.212.229.231 ASN #14537 CL-1379-14537 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:08:15 Last Seen2023-03-09 05:08:15 Times Seen1 Hash cec9e0d3fcd78f5f359b00448c9bdfc3 812f19375d4a22f5de75e35a0f9563bbd91d1ab0 e07c46163b958cb8fc81980c10abcf0b016d98640fa48ada61c3163935b72498 Loading...

HTTP Transactions (84)

URL IP Response Size

yukongold.casino/referral

66.212.229.231

301 Moved Permanently

156 B

URL HTTP/1.1
yukongold.casino/referral
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
156 B (156 bytes)
Hash
57f2b1ae3418703216f0f4e6be5c8d22
c12c0cdaa6125c0fdace6cc29987edcf94416ed2
af0d3fb2154a611f14474fcde0341a9d08bbb14a62830553d74ff252a8f7a2cb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /referral HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://yukongold.casino/referral
Vary: User-Agent
X-NID: W02
Accept-CH: Sec-CH-UA-Full-Version
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer-when-downgrade
Date: Mon, 12 Dec 2022 22:19:24 GMT
Content-Length: 156

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b8fe6ec1ac390bc5b90b68b0e3005299
4ce20d527fcc93a2a6d1c5f3ab73ee8ded2a57f2
1755a645d41780a9e54ee1ad04a2b293d16d2a98e543f81835c3a66e3d58c3be

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1755A645D41780A9E54EE1AD04A2B293D16D2A98E543F81835C3A66E3D58C3BE"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6020
Expires: Mon, 12 Dec 2022 23:59:45 GMT
Date: Mon, 12 Dec 2022 22:19:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3c0c53379f331e934f61070074d41035
420f6e542cbf741838566f22e475a80e2f600d21
4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13652
Expires: Tue, 13 Dec 2022 02:06:57 GMT
Date: Mon, 12 Dec 2022 22:19:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 12 Dec 2022 22:08:38 GMT
content-type: application/json
age: 647
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dbd022fec0a71226daaf29b7563a8896
c37d14dc7b3849a4bb815fa325fb5e70fae54039
22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB"
Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7515
Expires: Tue, 13 Dec 2022 00:24:40 GMT
Date: Mon, 12 Dec 2022 22:19:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: mNeKAmFtIhruR6sOXk321vde87DsAQ2908IMrUPt4yy04H3oW6G3+KsiVegYU27h2WjKTGWT+b4=
x-amz-request-id: DAVEKTE06BM4B3GF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 12 Dec 2022 21:49:46 GMT
age: 1779
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 12 Dec 2022 22:19:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.usertrust.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
8e6395769ecd9a18c5c523d8f9352446
8d4a2863c688ecd326e33e7c6669065e6a3b53d7
3068f725ff53d9426adfb05acf5543c370db1a1d6d847166371751c2e4f4e21b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 22:19:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 10 Dec 2022 11:56:11 GMT
Expires: Sat, 17 Dec 2022 11:56:10 GMT
Etag: "8d4a2863c688ecd326e33e7c6669065e6a3b53d7"
Cache-Control: max-age=471089,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7789d76d4e660afa-OSL

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 12 Dec 2022 21:33:17 GMT
age: 2768
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

yukongold.casino/referral

66.212.229.231

301 Moved Permanently

153 B

URL HTTP/2
yukongold.casino/referral
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
153 B (153 bytes)
Hash
7284028e349f09af9d2444cc6a4c81a3
dc910c14a33cd6ceaeb77ed47ce04380899652f0
97d3a6fe0f5967f7a313da3217bd7bc1f2ece1c1c80870d2ed04fecd7152a76b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /referral HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
cache-control: private
content-type: text/html; charset=utf-8
location: https://yukongold.casino/en/referral
vary: User-Agent
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-8dc213fbc6db45279408eeda290d3f54' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
set-cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; path=/; secure; HttpOnly; SameSite=Lax
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:25 GMT
content-length: 153
X-Firefox-Spdy: h2

yukongold.casino/en/referral

66.212.229.231

302 Found

12 kB

URL HTTP/2
yukongold.casino/en/referral
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3043), with CRLF line terminators
Size
12 kB (12494 bytes)
Hash
77b69a4857645393e6791b5054b3675f
e1da602b3d8374c1d1e84452123f852def5b05c8
9317c83c8d0cd8f2ad016ff5a61595c3fac227346757db9e7261ada33689065a

HTTP Headers

GET /en/referral HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 302 Found
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
expires: -1
location: /en/
vary: User-Agent
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-d9df9eb8a4ac467d953c7e3dabded165' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
set-cookie: aff_id=TYPEIN_YG:; expires=Sun, 12-Mar-2023 00:00:00 GMT; path=/; secure; HttpOnly; SameSite=Lax
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:25 GMT
content-length: 12494
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee19f96e42a0eca99d00c8d91f977c35
3bf8dbf8b8ce6ea7adadf7bb92cae2f9502fbee9
6d8adcb1494bfe2ca73cd6b77eb57b2d08e07b05eb892fea98a1fde0bfb2ea12

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5813
Cache-Control: max-age=131058
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:26 GMT
Etag: "6396ef2b-1d7"
Expires: Wed, 14 Dec 2022 10:43:44 GMT
Last-Modified: Mon, 12 Dec 2022 09:06:51 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.164.56.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.56.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9KQqnEMpK4TVDtvdZT0yyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ka9oWEYCIKsxld++4MqJXxBIyN0=

yukongold.casino/en/

66.212.229.231

200 OK

11 kB

URL HTTP/2
yukongold.casino/en/
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3043), with CRLF line terminators
Size
11 kB (10800 bytes)
Hash
56062982514a47ba13b48dab32e8332b
27274f362abb54c98c84177fd9c604e15cb28864
b5ddf77ea4eac4f60942689a7902af40f2e4b49ba173ae2a2f0e060c36ccac74

HTTP Headers

GET /en/ HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: User-Agent,Accept-Encoding
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-f46e909c7bc84971acc9b0756b1c35b7' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 10800
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css

151.101.1.229

200 OK

7.1 kB

URL HTTP/2
cdn.jsdelivr.net/npm/font-awesome@4.7.0/css/font-awesome.min.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7055 bytes)
Hash
c68c38b6f53bfc3bee6b736afa488757
871df21572c702142a7c237259326013ec2df26a
e2100c6e7b6f0d358ac92d33b11278661c9a80e4c62c056677e24bc572d6da34

HTTP Headers

GET /npm/font-awesome@4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.7.0
x-jsd-version-type: version
etag: W/"7918-USx9eQM+MCipvmG1QM8aaHDIlvg"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 22:19:26 GMT
age: 7691883
x-served-by: cache-fra19165-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7055
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.min.js

151.101.1.229

200 OK

31 kB

URL HTTP/2
cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.min.js
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65451)
Size
31 kB (30948 bytes)
Hash
bbc8f6114a362db58499472704e99604
460b78a75ac45d4ad1c77c1d483b7e12439a3628
4f54c477fb39f3cc3997ce3ea3be84208836c160aab8be38339d699b5138486a

HTTP Headers

GET /npm/jquery@3.5.1/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.5.1
x-jsd-version-type: version
etag: W/"15d84-yOHIs4bcW3qRhMdjyI0Zo0brM0I"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 22:19:26 GMT
age: 4737506
x-served-by: cache-fra19153-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30948
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
7e73c2ce6fa5f4dec518645677164aea
5bb5f333c6b1242584110c5ce3292df7e7fce8d8
e6988a76d43a90a2256f01e020c4521370bb1b6cda28a255610b5e696e839cee

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 22:19:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "ABA5634A8EEBCF5F5427411F1623B4E308AF66D0"
Expires: Tue, 13 Dec 2022 09:00:00 GMT
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 487
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7789d7735de5b4fd-OSL

www.googletagmanager.com/gtag/js?id=G-JPEYNL1L5M

142.250.74.168

200 OK

78 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-JPEYNL1L5M
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21862)
Size
78 kB (77582 bytes)
Hash
e9505ccad4fea3e6b096216474473530
ef9d65a489b49b7eb79af070ec11751806649359
85d21bbfb46f16e66022ab87addf6247ba824febd64f6041cafdb6c1e8d374eb

HTTP Headers

GET /gtag/js?id=G-JPEYNL1L5M HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Dec 2022 22:19:26 GMT
expires: Mon, 12 Dec 2022 22:19:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77582
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

yukongold.casino/Scripts/headScripts.js

66.212.229.231

200 OK

2.0 kB

URL HTTP/2
yukongold.casino/Scripts/headScripts.js
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (372), with CRLF line terminators
Size
2.0 kB (2020 bytes)
Hash
912983866379df5725207c9bbdea3afc
d76a9a0dd1cdb46f2f8cf85763dd4386d975533c
b1b88bc320e084146c250f17eb242f1d196ca6d69c22391d6f84c1c421613678

HTTP Headers

GET /Scripts/headScripts.js HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yukongold.casino/en/
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/javascript
content-encoding: gzip
expires: Tue, 13 Dec 2022 22:18:48 GMT
last-modified: Fri, 03 Sep 2021 11:49:40 GMT
accept-ranges: bytes
etag: "1D7A0B9C712A200"
vary: User-Agent,Accept-Encoding
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-0547336600c246d8b88942dc14d03f29' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 2020
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

yukongold.casino/Scripts/bootstrap@4.6.0/popper.min.js

66.212.229.231

200 OK

9.2 kB

URL HTTP/2
yukongold.casino/Scripts/bootstrap@4.6.0/popper.min.js
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
ASCII text, with very long lines (21060)
Size
9.2 kB (9180 bytes)
Hash
e2ae3f6aed937489a20058dfc4cec938
41cc429166d52f355403005599734ffbe54b482b
d53bddc9ef55f38e5fe9a4ba0317aa68493cf5462c2448c94bb50eade3fcaad2

HTTP Headers

GET /Scripts/bootstrap@4.6.0/popper.min.js HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yukongold.casino/en/
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/javascript
content-encoding: gzip
expires: Tue, 13 Dec 2022 22:18:48 GMT
last-modified: Wed, 28 Apr 2021 15:34:20 GMT
accept-ranges: bytes
etag: "1D73C43F4E76600"
vary: User-Agent,Accept-Encoding
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-014b69fe6e4a4e55ab2a3e3c75b8626a' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 9180
X-Firefox-Spdy: h2

yukongold.casino/Scripts/bootstrap@4.6.0/bootstrap.min.js

66.212.229.231

200 OK

21 kB

URL HTTP/2
yukongold.casino/Scripts/bootstrap@4.6.0/bootstrap.min.js
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
ASCII text, with very long lines (63188)
Size
21 kB (21366 bytes)
Hash
228331b8e22a4bb92483d85f41757373
f63c781c305be805c8c3f91933388720b8e0a6f4
833ecef910046d0e2ae57b722703535d88a5ff386081a0d810d260e29786115e

HTTP Headers

GET /Scripts/bootstrap@4.6.0/bootstrap.min.js HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yukongold.casino/en/
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/javascript
content-encoding: gzip
expires: Tue, 13 Dec 2022 22:18:48 GMT
last-modified: Wed, 28 Apr 2021 15:34:20 GMT
accept-ranges: bytes
etag: "1D73C43F4E76600"
vary: User-Agent,Accept-Encoding
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-0bfd1de6d86048a68cdfd7869bd931d6' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 21366
X-Firefox-Spdy: h2

ocsp.usertrust.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
19ae296de59cc152ea9cd403d96208ee
cea2526df67387aea295a4c3eeac6b05c266607e
e460d765845e4bf263787920ed7ab611f96e20a69e0efee66a4961d12bc7c12c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 22:19:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 21:01:49 GMT
Expires: Sun, 18 Dec 2022 21:01:48 GMT
Etag: "cea2526df67387aea295a4c3eeac6b05c266607e"
Cache-Control: max-age=591409,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7789d774ad780afa-OSL

ocsp.usertrust.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
19ae296de59cc152ea9cd403d96208ee
cea2526df67387aea295a4c3eeac6b05c266607e
e460d765845e4bf263787920ed7ab611f96e20a69e0efee66a4961d12bc7c12c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 22:19:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 21:01:49 GMT
Expires: Sun, 18 Dec 2022 21:01:48 GMT
Etag: "cea2526df67387aea295a4c3eeac6b05c266607e"
Cache-Control: max-age=591409,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7789d774bc32b50b-OSL

yukongold.casino/bundles/js-yg_en?v=y1bU8KM5DaEKGET1NwdjcbKQfSXVqUv5ibN9_KTJh3w1

66.212.229.231

200 OK

57 kB

URL HTTP/2
yukongold.casino/bundles/js-yg_en?v=y1bU8KM5DaEKGET1NwdjcbKQfSXVqUv5ibN9_KTJh3w1
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
ASCII text, with very long lines (65311)
Size
57 kB (56703 bytes)
Hash
157428060927c87d1d74bf90b98f9229
4e6f32b3d66aee9cca309761cd24ab8c94c6ed66
78dd986a0672f8439c9e0aacb0c5c0864fed9f891e32757127a9c5bf4a5e34ec

HTTP Headers

GET /bundles/js-yg_en?v=y1bU8KM5DaEKGET1NwdjcbKQfSXVqUv5ibN9_KTJh3w1 HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yukongold.casino/en/
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public
content-type: application/javascript; charset=utf-8
content-encoding: gzip
expires: Tue, 12 Dec 2023 22:19:26 GMT
last-modified: Mon, 12 Dec 2022 22:19:26 GMT
vary: User-Agent,User-Agent,Accept-Encoding
x-frame-options: DENY
content-security-policy: default-src 'self' mailto:;     base-uri 'self';     script-src 'nonce-bb31e0b14aaf4e2faf61e9bba88cfcc2' 'strict-dynamic' 'self' *.zxxcdn.com *.casinorewards.com cdn.jsdelivr.net https://www.googletagmanager.com/gtm.js https://www.google-analytics.com/analytics.js ;     connect-src 'self' https://www.google-analytics.com https://stats.g.doubleclick.net;     frame-src 'self' mailto: *.gameassists.co.uk *.gameassists.dk *.gameassists.se *.gameassists.co.za *.valueactive.eu *.valueactive.dk  ;     style-src 'self' *.zxxcdn.com cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline';     font-src 'self' cdn.jsdelivr.net *.zxxcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.google-analytics.com;     img-src * data:;     object-src 'none';     frame-ancestors 'self';     media-src 'self' *.zxxcdn.com s3.amazonaws.com/casinorewards/;
strict-transport-security: max-age=15768000
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 56703
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/font-awesome@4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

151.101.1.229

200 OK

77 kB

URL HTTP/2
cdn.jsdelivr.net/npm/font-awesome@4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /npm/font-awesome@4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
x-jsd-version: 4.7.0
x-jsd-version-type: version
etag: W/"12d68-1vSMun0Hb7by/Wupk6dbncHsvww"
accept-ranges: bytes
date: Mon, 12 Dec 2022 22:19:26 GMT
age: 4225107
x-served-by: cache-fra-eddf8230046-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 77160
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webcdn/js/commonBundleCr/common.bundle-2.0.2.min.js

66.212.229.189

200 OK

83 kB

URL HTTP/2
cdn.zxxcdn.com/webcdn/js/commonBundleCr/common.bundle-2.0.2.min.js
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
Unicode text, UTF-8 text, with very long lines (65134), with no line terminators
Size
83 kB (83043 bytes)
Hash
a0415c1289f06b62200d0568b04c8e59
d1d687ad556784205c97cccda9f49ed1f51d8f7f
02bf8650688ee26932a121a70f40a141872d4acf607ba1503566f99ebd2cd3ef

HTTP Headers

GET /webcdn/js/commonBundleCr/common.bundle-2.0.2.min.js HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 May 2022 00:12:25 GMT
accept-ranges: bytes
etag: "80bab2c7396ed81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 83043
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webcdn/js/cookieConsentCr/cookieConsentCr-2.0.1.min.js

66.212.229.189

200 OK

7.2 kB

URL HTTP/2
cdn.zxxcdn.com/webcdn/js/cookieConsentCr/cookieConsentCr-2.0.1.min.js
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
Unicode text, UTF-8 text, with very long lines (15046), with no line terminators
Size
7.2 kB (7195 bytes)
Hash
a73ee662805e149e6a992456808140e3
af2b2751d6238f6a180ebb64b044df5606b5a7c8
958b1399f5db9e099b9184767d25f9770be34b39af57fb242adc1c3fd89579d4

HTTP Headers

GET /webcdn/js/cookieConsentCr/cookieConsentCr-2.0.1.min.js HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 25 May 2021 03:15:40 GMT
accept-ranges: bytes
etag: "056473d1451d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 7195
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/fonts/Poppins/latin-ext/subset-Poppins-Regular.woff

66.212.229.189

200 OK

20 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/fonts/Poppins/latin-ext/subset-Poppins-Regular.woff
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
Web Open Font Format, TrueType, length 19548, version 0.0\012- data
Size
20 kB (19548 bytes)
Hash
a9dcd98144c193d66a153dad380487b4
3e1f4bc45db5a129bc912964dc19cc5ff7abbc34
315d21c0a9901faae8ef5d4153a54e11d776b53ce74fe515c36bb367f2f4ac3c

HTTP Headers

GET /webCDN/fonts/Poppins/latin-ext/subset-Poppins-Regular.woff HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: must-revalidate, public, max-age=604800
content-type: font/x-woff
last-modified: Thu, 24 Sep 2020 23:36:43 GMT
accept-ranges: bytes
etag: "b0a61c8fcb92d61:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 19548
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/fonts/Rubik/latin-ext/subset-Rubik-Bold.woff

66.212.229.189

200 OK

43 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/fonts/Rubik/latin-ext/subset-Rubik-Bold.woff
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
Web Open Font Format, TrueType, length 42872, version 0.0\012- data
Size
43 kB (42872 bytes)
Hash
af71b0eaf78d24b6afd50a081722a338
3a3fb51ead36f9860a84b4178d3414abd4a5c122
8e2a6e6194cca2844bd6dca933d504663c4dcfa840b744c8b783f2f6525d9cb2

HTTP Headers

GET /webCDN/fonts/Rubik/latin-ext/subset-Rubik-Bold.woff HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: must-revalidate, public, max-age=604800
content-type: font/x-woff
last-modified: Thu, 21 Oct 2021 01:01:46 GMT
accept-ranges: bytes
etag: "c139c83817c6d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 42872
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/fonts/Poppins/latin-ext/subset-Poppins-Bold.woff

66.212.229.189

200 OK

19 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/fonts/Poppins/latin-ext/subset-Poppins-Bold.woff
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
Web Open Font Format, TrueType, length 19280, version 0.0\012- data
Size
19 kB (19280 bytes)
Hash
f34c84db78a102fc861efa7c72e9bf5d
28b39dd7823e7a17836999404e6a419a36e5f6d1
c60d37d0be01741f33045fe760e1188dfc4de9be505fb85c2a495e243629e634

HTTP Headers

GET /webCDN/fonts/Poppins/latin-ext/subset-Poppins-Bold.woff HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: must-revalidate, public, max-age=604800
content-type: font/x-woff
last-modified: Thu, 24 Sep 2020 23:36:34 GMT
accept-ranges: bytes
etag: "24f73f8acb92d61:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
date: Mon, 12 Dec 2022 22:19:26 GMT
content-length: 19280
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/symbol-star.fs8.png

66.212.229.189

200 OK

4.7 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/symbol-star.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4716 bytes)
Hash
328e4a7f094fbf6e1f49480c5162b29e
0df3c10eb8dfa810aec2351498d8506dbb9b7149
2fc1d9c0ce361aa1c35fea7ce7f6a992c23ff493b33ea6b5df6605101e9fa22b

HTTP Headers

GET /webCDN/img/YG/new/symbol-star.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:55 GMT
accept-ranges: bytes
etag: "803e47d22dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4716
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/symbol-heart.fs8.png

66.212.229.189

200 OK

4.7 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/symbol-heart.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4706 bytes)
Hash
c05af4d92e27ee4abceddea882347829
009dce88ed621c0b6fdba0d7cb0e4036061cf08a
c62b51ac5360cc99a9bbc52842ede818ea2908a83268d07f3a3e4b3cf10c40b4

HTTP Headers

GET /webCDN/img/YG/new/symbol-heart.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:54 GMT
accept-ranges: bytes
etag: "a28fbad12dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4706
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/symbol-flame.fs8.png

66.212.229.189

200 OK

4.8 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/symbol-flame.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size
4.8 kB (4784 bytes)
Hash
ec74a25302e15cde51975c5491965a92
9f757e5b0d81de53c472e2cdea97ce31de463915
8002a6988f278f3ad448567efb1518e9deebaa2ab9f36c204a964bcc109375a8

HTTP Headers

GET /webCDN/img/YG/new/symbol-flame.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:53 GMT
accept-ranges: bytes
etag: "a44530d12dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4784
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/symbol-dice.fs8.png

66.212.229.189

200 OK

4.8 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/symbol-dice.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size
4.8 kB (4756 bytes)
Hash
69b2b21b7b7d794f2e499cebc3287afd
775aaea2f2f26613076fe573ea978eea55a2a3d6
7550172b58805c20af5740b1462dada4aa1c67557a2ad5b8891b9aba8a40d424

HTTP Headers

GET /webCDN/img/YG/new/symbol-dice.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:53 GMT
accept-ranges: bytes
etag: "34e32dd12dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4756
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-3.fs8.png

66.212.229.189

200 OK

6.1 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-3.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 151 x 236, 8-bit colormap, non-interlaced\012- data
Size
6.1 kB (6100 bytes)
Hash
cd72b06dbd3c6e01f87242305c335b94
6d9e56cfd10138a5e48b85b00378d2f1003b2030
363263db38ad8931683e2f2d21bb409bea3763ef9443e5bfa7635a23beb7f3db

HTTP Headers

GET /webCDN/img/YG/new/coins-bg-3.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:45 GMT
accept-ranges: bytes
etag: "cfe523cc2dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 6100
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-2.fs8.png

66.212.229.189

200 OK

7.9 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-2.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 172 x 278, 8-bit colormap, non-interlaced\012- data
Size
7.9 kB (7870 bytes)
Hash
09766f2976643ebcfe3780c87ed1b7a5
17b12ef78fc591e66be0b39212cc994afdc40b3e
f0e5bf7f0b0c42446df61d6f10c3a19ba379e76b7ee5d440319e49cd31c3345a

HTTP Headers

GET /webCDN/img/YG/new/coins-bg-2.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:44 GMT
accept-ranges: bytes
etag: "e7832cc2dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 7870
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Mon, 12 Dec 2022 23:43:46 GMT
Date: Mon, 12 Dec 2022 22:19:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Mon, 12 Dec 2022 23:43:46 GMT
Date: Mon, 12 Dec 2022 22:19:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Mon, 12 Dec 2022 23:43:46 GMT
Date: Mon, 12 Dec 2022 22:19:27 GMT
Connection: keep-alive

cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-1.fs8.png

66.212.229.189

200 OK

8.0 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-1.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 142 x 269, 8-bit colormap, non-interlaced\012- data
Size
8.0 kB (7969 bytes)
Hash
9caeef1a0830e7e7a887ce17db3da4f5
b470df18ae27d0582340d36c02501904681a4376
2cd795f88c17813af992e41fb4be872f7f0e6459364cde54fc2c110e5fd44ec0

HTTP Headers

GET /webCDN/img/YG/new/coins-bg-1.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:43 GMT
accept-ranges: bytes
etag: "2ad575cb2dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 7969
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/symbol-person.fs8.png

66.212.229.189

200 OK

4.7 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/symbol-person.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size
4.7 kB (4651 bytes)
Hash
966214df6a4c855312818750b1b085d0
695f1668611ebd8f2e5b8e1e3c23715b157f0dba
04dfd34abf2ad89e896fbac11a6f5c92ec656751302458ebd40ab74a65e7d76c

HTTP Headers

GET /webCDN/img/YG/new/symbol-person.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:55 GMT
accept-ranges: bytes
etag: "20dc44d22dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4651
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/gold-frame-spark-top.fs8.png

66.212.229.189

200 OK

10 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/gold-frame-spark-top.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 444 x 112, 8-bit colormap, non-interlaced\012- data
Size
10 kB (10548 bytes)
Hash
f91ffac5dbb2b4209b00d5ffb3673767
585fe90ad013193df7d89a1d15095fd458fe3764
d34a4d704d4d4950df8dea6012ccfab4d588941ad197bc916c4108a3eca7a5c0

HTTP Headers

GET /webCDN/img/YG/new/gold-frame-spark-top.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Fri, 15 Oct 2021 05:11:12 GMT
accept-ranges: bytes
etag: "4fc5b81283c1d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 10548
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/symbol-money.fs8.png

66.212.229.189

200 OK

4.8 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/symbol-money.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 102 x 102, 8-bit colormap, non-interlaced\012- data
Size
4.8 kB (4765 bytes)
Hash
8e3f9368e29442dc2d7743c6b610d98e
6660ac1210b45b98a7aeca8322314ee9c6642eb2
58cf3d1c4b3dfe2c263ebfe08823d7817a9492b92258c6ac419e448f7b580057

HTTP Headers

GET /webCDN/img/YG/new/symbol-money.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:54 GMT
accept-ranges: bytes
etag: "a28fbad12dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4765
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/gold-frame-spark-bottom.fs8.png

66.212.229.189

200 OK

8.1 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/gold-frame-spark-bottom.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 360 x 90, 8-bit colormap, non-interlaced\012- data
Size
8.1 kB (8091 bytes)
Hash
ec24f4061fa50d539ec2fd931c3b13b1
e7bce7bda8415c19e78b07ee338e10de885496a1
c8e1e5d6da7ad9c02487cc801249b7b37ca79ab2227f367ab4006ea7307b5b33

HTTP Headers

GET /webCDN/img/YG/new/gold-frame-spark-bottom.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Fri, 15 Oct 2021 05:11:13 GMT
accept-ranges: bytes
etag: "ab3ac1383c1d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 8091
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: e68bff96-83e0-471c-95ed-d9773d2354a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82_MHywoAMFe_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6395052d-23c53ea949b7266822b23787;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:16:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixT5PO8EbYNrH-zZ4-HgHnEhAFKj0FS17a40ksn979_wqT8WandGiw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 06:37:54 GMT
age: 56493
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/section-divider.fs8.png

66.212.229.189

200 OK

143 B

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/section-divider.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 12 x 12, 4-bit colormap, non-interlaced\012- data
Size
143 B (143 bytes)
Hash
a7ce389efc0fa63c9db89cdc953b6ba8
88dfa7e5d9137ba843b13013a099d9d7f4b0214e
f45bf41a671f869fa3d6a0e97dad26236e767e4d91af8e1cf0c2895a777dd130

HTTP Headers

GET /webCDN/img/YG/new/section-divider.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:52 GMT
accept-ranges: bytes
etag: "1996a3d02dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 143
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6311 bytes)
Hash
2020df3404a4b7c3e142af4a1330b848
2fe69b52fe03128e86550bf08474ecac82682384
37a52c158d5cfdf3589e19163cf446c02ce1466f444656080b02da82d2bcefae

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6311
x-amzn-requestid: 46ccaee0-bde8-4be6-9dc8-46e3ae356dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUYH10oAMF8Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc1b-2440251f06cb950a57489555;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fm7OyNybYyYlqhVK8-kNuU1hXUj2dlXJ6NY96wyg8QFYL8RJTSTiaQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 21:38:45 GMT
age: 2442
etag: "2fe69b52fe03128e86550bf08474ecac82682384"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8841 bytes)
Hash
9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wk9BI6v5Q6COMKhEiVyGW07a43hO-gddJZdFGb-Miu4LuOa7azKqyQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 22:36:02 GMT
age: 85405
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5619 bytes)
Hash
9f8d3e3c9e5d2ed74c3894b4825fcc2f
6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da
9e44f93e65206ae7095cf9177296f4f528f1c2597cffa4853b7d6dcabf032796

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5619
x-amzn-requestid: df7189d2-5cad-43a2-9511-20c5de53f710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAEMPFCSIAMF4uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d81-729683c606fd6abc5bc70534;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RGXTgoiaug7mLXDpXTDH6KeUbCEV8ZR9tuJRmG2LU_Mqr_hdLnzpBA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 21:59:55 GMT
age: 1172
etag: "6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4720 bytes)
Hash
38876d760ef06c8471468c474c1e28a7
d43cd03d5eb3e7618b6fb70c935010c2ac92ad32
a0747f29eb6084eef42d3c247594973b02c619c7ec56b6137e24b6d0362557a0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4720
x-amzn-requestid: dd990fe1-8447-403e-b276-40889af5baa0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENuF6SoAMF7oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d8a-59b5a8f92ef6111e64e16079;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aBIYRPXHfGaxW34GlzOu3sbsi48WOjQu-nR0zemx1ewKLCvavKyrng==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 22:16:51 GMT
age: 156
etag: "d43cd03d5eb3e7618b6fb70c935010c2ac92ad32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6438 bytes)
Hash
75dd1ecae61b991cd21929deb9244aac
4f14c9f7b36dfa356877251f1e6a0f5936286c4b
3435eda8961bb9954fcf5fd7c957ce58fd7aa4bb9e00525b8f42756adcf341e7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6438
x-amzn-requestid: 517b1627-9789-48e8-b5df-106fee878820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENaGN6IAMFoUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d88-28cbd126745e8ab15d937936;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vPiqEPzdYtVSdb8l3Gz5f1X2tMjYuPdtLfxgiicjQRygN6SU5CrWMg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 21:59:55 GMT
age: 1172
etag: "4f14c9f7b36dfa356877251f1e6a0f5936286c4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/cta-arrows.fs8.png

66.212.229.189

200 OK

2.6 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/cta-arrows.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 70 x 106, 8-bit colormap, non-interlaced\012- data
Size
2.6 kB (2564 bytes)
Hash
b757f3953f963c99fac333fdaf5975ea
bfd5e2789da866d137113d4d1016641b30330c3a
5813840d0d2885adc4ae18725d5648c133badbe0cc76221e87de1aaa84a2566a

HTTP Headers

GET /webCDN/img/YG/new/cta-arrows.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Wed, 13 Oct 2021 03:16:48 GMT
accept-ranges: bytes
etag: "3a819bc2e0bfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 2564
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/hero-coins-bg.fs8.png

66.212.229.189

200 OK

155 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/hero-coins-bg.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 2057 x 249, 8-bit colormap, non-interlaced\012- data
Size
155 kB (154671 bytes)
Hash
a3a9a9316e184961027150eec8576cd4
4304badc6a73c6e01efbbd632cb5e5317ff51ffe
ce0624d17d89298184154b9abe72c4b04f91816d8d61ef215a7efdfec6ce4e3b

HTTP Headers

GET /webCDN/img/YG/new/hero-coins-bg.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Sun, 14 Nov 2021 23:23:58 GMT
accept-ranges: bytes
etag: "358d44b3aed9d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 154671
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-4.fs8.png

66.212.229.189

200 OK

7.6 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-4.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 248 x 150, 8-bit colormap, non-interlaced\012- data
Size
7.6 kB (7587 bytes)
Hash
54342b9d15de3d303a726792e207b2ed
af5828ecb7f741877fe2c08567d1c45701460a66
43262ad14b9d42ec98751351b7d6dbeedb86d041ca4645c0f6f690de63c712d9

HTTP Headers

GET /webCDN/img/YG/new/coins-bg-4.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:45 GMT
accept-ranges: bytes
etag: "48d08ccc2dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 7587
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-5.fs8.png

66.212.229.189

200 OK

7.5 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/coins-bg-5.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 252 x 201, 8-bit colormap, non-interlaced\012- data
Size
7.5 kB (7492 bytes)
Hash
8986b06e8979749a97142740b376d0da
b880e354b811289840088a8a2cb6509f48b52323
6843c765c4840b4fba33650ec77f25c829559b4094c883f30691826eed3ab28a

HTTP Headers

GET /webCDN/img/YG/new/coins-bg-5.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 12 Oct 2021 05:55:45 GMT
accept-ranges: bytes
etag: "aa94b0cc2dbfd71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 7492
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/light-on.fs8.png

66.212.229.189

200 OK

2.5 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/light-on.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 54 x 54, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2470 bytes)
Hash
c1fdd05e3bfcdd8246543a86a42072b5
57b5823e0e8da1b10077e1a772bc969562699d48
cc5f65527ba2858f8c91d076246a1c9c508bae479b4b5f4054a47b37149af95e

HTTP Headers

GET /webCDN/img/YG/new/light-on.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 09 Nov 2021 03:51:34 GMT
accept-ranges: bytes
etag: "c0749171dd5d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 2470
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/light-off.fs8.png

66.212.229.189

200 OK

681 B

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/light-off.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 54 x 54, 8-bit colormap, non-interlaced\012- data
Size
681 B (681 bytes)
Hash
debdaee3c94012d72ffc20a3001607c9
a38148abb7ad5d77f4da213a7444ec3f469ac685
fbc1b782b35fd6c803aa8c5ce37d5497fe28482492a593d67a02b0e0f84466fb

HTTP Headers

GET /webCDN/img/YG/new/light-off.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 09 Nov 2021 03:51:34 GMT
accept-ranges: bytes
etag: "cb12e8161dd5d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 681
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/shared/spacer.gif

66.212.229.189

200 OK

43 B

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/shared/spacer.gif
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /webCDN/img/shared/spacer.gif HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/gif
last-modified: Mon, 18 Jun 2012 08:15:06 GMT
accept-ranges: bytes
etag: "021f3772a4dcd1:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 43
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--neteller.jpg

66.212.229.189

200 OK

3.1 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--neteller.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
3.1 kB (3134 bytes)
Hash
04a70de3ad59f466908db02835185e67
2134f09e9e24a9a1376ae6e4b8a3c4f2c41d0da4
ebc0d87a75fdcfcdaff44977702cf04a1019b7bfd061b23cfc8f6504feaebb68

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--neteller.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Fri, 08 Nov 2019 00:08:17 GMT
accept-ranges: bytes
etag: "e7996b9fc895d51:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 3134
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--bank-transfer.jpg

66.212.229.189

200 OK

2.8 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--bank-transfer.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
2.8 kB (2826 bytes)
Hash
47ee9bbda0428061961b154b929d2282
b1a23d5dc2f05441aac9d605d06a85d4af572dba
7e53c6317251031f7ae426485918d605913e5a78322cebd5ccff96b392b5c485

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--bank-transfer.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 11 Nov 2019 00:01:01 GMT
accept-ranges: bytes
etag: "2d25e1a2398d51:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 2826
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--paysafecard.jpg

66.212.229.189

200 OK

5.2 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--paysafecard.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
5.2 kB (5227 bytes)
Hash
c02ac1338b145e37fdeefd3479413704
ae71a8f424d52a8b3558e090af5eef6f0dda9573
8ecfc111f14c7d8a13a3490a9ce06dabe88928833659f7324e6d0cf2ca1dd661

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--paysafecard.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 11 Nov 2019 00:00:58 GMT
accept-ranges: bytes
etag: "7bb1c4182398d51:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 5227
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--skrill.jpg

66.212.229.189

200 OK

3.5 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--skrill.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
3.5 kB (3472 bytes)
Hash
ccce3488bf825dcecf3d03a30bd3151a
4391e11981bd51ea38a5fc3bf3b9fba17f86771d
a1594feaa17e5798a1166c580cb9f2db4e4a2c0a12ad6a422a171abc1e907cb8

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--skrill.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Fri, 08 Nov 2019 00:08:17 GMT
accept-ranges: bytes
etag: "a9e439fc895d51:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 3472
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--astropay.jpg

66.212.229.189

200 OK

4.1 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--astropay.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
4.1 kB (4119 bytes)
Hash
cafac6424e88054f7f4436a5d8e0acce
000b804364b127448794b77b7570146c953c2b1e
ba59fe90203f6209bd1664e7fb08c3d71f18588f6ab869e95fa91dd036661fa9

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--astropay.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Tue, 15 Jun 2021 01:27:36 GMT
accept-ranges: bytes
etag: "54c6c9f8561d71:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 4119
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--interac-online.jpg

66.212.229.189

200 OK

3.0 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--interac-online.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
3.0 kB (3017 bytes)
Hash
274bf38f3e4f93c3231b08c440e84451
589c37cce0b438d94097e0e26f07cc0f9b966aaf
0d6c5026ab2792471ae6349f9577c6fad8d9ed4b8844d4a627256a6f45b8bb2b

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--interac-online.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 11 Nov 2019 00:01:09 GMT
accept-ranges: bytes
etag: "91a261f2398d51:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 3017
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--interac-etransfer.jpg

66.212.229.189

200 OK

3.6 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/banking/banking-logo--interac-etransfer.jpg
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
JPEG image data, baseline, precision 8, 125x30, components 3\012- data
Size
3.6 kB (3585 bytes)
Hash
efc095ae7ccfec977c3ba2b9d218e8e5
27100660d7d4840a884061146661833d77e10dc5
588640f887b45cb5b4e6509db7de308d72caaec5472ece5c6c652200a506861b

HTTP Headers

GET /webCDN/img/Shared/banking/banking-logo--interac-etransfer.jpg HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 11 Nov 2019 00:01:10 GMT
accept-ranges: bytes
etag: "6a53a202398d51:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 3585
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/Shared/footer-icons.fs8.png

66.212.229.189

200 OK

35 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/Shared/footer-icons.fs8.png
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 4000 x 135, 8-bit colormap, non-interlaced\012- data
Size
35 kB (35152 bytes)
Hash
89c3ea466001cbd1d05fc3d60520573d
dfaba339da714671e5b92dafed063fd13792594e
64becdd1a241317705f5a2607a14563e587ef7782535ba3f96111606b16c3f8a

HTTP Headers

GET /webCDN/img/Shared/footer-icons.fs8.png HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Wed, 27 Apr 2022 01:01:42 GMT
accept-ranges: bytes
etag: "466cea5bd259d81:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 35152
X-Firefox-Spdy: h2

cdn.zxxcdn.com/webCDN/img/YG/new/hero-video-desktop.mp4

66.212.229.189

206 Partial Content

40 kB

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/hero-video-desktop.mp4
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type
data
Size
40 kB (39902 bytes)
Hash
46d46acd7ac16028814b8f69e186974b
732f50151bb485b42ee8253fb6bf4a6568e61478
aa54cfd75ed59f86ae88cc19b589d6b660de21f7da92095e1296afe6375d630d

HTTP Headers

GET /webCDN/img/YG/new/hero-video-desktop.mp4 HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1376256-
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
cache-control: no-cache
content-type: video/mp4
last-modified: Sun, 13 Feb 2022 23:17:38 GMT
accept-ranges: bytes
etag: "bbdd40e42f21d81:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 39902
content-range: bytes 1376256-1416157/1416158
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.239.32.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.32.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 12 Dec 2022 20:41:08 GMT
expires: Mon, 12 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 5900
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=191062226&t=pageview&_s=1&dl=https%3A%2F%2Fyukongold.casino%2Fen%2F&ul=en-us&de=UTF-8&dt=Yukon%20Gold%20Casino%E2%84%A2%20%7C%20Official%20Website&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABCAAAACAAI~&jid=1167270328&gjid=1680603452&cid=873944081.1670883566&tid=UA-85618867-1&_gid=1510683959.1670883566&_r=1&_slc=1&cd9=&cd34=&cd83=%2F59jcsOY9rqR68HFI5%2F%2FPCmBUTlKRonZiP77cn%2B6aFM%3D&cd84=&cd85=TYPEIN_YG%3A&cd89=wizstandalone&cd90=typein_yg&cd91=wizstandalone&cd124=catch_yg&cd125=&cd126=&cd127=&cd128=&cd129=&cd130=&z=1523394381

216.239.32.178

200 OK

4 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=191062226&t=pageview&_s=1&dl=https%3A%2F%2Fyukongold.casino%2Fen%2F&ul=en-us&de=UTF-8&dt=Yukon%20Gold%20Casino%E2%84%A2%20%7C%20Official%20Website&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABCAAAACAAI~&jid=1167270328&gjid=1680603452&cid=873944081.1670883566&tid=UA-85618867-1&_gid=1510683959.1670883566&_r=1&_slc=1&cd9=&cd34=&cd83=%2F59jcsOY9rqR68HFI5%2F%2FPCmBUTlKRonZiP77cn%2B6aFM%3D&cd84=&cd85=TYPEIN_YG%3A&cd89=wizstandalone&cd90=typein_yg&cd91=wizstandalone&cd124=catch_yg&cd125=&cd126=&cd127=&cd128=&cd129=&cd130=&z=1523394381
IP
216.239.32.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8

HTTP Headers

POST /j/collect?v=1&_v=j98&a=191062226&t=pageview&_s=1&dl=https%3A%2F%2Fyukongold.casino%2Fen%2F&ul=en-us&de=UTF-8&dt=Yukon%20Gold%20Casino%E2%84%A2%20%7C%20Official%20Website&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABCAAAACAAI~&jid=1167270328&gjid=1680603452&cid=873944081.1670883566&tid=UA-85618867-1&_gid=1510683959.1670883566&_r=1&_slc=1&cd9=&cd34=&cd83=%2F59jcsOY9rqR68HFI5%2F%2FPCmBUTlKRonZiP77cn%2B6aFM%3D&cd84=&cd85=TYPEIN_YG%3A&cd89=wizstandalone&cd90=typein_yg&cd91=wizstandalone&cd124=catch_yg&cd125=&cd126=&cd127=&cd128=&cd129=&cd130=&z=1523394381 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://yukongold.casino
date: Mon, 12 Dec 2022 22:19:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

yukongold.casino/Content/themes/yg/shared/images/favicon.png

66.212.229.231

200 OK

1.7 kB

URL HTTP/2
yukongold.casino/Content/themes/yg/shared/images/favicon.png
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1684 bytes)
Hash
99a7d5cc4908000511b7d29deb445bb4
cf20c2ca7eba6dcbfb374c1de1faf84e0a4b94d2
04b9c52bad92b8d790811af498fbf172bb54ea9b7d025cc3e52073ac7257d089

HTTP Headers

GET /Content/themes/yg/shared/images/favicon.png HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yukongold.casino/en/
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 18 Aug 2020 12:24:32 GMT
accept-ranges: bytes
etag: "0c09d865a75d61:0"
vary: User-Agent
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=15768000
content-security-policy: default-src 'self' 'unsafe-inline';
date: Mon, 12 Dec 2022 22:19:28 GMT
content-length: 1684
X-Firefox-Spdy: h2

yukongold.casino/Content/themes/yg/shared/images/favicon.ico

66.212.229.231

200 OK

2.2 kB

URL HTTP/2
yukongold.casino/Content/themes/yg/shared/images/favicon.ico
IP
66.212.229.231:0
ASN
#14537 CL-1379-14537

File type
MS Windows icon resource - 1 icon, 32x32\012- data
Size
2.2 kB (2238 bytes)
Hash
b22266976bc4c922f02e0482fab760cd
8f847f9eb419dc12e66a19dc9e2c6b34c852b618
f36af4d7dc733947c2a2d3ab464a45bc56d345cc2a6c8179f5102ac33fdcc253

HTTP Headers

GET /Content/themes/yg/shared/images/favicon.ico HTTP/1.1
Host: yukongold.casino
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yukongold.casino/en/
Connection: keep-alive
Cookie: cookieconsent_value=hgtj13ppbkimigxjgxp33niz; aff_id=TYPEIN_YG:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
last-modified: Tue, 18 Aug 2020 12:24:32 GMT
accept-ranges: bytes
etag: "0c09d865a75d61:0"
vary: User-Agent
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=15768000
content-security-policy: default-src 'self' 'unsafe-inline';
date: Mon, 12 Dec 2022 22:19:28 GMT
content-length: 2238
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c797045ce2453615ff57e1749364ccd
30192a4c14e94cdb789832ead604861432296e2e
96867aa0b5bea168df793e580b71dcf005c1afb5786780230b8aadfc4bf6648c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&gjid=1680603452&_gid=1510683959.1670883566&_u=IEBAAEAACAAAACAAI~&z=2044442659

64.233.164.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&gjid=1680603452&_gid=1510683959.1670883566&_u=IEBAAEAACAAAACAAI~&z=2044442659
IP
64.233.164.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&gjid=1680603452&_gid=1510683959.1670883566&_u=IEBAAEAACAAAACAAI~&z=2044442659 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://yukongold.casino
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://yukongold.casino
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Dec 2022 22:19:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

api.zxxcdn.com/ApiMgs.svc/GetProgressivesByCultureName/?cultureName=EN_USD&callback=progressiveJackpotResult_EN_USD&_=1670883565371

66.212.229.188

200 OK

947 B

URL HTTP/2
api.zxxcdn.com/ApiMgs.svc/GetProgressivesByCultureName/?cultureName=EN_USD&callback=progressiveJackpotResult_EN_USD&_=1670883565371
IP
66.212.229.188:0
ASN
#14537 CL-1379-14537

File type
Unicode text, UTF-8 text, with very long lines (2943), with no line terminators
Size
947 B (947 bytes)
Hash
63497e2c3b4aff8741f1bf24728d2a98
8ccbaf2fce2fea758188f6f422c3c2eae6887b52
a303696556c9fd50fa259d674e0d84a773b904ff6fa478b1cfca1d029c0a7157

HTTP Headers

GET /ApiMgs.svc/GetProgressivesByCultureName/?cultureName=EN_USD&callback=progressiveJackpotResult_EN_USD&_=1670883565371 HTTP/1.1
Host: api.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/x-javascript
content-encoding: gzip
expires: -1
vary: Accept-Encoding
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
date: Mon, 12 Dec 2022 22:19:28 GMT
content-length: 947
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c797045ce2453615ff57e1749364ccd
30192a4c14e94cdb789832ead604861432296e2e
96867aa0b5bea168df793e580b71dcf005c1afb5786780230b8aadfc4bf6648c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b14162cab0131ca3a7e7c1c6d72c77f3
87a1ae365bc2a459c323770eb9632d28649b2b1b
759526e8274b5fa52e1a46496e286cc04466a27c41a8f20de6aee1b756feb87c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&_u=IEBAAEAACAAAACAAI~&z=1958027655

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&_u=IEBAAEAACAAAACAAI~&z=1958027655
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&_u=IEBAAEAACAAAACAAI~&z=1958027655 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 22:19:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&_u=IEBAAEAACAAAACAAI~&z=1958027655

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&_u=IEBAAEAACAAAACAAI~&z=1958027655
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-85618867-1&cid=873944081.1670883566&jid=1167270328&_u=IEBAAEAACAAAACAAI~&z=1958027655 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 22:19:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a41c1c2a6aad29835a33369555bbe359
4e104748d3d8c3237d58e03b6f7493fcc9182142
a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 22:19:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.zxxcdn.com/webCDN/img/YG/new/hero-video-desktop.mp4

66.212.229.189

206 Partial Content

0 B

URL HTTP/2
cdn.zxxcdn.com/webCDN/img/YG/new/hero-video-desktop.mp4
IP
66.212.229.189:0
ASN
#14537 CL-1379-14537

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /webCDN/img/YG/new/hero-video-desktop.mp4 HTTP/1.1
Host: cdn.zxxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://yukongold.casino/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
cache-control: no-cache
content-type: video/mp4
last-modified: Sun, 13 Feb 2022 23:17:38 GMT
accept-ranges: bytes
etag: "bbdd40e42f21d81:0"
server: Microsoft-IIS/10.0
x-nid: W01
accept-ch: Sec-CH-UA-Full-Version
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
x-content-type-options: nosniff
date: Mon, 12 Dec 2022 22:19:27 GMT
content-length: 1416158
content-range: bytes 0-1416157/1416158
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP