| casinobonus365.club/wheel1/casino11.html | 143.204.68.45 | 301 Moved Permanently | 167 B |
URL HTTP/1.1casinobonus365.club/wheel1/casino11.html IP143.204.68.45:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashf5d40b7259645010f9a248858ad14178 b3051d17a6ec8c9e166bf09a62b48261ab86957b 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /wheel1/casino11.html HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 02 Nov 2022 21:55:57 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://casinobonus365.club/wheel1/casino11.html
X-Cache: Redirect from cloudfront
Via: 1.1 f25261ba016233f0454d8943ca7e6eda.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P1
X-Amz-Cf-Id: etmwplYroDjEK4d6pPKh2Sz16uKGjOxpU7toJKmeN6Wy5g5oWfsGJQ==
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash59be8dfdd6f4ab82f394d3d5b927e065 dc8e8f1bbae495f84322e5efd0c42a39ef5be56c 7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6311
Expires: Wed, 02 Nov 2022 23:41:08 GMT
Date: Wed, 02 Nov 2022 21:55:57 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash5f57d2cc1ab8bbee50dff2b2be18b9db 2c8acd2018995b9bbed8f4dbfa33c8044b293080 a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5304
Cache-Control: max-age=133412
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 21:55:57 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:59:29 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash5f57d2cc1ab8bbee50dff2b2be18b9db 2c8acd2018995b9bbed8f4dbfa33c8044b293080 a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5304
Cache-Control: max-age=133412
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 21:55:57 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:59:29 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash43ea74d83493710eb8b64a74046ff569 74dee6d9e8b796d34f2788a472b90b3f7fc79ecd f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9475
Expires: Thu, 03 Nov 2022 00:33:52 GMT
Date: Wed, 02 Nov 2022 21:55:57 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3lb2Nv8RY/+/NyQ1mKd9z2NYvZomTtzm/4e7NVxcvzJk9xwMpQ69DFF78bmtDhf6OdICOQeXeQM=
x-amz-request-id: CH081JC4X6WS8EYB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 02 Nov 2022 21:08:54 GMT
age: 2823
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 21:55:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 13.224.246.193 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP13.224.246.193:0
Hash168ccd3e12fd1d604dfa9425cccb55ea 6c922809c9068b76fcff615a46f06f3dddff51ed 3c6217b288af68260d58b3b4151587ebac9da0cd48be4d6736f5f83afacceb57
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160484
Date: Wed, 02 Nov 2022 21:55:57 GMT
Etag: "6362b751-1d7"
Expires: Fri, 04 Nov 2022 18:30:41 GMT
Last-Modified: Wed, 02 Nov 2022 18:30:41 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c72aed82acf017b1476dc574b8d5da80.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR62-C3
X-Amz-Cf-Id: JuZShMiHjLJxcEhnqodj0U_VolrDoMXs7paN_yeBGwj-SB8xG8JntQ==
|
|
| casinobonus365.club/wheel1/images/red-arrow-left.png | 143.204.68.38 | 200 OK | 1.3 kB |
URL HTTP/2casinobonus365.club/wheel1/images/red-arrow-left.png IP143.204.68.38:0
File typePNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data Hash92d3e482cacea857c5dfaf9fa3a21dfb 3f12c410c77d763cc4719ec367a18417b8300758 4a688dc66588e8e86e98ccadb318fa2aca3fd6e2444aac783278b982f3e47eef
GET /wheel1/images/red-arrow-left.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1334
date: Wed, 02 Nov 2022 19:32:06 GMT
last-modified: Fri, 07 Jan 2022 13:16:06 GMT
etag: "92d3e482cacea857c5dfaf9fa3a21dfb"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: FMVBtUpUpP-cGmUuGuz9LEb3gCAeInS-asZLbONVAsUvJUhbtqjGPQ==
age: 8633
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/slot-win.png | 143.204.68.38 | 200 OK | 14 kB |
URL HTTP/2casinobonus365.club/wheel1/images/slot-win.png IP143.204.68.38:0
File typePNG image data, 410 x 279, 8-bit colormap, non-interlaced\012- data Hash939b6a73c96383ac0842317037f3a0f0 0654b62431c8ba522833950b8166d7a16e2a6b56 b8f1ec0ac028bd024af2cf57b63b07069b2f4a41e61c1577e968ca5d7ba72837
GET /wheel1/images/slot-win.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 14391
date: Wed, 02 Nov 2022 18:37:19 GMT
last-modified: Fri, 07 Jan 2022 13:16:08 GMT
etag: "939b6a73c96383ac0842317037f3a0f0"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: B1OHch48fKqPCMXi0SP7w8bgi7Tf3bbuMXzDph4acHx___5buI2zgw==
age: 11920
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/slot-result-1.png | 143.204.68.38 | 200 OK | 20 kB |
URL HTTP/2casinobonus365.club/wheel1/images/slot-result-1.png IP143.204.68.38:0
File typePNG image data, 410 x 279, 8-bit colormap, non-interlaced\012- data Hash1fbd2b26e61236d5bcfdfeb6adbd2c8c c9034272d28dab018b73f1967a679c734f987a1f c402c36eb8d623b618261d40846e63c130de1e78720ab5578eae1d645198c963
GET /wheel1/images/slot-result-1.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 20370
date: Wed, 02 Nov 2022 19:32:08 GMT
last-modified: Fri, 07 Jan 2022 13:16:07 GMT
etag: "1fbd2b26e61236d5bcfdfeb6adbd2c8c"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: hoKKEiJB4JH2noCMH51uVG43JU6iIm_FifZxzHJF2zrK576OxLDoDQ==
age: 8631
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/slot-start.png | 143.204.68.38 | 200 OK | 26 kB |
URL HTTP/2casinobonus365.club/wheel1/images/slot-start.png IP143.204.68.38:0
File typePNG image data, 410 x 279, 8-bit colormap, non-interlaced\012- data Hashf491647556e492de92530b48827690aa 6296c44299f5acb17cb2c06e37391a70672b1fd3 efb819d37f19ec7505d9602488ce97868d84e1c7929ce83e308e23f02d97b95d
GET /wheel1/images/slot-start.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 26084
last-modified: Fri, 07 Jan 2022 13:16:08 GMT
server: AmazonS3
date: Wed, 02 Nov 2022 18:37:18 GMT
etag: "f491647556e492de92530b48827690aa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: PbRkwUIL17wycHAkX44fhths0mVoRjuawiWinoFHj4hU5a7Yn05QpA==
age: 11921
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/slot-result-2.png | 143.204.68.38 | 200 OK | 27 kB |
URL HTTP/2casinobonus365.club/wheel1/images/slot-result-2.png IP143.204.68.38:0
File typePNG image data, 410 x 279, 8-bit colormap, non-interlaced\012- data Hashb6ca0bfea4d0cec334f128f5c2c44cff f6dc006902542a929187af718d9f6a244e5472b5 b09b477eb93ed896b8e52a2f746e435695dbef2a1259987bae4fbea3c35b5435
GET /wheel1/images/slot-result-2.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 26733
date: Wed, 02 Nov 2022 19:32:08 GMT
last-modified: Fri, 07 Jan 2022 13:16:07 GMT
etag: "b6ca0bfea4d0cec334f128f5c2c44cff"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: j_I143umQzAIi_tP--WtSNUnPylgjmGoVb_BVpsml6hSSNgAx4cIEQ==
age: 8631
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/red-arrow-right.png | 143.204.68.38 | 200 OK | 1.4 kB |
URL HTTP/2casinobonus365.club/wheel1/images/red-arrow-right.png IP143.204.68.38:0
File typePNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data Hash881bdc037be8895ba5d8d53456890e7e 4e105c89e2a1475520bb74c9c20bf2f9e906fcb3 9f8160d6380fef91c8eadecc6e8e59e93e3f5c40be7963018c8104bef4354d8f
GET /wheel1/images/red-arrow-right.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1362
date: Wed, 02 Nov 2022 19:32:06 GMT
last-modified: Fri, 07 Jan 2022 13:16:06 GMT
etag: "881bdc037be8895ba5d8d53456890e7e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: bGC7RJJWpKWgy3M9YsrfwQOtXAIGnZZ0TJGDxgf2Babfm3dcVJ0t7A==
age: 8633
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/slot-spin.gif | 143.204.68.38 | 200 OK | 88 kB |
URL HTTP/2casinobonus365.club/wheel1/images/slot-spin.gif IP143.204.68.38:0
File typeGIF image data, version 89a, 410 x 279\012- data Hash617c16c5e04c8603dd7f157862b1c682 1306296f9a666a7fc50f339a2a924ce8a3a18169 7f8e36cf7ac437d7c42440ef5f522c8e27adb06348b573192308038fa7c1dc7e
GET /wheel1/images/slot-spin.gif HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 87599
date: Wed, 02 Nov 2022 19:32:04 GMT
last-modified: Fri, 07 Jan 2022 13:16:07 GMT
etag: "617c16c5e04c8603dd7f157862b1c682"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 5MxNixmX3tuXDxdJfQWsjFtxY8gFv9IpGuYFjljDHqjfuwy6oobX6w==
age: 8635
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/images/arrow.png | 143.204.68.38 | 200 OK | 154 B |
URL HTTP/2casinobonus365.club/wheel1/images/arrow.png IP143.204.68.38:0
File typePNG image data, 12 x 12, 4-bit colormap, non-interlaced\012- data Hash4daf12b0677dd9ae8923d3154187d1d8 d20e8f0a0c1a72d20cd421ba5e162ff938896e51 5351d7b058d47812c8a2c74bccef9389a11e3df9cd19874d95b7000c8ab9ea9e
GET /wheel1/images/arrow.png HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 154
date: Wed, 02 Nov 2022 19:32:06 GMT
last-modified: Fri, 07 Jan 2022 13:16:05 GMT
etag: "4daf12b0677dd9ae8923d3154187d1d8"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: houAcr8GgjaZQprjYnYzYzMVPTqtg7wxfxF_HedLaZN3etSyGkyIMw==
age: 8633
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfd65439b27a0101cd831309f178fbb45 4daa9343dda0f37ba734e2b5500caf2728cf89db 37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3222
Cache-Control: max-age=126272
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 21:55:58 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 09:00:30 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdc2299e56f6a1942b911b28bbf1b6308 e9633a3265a202670e86a0fe1e8b77a3c3b73397 9a396b337e834b808bd0aea5d4da5b637b6121a5281e81d2ae96d58468b59052
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A396B337E834B808BD0AEA5D4DA5B637B6121A5281E81D2AE96D58468B59052"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1736
Expires: Wed, 02 Nov 2022 22:24:54 GMT
Date: Wed, 02 Nov 2022 21:55:58 GMT
Connection: keep-alive
|
|
| casinobonus365.club/wheel1/sounds/win.mp3 | 143.204.68.38 | 206 Partial Content | 22 kB |
URL HTTP/2casinobonus365.club/wheel1/sounds/win.mp3 IP143.204.68.38:0
File typeAudio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2.5, 24 kbps, 11.025 kHz, Monaural\012- data Hashc74dca6a3ab16c097234033fec7a8573 a6e73f993b73d589b9688a0679bdac39028017a0 79e8f06f8cb25d13c57d798f7e068d282dd2dfdb026b54aacc8ead2641542a56
GET /wheel1/sounds/win.mp3 HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mp3
content-length: 22067
last-modified: Fri, 07 Jan 2022 13:16:14 GMT
server: AmazonS3
date: Wed, 02 Nov 2022 18:37:19 GMT
etag: "c74dca6a3ab16c097234033fec7a8573"
vary: Accept-Encoding
content-range: bytes 0-22066/22067
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: N44d-0DuOYUUwRx5g28PLjlIQjxKQjsSohxurmB0ktCLra30YDX-lQ==
age: 11920
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/sounds/spin.mp3 | 143.204.68.38 | 206 Partial Content | 51 kB |
URL HTTP/2casinobonus365.club/wheel1/sounds/spin.mp3 IP143.204.68.38:0
File typeAudio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 320 kbps, 44.1 kHz, JntStereo\012- data Hash390bca8d165546a8097b8951d2f400d4 1385d88b3aeee07bc51e7955fbcb9ed7586ebdec cdb080d348cd2222fbe1d5b54da2f9db8fdca881570a9c82899082203b000b78
GET /wheel1/sounds/spin.mp3 HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mp3
content-length: 51290
date: Wed, 02 Nov 2022 18:37:19 GMT
last-modified: Fri, 07 Jan 2022 13:16:13 GMT
etag: "390bca8d165546a8097b8951d2f400d4"
server: AmazonS3
content-range: bytes 0-51289/51290
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: eejV8GhLPcdULX4EMhghBe6k0T3XHBTVO-lJJuZN00i9MTFqAzwffg==
age: 11920
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/sounds/alert.mp3 | 143.204.68.38 | 206 Partial Content | 8.8 kB |
URL HTTP/2casinobonus365.club/wheel1/sounds/alert.mp3 IP143.204.68.38:0
File typeAudio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data Hash6d2d3da2ea28ace816fa4a138829dc18 606e0ec3d7fb05c69f16233cfe1ff0a0ee760505 d79bc81189750262716692ade6cc4d6fb6c4fbc4aa01c2b9d0aa67e5788821fc
GET /wheel1/sounds/alert.mp3 HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mp3
content-length: 8802
date: Wed, 02 Nov 2022 18:37:19 GMT
last-modified: Fri, 07 Jan 2022 13:16:12 GMT
etag: "6d2d3da2ea28ace816fa4a138829dc18"
server: AmazonS3
content-range: bytes 0-8801/8802
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: AA8p_D9EcivytLXHg4fn_MHC668aRI6uUBXZChvruEGe4SRd_9_l6g==
age: 11920
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/favicon.ico | 143.204.68.38 | 404 Not Found | 346 B |
URL HTTP/2casinobonus365.club/favicon.ico IP143.204.68.38:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash7480057cb036c934578eb1f93a11d536 235687883518cec2703c1e72bb77b08f65818f20 32aefedd64de09ff3de61bd32f6950c76d31d6211fc6992dd237c4d9cbc5cbd6
GET /favicon.ico HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
content-length: 346
date: Wed, 02 Nov 2022 21:55:57 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Hd__UVji33MmaZO5KBqDYriq6Q_4vcwtfqCYVmmhMWOzE0CIAx34dw==
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.89.15.44 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.89.15.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nSGU9+y/j1iIYUXTKtHxcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8KE5HvVx/4FYR1t4WVh+drNRLdw=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf286e64f8de8d0158fe2a83cea74da23 b0e9fd228565aaf58ec455d743e39559a548fdbb 21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 21:55:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf286e64f8de8d0158fe2a83cea74da23 b0e9fd228565aaf58ec455d743e39559a548fdbb 21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 21:55:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf286e64f8de8d0158fe2a83cea74da23 b0e9fd228565aaf58ec455d743e39559a548fdbb 21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 21:55:59 GMT
Connection: keep-alive
|
|
| deefauph.com/pfe/current/micro.tag.min.js?z=5118265&sw=/sw-check-permissions-b9a8e.js | 139.45.197.251 | 200 OK | 43 kB |
URL HTTP/2deefauph.com/pfe/current/micro.tag.min.js?z=5118265&sw=/sw-check-permissions-b9a8e.js IP139.45.197.251:0
Hash8cee53452259b8be8ed40430dc6d6e8f 68961e5d6dd43b24caa037542471a5ecc51acb32 ea06ae7b740f44af0a17dacf32e81d1c02bc32492e4ee2b73e0f8ebb9884ad7a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pfe/current/micro.tag.min.js?z=5118265&sw=/sw-check-permissions-b9a8e.js HTTP/1.1
Host: deefauph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 21:55:58 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:02:53 GMT
etag: W/"63626a7d-12fd9"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2e6d78844aa60ad0bd62fc70779a63e8 80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949 ac1ee1c30bee586a5edd9605a514548e1e91e6ef39c55cc866cf026b8ed3df82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10496
x-amzn-requestid: 4b3864a5-5e0b-42f3-83b3-c997f66eeb55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OG_H3oIAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619092-6e450a0c6393d47f4d72ce35;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RdQLfkVz-UeNJrjj1v9AhoN4y_UGJWCMDxBs_Aol54c5-mf-cZoaZw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:24:57 GMT
age: 84662
etag: "80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash80a15bf497eed7ce0dc0bab1fc27c18d 5da512cc8d716ed6d83db95ffe40a8113aca3036 5f7fc4ccda5c71792416faa54964966731c1d3b612b56891f9d5e5e8f3c69666
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7495
x-amzn-requestid: 4980bd4a-9383-47d4-81de-3c1f1788f917
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N9sFbOoAMF7mQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619057-1451572557667da827b5d123;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:32:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XHQuejx6CtAUIXbcR3RQgXFgJ059Dikq_8xJhfAoSIx3ZsGHD9Nfcg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:39:20 GMT
age: 999
etag: "5da512cc8d716ed6d83db95ffe40a8113aca3036"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9d889392defc575d85e26321730c2722 28177e0094cb108a96751ba23830134e1d4b8e15 758b77490f2f67d8d4297e0060b0a310be6f03dcda4808969147e1610879e836
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12840
x-amzn-requestid: c6424625-a000-41be-8043-4ac408d25086
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAG5QIAMFodA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-2d8d7616088723ab392f74ff;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nhbB7wn_tje5pEJa66ub53DJMk6pvkjSfpKsruWEuzYPDoUlm_icg==
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:52:41 GMT
age: 198
etag: "28177e0094cb108a96751ba23830134e1d4b8e15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg | 34.120.237.76 | 200 OK | 5.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash13ef41807ff6c1430d0f53674274e1e5 9af1c9bf800c46497754c2e35e04cbd8b277d9bc 63996c5ea515898cc3c31c738f10a90e693b3c4d980229f5cbb25836f71c94fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5514
x-amzn-requestid: 08c00121-f4c5-41a3-aeb1-caa62028c091
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OeJFeHIAMFVlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619127-7069ac091b65263c5e5998a4;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:35:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mSY46sahMUeL1eeiIXsLWK2UHxJqbxrieVDCZ4nYt-uH4EsDHrROXg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:41:08 GMT
age: 891
etag: "9af1c9bf800c46497754c2e35e04cbd8b277d9bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashab331970f5e4f7f2e0ff0c042095ec4e 2b72b9df83cc12db944f6d079d91d6362be036d0 35dd7f4cc581389be9e90be3e7a8663831eeeb89c261cb3eb3fcc66cb9e56f24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7026
x-amzn-requestid: f5a992f1-beb7-463c-8125-e0f74009f272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N75GyioAMFsEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361904b-648797425d1d3d485d17d773;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:31:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ct2UyXUhCL58M5_X1nCM5LhPGWDxuZgav0SiSsm99PUF_ergMz34tw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:41:05 GMT
age: 894
etag: "2b72b9df83cc12db944f6d079d91d6362be036d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/casino11.html | 143.204.68.38 | 200 OK | 0 B |
URL HTTP/2casinobonus365.club/wheel1/casino11.html IP143.204.68.38:0
GET /wheel1/casino11.html HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 15 Sep 2022 14:06:13 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 02 Nov 2022 04:05:25 GMT
etag: W/"94583f0d7eeda207008ac62449a5985e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 7D85hCeao6Wd7amqMLgW7JPY2zK8mV1fInydUpZNmPmNmD70Ft7vJg==
age: 64234
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/css/style.css | 143.204.68.38 | 200 OK | 0 B |
URL HTTP/2casinobonus365.club/wheel1/css/style.css IP143.204.68.38:0
GET /wheel1/css/style.css HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Wed, 02 Nov 2022 18:37:19 GMT
last-modified: Fri, 07 Jan 2022 13:15:47 GMT
etag: W/"538445a521226e69b9c4231a52ad5e79"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: p66f08XgMkBYDIELghh0DwI42QIq_Lj3lbdgj_deO18zpIDlJotFyg==
age: 11920
X-Firefox-Spdy: h2
|
|
| casinobonus365.club/wheel1/js/jquery.min.js | 143.204.68.38 | 200 OK | 0 B |
URL HTTP/2casinobonus365.club/wheel1/js/jquery.min.js IP143.204.68.38:0
GET /wheel1/js/jquery.min.js HTTP/1.1
Host: casinobonus365.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://casinobonus365.club/wheel1/casino11.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 07 Jan 2022 13:16:11 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 02 Nov 2022 18:37:18 GMT
etag: W/"723e11a50995eef960d59451910e2cb4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Dk1Ew6SEGYcOemW_U35VO7oal2J4jY2cAnhflF8H3RINNpsM-3iVeQ==
age: 11921
X-Firefox-Spdy: h2
|
|