| gasitones-cherent.icu/2a0bc1ed-5a58-4a68-bc51-c556847fb00f/2 | 18.184.38.55 | 302 | 0 B |
URL HTTP/1.1gasitones-cherent.icu/2a0bc1ed-5a58-4a68-bc51-c556847fb00f/2 IP18.184.38.55:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2a0bc1ed-5a58-4a68-bc51-c556847fb00f/2 HTTP/1.1
Host: gasitones-cherent.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Wed, 16 Nov 2022 07:17:38 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://dereferer.me/?https%3A//www.google.com/url%3Fq%3Dhttps%3A//casinoreviewers.com/dk/bonus/%26source%3Dgmail%26ust%3D1668610113123000%26usg%3DAOvVaw1hOix7TyX4l-1h2UO_VBp9
Pragma: no-cache
Set-Cookie: 2a0bc1ed-5a58-4a68-bc51-c556847fb00f-v4=K9imPEV0JjDdU9du_NK4ImG9FZNEBMRFXXAJkfULfus; Max-Age=86400; Expires=Thu, 17-Nov-2022 07:17:38 GMT; Domain=gasitones-cherent.icu; Path=/; HttpOnly
cc-v4=1GZccpBBTWI9VZdgEu4ft7uovqJzFu%2F4wxzu%2Ba36bSuMTBR09NNbB2%2Fj7Gr6EtxQPQt1vfp2b2o%2B0jHrbxXDo9QN%2B6bM0GVN6NMtHETrL0Zm%2F2t89RFPl9sMXkgTE4Gq%2FczJNbVRY1fF2V8jbLjNXg%3D%3D; Max-Age=31536000; Expires=Thu, 16-Nov-2023 07:17:38 GMT; Domain=gasitones-cherent.icu; Path=/; HttpOnly
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7786cd9bd97e024b3a1d16215defaad2 786ddbb74b0b6bd9270622dbe0258d6caee407c1 9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6005
Expires: Wed, 16 Nov 2022 08:57:43 GMT
Date: Wed, 16 Nov 2022 07:17:38 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash4fe5a11c3ca8a150aad830b739f24b58 898b730b1a66dd49c6f018333ba828410f63f347 2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 405
Cache-Control: max-age=98414
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:38 GMT
Etag: "63736a6b-1d7"
Expires: Thu, 17 Nov 2022 10:37:52 GMT
Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4736bac84ca28f2b1e961159fb4ea098 1319612979f53896fcfeacd4215c2715d4951e4c 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 06:44:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1973
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc88bc06741ab9fb81c2544acfcc34aa2 362cab19cff5aba27f472cc00071d5dfa38192e4 314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5421
Expires: Wed, 16 Nov 2022 08:47:59 GMT
Date: Wed, 16 Nov 2022 07:17:38 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: y/Ge1LtUKxir8DcMp3idUDWjQQjRz9RcjtvbadHNWOtJNTH72fzIYMgcBGHII9h2PxGZmOnPGzw=
x-amz-request-id: 1J7DAX86J55K89SE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 06:51:56 GMT
age: 1542
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 07:17:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash5e896f4eb9ce5d640294f3966f963d0d c618116889c1488f6758140a108d3963f95a0739 9dff24dd4b1a1ada9078e2b51e01fedc535647f8938d2f274e0d120dcb973a31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9DFF24DD4B1A1ADA9078E2B51E01FEDC535647F8938D2F274E0D120DCB973A31"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2893
Expires: Wed, 16 Nov 2022 08:05:51 GMT
Date: Wed, 16 Nov 2022 07:17:38 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 06:44:49 GMT
cache-control: public,max-age=3600
age: 1969
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| dereferer.me/static/images/backgrounds/bg16.jpg | 45.15.23.147 | 200 OK | 129 kB |
URL HTTP/2dereferer.me/static/images/backgrounds/bg16.jpg IP45.15.23.147:0 ASN#203523 Virtono Networks SRL
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 1280x800, components 3\012- data Size129 kB (129364 bytes) Hashd48e3481ba5903c884c1cf3c3cdedcd4 0d5b65854526cdf42812721ab441414fac6a4bec 01259d223bbfdd1e71ab96440c7d4a485b8489c3e237c8d9d0ae7878e384387b
GET /static/images/backgrounds/bg16.jpg HTTP/1.1
Host: dereferer.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:38 GMT
content-type: image/jpeg
content-length: 129364
last-modified: Thu, 06 May 2021 20:45:14 GMT
server: Dereferer.me
x-powered-by: Layer7 Cache
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| dereferer.me/static/images/favicon.ico | 45.15.23.147 | 200 OK | 1.2 kB |
URL HTTP/2dereferer.me/static/images/favicon.ico IP45.15.23.147:0 ASN#203523 Virtono Networks SRL
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Hash3565246ae36474ac91e7ba2ce459f97e 72be7c309e338663e62a1de40629dcfd6075aae5 21d4982d7da0b157eb6386127e5ecccf5aa21b8b3590eeee666678820868f1b2
GET /static/images/favicon.ico HTTP/1.1
Host: dereferer.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:39 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Thu, 06 May 2021 20:45:14 GMT
server: Dereferer.me
x-powered-by: Layer7 Cache
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashde57a2d376db743a3987c454889f1f21 0defab699bdb1b158026f93c2dd105bcd65f6764 b1c47a81ac45af6f756a8eca8ef14a82f0113ea8f09dae7a285a4491963ae2ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5036
Cache-Control: max-age=97992
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:39 GMT
Etag: "637356af-1d7"
Expires: Thu, 17 Nov 2022 10:30:51 GMT
Last-Modified: Tue, 15 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.42.74.230 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.42.74.230:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mis9Jw2Tes/hgXysRMk0TA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: T0i4HQA4I0XhU/2zWuuzN0xovqw=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Wed, 16 Nov 2022 08:20:58 GMT
Date: Wed, 16 Nov 2022 07:17:40 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Wed, 16 Nov 2022 08:20:58 GMT
Date: Wed, 16 Nov 2022 07:17:40 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Wed, 16 Nov 2022 08:20:58 GMT
Date: Wed, 16 Nov 2022 07:17:40 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Wed, 16 Nov 2022 08:20:58 GMT
Date: Wed, 16 Nov 2022 07:17:40 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc7e673e582e83e0572d97dd45676406d 7e34946fcdc1d7a736bf0ad2f53d897fb8caab3c 4508c0896ee058f87a941b2de690cd217970845975274a32be3acecbcb49f173
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: cc5ef526-ada4-4b72-8dfc-9b59abfd1075
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ3boETdIAMFtzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6c4a-1202b7dc5d210a5a152c2f9f;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:25:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FoF1Vr-VWVYkKhoFuHl2zb_rwJdR7jL7_795w8rSlUaIhmKPAmC7fw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 18:13:18 GMT
age: 47062
etag: "7e34946fcdc1d7a736bf0ad2f53d897fb8caab3c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13c6687a-9b8a-4756-a759-c0d0a1271c56.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13c6687a-9b8a-4756-a759-c0d0a1271c56.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfc7b74ead8472be5a3e9254bc2f59d6c 0e1ea7cff856101474578045555779543c286f29 d89f5fa280c33ab3bd1c21043df91d7628c83243ff3f31d8dfba04fe6a2836bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13c6687a-9b8a-4756-a759-c0d0a1271c56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7854
x-amzn-requestid: 7c17852a-92f1-4894-8c20-c94d58cdf8e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFtEzHIAMFrDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406f1-342dd91b636585b66682c6d3;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lWmZWkON4s_yC9hq3XOoKLdReBy4iv1mFqdaamkptqiCF0REz9eYzg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:44:46 GMT
age: 34374
etag: "0e1ea7cff856101474578045555779543c286f29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash848af62ec10d0c297922f8600b6ad12d 4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqIZqrKKIWszHFwass9Cd-GNxQ5Q9z3_2haPPGprjVDal71MQDurqw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:15:24 GMT
age: 32536
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg | 34.120.237.76 | 200 OK | 4.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha698bf97cc6c0c464ed1a2b2adb1c1d3 a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0 64d52d8983b2bf30b9b1f260b8d6534664024b8dfda0da273307ee510ed33aad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F520b9f3d-222d-4840-bd88-673cedf9b5fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4919
x-amzn-requestid: aae0d2da-e891-40a6-bd83-8942fc3ef0c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFFEnxoAMFdCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ed-6ff1cc593aa1c934659030db;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PhUSR2Y2GRZkB5UTrMma8vnIddc44pLJ2Sppk63xQyMC2imKLn-R4A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:47:46 GMT
age: 34194
etag: "a3977e8cde4b6ad7ef2e75a477e71b7bbbec21f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F923dc815-7798-469f-873f-1f96c181f34b.png | 34.120.237.76 | 200 OK | 15 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F923dc815-7798-469f-873f-1f96c181f34b.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash975138c9b284e6286203e5a3e9ca641d 4b2ba4a8f907e8b81e58a542ee463b16c5ece968 8e2b9f4182dc0d377131b68e67e2b10d3dd93eedc3027b1d224b3d83623adb8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F923dc815-7798-469f-873f-1f96c181f34b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15395
x-amzn-requestid: c7e8c712-258b-4d49-97bf-cb399c66eb6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEAHHroAMFjMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-1d1ea672266e188f3d92858c;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gwLI4XpF8tfMnYSGlgs6_BhyAbfxiW2VQ5PLxP-v-E73AK6mjEJcEA==
via: 1.1 040bad3c7f7db09654c66da40c719fb0.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:46:20 GMT
age: 34280
etag: "4b2ba4a8f907e8b81e58a542ee463b16c5ece968"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d17b0a6-c7d4-4fde-a562-2c8a684badae.jpeg | 34.120.237.76 | 200 OK | 5.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d17b0a6-c7d4-4fde-a562-2c8a684badae.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0d11bcb05f6d52f71125159b3b91cf95 8ac81c9371c361d9e67d8cb0dc56ce3986ff0c5c 11cd7bb8813d5b88bc9b48851fa0d33a4103e52c7bb6e4c9510ea7cc1b64f76f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d17b0a6-c7d4-4fde-a562-2c8a684badae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5869
x-amzn-requestid: dfef6fc8-6792-4393-9154-f58cf5c619c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEAEADIAMFpqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-3c3530c93c04782a2fd222e1;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vPlQer1X13LpjFGcD9whnFC8MyTkgEo4TTi4g3RSKakAyJkibyQH-A==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:01:24 GMT
age: 33376
etag: "8ac81c9371c361d9e67d8cb0dc56ce3986ff0c5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash5b80883a318b116e8b967c4e7c5fb219 4d7a8f63edad447a8b46f7816b950d90e01c7872 2b1bf5e0056b5d2dabc4a7ce5da47044293386d238e666abfa8c9c6d25da44aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/url?q=https://casinoreviewers.com/dk/bonus/&source=gmail&ust=1668610113123000&usg=AOvVaw1hOix7TyX4l-1h2UO_VBp9 | 142.250.74.164 | 302 Found | 234 B |
URL HTTP/2www.google.com/url?q=https://casinoreviewers.com/dk/bonus/&source=gmail&ust=1668610113123000&usg=AOvVaw1hOix7TyX4l-1h2UO_VBp9 IP142.250.74.164:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Hash7becdfc47edf00bf332952783a839354 b89edada2296472f54a5172f4c3e18b031bd6d03 82f0873ad30679c39a06095da90b5dc17e111b04d801a6565f215eb764bf7502
GET /url?q=https://casinoreviewers.com/dk/bonus/&source=gmail&ust=1668610113123000&usg=AOvVaw1hOix7TyX4l-1h2UO_VBp9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NID=511=mFaVQ2laxz7LyOQPRMNzZ8pfqtskvHoyf0TGBmbY6s5Ub1CeFQvkj_KT2o_8zl8ZHXEbPRRR9GJm6m0MGzqDm2ReTzPtXEV8G2VgueTBYhbH5hld7hYlVF_VTRE8Ty8cROmpXCvwVcV_GYdGf7gIo1WoEG66Lmz3vbEwW5XyrUM; __Secure-ENID=5.SE=WgoywoGOUEmJadxoIB0r2lkzXHeKVqth1xGOa4ffzT7dUHt-ZXjx-iHV7oK7BCuj96T6WcNdOxtcPrvT6hvt4NQxsLWhAuRLpweU30AweJoV-BgqMIIyysdeq33RUY6ph26qQ9jBKSd0XSV6yoBSxOS9PmgWEsI53hUDjv_5qeI; CONSENT=PENDING+883
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://casinoreviewers.com/dk/bonus/
cache-control: private
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
date: Wed, 16 Nov 2022 07:17:42 GMT
server: gws
content-length: 234
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/RTKpCWNZx7Y | 142.250.74.35 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/RTKpCWNZx7Y IP142.250.74.35:0
Hash72432352434888aa1bada409b73c0d6c 09afa5622acdc95f0b04485e2ff5ad42afe883dd a3dbb4e19c15b1cc930101ab556effce1ba9220732020da1132e17bae12540aa
POST /s/gts1p5/RTKpCWNZx7Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash9d9493125a22b98bd2ac3a1b11cc0a12 8334175b79551b1e0592f63eb606543c915983a2 a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-denmark.png | 104.21.58.217 | 200 OK | 313 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-denmark.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hashe1226ecbe9ad94a4d3264e0139c3e068 538cb54a44a30068b49acc35407f61d4614ecf34 0ac579b302cef3e8a0b708303c244f79011716ee48b4abed8d7f4399d7f994a5
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-denmark.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 313
last-modified: Wed, 13 Apr 2022 01:47:55 GMT
etag: "62562bcb-139"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lxsFF7xRHYOUCzI29ec%2B8kEYUiTIzLEhYlo2gP%2FygDf2%2FoLIgXsvJDddL%2BG9ha49tfu%2FGyUMb%2FBQQzM6DXo6ZXAn5gdlRzhrqPivwdwbEPRWXGqFXlquq4dskzt9jS3LBGHSZM2s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe910b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-usa.png | 104.21.58.217 | 200 OK | 2.1 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-usa.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash7ad31309bb396c5d7a62645a0d667510 cf351221b7bed0c375abda146a3aac1209852a6e e031d906188107907901f4b0e39f783562ce3692e326992648eeef1f0fd4b870
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-usa.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 2075
last-modified: Wed, 26 Oct 2022 14:19:18 GMT
etag: "635941e6-81b"
expires: Fri, 10 Nov 2023 23:03:44 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 461638
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FA%2FOGgtR66GqjXQhMC7V9NfinaisDG1rrdX5nU%2BPq%2FUNZrWY9oTwxusjptM7U08JeIwmD9Z8oKUFa1I9kfrwcRs1OXQnL6Ae9%2BMksboWL92AXmtU7n7OwF5dB%2Fjf6gHyJ6av17%2F5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe911b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-austria.png | 104.21.58.217 | 200 OK | 275 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-austria.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash8db7128d51ea8541f91013c94504544a 0ab5342946aa4d216e84e615869dab1d77165544 fd7d52ddb07392cdbba19500f3d43ea2128fb9ee051bf5981e7704abd491fe37
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-austria.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 275
last-modified: Wed, 13 Apr 2022 01:48:01 GMT
etag: "62562bd1-113"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NB5Nq%2BqwwH3CXDhpMmA9nhaMaFoo%2Bt16LL9fm0Y5CKWZS6RbOLMiQot3KiueXlIy5p3p1%2BbkacIrhod2u2U6jM7yC28K1zo6NGkZroETTwr7A7pSn%2Fs1TtcwetLCXdPLz3eWgHlG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe917b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-australia.png | 104.21.58.217 | 200 OK | 3.9 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-australia.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash60877ef93e855cbb65d77ae43b2cce32 cf1dfd5eb94d403ae35d7702c01800633de810ec 689ced81888e1b1a659a64e28b7e734f5470265b0dca92a3352ca0df86a7506c
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-australia.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 3866
last-modified: Wed, 13 Apr 2022 01:48:03 GMT
etag: "62562bd3-f1a"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UDMESJlR%2F4Je5IZYl4dFr8TbOzU9fPAXHuQ8z1t1cNobWjOxnqjNN3Ja%2BZZ5%2BlJTODjSbwZLJGe3td6SRjWGvJwKEfQlBl7aT8bPCFuU4h9VJHly8TPL6pqLoZHxBDK5Dz3bz7Ui"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe916b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-canada.png | 104.21.58.217 | 200 OK | 1.1 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-canada.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash20b09347436e85f0834c3d3a33b12374 971f4819e0d9f5d09e81d9a45c7875d567ab2d26 bd40227afa229d0b3cb0b682582aa01365e845fb19b5c7a6f43a52e1e2c145c2
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-canada.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 1133
last-modified: Wed, 13 Apr 2022 01:47:58 GMT
etag: "62562bce-46d"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kYWt3n%2FjH14Jiz0fNjgnBCMMbbQf%2B0tl%2B%2BQjq9LE%2BNvTawpVjn7h%2B9ti0IzSXiCUn8M1kojccd1SL7VZ7pwFiI%2BKNCuIlJajqtLeywwZGKxdkQ22MQZOkZaQoi9X8yctmg9ZEHOv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf91db503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-germany.png | 104.21.58.217 | 200 OK | 270 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-germany.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash1032b19a626fd81e1ed23863ce6b97f2 8f9250f7048bd7f2bb65e6f7b32474bea1bced60 43c03d764c45db8bf456e794a2ac207612e75e32e477cd327b16e73c54af15fc
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-germany.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 270
last-modified: Wed, 13 Apr 2022 01:47:51 GMT
etag: "62562bc7-10e"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ojbAcSUQt3VquoJ6YqvSEX8qHPAdsoJP1pTYxCFjkjOu2q9qQz2d3kl12bJubRSzwdckzoEqOxznzllRW0XR5tdzteQIYDTvAEMEBuHYfZCHNR1MLmRRmXoOeh5%2FGqCGXBCMoTk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf920b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-finland.png | 104.21.58.217 | 200 OK | 321 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-finland.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash114484b1796d4fceae4f5391e6742ce5 9e297e485fe9cc264794900e9cad8b38aedd2f1f b5dd3c4f88aaddc394f775dcc6bdba37710f9982ef4d913cb8503bbaa751b66e
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-finland.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 321
last-modified: Wed, 13 Apr 2022 01:47:53 GMT
etag: "62562bc9-141"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DYWj3SWnYEhZkvv9bw%2FFxgg6U%2B5X03r9p1ESJpzkFOokK9jwsqyt2uEiwYnazB6crrhNdqHiJboPpNWItNmo3kUvXGh0OEePWRLOFym1IbNj%2BmbbYFWNzqFzZ30Np%2Fr7oCu4DXbr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf921b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-nz.png | 104.21.58.217 | 200 OK | 898 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-nz.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash294c906366bde2e3ab1270b5add80aa0 618813c43252698a70abdbdeed2b3d2d53fbc95b 33c851f9c737e731e17396922b65bf260c3c1b89e5c0c43c4156288a3c79583c
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-nz.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 898
last-modified: Wed, 13 Apr 2022 01:47:46 GMT
etag: "62562bc2-382"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NuE5h3aKUWlfYuaIA34o1m9B3esqb24TGcTB8DkdZvch61hL5r48B1wQLJ65PMZmWykWFtTta3U9yMnAqJZsZrfbsmtLQW%2B%2FFmjgY33PTKkT9GXv3vOn%2FizNOjq59Y5RPD49BfnP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf927b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/05/Flag_of_the_Netherlands.png | 104.21.58.217 | 200 OK | 2.2 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/05/Flag_of_the_Netherlands.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hashaff75dbd983543095a65e062fc29d232 8c460ca008be37539b2a69f628851178c9cae9e3 d4053c410bd23d0667818c9a73fb898ba5676de68a26d38366ee2fe36a888d2c
GET /dk/wp-content/uploads/sites/9/2022/05/Flag_of_the_Netherlands.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 2150
last-modified: Tue, 17 May 2022 08:21:27 GMT
etag: "62835b07-866"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8z%2FfkUn7ut7J1NVlBF%2BsbvGPt8YaTgljQAzREtr4L2n%2F0Z3y9kgnXoj2owNhgYq8NvTcomY97J6PXmGgwaB3IiBEhOB8Ueb81zDjIqqj3BexjVbaaLnM8kOuMVkL1zmbdroOF4PI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf923b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/logo.png | 104.21.58.217 | 200 OK | 10 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/logo.png IP104.21.58.217:0
File typePNG image data, 537 x 163, 8-bit/color RGBA, non-interlaced\012- data Hashbe9cce7bdce7d8673014fc4716578610 9fe8188398213bffd1f50ce16ca9e72f6633b194 911253dea498582fa3d1d75712f43c3e4e5a0036f1923dcfe4be01232ab8ca54
GET /dk/wp-content/themes/pokatheme_child/assets/images/logo.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 10292
last-modified: Wed, 02 Nov 2022 10:43:33 GMT
etag: "636249d5-2834"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=erE0RMYNV48kF6MTWRLngl1muLDu%2FDXdg3nkILDI%2BBsUldL6Kx2HcKefc9QRr0V1BehljPKpqwtkr57fEn6MBK9PWZRXAMlMF6TD3J59p8%2FUSNeNJjL96ga4A20w338Tbqu7XPuI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf92cb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-sweden.png | 104.21.58.217 | 200 OK | 285 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-sweden.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hash3ed8081506b9df16efb0b8a8c954dc84 4012c6137b6c2293cdba4b65fa7e6d65463b853e 2b838fb22c1a23f5c40c6abd63edce08a21d0ca31188a94a8ccd0c29d3c1198c
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-sweden.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 285
last-modified: Wed, 13 Apr 2022 01:47:44 GMT
etag: "62562bc0-11d"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uU6ajt5fFS0XJRZ2a7apPaHqBvLIMgDQmHU4SdbcSLf7SobXHhU9GAzXyZMVhC2JbN0czgAZKna67pPkThLn9MimC2kwNVTdWGq%2BC2kAOWr0geyDre7McLGDILYMNRWf8oyVPYfZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf929b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-norway.png | 104.21.58.217 | 200 OK | 414 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/flag-icon-norway.png IP104.21.58.217:0
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Hashae08c052f848f74f6ec136c2d5fac639 864166c377eda702cc708c9372f1ae6271af7e3e 30d9081d21f66b12e354b9f1da8eeca85e9a5c4ee2c38bf4d3672f4e7c877cde
GET /dk/wp-content/uploads/sites/9/2022/04/flag-icon-norway.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 414
last-modified: Wed, 13 Apr 2022 01:47:48 GMT
etag: "62562bc4-19e"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3r5mLOyYiZnwo%2FJV7X%2BS5hW8QMZKeWvOz78olGQ%2B7dUqMIsJ5NvKU1YAlgVFIhBOFwO6EdKb68ReOMQ88bVh%2FAyE6yM9LpDRbT0065Tc3O4KqqqC71m%2F%2BIwhiS%2F9wPNsSokBRfes"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbf924b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/plugins/rate-my-post/public/css/fonts/ratemypost.ttf | 104.21.58.217 | 200 OK | 4.8 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/plugins/rate-my-post/public/css/fonts/ratemypost.ttf IP104.21.58.217:0
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ratemypost \012- data Hash5772d7b0d9851e23e062eafadaf7729f c774ae6a5da5dd14342db3281735dc2812da1d3d 40d4cb30d26c1301383bc7445dd80bf4e3279374d2ff74c771aa4c3db182358f
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/plugins/rate-my-post/public/css/fonts/ratemypost.ttf HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/octet-stream
content-length: 4824
last-modified: Thu, 31 Mar 2022 14:12:57 GMT
etag: "6245b6e9-12d8"
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rr6LRyiB%2F2xgvFJbF5nlc0n%2FEfhArSQZiW9zTyVQC4Ch3DYcjtGWhhpxCsUYSoRxLlQpdzAz6hH1aK7Ou2xBZa5Cs3Tt9fRqCx4w0sM7pVRM1e%2F4ryE%2BvRVajYvIB%2Fw8%2BdH6zuqX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbd900b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/10/international.png | 104.21.58.217 | 200 OK | 12 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/10/international.png IP104.21.58.217:0
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hash2d36676f89236e2e6102b0a501359b36 a242d543f395579f4dacb2e9c9a9c4e740dc10a7 a9e897de35f716dd0343193ee5c5863d34f32780d59f94c9f7b22780a9b8cda4
GET /dk/wp-content/uploads/sites/9/2022/10/international.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 12296
last-modified: Tue, 25 Oct 2022 10:12:31 GMT
etag: "6357b68f-3008"
expires: Tue, 07 Nov 2023 07:12:08 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 777933
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=536lYdWP2HBzVXXRCSyZ8ehAHaMTZLxggn2wkA%2BA8YXa84YZeSh0tbiqpRWXY7hnqV2eP8uwTCP2VeYKFfyEeUxQOq1ZjeyiS73eQcWgFfmUiwKhIOnXCOU88Nx%2F7vmGxlI6rVAS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc194bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/timer.png | 104.21.58.217 | 200 OK | 11 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/timer.png IP104.21.58.217:0
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hash7992353ac034f9aabf8593f235b62c65 69ab9e94e01b5daa8d90e3afc39d3ea5bf5e9265 f33f060c613fe71afc6e54558122167b0d79ac497d0b203fc52c14bcad2c7f56
GET /dk/wp-content/themes/pokatheme_child/assets/images/timer.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 10752
last-modified: Wed, 02 Nov 2022 10:43:33 GMT
etag: "636249d5-2a00"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x7P6fGLf4ID9AIFCBb%2F%2BKyUVeqeeBlL%2FwZya6HLqdEHnu52qvgzhE4snkjPNnbDy6cGHbl1VOVJwRsdquljrOeTgfrP2qnPNOkFZTVfDiv%2Bje7KnyyAwnHhPR1sPP2LZgtcvAwx9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc194db503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/qute.png | 104.21.58.217 | 200 OK | 5.0 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/qute.png IP104.21.58.217:0
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hashea05a7e35700227d1fd863f34c7211c5 89bb2eee432a3376d157f3600745288c3973eca4 2bedcd8002057a876d8a3373b72e3a7a609da2d61c9b2a0cacd3f76d5699a345
GET /dk/wp-content/themes/pokatheme_child/assets/images/qute.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 5010
last-modified: Wed, 02 Nov 2022 10:43:33 GMT
etag: "636249d5-1392"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ai8MCv4V8nzHR6F%2BP2nuv4nH6ZGGLaLjlvH08WGFtpeluAh%2FDPUiZYsrspQgCKYNH%2B8oGaGwxOpAwt0lZfskIo7SsLb6649vEATsYKwAgsS22wtLnLWAggoHhyx8WvtqhhXxMoe7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc194eb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/05/denmark-bonus.webp | 104.21.58.217 | 200 OK | 24 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/05/denmark-bonus.webp IP104.21.58.217:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash7e09b5dc69ec5511092e30be99f7de03 c1e8b7810a74ce4559cf42fdbab66d45a69853ff 2a72505d83cfd1ff1824bfe61c90d55415628ddafa0e2f8c00bbc94879d760b1
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/05/denmark-bonus.webp HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/webp
content-length: 23836
last-modified: Tue, 10 May 2022 08:07:33 GMT
etag: "627a1d45-5d1c"
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 47
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Krnhg8mfdUNp2I3btLaXFmrlKEIzORy09jdE0sczracrKMVPgop6iDTB%2BouuKEYKb25waFG9trcaAw798hKTr61WRCM6NkutifHciT0LN2VswzeKVq36PUgxBpNfTtix05KH5NAL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc4977b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/05/guide-exclamation-mark.webp | 104.21.58.217 | 200 OK | 57 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/05/guide-exclamation-mark.webp IP104.21.58.217:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashe59ed1a141e9077df36cc88f99f3b49b 92f15f9f82cf172e818b01edf454ebc057ade313 99c812a9a8a642a0320c8d393687224524b22f4ea8d515a3d66b5ce501cd1ade
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/05/guide-exclamation-mark.webp HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/webp
content-length: 57144
last-modified: Tue, 10 May 2022 09:01:43 GMT
etag: "627a29f7-df38"
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 47
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hm4BPTIe%2Fknx4F5%2FWiPgnkarwJLFzcCAwDO77qAWGav1bBiM9G06ct8YkNdEfz6NMetLrbhXwqJR2yi6AV%2Fwbqi2NU6JKu1cx%2BkRU0a2Zc84gkebjNYMSUli4ua4izlhaoPJq9VG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc597db503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/banner-best-bonus.webp | 104.21.58.217 | 200 OK | 164 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/04/banner-best-bonus.webp IP104.21.58.217:0
File typeRIFF (little-endian) data, Web/P image\012- data Size164 kB (164224 bytes) Hash65aa2720b31e7663bd78ffd1c2631a2a 60bec0165cbf7ab67ad464ff8f0408c34a138329 876e62b62fa0775388454589ebe7dd830146b6d54e999a6106ef3df25f591a66
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/04/banner-best-bonus.webp HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/webp
content-length: 164224
last-modified: Wed, 13 Apr 2022 08:24:39 GMT
etag: "625688c7-28180"
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 47
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AXjJ0oeTm267L8B3SrYfhNvArNthyHqLznaq8YJ73%2FjYsUoapWLy%2FKr0Wdz2apf95ZRvhkWuy5OSPONKufiGjF4Yoyq%2F5fd4UdvH47TUGIZCmTlZ8Rqs%2BOBkEMUAjeDzKtyeeGbK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc4979b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/casino-chips-image.png | 104.21.58.217 | 200 OK | 302 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/casino-chips-image.png IP104.21.58.217:0
File typePNG image data, 2150 x 2150, 8-bit/color RGBA, non-interlaced\012- data Size302 kB (301620 bytes) Hash9598585d4fb1789b915aa8e7889ba0ba 9464371c8953aa17c512ec307d3b839bb41936b6 120f662cb6c9d163e0683428a1f6f5f87ca044661f0b4ff655f94e80d8ce47bb
GET /dk/wp-content/uploads/sites/9/2022/03/casino-chips-image.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 301620
last-modified: Tue, 22 Mar 2022 11:01:27 GMT
etag: "6239ac87-49a34"
expires: Tue, 07 Nov 2023 07:23:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 777272
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0s3sfi6Hmug%2BZleJtOwb%2BN4h18HzFiEBFQltWVkpS5ZlrFQVwa5eaoW9o0mq1G2onj6Oz2gBpAvme9iMxjAulhXNuMra5lf9f2avnUJ1UmNCAU7l1f87rhX6RxyxdiR3fii3z%2FWu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc5981b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/02/LinkedIn_Logo.svg.png | 104.21.58.217 | 200 OK | 4.9 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/02/LinkedIn_Logo.svg.png IP104.21.58.217:0
File typePNG image data, 512 x 125, 8-bit colormap, non-interlaced\012- data Hasha14f87e5abb4ec2283fe205f7624f494 86731029767ba8fc7abd20e1d7836080592efef5 7afc0627ab95778997828d3dd8f58ac66e7121183f0cb5ff5f82c677f7ae1bd8
GET /dk/wp-content/uploads/sites/9/2022/02/LinkedIn_Logo.svg.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 4898
last-modified: Mon, 28 Feb 2022 13:33:06 GMT
etag: "621ccf12-1322"
expires: Wed, 15 Nov 2023 05:52:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 91500
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H6WX%2FCsi2MCxaVAf8Rr8UkDiGAshysXvgdptO8CfwxIzdjyRnNabbWJ%2FFNmTjzrd8Bd910eQaj93YF%2FmKk0jG7a%2BHo1HJ5Z08WlAjoGOWW%2FlKLXuhg7UM4nBXMF8HCuBF4KW3K1i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc598fb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/GAMBLER-LOGO.png | 104.21.58.217 | 200 OK | 4.3 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/GAMBLER-LOGO.png IP104.21.58.217:0
File typePNG image data, 210 x 43, 8-bit/color RGBA, non-interlaced\012- data Hashd3139a35201aa6f25d3673dd30abf4e0 f60a8f77b31e646670d94a8096857706212c72ed 160ae26637c64a9ab1cdd8775444397dc8f4b296a9beb157a32563c236db857f
GET /dk/wp-content/themes/pokatheme_child/assets/images/GAMBLER-LOGO.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 4283
last-modified: Wed, 02 Nov 2022 10:43:32 GMT
etag: "636249d4-10bb"
expires: Sat, 04 Nov 2023 19:18:28 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993554
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TazTJM6lIeE2ivwxbpCjjQHQ5iBZyrr5kINfy9%2FRFZ6nLrTTmcwWoUqkyn98e%2F%2Fce9GxzddkT5C4zW1Dbv01r2hfYRebSn5HhCIYU6lLllZWDRbxgdglCwtvPs25Gbf3ak7ZPgoO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc5996b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/02/Selfie.png | 104.21.58.217 | 200 OK | 300 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/02/Selfie.png IP104.21.58.217:0
File typePNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data Size300 kB (299860 bytes) Hashf8ed8d2be80ac7b5fe890a4a39371c7f 3f7b92b059bb33a4fa8ecfefb751cfa8f876a675 b9ffe821453bf1db2115a750df77c5c7d72b3e5680bad7569f2e3ee81c239255
GET /dk/wp-content/uploads/sites/9/2022/02/Selfie.png HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/png
content-length: 299860
last-modified: Mon, 28 Feb 2022 11:58:25 GMT
etag: "621cb8e1-49354"
expires: Tue, 14 Nov 2023 17:48:31 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 134951
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X5lIn%2BFxYf%2BDw5dVAZW3A6%2ByE%2FukgNqVLtHPrq4DpF4UZcAo%2B%2F4dltGLspMXK5rRrQnfON0TYvt4ZH%2Foug%2BIDlUbXpUuIL77XvrNJQRLpRSywpslNdgSoRz%2FYu3iFWkJAbc4gZ5H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc598bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash3dc58f0dcba4ac9021f62c5c1c862e91 d67cf5a8968b75d0d6893054f5201e015be19ecc 75d4e57dc6c25d2456a7513572a97de5f1c1caead2822c8a985da9b8dfa55f89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash15b877e3c04a13242f1e8d068e8cb9ed f1a1a051ce4b6f820bb1e54d6e526a7a07e84117 dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/live-casino-icon.svg | 104.21.58.217 | 200 OK | 27 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/live-casino-icon.svg IP104.21.58.217:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (13421), with no line terminators Hashc04e6fbefa533520ba31989547bc7630 98bcd4a1b954db6848fcd662d534760d25d3ed99 3d0cdb4aaed84e258136301a543bd7a5f9449e9cd044596b599edd7c33c92ad3
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/live-casino-icon.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Tue, 15 Mar 2022 09:34:55 GMT
etag: W/"62305dbf-346d"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3W2v%2BXx72bNhVf63JkxHXtt1wMIvW0An%2FysMK3EQVksYpSDBiS2WNVp4LSZrZPymYNFoX9ITRE8Fn3%2BHT4PwfPRbd2S%2Brzcw5FbH%2FwstdQoomlVv8mgw5Mv%2FVia4CK0BZQZadEXl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc1949b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 1.1 kB |
IP142.250.74.35:0
File typegzip compressed data, max compression\012- data Hash608a7e5ba75f0905e1a47222c0eec188 1a4336192a99d951ccbb97c9b7bf887b58db1697 d5eec7cae4d670e9c767c123331cefdeb14041aef2e0032e0c75b3466092c4a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1p5/RTKpCWNZx7Y | 142.250.74.35 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/RTKpCWNZx7Y IP142.250.74.35:0
Hash72432352434888aa1bada409b73c0d6c 09afa5622acdc95f0b04485e2ff5ad42afe883dd a3dbb4e19c15b1cc930101ab556effce1ba9220732020da1132e17bae12540aa
POST /s/gts1p5/RTKpCWNZx7Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash9d9493125a22b98bd2ac3a1b11cc0a12 8334175b79551b1e0592f63eb606543c915983a2 a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/best-casinos-icon.svg | 104.21.58.217 | 200 OK | 12 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/best-casinos-icon.svg IP104.21.58.217:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (13797), with no line terminators Hash1493986ec7c1ab24e5aad6900e6d4bff 29d385f9f46f09891be0c64be911632e28a957ac c3d0a702e5ce650eb5bb507af0c659aa75f54be944cc2313f79bb441579dc10d
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/best-casinos-icon.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Tue, 15 Mar 2022 15:47:48 GMT
etag: W/"6230b524-35e5"
expires: Tue, 07 Nov 2023 07:23:07 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 777275
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uhcLnksdITsTSyztjr2PxQm%2BR%2FXukycWGJI2B9JkfnFwwRZvs%2BGOHtxGSspkpDPHUSla7QX8tS5lxLvu%2FRkZaQFQAKkSCsxj4RvwGAPXyeaoN7SXFT6p1vHY1KPSiIO796Hi0JRV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc1946b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_bb2318fbc7ec1c3fca6041e3e27d9c4e.js | 104.21.58.217 | 200 OK | 79 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_bb2318fbc7ec1c3fca6041e3e27d9c4e.js IP104.21.58.217:0
File typeASCII text, with very long lines (2380) Hash4c2dbd3a49eeb7427da1d9702a988ce1 498041fc3a58232d681dd8a9bc63aad6745d551e 03d56a56425b154ed39d73da7abf25be25ef5c92004b7f1129ad2991b5846e16
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_bb2318fbc7ec1c3fca6041e3e27d9c4e.js HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:35:57 GMT
etag: W/"63628e5d-19c5"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxdshJrBgzGI0ZG52g4Wn3urnaP4klXV81x4XPHpBJpbGbh5D9rxfnrvY95xXMy4680G6URQZ0sKjcrAbyTEk93dn4DYa8N1PBOqKU8Pj43vas13Ap%2BHerJMPKIg4PRh6dCdriqN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc79c0b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash6ea606a3c83b6b14b9375c84e37870d8 d73a898c2f3eba8e71d6d4f675c47107df0a5795 0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash6ea606a3c83b6b14b9375c84e37870d8 d73a898c2f3eba8e71d6d4f675c47107df0a5795 0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| casinoreviewers.com/dk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 104.21.58.217 | 200 OK | 32 kB |
URL HTTP/2casinoreviewers.com/dk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP104.21.58.217:0
File typeASCII text, with very long lines (65447) Hashd8eec9d2c9e305f877549f26cb8f118b 9e3b338876eeec1cb0478588a18bf7964d1c6584 f05ea5d8d55ae0052e6660017bc4a97f9085f30baf725a53dba0b5ffc8bcaf0a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 19:05:33 GMT
etag: W/"636410fd-15e54"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KhVjqT7QMOBqI6SMo%2F9WBt2ECdaVga0sGLWJTwYSG7hnen552urZrBF86ZIw8REe5hbVNn3yIuITnhqbkZxBTDlcf%2Fuo9ZQdj2LCVUcaWGw%2Bi8kaR49myYyoKIfK%2B4cmLFKkxwqz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc89ceb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_2021aa4268421c1d200e879e8f37572d.js?ver=3.3.4 | 104.21.58.217 | 200 OK | 5.7 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_2021aa4268421c1d200e879e8f37572d.js?ver=3.3.4 IP104.21.58.217:0
File typeASCII text, with very long lines (22832) Hashc1e8a1be7cee803a5781eab16a638232 34aebea9126a5a3e4fc60e6384903359ef6b0e2e fede59f4e82c995e8da7e5f3f4d5684745f1f32ed6a9018471f7c6c4dfbd890c
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_2021aa4268421c1d200e879e8f37572d.js?ver=3.3.4 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:35:58 GMT
etag: W/"63628e5e-5f97"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uptkmu5wRq8qTCpQ1CohKe9kETyVl18xeZfqi%2FNgoZmL6GIzEo1SCiyJBN4kuQ0T2G3ks09rtL6TQE5rkA%2BrpEhYbX5tskYvYYhwMlMrxU1PneT0sTm49fKWtneq8WQ8DmmRqN18"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc89cfb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.195 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://casinoreviewers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 16:40:18 GMT
expires: Fri, 10 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 484644
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-includes/css/dashicons.min.css?ver=6.1.1 | 104.21.58.217 | 200 OK | 36 kB |
URL HTTP/2casinoreviewers.com/dk/wp-includes/css/dashicons.min.css?ver=6.1.1 IP104.21.58.217:0
File typeASCII text, with very long lines (58981) Hasha0a897433fb0e091ea877caec2ac7e44 77da42e3944ef3a5ba3937914bb32e7bb060573f a41127cf333831ea28aea7121dcec3339ef17fa2a35a246c43567beeab6d81bd
GET /dk/wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: text/css
last-modified: Fri, 04 Nov 2022 13:21:35 GMT
etag: W/"636511df-e688"
expires: Thu, 15 Dec 2022 21:51:55 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 33947
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sF8w%2FpkB0%2FVAyDerP2qreniE8H%2BcxB8KwphH8jP4ZeLp9kwYLloiNVDMuPMDlwvtkNeUcJRDXsdWoYozLaaVabkt8mEvFQB39dB74FEsbC6Uo6tgcOPYWQhW5do21g%2BbEKDnJ8xA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbd906b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 | 216.58.207.195 | 200 OK | 32 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data Hashfda4d0b623999af43148ba34c3b1ff73 ca5496af89720cc3e94e6279132f252b7cd471a6 33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://casinoreviewers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 22:19:12 GMT
expires: Tue, 14 Nov 2023 22:19:12 GMT
cache-control: public, max-age=31536000
age: 118710
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_dc74c9954b1944928eca0172c3b8c6b3.js?ver=5.6.4 | 104.21.58.217 | 200 OK | 3.4 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_dc74c9954b1944928eca0172c3b8c6b3.js?ver=5.6.4 IP104.21.58.217:0
File typeASCII text, with very long lines (9937), with no line terminators Hashc56cfc96562b6d413f86ff80a59c6724 474f98958dc8b015701900d55196c41892761c15 e14d2cf3dc2483992c7ed3a465b4dc5bd613b578a071f6b3ad7d0bc73c703a86
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_dc74c9954b1944928eca0172c3b8c6b3.js?ver=5.6.4 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:35:58 GMT
etag: W/"63628e5e-26d1"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zwlzUu37MuXUy%2BAOWgGJJ6GHgyIQv3LzL9yp%2BVfD0hsgHHzMP77s6FQ16j%2BqnqlyApFVwrqrtXinFZg1S%2F6V3iz6ax6ge3VcmHCE33GZCxB%2B5o%2FSoTCJWzp26%2F0608%2FLWexrdExE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc79c2b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_1f9968a7c7a2a02491393fb9d4103dae.js?ver=5.6.4 | 104.21.58.217 | 200 OK | 8.7 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_1f9968a7c7a2a02491393fb9d4103dae.js?ver=5.6.4 IP104.21.58.217:0
File typeHTML document, ASCII text, with very long lines (12310), with no line terminators Hashe9e335cfdc39f8a984838fa0267217dd 1493237a5b79c9a1c943c1848ab05a83238d8b4a 3bf8741ab17877403365fec7868035e83674ac0032419eb2e8d49f55395d0ee0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_1f9968a7c7a2a02491393fb9d4103dae.js?ver=5.6.4 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:35:58 GMT
etag: W/"63628e5e-3016"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ggbgkwLj6ZEQ3Xo5l1nNNdZVr0RIglOq0dVE1CTzIowRJKuhg035KIvzEVo2s7g9yOiXbYGvCv%2BaqbGZfLBVNucAQYP69eN%2FtkT9GgoobXqd4D3OOaVPtistA8PRNyT4OnsjnAo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc89cdb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_05976aac2ebd9604efacc10fd6c49b97.js | 104.21.58.217 | 200 OK | 1.8 kB |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_05976aac2ebd9604efacc10fd6c49b97.js IP104.21.58.217:0
Hash1bd32fc66ead76152f5ac3a3b4416b4a 35a52c846cfaa2b33087550e04674833fee062bd e54ee720acf75dca0f32b364011710f3deaeba47e7e98a47cb6f242e7b37a78f
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_05976aac2ebd9604efacc10fd6c49b97.js HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:35:57 GMT
etag: W/"63628e5d-460"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t3feQI%2BKu5BMx3e8mpYQ73LAiXQ1rABjDPr6qXkr0z%2BakLf3ZBFioicnbAVZQUP4mM7gYJqqmJD9MjoySYHtVHoECasiKcVYz%2Bw908TocDpU%2Fx5wWIG5fbxaK%2FjxrV2vy4d%2F7Mtc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc79bfb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash1fa19aff1e1cd1bcb23807998ef85c43 a4c43d274ab7c17894153b771d5fe096e2142e96 e254f31055336f837930d3dbe663ff8b96129f069d67d4d8511f13f5620b5641
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2857
Cache-Control: max-age=108404
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:43 GMT
Etag: "637387e2-1d7"
Expires: Thu, 17 Nov 2022 13:24:27 GMT
Last-Modified: Tue, 15 Nov 2022 12:36:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| connect.facebook.net/en_US/sdk.js | 31.13.72.12 | 200 OK | 1.7 kB |
URL HTTP/2connect.facebook.net/en_US/sdk.js IP31.13.72.12:0
File typeASCII text, with very long lines (1957) Hash4d5f0248cb5c0eced38a533ddc355b67 d4be0a771abbfb63752e170d590938d6f6c1790d a0a4aae1bc438b866524b43f516f8aae1d48cacb4dd1df34b9de6bc5afa2cdfb
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: bb46afc94d16ef59e03bf21f1853d156
etag: "2fd7be5ea8a70bdcec7df3f1acc3522b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 16 Nov 2022 07:27:15 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: TV8CSMtcDs7TilM93DVbZw==
x-fb-debug: U6nyeRQqJoOR6u+0zHHA980xIA6NQheyMkd/dY8nA+azckJB/1OQul6hq1Zp+T8qnkGjfA1v/DH/G9PoWdSMqA==
content-length: 1687
x-fb-trip-id: 1904183273
date: Wed, 16 Nov 2022 07:17:43 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash1fa19aff1e1cd1bcb23807998ef85c43 a4c43d274ab7c17894153b771d5fe096e2142e96 e254f31055336f837930d3dbe663ff8b96129f069d67d4d8511f13f5620b5641
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2857
Cache-Control: max-age=108404
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:43 GMT
Etag: "637387e2-1d7"
Expires: Thu, 17 Nov 2022 13:24:27 GMT
Last-Modified: Tue, 15 Nov 2022 12:36:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| s.w.org/images/core/emoji/14.0.0/svg/2705.svg | 192.0.77.48 | 200 OK | 482 B |
URL HTTP/2s.w.org/images/core/emoji/14.0.0/svg/2705.svg IP192.0.77.48:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (482), with no line terminators Hash212e30e47232be03033a87dc58edaa95 4d69c4a3dc57503e08b76c774135bfe83e8b1f51 1f026beb67630abcdbc341651b1c17591aa76261296a9fb118793765964eb4e9
GET /images/core/emoji/14.0.0/svg/2705.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 07:17:43 GMT
content-type: image/svg+xml
content-length: 482
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:46:16 GMT
expires: Fri, 10 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 466287
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash7c6a6db24d1ff3ffe787a8a5f78ef812 d9b2d385df52929ea7c6080b7c2e10c38df51572 3950ecddae384c36f9fb092dd5d27d3aa20c1197a37ff465d0bd350952dd9774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.166 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.166:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 07:14:05 GMT
expires: Wed, 16 Nov 2022 07:29:05 GMT
cache-control: public, max-age=900
age: 218
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash68a04663a52ab4272c25f5afcc09a92d 48b0722227353d06cb1dfd4480b644be6e6fc030 892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| googleads.g.doubleclick.net/pagead/id | 142.250.74.130 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP142.250.74.130:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 16 Nov 2022 07:17:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash7c6a6db24d1ff3ffe787a8a5f78ef812 d9b2d385df52929ea7c6080b7c2e10c38df51572 3950ecddae384c36f9fb092dd5d27d3aa20c1197a37ff465d0bd350952dd9774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash68a04663a52ab4272c25f5afcc09a92d 48b0722227353d06cb1dfd4480b644be6e6fc030 892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-1Q2BHZG34M>m=2oeb90&_p=2128102838&gdid=dZGIzZG&cid=1132682336.1668583063&ul=en-us&sr=1280x1024&_s=1&sid=1668583062&sct=1&seg=0&dl=https%3A%2F%2Fcasinoreviewers.com%2Fdk%2Fbonus%2F&dt=Casino%20Bonus%20%7C%20Bedste%20Online%20Casino%20Velkomstbonusser%20I%20Danmark%202022&en=page_view&_fv=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-1Q2BHZG34M>m=2oeb90&_p=2128102838&gdid=dZGIzZG&cid=1132682336.1668583063&ul=en-us&sr=1280x1024&_s=1&sid=1668583062&sct=1&seg=0&dl=https%3A%2F%2Fcasinoreviewers.com%2Fdk%2Fbonus%2F&dt=Casino%20Bonus%20%7C%20Bedste%20Online%20Casino%20Velkomstbonusser%20I%20Danmark%202022&en=page_view&_fv=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-1Q2BHZG34M>m=2oeb90&_p=2128102838&gdid=dZGIzZG&cid=1132682336.1668583063&ul=en-us&sr=1280x1024&_s=1&sid=1668583062&sct=1&seg=0&dl=https%3A%2F%2Fcasinoreviewers.com%2Fdk%2Fbonus%2F&dt=Casino%20Bonus%20%7C%20Bedste%20Online%20Casino%20Velkomstbonusser%20I%20Danmark%202022&en=page_view&_fv=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://casinoreviewers.com
Connection: keep-alive
Referer: https://casinoreviewers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://casinoreviewers.com
date: Wed, 16 Nov 2022 07:17:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&pxtags=Cg4KAnR4EggyNDQxMjY3Ng&rxtags=Cg4KAnR4EggyNDQxMjY3Ng%2CCg4KAnR4EggyNDQxMjY3Nw%2CCg4KAnR4EggyNDQxMjY3OA%2CCg4KAnR4EggyNDQxMjY3OQ%2CCg4KAnR4EggyNDQxMjY4MA%2CCg4KAnR4EggyNDQxMjY4MQ%2CCg4KAnR4EggyNDQxMjY4Mg&alr=yes&id=64060 | 142.250.74.78 | 200 OK | 296 B |
URL HTTP/2redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&pxtags=Cg4KAnR4EggyNDQxMjY3Ng&rxtags=Cg4KAnR4EggyNDQxMjY3Ng%2CCg4KAnR4EggyNDQxMjY3Nw%2CCg4KAnR4EggyNDQxMjY3OA%2CCg4KAnR4EggyNDQxMjY3OQ%2CCg4KAnR4EggyNDQxMjY4MA%2CCg4KAnR4EggyNDQxMjY4MQ%2CCg4KAnR4EggyNDQxMjY4Mg&alr=yes&id=64060 IP142.250.74.78:0
File typeASCII text, with very long lines (522), with no line terminators Hash684d4996404877fd0d833b1a630678ef ed1e3343be01673f25d057238f0e65989ae0efbc 5cc7e995bf374a980d22d6998d68285c2a8a11beb0d7e58c0eb4a6aefe0b7885
GET /initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&pxtags=Cg4KAnR4EggyNDQxMjY3Ng&rxtags=Cg4KAnR4EggyNDQxMjY3Ng%2CCg4KAnR4EggyNDQxMjY3Nw%2CCg4KAnR4EggyNDQxMjY3OA%2CCg4KAnR4EggyNDQxMjY3OQ%2CCg4KAnR4EggyNDQxMjY4MA%2CCg4KAnR4EggyNDQxMjY4MQ%2CCg4KAnR4EggyNDQxMjY4Mg&alr=yes&id=64060 HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 296
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash8f69270501ab9db87293d702ce920198 56fff336cbae9601613470a96b470f677ca63fdb 00159fa0d3a7a8d9bd203a80c02dcd295e04ad152f4f05230222a9d71c1773b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 16 Nov 2022 07:17:44 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash56cd5ad21a4b8cca4d019ddfe1f7a985 23f2ff8aa5f085b6ce69411d63fd84da6eaf5556 c4c7b839497401ead04952e1414dbb965c96342937a953ac1e79e4b94850a1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash2316d2d43aee9525cdb65b3eb2ff53a0 cad4229071cf919cb3471632ac4924cfd1a97431 99d5cce0549dbb29351735d3e15f9cde16b2ca18c57581c8110b2c54998fa28d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash16f5c2e36aa4873c40b98f688cf3eeea b7dc6b22bddf8a03c2e4add3183b72f97fc32ca1 2b9328d482b8a309b9ef98d7da1ebde483e5176c110f2f68cd751660d0a08f17
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 16 Nov 2022 07:17:44 GMT
server: ESF
cache-control: private
content-length: 30978
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/enWapiHOeBQ/maxresdefault.webp | 142.250.74.22 | 200 OK | 93 kB |
URL HTTP/2i.ytimg.com/vi_webp/enWapiHOeBQ/maxresdefault.webp IP142.250.74.22:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash1be381de03e27073a05115d6f5957504 78fd4d98271b40d3a101c472b3197b32567d7507 907172ef06b479344cf889e58444b88f992aff2670b628738239e5d29208f4df
GET /vi_webp/enWapiHOeBQ/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 92926
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 07:17:44 GMT
expires: Wed, 16 Nov 2022 09:17:44 GMT
cache-control: public, max-age=7200
etag: "1632887672"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash56cd5ad21a4b8cca4d019ddfe1f7a985 23f2ff8aa5f085b6ce69411d63fd84da6eaf5556 c4c7b839497401ead04952e1414dbb965c96342937a953ac1e79e4b94850a1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash4a57291a56e0d7ffa0b4888b59a422b8 7a748cb78b21bbb7c4eb1ddc331ffa9d12d33248 9cc42b59af0f988712634b9430c4a0be52e5575d7e3458ddd872a751484612a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yt3.ggpht.com/ytc/AMLnZu_Xrl2dX5KKFAewPlNA46TayTznWj-zFldpUP5d=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 3.8 kB |
URL HTTP/2yt3.ggpht.com/ytc/AMLnZu_Xrl2dX5KKFAewPlNA46TayTznWj-zFldpUP5d=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data Hash22df575110d921692df2494c1de559a6 4c54734e03cd039e23ca2d4e289778e6ed9015fd 7ee359933330bbeea98884f383cda110c662698b88e10ff5a5252f8c062fc4b2
GET /ytc/AMLnZu_Xrl2dX5KKFAewPlNA46TayTznWj-zFldpUP5d=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3818
x-xss-protection: 0
date: Wed, 16 Nov 2022 06:19:54 GMT
expires: Sat, 29 Oct 2022 23:17:16 GMT
cache-control: public, max-age=86400, no-transform
age: 3470
etag: "v20"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 16 Nov 2022 07:17:44 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash4a57291a56e0d7ffa0b4888b59a422b8 7a748cb78b21bbb7c4eb1ddc331ffa9d12d33248 9cc42b59af0f988712634b9430c4a0be52e5575d7e3458ddd872a751484612a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 114 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:0
File typeJSON data\012- , ASCII text, with no line terminators Hash55179ff120f4973ad14f4b00f2dcd67a 121e4d6291622b39388ff48cda966573611675cf dffb6616d9b39ce146075edab723e147d6c888f8600cfb027fdee1fff0150480
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1347
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 16 Nov 2022 07:17:44 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash5b80883a318b116e8b967c4e7c5fb219 4d7a8f63edad447a8b46f7816b950d90e01c7872 2b1bf5e0056b5d2dabc4a7ce5da47044293386d238e666abfa8c9c6d25da44aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 07:17:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js | 142.250.74.164 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js IP142.250.74.164:0
File typeASCII text, with very long lines (36106) Hash7fc7e22ecccb0cfd0ae897bb40a58efe 5d46470a711120793c362235105836fe49e699a4 1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 13 Nov 2022 10:09:03 GMT
expires: Mon, 13 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 248922
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8552fe5-9d6e-4c48-8fdf-9aff24c27e99.jpeg | 34.120.237.76 | 200 OK | 3.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8552fe5-9d6e-4c48-8fdf-9aff24c27e99.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash615bef859754507c0879d46f82e190bf 38102ae658b239a79d016273972fa1f0386d9bc3 4eb4d80158c1a0eb93bb758728f18646b43480d929ee1b3afad665dabf33c15b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8552fe5-9d6e-4c48-8fdf-9aff24c27e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3545
x-amzn-requestid: 0efb7066-a29f-4d26-97af-b6d519072748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bef9bFlQoAMF3EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f46bc-1196f31519cb17884dd476f0;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 07:09:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HN94SvMs3vtST1xjcI35y4U98Z9T74oS1R0gW-BgLZPNczJNEz7NiQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 17:01:42 GMT
age: 51365
etag: "38102ae658b239a79d016273972fa1f0386d9bc3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-includes/js/hoverIntent.min.js?ver=1.10.2 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP104.21.58.217:0
GET /dk/wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Fri, 04 Nov 2022 13:21:35 GMT
etag: W/"636511df-5db"
expires: Sat, 10 Dec 2022 23:03:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 461638
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tVR4qFUDFPRVoXKdqQ9JR2kRU4RrXVXugSKLPwbplIpj77%2Fmy2LaOgOFgmzPyQSMGMVYprNjUffs4ZpUIEbvIbBj%2BmZi14X7Sues6P%2BcToYhNSdjnRFgxW8kpFazwq7MOR58FhI3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc99deb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/css/autoptimize_single_cb0c3d31236f082db2820510af01f038.css?ver=2b6d1f | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/css/autoptimize_single_cb0c3d31236f082db2820510af01f038.css?ver=2b6d1f IP104.21.58.217:0
GET /dk/wp-content/cache/autoptimize/9/css/autoptimize_single_cb0c3d31236f082db2820510af01f038.css?ver=2b6d1f HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 15:35:58 GMT
etag: W/"63628e5e-869f6"
expires: Sun, 04 Dec 2022 17:42:54 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 999288
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3A2wXSCbtQ%2FUYlIiJ5YwGS1WHdzyEj7THyLWjBzkvCapkT9YM8SV4N8Kzg%2FhjNy8sKFOekwqfH1FrkU0fIEyH1CeWi6a2YWsKnkygWYcsByQ2gfgoawhQcBsm6c%2Fbjrgn%2FEMygUI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbd904b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/Union.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/Union.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/themes/pokatheme_child/assets/images/Union.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Wed, 02 Nov 2022 10:43:32 GMT
etag: W/"636249d4-689"
expires: Sat, 04 Nov 2023 19:18:28 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N9K8%2BxQVQS1yyUlAiRhCz0a1%2FSv3an2g2B8EjWrhkKGXkaAUvbLozjgIMTymI02GX0XwppImxE58ZRbsDe7KTgm%2FDEuI1JxOaqcw5TJmHpSjv%2Fz83xwZDnSNcJIhzoEvJAwpN5af"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc69a8b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme/js/scripts.all.min.js?ver=3.4.7 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme/js/scripts.all.min.js?ver=3.4.7 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/themes/pokatheme/js/scripts.all.min.js?ver=3.4.7 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 18:53:46 GMT
etag: W/"609c243a-280fb"
expires: Sat, 10 Dec 2022 23:03:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 461638
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=64l4tnV1PF3%2Frc%2BnccqKtT67So1kW2ofIevGIbyAXKCfhvK2xyPkr9XDLKe%2FM2b8Uf4q3i%2FKibRYYbO5CPAXJZs7h7NONL8hGB%2FWBqHTkmYq3PiJRA71xdoa538%2FEmFGbgl%2F5mJT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc99dbb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 20:07:41 GMT
etag: W/"636c088d-2e7a"
expires: Fri, 09 Dec 2022 20:38:31 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 556751
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZkDUy81vhkHaiicH6cqhLjiDdXI9kEHH5H70mp7OswKWtKi6p%2BkZFVBa7Vd6FfzdkLS4M3SjjG%2BQQjoFPTjlD%2F0kJ11N4pVvrVfLt6bqRRT5zp4eqZsCG%2FcfqfqXZU3MECj16wKx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe90db503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme/fonts/poka.woff?v=2.1 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme/fonts/poka.woff?v=2.1 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/themes/pokatheme/fonts/poka.woff?v=2.1 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/font-woff
last-modified: Fri, 20 Mar 2020 06:17:40 GMT
etag: W/"5e746004-f60"
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1DP7ffa0PpiVyKMKhnKO0WMZdyW%2FMq1UClgH%2BomGS212haY89euLE13wzQmzM9XHCqEFW4vfgiGCiL0ZsBQNVKJH7cv9y08%2BNYNIwlFlfAQOYLMQOxjmNRztSOk6B96fbEeuI2E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe90ab503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 19:05:33 GMT
etag: W/"636410fd-2bd8"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bhPmzVdewbmcQ%2BQQoSX9XFq8XskJu2U7iHQf5AWuK574AKkt6xdW3xlAbmMMoeG51c2gVh6QkgzoH4YoXoNLjGeabiPculc%2BskmF7PueJSFLpV%2BWpz%2Fb6Df9OhGqipjOMI4QhNk3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc89d0b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Rubik%3A400%2C400i%2C700&display=swap&ver=6.1.1 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Rubik%3A400%2C400i%2C700&display=swap&ver=6.1.1 IP142.250.74.10:0
GET /css?family=Rubik%3A400%2C400i%2C700&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 07:17:42 GMT
date: Wed, 16 Nov 2022 07:17:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/css/autoptimize_1a2a1102a9c49df47b4d425847dcd6fa.css | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/css/autoptimize_1a2a1102a9c49df47b4d425847dcd6fa.css IP104.21.58.217:0
GET /dk/wp-content/cache/autoptimize/9/css/autoptimize_1a2a1102a9c49df47b4d425847dcd6fa.css HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 17:44:58 GMT
etag: W/"63727e9a-895d7"
expires: Wed, 14 Dec 2022 17:48:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 134961
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MD9HfiK9F%2Blz38Nfy5H1Dp%2FBZdCq4Vk4x6Jx1dlDlblSj2%2B8oyqn%2BIsQMXsAzxtkx9Gygu%2Bx%2BjS7bTIcOMnD6p5L26teSHttXSWpmZiMrTU7MRg3Kwf3oIUiRQcTZDHXJsxB%2BS%2Bd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbd8ffb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/denmark-flag.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/denmark-flag.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/denmark-flag.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Mar 2022 15:43:37 GMT
etag: W/"623c91a9-cd"
expires: Wed, 15 Nov 2023 05:52:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 91500
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ra2SGYZxjPQDgzHZhKxagk%2FW344I72XAlvrWZKJiEG%2F1uX2n1W0GeWimbTOYJm0wV7ByfBpbujjElKTvaU22%2FB8irjSfKKRlNHnaxJiyrVuoVEMNVv133kKinbUEzjeiMWhV%2Fqox"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc5987b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/gamcare.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/images/gamcare.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/themes/pokatheme_child/assets/images/gamcare.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Wed, 02 Nov 2022 10:43:32 GMT
etag: W/"636249d4-aa8"
expires: Sat, 04 Nov 2023 19:18:28 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lH5Exr0bUE%2F2F5wRGTZix9H8meng%2FmyPE0YhpJqITX2%2Ba%2BGivmfdFJbLSUgr5lparTum7lmEexabbr4GbcMtDlqP7e5iD4sf4%2B5x07yKRnqq4sAxBlD%2Ff3oHMV5eQdSoiASKXb9u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc6999b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/best-bonus.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/best-bonus.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/best-bonus.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Tue, 29 Mar 2022 14:49:37 GMT
etag: W/"62431c81-540d"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dn7fNwXxq1%2BcTOeXMUMRyJ2WPJi8uulrGVuHzFXhDKvYlBUkFZlz0v0QYe8NRwj8%2BR%2BiTSC3YRl3UdUs4DjpXBtcjPocp%2B8SOQJ6cgr4G4trUxaVfhqsPbu1regiPLrfCtcjbQF7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc0934b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/poker-icon.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/poker-icon.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/poker-icon.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Tue, 15 Mar 2022 09:34:51 GMT
etag: W/"62305dbb-4109"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sPQun9LQblVe6tGfmGq96eQH0NfHCkUh3Z0LTQviEMpbMSnllA6JMC0YE7Tz7U7c2%2FCNvQ%2BPfoaw3J4wDADpfUvszomGwYs%2BwmiLli%2BleX3Ka40jLpsNKv54nyRDs9et4rXXMlXT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc194ab503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/new-casino.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/new-casino.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/new-casino.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Mar 2022 09:57:29 GMT
etag: W/"62418689-525d"
expires: Sat, 04 Nov 2023 19:18:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 993555
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EvHPCCSn0Hfse01RkGSt2skWLOX4LV3NCSfSISnBq0I6sXvENQWhIspI6B8GOqaux20HoeEus4WgIDJM4Chbl%2B1SNE6wkqbVpIrN%2BqhlGKkjGPmZuQToatnq%2B7%2Fr6oXPaoGz4Un1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc0938b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_407c410cb999f3c72ca6229af82a7a45.js?ver=2.7.3 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_407c410cb999f3c72ca6229af82a7a45.js?ver=2.7.3 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_407c410cb999f3c72ca6229af82a7a45.js?ver=2.7.3 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:35:58 GMT
etag: W/"63628e5e-57c4"
expires: Sun, 04 Dec 2022 19:18:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 993554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n6ZqNifLXKzIXuq1M6tiorm6S2kC3CkHyEVw4i2hVhX2wkh2m49vNx4wIHcea9bKZ35Uj0bi5s9ujirMIVulzPjRYaMtG%2B%2FIolCNtZL9RQe%2BrB7WS8SAk1cyn4JLHvfxO6SlI1mc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc99dab503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dereferer.me/?https%3A//www.google.com/url%3Fq%3Dhttps%3A//casinoreviewers.com/dk/bonus/%26source%3Dgmail%26ust%3D1668610113123000%26usg%3DAOvVaw1hOix7TyX4l-1h2UO_VBp9 | 45.15.23.147 | 200 OK | 0 B |
URL HTTP/2dereferer.me/?https%3A//www.google.com/url%3Fq%3Dhttps%3A//casinoreviewers.com/dk/bonus/%26source%3Dgmail%26ust%3D1668610113123000%26usg%3DAOvVaw1hOix7TyX4l-1h2UO_VBp9 IP45.15.23.147:0 ASN#203523 Virtono Networks SRL
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /?https%3A//www.google.com/url%3Fq%3Dhttps%3A//casinoreviewers.com/dk/bonus/%26source%3Dgmail%26ust%3D1668610113123000%26usg%3DAOvVaw1hOix7TyX4l-1h2UO_VBp9 HTTP/1.1
Host: dereferer.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:38 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-location: https://www.google.com/url?q=https://casinoreviewers.com/dk/bonus/&source=gmail&ust=1668610113123000&usg=AOvVaw1hOix7TyX4l-1h2UO_VBp9
server: Dereferer.me
x-powered-by: Layer7 Cache
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js?ver=6.1.1 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 09:41:51 GMT
etag: W/"6245775f-5c0"
expires: Thu, 15 Dec 2022 21:53:19 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 33863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5RYSahWkEJMmcHJuKSwVDpCrEjqKIjCoaHHpGgznvGR9TM1PFzIgM7HOhN2oOjSHE2dTLOmGbMb5%2FX6swlbZjtq3QcY7QWy7PYahNrLS2UWF07yT%2Fp1Ompxsv4Yscd13d0WjT0QJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc99d8b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/enWapiHOeBQ | 142.250.74.142 | 200 OK | 0 B |
URL HTTP/2www.youtube.com/embed/enWapiHOeBQ IP142.250.74.142:0
GET /embed/enWapiHOeBQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Nov 2022 07:17:42 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=94egsyYQyfM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=u6Url_HIDms; Domain=.youtube.com; Expires=Mon, 15-May-2023 07:17:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+809; expires=Fri, 15-Nov-2024 07:17:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js?ver=6.1.1 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 09:41:51 GMT
etag: W/"6245775f-2cdc"
expires: Thu, 15 Dec 2022 21:53:19 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 33863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UbnlT%2FV9kvrhp%2B7xZKsjUiTbjpU2nf4%2BbQwlXKGpC8rfdW0gYUBfs5zi9WWz%2BXMtfwzG9KPplqFZm9wiXnQrt7thnGxbOr8KQHuyJXf3Rnn6mYNpXjGVRCXI%2BDUpbEKFgy2nasjf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc99d7b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap IP142.250.74.10:0
GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 07:17:42 GMT
date: Wed, 16 Nov 2022 07:17:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/css/autoptimize_single_f6a493c7473a7aa2a1b0959915b69c3e.css | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/css/autoptimize_single_f6a493c7473a7aa2a1b0959915b69c3e.css IP104.21.58.217:0
GET /dk/wp-content/cache/autoptimize/9/css/autoptimize_single_f6a493c7473a7aa2a1b0959915b69c3e.css HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 15:35:58 GMT
etag: W/"63628e5e-29b1"
expires: Sun, 04 Dec 2022 17:42:54 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 999288
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vb6pqR2qU2FCKOscmRfy2FWBtryNfnNCMR%2BFQQWMrGvdGRm4kSpd3WXrXU8ShFRyumikliLTWSY27YvceWd%2Bam5tWx34u5ZndveTH581j4S5PSCzI4rw%2Bm34WfvXcQXkJ5%2BLy%2Fp6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cbe90fb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/free-spin-icon.svg | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/uploads/sites/9/2022/03/free-spin-icon.svg IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/uploads/sites/9/2022/03/free-spin-icon.svg HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: image/svg+xml
last-modified: Tue, 15 Mar 2022 09:34:54 GMT
etag: W/"62305dbe-40b1"
expires: Fri, 10 Nov 2023 23:03:44 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 461638
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byig7tx5WrpQrCkQYrg1jo4dTRvc%2FDHhF%2FvlFDcOdKoE7G2kCt9pjbrVwgnHBZa891vyTuqiYJMlxmTvE29EeVZPnMv6dwx6Onn%2BjJE3CmECzWRYBJT%2FsA92XMWD7PyyaJcGPduj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc0937b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_e1d6533906ba8cce9da6157ec25c0dd5.js?ver=2.9.6 | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/cache/autoptimize/9/js/autoptimize_single_e1d6533906ba8cce9da6157ec25c0dd5.js?ver=2.9.6 IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/cache/autoptimize/9/js/autoptimize_single_e1d6533906ba8cce9da6157ec25c0dd5.js?ver=2.9.6 HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 11:16:52 GMT
etag: W/"6368e924-4c52"
expires: Sat, 10 Dec 2022 23:03:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 461638
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GhDhRHEelG7w32FASs2NA5fOOmCWKIbeGPJdPJQd4EuUd06QtqD%2F7FZ%2BeqAvOvlnSfLPJq6znT7H0XoiOcE3wtcct%2BMjOFmK3Qf2pjkBG%2FXO%2BW8u%2BfOXld1QpbxMkIz6vYyeaNyJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc99e2b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/bonus/ | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/bonus/ IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/bonus/ HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Cookie
cache-control: max-age=3, must-revalidate
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vW0BZ2vPLoZJICzveux6qbb%2F9deEh1d9HuWTmQirJKYSogr758Z9vXiWHr4TtOZqq%2BtdArL59j81t6LddYw8cuw0cW4ZClF%2B%2FQrjKdo0ExmF5iWOBJi5jmWyN0f8jC%2BEBwIvemtv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ae72cb381eb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/js/jquery.min.js | 104.21.58.217 | 200 OK | 0 B |
URL HTTP/2casinoreviewers.com/dk/wp-content/themes/pokatheme_child/assets/js/jquery.min.js IP104.21.58.217:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/wp-content/themes/pokatheme_child/assets/js/jquery.min.js HTTP/1.1
Host: casinoreviewers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinoreviewers.com/dk/bonus/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 07:17:42 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 12:17:41 GMT
etag: W/"6368f765-15391"
expires: Sat, 10 Dec 2022 22:52:15 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 462327
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MoynCGvGCsy1J%2BCO5cNRDhRogT3PvqmpoqkM8tlowiNLa8RF5m%2FlYXK6DWh3qN9ML5XC6UDDeTmEGnD1J3iNeHNYY%2B8VxfxmnbsKKRuG17ml2i7NvKk1UzpIGPl83HrdeCQP8ETZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ae72cc79bbb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|